Author Topic: Webshield's scanned ports  (Read 4900 times)

0 Members and 1 Guest are viewing this topic.

badfish

  • Guest
Webshield's scanned ports
« on: July 05, 2006, 05:08:30 AM »
After checking AV solutions outthere for a while I have managed to select four of what I think the best solutions right now:

avast! pro
Kaspersky Internet Security
NOD32
BitDefender Internet Security

I left out, without doubt:

Norton
McAfee
Trend-Micro
AVG
Sophos
AntiVir
and so on...

I have had a really bad time in selecting with which of them finally stick because all of them seems a really good choice, but I'm thinking seriously to make avast! my preferred solution. I needed to check this twice because some of the AV solutions offers too a 'suite' version what I find very convenient but HELL, avast!  feels beautifully handcrafted.

My two questions before buying avast! pro are:

1. Why avast! checks out only port 80 when http-scanning? Kaspersky checks a lot more and NOD32 checks at least 2 o 3 more HTTP ports than avast!.
While configuring avast! I found the option to add more ports to scanning but... why those ports aren't scanned by default? Do I need to add them manually? Why, if those ports ar not too important, KAV & KIS and NOD32 add to the scan path?

2. I'm tired about firewall, antispywares, AVs and so on, I'm planning to use default WinXPro sp2 ICF plus cFosSpeed 3 internal firewall on, what do you think?

Regards =)

BTW: I've read forum policies carefully and dind't have any line relating to post competitors brands, please excuse me if I'm wrong and please drop a line and I'll do my best to take this post out.

Offline Lisandro

  • Avast team
  • Certainly Bot
  • *
  • Posts: 67194
Re: Webshield's scanned ports
« Reply #1 on: July 05, 2006, 01:38:59 PM »
1. Why avast! checks out only port 80 when http-scanning? Kaspersky checks a lot more and NOD32 checks at least 2 o 3 more HTTP ports than avast!.
While configuring avast! I found the option to add more ports to scanning but... why those ports aren't scanned by default? Do I need to add them manually? Why, if those ports ar not too important, KAV & KIS and NOD32 add to the scan path?
avast WebShield will scan the HTTP traffic (default at port 80). You can add other ports but only the ones you know are just for HTTP traffic and not for other kind of protocols (like smtp or udp, etc.). All other files will be scanned by Standard Shield.

By WebShield, all data is first checked and then passed to the browser, and if the data is cached it can be also checked by Standard Shield.
So there is much smaller chance of getting infected by some exploit if the data is scanned before it actually hits the browser itself. In other words, the idea of the WebShield is to scan the http stream, to detect any possible virus infection before it has time to get established on the local disk.

In any case, adding 443 to the list of monitored ports will NOT add any extra security (and HTTPS traffic will not be scanned for viruses)

2. I'm tired about firewall, antispywares, AVs and so on, I'm planning to use default WinXPro sp2 ICF plus cFosSpeed 3 internal firewall on, what do you think?
I'm not a friend of suites... I'd love layered defense  8)
I'd rather use a full firewall. I would love if only antivirus+antispyware+antitrojan could be at the same application.

BTW: I've read forum policies carefully and dind't have any line relating to post competitors brands, please excuse me if I'm wrong and please drop a line and I'll do my best to take this post out.
No trouble of competitors discussion  8)
The best things in life are free.

badfish

  • Guest
Re: Webshield's scanned ports
« Reply #2 on: July 06, 2006, 03:47:31 AM »
hello tech!

I post my actual HTTP ports list to scan: 80,11523,3128,8088,8080,7900,1080,83,82,81,8888

also, what do you think about SockShield? do you know it? do you think it's a good companion to avast!?


Offline TedNelly

  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1538
  • Trust No-One!
Re: Webshield's scanned ports
« Reply #3 on: July 06, 2006, 11:59:55 AM »
 Hi badfish
I have been using SockShield (about 2 months) and Avast (about 2 years)
and they seem to compliment each other no problems here.
Windows 10 Pro | Intel I7 CPU | 16 Gig 2133 RAM | Avast beta 17.5.2295 | Firefox 54 b9(64-bit) | Cyberfox 52.1 | T-Bird 52.1.1 | SpyWareBlaster 5.5 | MalwareBytes 3.0.0.865 | WinPatrol 35.5.2 | GlassWire 1.2.100 | Cybereason Ransomfree 2.2.7 |  Pulla-dePlug Final!

Offline Lisandro

  • Avast team
  • Certainly Bot
  • *
  • Posts: 67194
Re: Webshield's scanned ports
« Reply #4 on: July 06, 2006, 01:34:51 PM »
hello tech! I post my actual HTTP ports list to scan: 80,11523,3128,8088,8080,7900,1080,83,82,81,8888
Which applications use these ports?
You can check with www.sysinternals.com TCPView.


also, what do you think about SockShield? do you know it? do you think it's a good companion to avast!?
I've Googled the word SockShield and found nothing  :o
Is it correctly spelled?
The best things in life are free.

mauserme

  • Guest
Re: Webshield's scanned ports
« Reply #5 on: July 06, 2006, 02:11:25 PM »

Offline DavidR

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 89039
  • No support PMs thanks
Re: Webshield's scanned ports
« Reply #6 on: July 06, 2006, 03:08:45 PM »
I post my actual HTTP ports list to scan: 80,11523,3128,8088,8080,7900,1080,83,82,81,8888
If the applications using these ports use the HTTP protocol, then I believe they should be fine, however, if they don't then it could cause long delays (or even a timeout style error) as web shield tries to check for HTTP format/content.
Windows 10 Home 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 24.3.6108 (build 24.3.8975.762) UI 1.0.801/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro/ Avast! Mobile Security

Offline Lisandro

  • Avast team
  • Certainly Bot
  • *
  • Posts: 67194
Re: Webshield's scanned ports
« Reply #7 on: July 06, 2006, 08:03:01 PM »
Also, what do you think about SockShield? do you know it? do you think it's a good companion to avast!?
There isn't 'generally' any conflict between zero-day exploit protection and avast.
My personal opinion: zero-day protection like PrevX, ProcessGuard (in some way) and this one, SocketShield, promisse more than then in fact do.
You can use WinPatrol for free + avast + firewall and have a good protection level  8)
The best things in life are free.

badfish

  • Guest
Re: Webshield's scanned ports
« Reply #8 on: July 06, 2006, 09:13:17 PM »
thank you very much guys for all that feedback, this forum is a killer :-D

Offline DavidR

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 89039
  • No support PMs thanks
Re: Webshield's scanned ports
« Reply #9 on: July 06, 2006, 10:05:42 PM »
Glad we could help, welcome to the forums and the avast family.
Windows 10 Home 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 24.3.6108 (build 24.3.8975.762) UI 1.0.801/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro/ Avast! Mobile Security