Duis mollis, est non commodo luctus, nisi erat porttitor ligula, eget lacinia odio sem nec elit. Sed posuere consectetur est at lobortis. Vestibulum id ligula porta felis euismod semper. Donec ullamcorper nulla non metus auctor fringilla. Aenean lacinia bibendum nulla sed consectetur. Cras justo odio, dapibus ac facilisis in, egestas eget quam. Cras mattis consectetur purus sit amet fermentum. Morbi leo risus, porta ac consectetur ac, vestibulum at eros. Sed posuere consectetur est at lobortis. Etiam porta sem malesuada magna mollis euismod. Cum sociis natoque penatibus et magnis dis parturient montes, nascetur ridiculus mus. Duis mollis, est non commodo luctus, nisi erat porttitor ligula, eget lacinia odio sem nec elit. Cras justo odio, dapibus ac facilisis in, egestas eget quam. Aenean eu leo quam. Pellentesque ornare sem lacinia quam venenatis vestibulum. Curabitur blandit tempus porttitor. Sed posuere consectetur est at lobortis.
I was checking out my firewall protection settings, and I noticed a suspicious program rule. I think it may be malicious software trying to pose as something legitimate. I may be wrong though so let me know. It says the programs name is “System” but where it would usually say the file path, instead it says “system” again. I clicked on the access settings which said “custom”. I clicked modify and change the rule from allow to monitor. I went about my business and then a couple hours later checked it out again. the program had created a new access rule under the same program rule. My monitor rule was still intact, but it was being superceded by a newly created allow rule. I tested it out again to see if it would do the same thing, and it did. Whats up with that…possible infection maybe, what should or could I do?
This is the Windows subsystem and is not a malicious application. NIS is creating rules for it correctly. If it were an application, it would have a path.