Specifying Services for the Firewall

G

GeorgeJungle

New member
Local time
10:07 AM
Messages
3
I want to take my firewall security to another level, but I am having a hard time trying to figure out how to connect to the internet.

I have svchost.exe and iexplore.exe as my two programs that I want to get through the firewall, but I only want to specify the services that those programs need to just access the internet, as that is all I use internet explorer for. I just found it scary that allowing all programs and all services for those files through the firewall would enable remote hosting, file sharing or other network things that would compromise the security of my computer as the services allow for that to happen.

So what I have been doing is adding a new rule for every service I wish to add for that file and I can't seem to figure out the services I need to access the internet. That's the first step I want to do. The second step would be figuring out how to find the services required for Malware Anti-Bytes so it can update the database virus and software on my computer, as I assume it needs some services to change the files on my computer. I have Filehippo and Adobe passing through firewall with outbound rules, and I made it so there are no inbound rules to prevent anybody from coming in, but I just want to be sure that nothing outside my permission goes outbound.

I just want to know what the minimum services that are required for svchost.exe, iexplorer.exe and Malware Anti-bytes, so I can access the internet and update virus software or get other software updates running like Adobe, while closing the loopholes on those services to prevent them from running when they don't have too. Also, if there are any other suggestions, that would be great.

Thanks.
George
 

My Computer

Computer type
Laptop
Computer Manufacturer/Model Number
Lenovo
OS
Windows 7 Home Premium
Hi::)

Welcome.

You wrote:

GeorgeJungle said:
o. The second step would be figuring out how to find the services required for Malware Anti-Bytes so it can update the database virus and software on my computer, as I assume it needs some services to change the files on my computer. <snip>
I just want to know what the minimum services that are required for svchost.exe, iexplorer.exe and Malware Anti-bytes <snip>
George
Click to expand...

I'll leave it to others more expert in security matters to provide specific advice about your intended approach.
And Malwarebytes Anti-Malware ("MBAM", not "Malware Anti-bites") is NOT an anti-virus. It is an anti-malware application designed to run alongside an anti-virus for layered protection.

However, the generic instructions for "whitelisting" or "excluding" Malwarebytes Anti-Malware in one's AV and firewall are as follows:

Code: 
Please [B]exclude[/B] the following files from your Antivirus Software for your version of Windows:


[COLOR=#0000FF][B]For 32 bit versions of Windows XP, Windows Vista, Windows 7 & Windows 8 & Windows 10:[/B][/COLOR]

[LIST]
[*]C:\Program Files\Malwarebytes Anti-Malware\[B]mbam.exe[/B][/*]
[*]C:\Program Files\Malwarebytes Anti-Malware\[B]mbamdor.exe[/B][/*]
[*]C:\Program Files\Malwarebytes Anti-Malware\[B]mbampt.exe[/B][/*]
[*]C:\Program Files\Malwarebytes Anti-Malware\[B]mbamservice.exe[/B][/*]
[*]C:\Program Files\Malwarebytes Anti-Malware\[B]mbamresearch.exe[/B][/*]
[*]C:\Program Files\Malwarebytes Anti-Malware\[B]mbamscheduler.exe[/B][/*]
[/LIST]

 
[COLOR=#0000FF][B]For 64 bit versions of Windows Vista, Windows 7 & Windows 8 & Windows 10:[/B][/COLOR]

[LIST]
[*][I]C:\Program Files (x86)\Malwarebytes Anti-Malware\[B]mbam.exe[/B][/I][/*]
[*]C:\Program Files (x86)\Malwarebytes Anti-Malware\[B]mbamdor.exe[/B][/*]
[*]C:\Program Files (x86)\Malwarebytes Anti-Malware\[B]mbampt.exe[/B][/*]
[*]C:\Program Files (x86)\Malwarebytes Anti-Malware\[B]mbamresearch.exe[/B][/*]
[*]C:\Program Files (x86)\Malwarebytes Anti-Malware\[B]mbamservice.exe[/B][/*]
[*]C:\Program Files (x86)\Malwarebytes Anti-Malware \[B]mbamscheduler.exe[/B][/*]
[/LIST]

[B][I][COLOR=#FF0000][B]Note:[/B][/COLOR] If you are using a software firewall besides the built in [B]Windows Firewall[/B], you'll need to exclude [B]MBAM.EXE, MBAMSERVICE.EXE and MBAMRESEARCH.EXE[/B] from it, as well.[/I][/B]
 
[I][COLOR=#FF0000][B]Note:[/B][/COLOR] Once that's done, please make sure that if either of those programs has any sort of web filter, that you add the following as a trusted site:[/I]
[HTML]data-cdn.mbamupdates.com[/HTML]
Hope this helps,
MM
 

My Computer

Computer type
PC/Desktop
Computer Manufacturer/Model Number
Dell Studio XPS 8500
OS
OEM Windows 7 Ult (x64) SP1
CPU
Intel Core-i7 3770 @ 3.4 GHz
Motherboard
"Dell" branded
Memory
16 GB DDR3 SDRAM @ 1333 MHz
Graphics Card(s)
NVidia GeForce GT620 1 GB
Sound Card
THX TruStudio PC
Monitor(s) Displays
Dell U2410 Full HD
Hard Drives
2.0 TB SATA2 @ 7200 RPM
PSU
350W
Keyboard
MS 4000 Ergon - Wired
Mouse
Logitech Anywhere MX
Internet Speed
Cable HSI w/Turbo (router)
Antivirus
KIS-MBAM Premium-MBAE Premium
Browser
Fx (current version); IE
Other Info
And a Win7/64 Pro laptop; And a Win10/64 Pro desktop.
Thank you Moxie,
I actually want to include Malwarebytes in the firewall, but with the intention to exclude services rather than allow all services for that specific program. I see services being another layer for the firewall.

My intention is to know a standard for windows services that are allowed for anti-malware programs or anti-virus software or just a file updates that I wish to download, as I am looking for the general standard of these say 8 services that are required to do the update. So I can just apply x services to the file in the firewall to allow for that program to work, as that is all I want is for the program to work without the unnecessary services. I just know that the web browser interacts with the firewall differently then a software update would and I just want to know what services that I need allow through the firewall based on how the program interacts with the internet.

Thank you.
George

*** Sorry. My bad. Include and exclude makes me forget if it goes through or not. Excluding things means leaving it out, but I am including the Malwarebytes in the outbound rule to exclude it from the firewall as I am already blocking all outbound connections and I got a little confused. My bad. Maybe you understand my confusion, as maybe you are confused as to what I just said. My bad again.
 

My Computer

Computer type
Laptop
Computer Manufacturer/Model Number
Lenovo
OS
Windows 7 Home Premium
I just want to eliminate the ability for all inbound connection possibilities to be removed. It is a personal computer and I do not have to share files on a network or remote host, or peer networking. Stuff like that. I just want to block all incoming connections that can come from a process, but still have it so I can use my computer without any issues of something blocking its use. I just think if the process to peer network or home group is enabled, then a program can use that service as it runs in the background and I wouldn't know about it and I don't need it. It would signal that someone else is doing that and I want to block that.

That's the intended goal.
 

My Computer

Computer type
Laptop
Computer Manufacturer/Model Number
Lenovo
OS
Windows 7 Home Premium
You must log in or register to reply here.
Back
Top