Avast Free Antivirus (2018) - Product Screenshots

[slash/]

avast can't really spy on me. I blocked most of its telemetry

You don't truly believe that. Data collection is the name of the game for these vendors, and where there's a will, there's a way.

 

[Evjl's Rain]

can u shared ur way to do that ? ty advanced

- first you MUST temporarily disable Avast's self-defense (I just realized avast can revert those hosts changes if we don't disable self-defense and don't lock the hosts file)
Settings -> troubleshooting -> uncheck "enable avast self-defense module"
- second: open C:\Windows\System32\drivers\etc\hosts (make sure it's not read-only so you can edit) -> add these following entries and save as hosts (without any extension)

Spoiler: telemetry

0.0.0.0 a.fortumo.com
0.0.0.0 ad.flurry.com
0.0.0.0 adlog.flurry.com
0.0.0.0 ads.flurry.com
0.0.0.0 analytics.ff.avast.com
0.0.0.0 analytics.flurry-cdn.com
0.0.0.0 api.flurry.com
0.0.0.0 api.fortumo.com
0.0.0.0 app.igodigital.com
0.0.0.0 cdn.flurry.com
0.0.0.0 data.altbeacon.org
0.0.0.0 data.flurry.com
0.0.0.0 dev.flurry.com
0.0.0.0 e.crashlytics.com
0.0.0.0 get-avast.com
0.0.0.0 googleads.g.doubleclick.net
0.0.0.0 googletagmanager.com
0.0.0.0 pagead2.googlesyndication.com
0.0.0.0 pay.fortumo.com
0.0.0.0 proton.flurry.com
0.0.0.0 stage.app.igodigital.com
0.0.0.0 v7.stats.avast.com
0.0.0.0 v7event.stats.avast.com
0.0.0.0 wutlar.fortumo.com
0.0.0.0 mobile-campaigns.avast.com
0.0.0.0 ipm-provider.ff.avast.com
0.0.0.0 stats.avg.com

- set your hosts file as read-only (to prevent avast from modifying it) or more advanced, right-click on hosts ->security tab -> edit -> deny all write rule for all accounts
- enable avast's self-defense
- settings ->
+ disable cybercapture (not helpful, IMO if you have hardened mode)
+ scroll to bottom -> Privacy -> uncheck 2 boxes
- block AvastUI.exe (outbound connection) with your firewall (if your free license expires, unblock avastui -> register for a new free license -> block again)

 

[Evjl's Rain]

You don't truly believe that. Data collection is the name of the game for these vendors, and where there's a will, there's a way.

I don't mind it more importantly, avast is the most suitable AV for me and my family. Zero infection for many years with proper setup

most other AVs are not light or strong enough

 

[dJim]

- first you MUST temporarily disable Avast's self-defense
Settings -> troubleshooting -> uncheck "enable avast self-defense module"
- second: open C:\Windows\System32\drivers\etc\hosts (make sure it's not read-only so you can edit) -> add these following entries and save as hosts (without any extension)

Spoiler: telemetry

0.0.0.0 a.fortumo.com
0.0.0.0 ad.flurry.com
0.0.0.0 adlog.flurry.com
0.0.0.0 ads.flurry.com
0.0.0.0 analytics.ff.avast.com
0.0.0.0 analytics.flurry-cdn.com
0.0.0.0 api.flurry.com
0.0.0.0 api.fortumo.com
0.0.0.0 app.igodigital.com
0.0.0.0 cdn.flurry.com
0.0.0.0 data.altbeacon.org
0.0.0.0 data.flurry.com
0.0.0.0 dev.flurry.com
0.0.0.0 e.crashlytics.com
0.0.0.0 get-avast.com
0.0.0.0 googleads.g.doubleclick.net
0.0.0.0 googletagmanager.com
0.0.0.0 pagead2.googlesyndication.com
0.0.0.0 pay.fortumo.com
0.0.0.0 proton.flurry.com
0.0.0.0 stage.app.igodigital.com
0.0.0.0 v7.stats.avast.com
0.0.0.0 v7event.stats.avast.com
0.0.0.0 wutlar.fortumo.com
0.0.0.0 mobile-campaigns.avast.com
0.0.0.0 ipm-provider.ff.avast.com
0.0.0.0 stats.avg.com

- set your hosts file as read-only (to prevent avast from modifying it) or more advanced, right-click on hosts ->security tab -> edit -> deny all write rule for all accounts
- enable avast's self-defense
- settings ->
+ disable cybercapture (not helpful, IMO)
+ scroll to bottom -> Privacy -> uncheck 2 boxes

ty !! apreciate that list

 

[Evjl's Rain]

ty !! apreciate that list

hi, I just edited my post, I added the last sentence to block avastui.exe with your firewall

 

[Al-Faqir]

This is kinda offtopic, but if i would install antivirus to my parents / family member computer i would go with kaspersky.
- no pop-ups
- best web filtering
- system watcher

Or just bitdefender, anything that doesnt have ads/pop-ups is best imo

I don't think Kaspersky is the best choice. Bitdefender is the one and believe it or not, our ISP offers BIS 1 year for 3PCs for as low as $2/year. I thought of setting Avast on hardened mode.

 

[Decopi]

Here is my logic on Avast Free:

There is no 100% perfect security software.
Therefore, if users want strong protection, then always will need more than one software.

So, if we need a combo, then we must look for:
1) Strong protection
2) Low system impact

As @Evjl's Rain perfectly wrote: "other AVs are not light or strong enough".
Avast is one of the lightest antivirus, with strong protection.
Avast is even lightweight than WD.
And Avast is free.

We don't need the perfect protection, because as stated above, perfection doesn't exist.
So, a strong protection... is enough.

But the the "pièce de résistance" here will be the second security protection: An anti-executable.
My choice is Comodo Firewall + CS' settings because is one of the lightest on system resources + strong protection + free.
Honestly? CF + CS' settings is enough, but Avast is so lightweight, that it doesn't hurt in case CF fails.

I know dozens of other excellent security combos. But I never found best combo than Avast Free + CF/CS Free in terms of protection & system impact. Every week I follow this and other security forums trying to discover a better combo... but nothing appeared in years.

 

[Moonhorse]

@Decopi cf wont fail, it run everything rejected as cs, its the user who can fail it

But totally agree

 

[slash/]

@Decopi cf wont fail, it run everything rejected as cs, its the user who can fail it

But totally agree

I was about to comment this as well. I know this is an Avast thread, but Avast + CF is overkill. CF, with the right settings, cannot fail.

 

[Decopi]

@Decopi cf wont fail, it run everything rejected as cs, its the user who can fail it

But totally agree

Comodo Firewall (even with CS' settings) can fail, when a file categorized as "trusted" is a "non-trusted" file. It already happened in the past with CCleaner. It was not an user failure, but a CF failure with the wrong "File Rating".

 

[slash/]

@Decopi The CCleaner "hack" was access to their systems through TeamViewer. It wasn't necessarily malware.

 

[Decopi]

@Decopi The CCleaner "hack" was access to their systems through TeamViewer. It wasn't necessarily malware.

Yes, you're right, but CCleaner is an example that CF (even with CS's settings) can fail.
A wrong categorization (File Rating or wrong Trusted Vendor) can happens, and CF can fail.
There is no perfect software.

 

[Evjl's Rain]

Yes, you're right, but CCleaner is an example that CF (even with CS's settings) can fail.
A wrong categorization (File Rating or wrong Trusted Vendor) can happens, and CF can fail.
There is no perfect software.

exactly, there is no perfect software
however, during the ccleaner hack, I did install the infected version on my system and used it for quite a long period. I noticed comodo firewall blocking some random inbound connections, which looked very suspicious

comodo firewall with proper settings might prevent the attack from my side although ccleaner itself might have done something bad, but there might be something else CF can miss

comodo cloud AV, I have seen and bypassed it by myself because of wrong file classification of valkyrie

 

[Moonhorse]

comodo cloud AV, I have seen and bypassed it by myself because of wrong file classification of valkyrie

i wont sleep tonight

 

[Decopi]

exactly, there is no perfect software
however, during the ccleaner hack, I did in... valkyrie

My personal opinion is that CF+CS' settings + back up... is enough.
I have 2 separate back ups, one for few files daily updated, and another one for the rest of my files (very unused files).
I honestly don't see the need for more. CF even imperfect/failing, with daily backup is enough.

Avast as I said, it is just for the remote case of CF failing + I fail.
But I confess, every day I am more convinced that CF/CS + backup... is all what I need.

 

[Evjl's Rain]

i wont sleep tonight

it only happens with CCAV but doesn't happen or rarely, almost never happen with CF

you can find a way to disable valyrie but unfortutunately, I don't know how to, besides disabling the cloud analysis, you will get tons of FPs if you do so

the best solution now is CF, because its cloud analysis does not fully rely on the weak link valkyrie

 

[Moonhorse]

it only happens with CCAV but doesn't happen or rarely, almost never happen with CF

you can find a way to disable valyrie but unfortutunately, I don't know how to, besides disabling the cloud analysis, you will get tons of FPs if you do so

the best solution now is CF, because its cloud analysis does not fully rely on the weak link valkyrie

Well my current setup is CCAV + SysHardener, everything runs in auto-sandbox by default deny, as long im sure myself the file i mess with is safe i have nothing to worry about?

But how i can make sure the file isnt malware signed as trusted? Virustotal every exe.?
Or would i benefit anything of voodooshield along with this setup, as it will regocnize the signature of file along with valkyrie?

 

[Evjl's Rain]

Well my current setup is CCAV + SysHardener, everything runs in auto-sandbox by default deny, as long im sure myself the file i mess with is safe i have nothing to worry about?

But how i can make sure the file isnt malware signed as trusted? Virustotal every exe.?
Or would i benefit anything of voodooshield along with this setup, as it will regocnize the signature of file along with valkyrie?

if you install VS, it's overkill + it's a waste of comodo sandbox
instead, you should install CF and disable the firewall component => similar to CCAV without the snake-oil valkyrie

VT all files is another way but if you have CF, it's not really needed
CCAV, maybe

still, valkyrie bypass is not very common. It's very rare

 

[ForgottenSeer 69673]

But how i can make sure the file isnt malware signed as trusted? Virustotal every exe.?
Or would i benefit anything of voodooshield along with this setup, as it will regocnize the signature of file along with valkyrie?

With Voodooshield you will already have your Virus Total check.

 

[Moonhorse]

if you install VS, it's overkill + it's a waste of comodo sandbox
instead, you should install CF and disable the firewall component => similar to CCAV without the snake-oil valkyrie

VT all files is another way but if you have CF, it's not really needed
CCAV, maybe

still, valkyrie bypass is not very common. It's very rare

Wish i could think that far myself, thats some next level stuff
i rather just get rid of CCAV and go with cf+cs instead, i dont just trust enough myself, so i woulda need to find lightest possible antivirus. I wanted to run kaspersky cloud, but they dont let eu users install it yet, thats why i went for CCAV