Fresh on the heels of Kaspersky ADOBANAL...

Status
Not open for further replies.

Slyguy

Level 44
Jan 27, 2017
3,322
We have AVG(AVAST) sending plenty of data to Jumpshot.

analytics.ff.avast.com seems really busy.

Avast/AVG seem to send a lot to thirsty little Jumpshot. Community/Analytics disabled matter not, Jumpshot is thirsty and Avast/AVG provide the water.

Jumpshot: "The most precise way to unlock human behavior online."

Now I know why;

New Analytics Tool Jumpshot Based on the Avast Users Data

Little sniffers can find some data as;

Meta Field Data
Window Identifiers
Tabs
URL/TLD
System Identifiers
Referrers

Ex-filtrating Avast/AVG installed systems at preposterous levels perhaps? PCAP and Shark's unleash yourself. But wait, it's better.. AVG for Mobile Devices? Joined at the hip with Facebook Analytics, Google Analytics, Flurry Analytics. BUT! The hidden capabilities of AVG for Mobile devices will leave you gasping perhaps. These aren't user space permissions, they're app service permissions.

AVG/Avast is quite handy with your mobile device.

Add custom device admin
Sideload APK
Call logs to Outgoing SMS
Camera hardware to HTTP Header
Camera hardware to HTTP upload
Camera hardware to Network
Camera hardware to Outgoing SMS
Camera hardware to Socket
Contacts to Outgoing SMS
Current Wifi info to HTTP Header
Current Wifi info to HTTP upload
Current Wifi info to Network
Current Wifi info to Outgoing SMS
Current Wifi info to Socket
IMSI to Network
IMSI to Outgoing SMS
Location to HTTP Header
Location to HTTP upload
Location to Network
Location to Outgoing SMS
Location to Socket
SMS to Outgoing SMS
Telephone number to Network
Telephone number to Outgoing SMS
User Input to HTTP Header
User Input to HTTP upload
User Input to Network
User Input to Outgoing SMS
User Input to Socket
Bluetooth MAC address
Calendar
Call logs
Camera hardware
Contacts
Current Wifi info
IMEI
IMSI
Local images
Location
Photo
SIM ID
SMS
Screenshot
Telephone number
User Input
Make Call
Obfuscation

Avast/AVG sure likes to visit these website;

http://ab.ff.avast.com
http://adlog.flurry.com
http://ads.flurry.com
http://ai.ff.avast.com
http://al.ff.avast.com
http://analytics-dev.ff.avast.com
http://analytics-stage.ff.avast.com
http://analytics.ff.avast.com
Avast | Download Free Antivirus for PC, Mac & Android
AVG 2017 | FREE Antivirus & TuneUp for PC, Mac, Android
http://avgmobilationtest.elasticbeanstalk.com
http://connectivity.ff.avast.com
WikiBeacon by Radius Networks
Flurry
http://droid.cloud.avg.com
AVG 2017 | FREE Antivirus & TuneUp for PC, Mac, Android
http://lansec-test.ff.avast.com
http://lansec.ff.avast.com
http://localhost
http://lon23.ff.avast.com
http://m.avg.com
http://mobilation.backup.avg.cz
http://mobilation.download.avg.com
http://mobilation.update.avg.com
http://pay.fortumo.com
http://play.google.com
http://plus.google.com
http://schemas.android.com
http://streamback-sandbox.ff.avast.com
http://streamback-test.ff.avast.com
http://streamback.ff.avast.com
http://ta.ff.avast.com
http://ui.ff.avast.com
http://www.avg.com
http://www.avgthreatlabs.com
http://www.example.com
http://www.google-analytics.com
http://www.google.com
http://www.tumblr.com
http://xmlpull.org
https://a.fortumo.com
https://adlog.flurry.com
https://ads.flurry.com
https://api.fortumo.com
https://api.tumblr.com
https://app-measurement.com
https://app.igodigital.com
https://auth-test.ff.avast.com
https://auth.ff.avast.com
https://avg-cs-test.appspot.com
https://avg-hrd.appspot.com
https://avg-nl-d61cc243-si.fortumo.io
https://aws.droidsecurity.com
https://bkt.cloud.avg.com
https://cdn.flurry.com
https://consumer.exacttargetapis.com
https://cs.ff.avast.com
https://csi.gstatic.com
https://data.flurry.com
https://e.crashlytics.com
https://ff-backup.avast.com
https://ff-billing.avast.com
https://goo.gl
https://googleads.g.doubleclick.net
https://graph.*.facebook.com/network_ads_common/
https://graph.facebook.com
https://ipm-provider.ff.avast.com
https://maps.google.com
https://myaccount.avg.com
https://mysearch.avg.com
https://pagead2.googlesyndication.com
https://play.google.com
https://plus.google.com
https://policies.yahoo.com
https://proton.flurry.com
https://sb-ssl.google.com
https://settings.crashlytics.com
https://ssl.google-analytics.com
https://stage.app.igodigital.com
https://stats.avg.com
https://test-bkt.cloud.avg.com
https://toolbar.avg.com
https://wutlar.fortumo.com
https://www.*.facebook.com
https://www.facebook.com
https://www.googleapis.com
https://www.googletagmanager.com
https://www.tumblr.com
 

ZeroDay

Level 29
Verified
Aug 17, 2013
1,856
I did read something earlier in the week regarding AVAST and Jumpshot, but Jesus Christ! That one BIG rabbit hole. The OP's info alone is enough to get AVAST users thinking,well the ones that care about privacy. Thanks for the info.
 

Janl1992l

Level 13
Verified
Feb 14, 2016
654
Avast for free is just a realy good av for windows. I dont use any accounts here atm and always connect to my vpn provider on startup. So they can collect as much as they want. :)
 
  • Like
Reactions: harlan4096

Slyguy

Level 44
Jan 27, 2017
3,322
I did read something earlier in the week regarding AVAST and Jumpshot, but Jesus Christ! That one BIG rabbit hole. The OP's info alone is enough to get AVAST users thinking,well the ones that care about privacy. Thanks for the info.

It is.. Honestly, all I did was drop an Avast machine on a subnet and point a SIEM to it while capping. The reason is, we saw a case study where Avast performed really well in keeping a pile of average joe's pretty safe over the longer term. But I don't put anything on my network without running a magnifying glass over it.

Avast/AVG failed in this category, so badly, I am personally classifying them as spyware. But to each his/her own.
 

ZeroDay

Level 29
Verified
Aug 17, 2013
1,856
It is.. Honestly, all I did was drop an Avast machine on a subnet and point a SIEM to it while capping. The reason is, we saw a case study where Avast performed really well in keeping a pile of average joe's pretty safe over the longer term. But I don't put anything on my network without running a magnifying glass over it.

Avast/AVG failed in this category, so badly, I am personally classifying them as spyware. But to each his/her own.
Yes, I agree AVAST/AVG Is Spyware and should be treated as such for anyone who takes their security and privacy seriously.
 

ZeroDay

Level 29
Verified
Aug 17, 2013
1,856
The thing is bro, it's got so much potential.

But with Avast/AVG owning Jumpshot, there is a serious conflictus of interestus. :cry:
It is a LOT more solid protection wise than a lot of people think. I had it on a few family members systems for a year and all they had were a few PUP's. And these family members are so click happy I was considering moving them all to a GNU/Linux distro. It's a shame really because as you said the potential is definitely there. I did read a post about all AVAST user data being striped of any personal identifying info before being sent to Jumpshot. What I wasn't aware of was the fact that they own Jumpshot lol.
 
D

Deleted member 65228

All I see in that post is:

5wgeCt.jpg


xD
 

mekelek

Level 28
Feb 24, 2017
1,692
Exactly. Better off tarpitting the analytical streams/top level domains and being done. It actually doesn't break Avast/AVG functionality to do that from what I could see.
i would be careful cause you could severe the AV's cloud capabilities if you block something useful.
 

Lord Ami

Level 20
Verified
Trusted
Malware Hunter
Sep 14, 2014
971
That is shady stuff going on. As much as I love Avast, I can't stand such spying. It is literally spyware.

Don't get me wrong - I have nothing against sharing samples with Avast automated systems. But this? No thank you!
Recent Avast news have driven me away from recommending/installing it. It's just idiotic!

When you browse Avast forum, you could see for example this thread:
Dumb Ad ???

But I believe there are others. It's just utter crap in my mind. Anonymous or not - one AV should not be doing something like that.
 

zzz00m

Level 6
Jun 10, 2017
251
Very interesting!

I believe that Avast technology is quite decent, but I am beginning to have doubts about their business practices...

I guess the old saying about YOU being their product applies here...
 
Status
Not open for further replies.
Top