Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Specifying Services for the Firewall

29 Nov 2015   #1
GeorgeJungle

Windows 7 Home Premium
 
 
Specifying Services for the Firewall

I want to take my firewall security to another level, but I am having a hard time trying to figure out how to connect to the internet.

I have svchost.exe and iexplore.exe as my two programs that I want to get through the firewall, but I only want to specify the services that those programs need to just access the internet, as that is all I use internet explorer for. I just found it scary that allowing all programs and all services for those files through the firewall would enable remote hosting, file sharing or other network things that would compromise the security of my computer as the services allow for that to happen.

So what I have been doing is adding a new rule for every service I wish to add for that file and I can't seem to figure out the services I need to access the internet. That's the first step I want to do. The second step would be figuring out how to find the services required for Malware Anti-Bytes so it can update the database virus and software on my computer, as I assume it needs some services to change the files on my computer. I have Filehippo and Adobe passing through firewall with outbound rules, and I made it so there are no inbound rules to prevent anybody from coming in, but I just want to be sure that nothing outside my permission goes outbound.

I just want to know what the minimum services that are required for svchost.exe, iexplorer.exe and Malware Anti-bytes, so I can access the internet and update virus software or get other software updates running like Adobe, while closing the loopholes on those services to prevent them from running when they don't have too. Also, if there are any other suggestions, that would be great.

Thanks.
George


My System SpecsSystem Spec
.
29 Nov 2015   #2
MoxieMomma

OEM Windows 7 Ult (x64) SP1
 
 

Hi:

Welcome.

You wrote:

Quote   Quote: Originally Posted by GeorgeJungle View Post
o. The second step would be figuring out how to find the services required for Malware Anti-Bytes so it can update the database virus and software on my computer, as I assume it needs some services to change the files on my computer. <snip>
I just want to know what the minimum services that are required for svchost.exe, iexplorer.exe and Malware Anti-bytes <snip>
George
I'll leave it to others more expert in security matters to provide specific advice about your intended approach.
And Malwarebytes Anti-Malware ("MBAM", not "Malware Anti-bites") is NOT an anti-virus. It is an anti-malware application designed to run alongside an anti-virus for layered protection.

However, the generic instructions for "whitelisting" or "excluding" Malwarebytes Anti-Malware in one's AV and firewall are as follows:

Code:
Please exclude the following files from your Antivirus Software for your version of Windows:


For 32 bit versions of Windows XP, Windows Vista, Windows 7 & Windows 8 & Windows 10:
  • C:\Program Files\Malwarebytes Anti-Malware\mbam.exe[/*]
  • C:\Program Files\Malwarebytes Anti-Malware\mbamdor.exe[/*]
  • C:\Program Files\Malwarebytes Anti-Malware\mbampt.exe[/*]
  • C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe[/*]
  • C:\Program Files\Malwarebytes Anti-Malware\mbamresearch.exe[/*]
  • C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe[/*]
For 64 bit versions of Windows Vista, Windows 7 & Windows 8 & Windows 10:
  • C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe[/*]
  • C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamdor.exe[/*]
  • C:\Program Files (x86)\Malwarebytes Anti-Malware\mbampt.exe[/*]
  • C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamresearch.exe[/*]
  • C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe[/*]
  • C:\Program Files (x86)\Malwarebytes Anti-Malware \mbamscheduler.exe[/*]
Note: If you are using a software firewall besides the built in Windows Firewall, you'll need to exclude MBAM.EXE, MBAMSERVICE.EXE and MBAMRESEARCH.EXE from it, as well. Note: Once that's done, please make sure that if either of those programs has any sort of web filter, that you add the following as a trusted site:
HTML Code:
data-cdn.mbamupdates.com
Hope this helps,
MM
My System SpecsSystem Spec
29 Nov 2015   #3
GeorgeJungle

Windows 7 Home Premium
 
 

Thank you Moxie,
I actually want to include Malwarebytes in the firewall, but with the intention to exclude services rather than allow all services for that specific program. I see services being another layer for the firewall.

My intention is to know a standard for windows services that are allowed for anti-malware programs or anti-virus software or just a file updates that I wish to download, as I am looking for the general standard of these say 8 services that are required to do the update. So I can just apply x services to the file in the firewall to allow for that program to work, as that is all I want is for the program to work without the unnecessary services. I just know that the web browser interacts with the firewall differently then a software update would and I just want to know what services that I need allow through the firewall based on how the program interacts with the internet.

Thank you.
George

*** Sorry. My bad. Include and exclude makes me forget if it goes through or not. Excluding things means leaving it out, but I am including the Malwarebytes in the outbound rule to exclude it from the firewall as I am already blocking all outbound connections and I got a little confused. My bad. Maybe you understand my confusion, as maybe you are confused as to what I just said. My bad again.
My System SpecsSystem Spec
.

29 Nov 2015   #4
GeorgeJungle

Windows 7 Home Premium
 
 

I just want to eliminate the ability for all inbound connection possibilities to be removed. It is a personal computer and I do not have to share files on a network or remote host, or peer networking. Stuff like that. I just want to block all incoming connections that can come from a process, but still have it so I can use my computer without any issues of something blocking its use. I just think if the process to peer network or home group is enabled, then a program can use that service as it runs in the background and I wouldn't know about it and I don't need it. It would signal that someone else is doing that and I want to block that.

That's the intended goal.
My System SpecsSystem Spec
Reply

 Specifying Services for the Firewall




Thread Tools Search this Thread
Search this Thread:

Advanced Search




Similar help and support threads
Thread Forum
HELP!!! Firewall protection off & Diagnostic Policy services turned of
Hello, My computer is stuck with certain problems and I am hoping that someone will help in figuring out how to fix them. The windows notification say firewall is turned off but I am not being able to turn it on. It gives the following error Windows firewall can't change some of your settings....
System Security
Services disabled and unable to start, no internet, no firewall, etc.
Hello sevenforums After having absolutely no issues when I shut the computer down, to the computer acting strange and having several issues at the next startup. The issues are mainly related to the network, but not limited to it, so I decided to post it here, but unsure if it is the correct...
General Discussion
Huge issues with Windows Installer, Backup, Firewall and services
Hi, (This is my first post on these forums, tried Tom's Hardware countless times but have got no where) Please be patient as this is a huge post :p Around October last year I built my first PC (I'm 17) and was chuffed to finally fit the final piece of the puzzle, i.e. installing Windows. I...
Performance & Maintenance
Windows Firewall + Defender Services deactivated from system, no hangs
hi guys, just last week i noticed that on my win 7 laptop, i could not switch on "network discovery" & "file and printer sharing", after further analysis, windows firewall and windows defender services have gone completely from the services list (services.msc) and that made me wonder that i got...
System Security
Security Center and Firewall Services are disabled on each boot
Hi all, I have this weird issue with my windows 7. The security centre service and the Windows Firewall are always on disabled status after each boot. The start-up type is Automatic for both of them but it won't stick after a boot has been placed. Please help me solve this issue. ...
System Security
Windows7 firewall service is not available under services.msc list.
Hi, I am running with windows7 64bit operating system, it was really cool till 2 days back. i am having mcafee antivirus which was also working fine. but suddenly 2 days before i was getting a message that my computer is in risk due to firewall is not activated, and this issue is also stoping...
System Security


Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 01:30.

Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App