Solved

Avita Premium Security Suite What I should do with the rule inetinfo.exe?

Posted on 2011-09-30
15
296 Views
Last Modified: 2012-05-12
Dear Experrs.

inetinfo.exe is not signed, should I have to click on Allow and Remember or Deny?
inetinfoexe.JPG
0
Comment
Question by:rebelscum0000
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 7
  • 6
15 Comments
 
LVL 12

Expert Comment

by:marcustech
ID: 36892012
More info needed - inetinfo is a microsoft executable behind Internet Information Services, a legitimate part of windows. However in this instance it appears to be running an SMTP service, which is not normal behaviour on a Windows XP box. What is the PC in question used for and what's installed on it? In this instance I'd be inclined to let the Avira black it and re-visit the  question if anything you need to use stops working, however assuming you're running with a firewall/router on your internet connection leaving it unblocked won't be a risk.
0
 

Author Comment

by:rebelscum0000
ID: 36892181
Ok more info, but i do not understand what do you suggest me for now, Block?
programsinstalled.JPG
0
 
LVL 12

Expert Comment

by:marcustech
ID: 36892273
Looking at that list there's nothing that needs to use the SMTP server, so yes I'd recommend BLOCK - you can always unblock later if it turns out that something needs to use the service in question.
0
Will You Be GDPR Compliant by 5/28/2018?

GDPR? That's a regulation for the European Union. But, if you collect data from customers or employees within the EU, then you need to know about GDPR and make sure your organization is compliant by May 2018. Check out our preparation checklist to make sure you're on track today!

 

Author Comment

by:rebelscum0000
ID: 36892324
the problem here is i switch from Outpost Firewall Pro to APSS
Under OPFP I know how tp  block, creates rules.... but I am still learning APPS and I do not how to unblock later if it turns out that something needs to use the service in question.
0
 
LVL 12

Expert Comment

by:marcustech
ID: 36892434
I'm not intimately familiar with the specifics of configuring Avira's firewall, however you should be able to find details here: http://www.avira.com/en/support-documents-download/49/documents/products/pdf/en/Avira_AntiVir_Security_Suite_Firewall_HowTo_en.pdf
0
 

Author Comment

by:rebelscum0000
ID: 36892682
leaning curve... once again .. ok I have to read, because i post this question at the Avira Forum and did not reply
0
 

Author Comment

by:rebelscum0000
ID: 36928079
is this the same process?
System-Process.JPG
0
 
LVL 12

Expert Comment

by:marcustech
ID: 36929751
Nope, different process.

This looks to me like the normal windows Netbios communications.  It's part of Windows normal behaviour, although if you block it everything should still work, as name resolution will fall back to DNS.
0
 
LVL 12

Accepted Solution

by:
marcustech earned 500 total points
ID: 36929757
0
 

Author Comment

by:rebelscum0000
ID: 36946052
Ok, I will allow it, but I will never understad why System is an Unknown Developer?
Spanish: Desarrollador Desconocido
0
 
LVL 12

Expert Comment

by:marcustech
ID: 37013895
Ok, I will allow it, but I will never understad why System is an Unknown Developer?
Spanish: Desarrollador Desconocido

The System 'process' or 'application' isn't actually a single process in the way some of the others are - lots of drivers and modules from various developers are running under the System Process so the security software can't ID one developer that has signed the code.  However if your system process is compromised then you are in big trouble anyway so it's probably safe to allow that...
0
 
LVL 12

Expert Comment

by:marcustech
ID: 37013906
From Mark Russinovich:

The System process is special because it doesn’t host an executable image like other processes. It exists solely to host operating system threads for the memory manager, cache manager, and other subsystems, as well as device driver threads.
0
 

Author Closing Comment

by:rebelscum0000
ID: 37049629
Thank you very much
0

Featured Post

Webinar: Aligning, Automating, Winning

Join Dan Russo, Senior Manager of Operations Intelligence, for an in-depth discussion on how Dealertrack, leading provider of integrated digital solutions for the automotive industry, transformed their DevOps processes to increase collaboration and move with greater velocity.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article describes my battle tested process for setting up delegation. I use this process anywhere that I need to setup delegation. In the article I will show how it applies to Active Directory
Do you know what to look for when considering cloud computing? Should you hire someone or try to do it yourself? I'll be covering these questions and looking at the best options for you and your business.
Two types of users will appreciate AOMEI Backupper Pro: 1 - Those with PCIe drives (and haven't found cloning software that works on them). 2 - Those who want a fast clone of their boot drive (no re-boots needed) and it can clone your drive wh…
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

738 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question