I kind of thought they should be blocked. However, how do I go about setting up a rule to block servicehost.exe from connecting to port 135 while allowing servicehost to do what it needs to do?
I will block the system - 139 the next time it pops up with the remember box checked, unless I can create a rule now to accomplish this.
By the way I did the grc stealth test and I came up ok.
Firewall > Advanced > Network Security Policy > depending on your preference and current setup, add a rule in Application or Global tab
Manual rule creation tends to be more advanced, so if you’re unsure the next time the alert comes up, just block and enable the remember option. That will let CFP auto create the rule.