Avita Premium Security Suite What I should do with the rule inetinfo.exe?

Dear Experrs.

inetinfo.exe is not signed, should I have to click on Allow and Remember or Deny?
inetinfoexe.JPG
Esteban CalderonCEOAsked:
Who is Participating?

Improve company productivity with a Business Account.Sign Up

x
 
marcustechCommented:
More info needed - inetinfo is a microsoft executable behind Internet Information Services, a legitimate part of windows. However in this instance it appears to be running an SMTP service, which is not normal behaviour on a Windows XP box. What is the PC in question used for and what's installed on it? In this instance I'd be inclined to let the Avira black it and re-visit the  question if anything you need to use stops working, however assuming you're running with a firewall/router on your internet connection leaving it unblocked won't be a risk.
0
 
Esteban CalderonCEOAuthor Commented:
Ok more info, but i do not understand what do you suggest me for now, Block?
programsinstalled.JPG
0
Building an Effective Phishing Protection Program

Join Director of Product Management Todd OBoyle on April 26th as he covers the key elements of a phishing protection program. Whether you’re an old hat at phishing education or considering starting a program -- we'll discuss critical components that should be in any program.

 
marcustechCommented:
Looking at that list there's nothing that needs to use the SMTP server, so yes I'd recommend BLOCK - you can always unblock later if it turns out that something needs to use the service in question.
0
 
Esteban CalderonCEOAuthor Commented:
the problem here is i switch from Outpost Firewall Pro to APSS
Under OPFP I know how tp  block, creates rules.... but I am still learning APPS and I do not how to unblock later if it turns out that something needs to use the service in question.
0
 
marcustechCommented:
I'm not intimately familiar with the specifics of configuring Avira's firewall, however you should be able to find details here: http://www.avira.com/en/support-documents-download/49/documents/products/pdf/en/Avira_AntiVir_Security_Suite_Firewall_HowTo_en.pdf
0
 
Esteban CalderonCEOAuthor Commented:
leaning curve... once again .. ok I have to read, because i post this question at the Avira Forum and did not reply
0
 
Esteban CalderonCEOAuthor Commented:
is this the same process?
System-Process.JPG
0
 
marcustechCommented:
Nope, different process.

This looks to me like the normal windows Netbios communications.  It's part of Windows normal behaviour, although if you block it everything should still work, as name resolution will fall back to DNS.
0
 
Esteban CalderonCEOAuthor Commented:
Ok, I will allow it, but I will never understad why System is an Unknown Developer?
Spanish: Desarrollador Desconocido
0
 
marcustechCommented:
Ok, I will allow it, but I will never understad why System is an Unknown Developer?
Spanish: Desarrollador Desconocido

The System 'process' or 'application' isn't actually a single process in the way some of the others are - lots of drivers and modules from various developers are running under the System Process so the security software can't ID one developer that has signed the code.  However if your system process is compromised then you are in big trouble anyway so it's probably safe to allow that...
0
 
marcustechCommented:
From Mark Russinovich:

The System process is special because it doesn’t host an executable image like other processes. It exists solely to host operating system threads for the memory manager, cache manager, and other subsystems, as well as device driver threads.
0
 
Esteban CalderonCEOAuthor Commented:
Thank you very much
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.