Welcome
Welcome to vistafirewallcontrol

You are currently viewing our boards as a guest, which gives you limited access to view most discussions and access our other features. By joining our free community, you will have access to post topics, communicate privately with other members (PM), respond to polls, upload content, and access many other special features. In addition, registered members also see less advertisements. Registration is fast, simple, and absolutely free, so please, join our community today!

Malware as system application

Malware as system application

Postby weatherman » Thu Dec 23, 2010 5:44 pm

As I understand it, the built in Win 7 firewall without advanced settings, when used with the free W7FC, handles incoming system apps, and incoming/outgoing non-system apps. If malware establishes itself as a system app, can it be stopped from calling home? If not, is this a realistic scenario?
weatherman
 
Posts: 1
Joined: Thu Dec 23, 2010 5:38 pm

Re: Malware as system application

Postby VistaFirewallControl » Fri Dec 24, 2010 2:51 pm

Strictly speaking the built-in firewall handles incoming only (all the apps).
The Built-in with advanced security (actually just a different control panel to the same main core) handles any app in any direction but it’s hard to configure.
W7FC-Free handles the both directions but for non-system apps only.

>If malware establishes itself as a system app, can it be stopped from calling home? If not, is this a realistic scenario?

The scenario is possible theoretically we are not up to date with malware specifics however.
In order to prevent the scenario you can
(a) use the Plus version
or
(b) Configure the built-in firewall advanced security to allow outgoings for selected/known system applications only. All the other outgoings will be handled by W7FC-Free
VistaFirewallControl
Site Admin
 
Posts: 1479
Joined: Fri Mar 27, 2009 11:25 am


Return to Free vs. Plus -- VFC vs. Windows built-in firewall

Who is online

Users browsing this forum: No registered users and 0 guests

cron
suspicion-preferred