‘Microsoft Windows 7 Control Panel > System and Security > Windows Firewall > Advanced Settings > Inbound Rules’ lists several enabled exceptions which allow traffic from public networks or all networks. This is despite the computer’s firewall “settings being managed by vendor application Norton 360.” The ‘program exceptions’ at issue seem unnecessary and were made by crapware silently included with applications I installed. It is unknown whether the ‘system exceptions’ were made also by the crapware or by the system. At least some of the exceptions are not listed in Norton 360 firewall rules. Microsoft Baseline Security Analyzer scans report that the exception holes are real and a security risk (esp. true because it is a laptop I travel with). Not knowing each change that has been made, how does one efficiently resolve this problem; i.e., reversing only firewall holes made by applications during installation which bypass the security suite and are instead directly in the operating system? Please let me know. I have been unable to get useful info elsewhere on this.