Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o kontrolu logu - podezřelé GET požadavky ve firefoxu

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
roan
Návštěvník
Návštěvník
Příspěvky: 27
Registrován: 29 led 2006 09:13

Prosím o kontrolu logu - podezřelé GET požadavky ve firefoxu

#1 Příspěvek od roan »

Dobrý den,
prosím o kontrolu, ve firefoxu mi skáčou stovky podezřelých GET požadavků jako
URL požadavku:https://mc.yandex.ru/clmap/53931514?pag ... s%3A%2F%2F
URL požadavku:https://t.paypal.com/ts?pgrp=muse%3Aoff ... ffer%3A%3A
URL požadavku:https://www.dwin1.com/6554.js
a podobně

Děkuji
Přílohy
Logs.zip
(52.43 KiB) Staženo 66 x

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118198
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o kontrolu logu - podezřelé GET požadavky ve fire

#2 Příspěvek od Rudy »

Zdravím!
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

roan
Návštěvník
Návštěvník
Příspěvky: 27
Registrován: 29 led 2006 09:13

Re: Prosím o kontrolu logu - podezřelé GET požadavky ve fire

#3 Příspěvek od roan »

# -------------------------------
# Build: 04-03-2020
# Database: 2020-04-08.2 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 05-10-2020
# Duration: 00:00:38
# OS: Windows 10 Pro
# Scanned: 31802
# Detected: 9


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

PUP.Optional.Legacy C:\Users\roan_000\AppData\Roaming\Profiles\41A66E7E5EE1

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

Adware.MyWaySearch HKLM\Software\Classes\tsckmna
PUP.Adware.Heuristic HKU\.DEFAULT\SOFTWARE\372D741915619510DC9199D855D1C203
PUP.Adware.Heuristic HKU\.DEFAULT\SOFTWARE\421301E2DAB06490700272A7907FCB1B
PUP.Adware.Heuristic HKU\S-1-5-18\SOFTWARE\372D741915619510DC9199D855D1C203
PUP.Adware.Heuristic HKU\S-1-5-18\SOFTWARE\421301E2DAB06490700272A7907FCB1B
PUP.Optional.Legacy HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{D2887406-1FCA-4F18-A04D-43B0D614F380}C:\program files (x86)\bitlord\bitlord.exe
PUP.Optional.Legacy HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{A1866E29-B3D7-488C-A4D3-30E79F5DA07B}C:\program files (x86)\bitlord\bitlord.exe
PUP.Optional.OneSave HKLM\Software\Classes\tschmna

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

No Preinstalled Software found.



########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118198
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o kontrolu logu - podezřelé GET požadavky ve fire

#4 Příspěvek od Rudy »

Dejte nové logy FRST+Addition.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

roan
Návštěvník
Návštěvník
Příspěvky: 27
Registrován: 29 led 2006 09:13

Re: Prosím o kontrolu logu - podezřelé GET požadavky ve fire

#5 Příspěvek od roan »

Přiložený LOG
Přílohy
Logs.zip
(52.97 KiB) Staženo 63 x

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118198
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o kontrolu logu - podezřelé GET požadavky ve fire

#6 Příspěvek od Rudy »

Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2490308184-3408559818-3602897103-1001\...\Run: [Akamai NetSession Interface] => C:\Users\roan_000\AppData\Local\Akamai\netsession_win.exe [4490200 2017-01-03] (Akamai Technologies, Inc. -> Akamai Technologies, Inc.)
HKU\S-1-5-21-2490308184-3408559818-3602897103-1001\...\MountPoints2: {2152298c-aca8-11e9-8454-000272da0739} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2490308184-3408559818-3602897103-1001\...\MountPoints2: {21bc381b-bb39-11e9-8470-000272da0739} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2490308184-3408559818-3602897103-1001\...\MountPoints2: {2d334d83-c641-11e9-848a-000272da0739} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2490308184-3408559818-3602897103-1001\...\MountPoints2: {402879e7-0850-11ea-84eb-000272da0739} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2490308184-3408559818-3602897103-1001\...\MountPoints2: {609148d7-4d3c-11e9-83e1-000272da0739} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2490308184-3408559818-3602897103-1001\...\MountPoints2: {91872e81-89b9-11e9-8430-000272da0739} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2490308184-3408559818-3602897103-1001\...\MountPoints2: {a4eb48dd-2888-11e8-82db-000272da0739} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2490308184-3408559818-3602897103-1001\...\MountPoints2: {c2523e65-d139-11e9-84a3-000272da0739} - "H:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2490308184-3408559818-3602897103-1001\...\MountPoints2: {c565934f-3f4d-11ea-853e-000272da0739} - "D:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2490308184-3408559818-3602897103-1001\...\MountPoints2: {cbf9aeb3-73b2-11e9-8411-000272da0739} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2490308184-3408559818-3602897103-1001\...\MountPoints2: {f46a8d4f-20e1-11e5-8276-e0cb4e2c3ddd} - "K:\setup.exe"
GroupPolicy: Restriction - Chrome <==== ATTENTION
Task: {0BF5BF6D-6055-49CD-BCEF-2B25102AE54B} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {1EC9FEAF-EC7A-4B15-B3E4-D6D708F0AADD} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {1F0F6083-10C7-4C41-B10C-727E836CAAC8} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {2F541B11-5B84-4367-9FFE-1C7FA11F61E3} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {42015818-68C6-4E19-8DEC-3E19980A74E3} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {44A98849-2EC7-467A-97B8-A99C70A5971D} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {69F60ADA-DE55-4CA1-B574-9AE12309DCEF} - System32\Tasks\Microsoft\Windows\Software\UpdaterService => C:\ProgramData\UpdaterService\UpdaterService.exe <==== ATTENTION
Task: {6C24D94D-66CA-4840-9E87-A485C066DD98} - \CCleanerSkipUAC -> No File <==== ATTENTION
Task: {76CB1F29-EFC4-4C67-B91D-D65B133C6748} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {8663B173-CF5D-45F0-9BBD-1D62D22808C1} - no filepath
Task: {8ABC3242-46AA-45F4-B8FA-8A414E0AB006} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-10-28] (Google Inc -> Google Inc.)
Task: {998DCFD2-3825-4B0F-BF7E-16A93A2CB7BA} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {B5B3DB4E-3A94-47C9-963B-B3C27DE397E0} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {B7E50A9B-28DC-4077-9543-FD213B15E795} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {CB5A1E4E-CF21-402C-BD1E-A0140DEAAE09} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {D560C074-AC55-46B6-86AF-AA64ECA46A94} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {DA87A77D-EBB2-49DA-B76B-BC2705CCC98B} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {ECB25DED-04F3-4CBB-9905-8FBAB8024F60} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {EF2F97C1-F2AC-4242-ACF2-44EE2AF8E606} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {3C9894A7-46DA-4960-B597-1803F426CF88} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-10-28] (Google Inc -> Google Inc.)
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
HKLM\SYSTEM\ControlSet001\Services\BEDaisy => \??\C:\Program Files (x86)\Common Files\BattlEye\BEDaisy.sys <==== ATTENTION
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [1aCopyShExtError] -> {83BEA36E-7680-4598-A4DF-994426F6E78D} => C:\Users\roan_000\AppData\Roaming\Copy\overlay\CopyShExt.dll -> No File
ShellIconOverlayIdentifiers: [2aCopyShExtSynced] -> {845B7388-6F85-4F32-9FD5-F02DC7882B89} => C:\Users\roan_000\AppData\Roaming\Copy\overlay\CopyShExt.dll -> No File
ShellIconOverlayIdentifiers: [3aCopyShExtSyncing] -> {F6378A7A-F753-449B-AE1B-997A96132E61} => C:\Users\roan_000\AppData\Roaming\Copy\overlay\CopyShExt.dll -> No File
ShellIconOverlayIdentifiers: [4aCopyShExtSyncingProg1] -> {3A511828-777D-46F8-82F4-5B530C1B3D9E} => C:\Users\roan_000\AppData\Roaming\Copy\overlay\CopyShExt.dll -> No File
ShellIconOverlayIdentifiers: [5aCopyShExtSyncingProg2] -> {C8C88204-5B14-40EC-BA72-8AEBC762047E} => C:\Users\roan_000\AppData\Roaming\Copy\overlay\CopyShExt.dll -> No File
ShellIconOverlayIdentifiers: [6aCopyShExtSyncingProg3] -> {ACFF45C3-3EEB-4351-86C2-6696BA264239} => C:\Users\roan_000\AppData\Roaming\Copy\overlay\CopyShExt.dll -> No File
ShellIconOverlayIdentifiers: [7aCopyShExtSyncingProg4] -> {29AF997F-488B-46F0-AE78-7146F1B89CC3} => C:\Users\roan_000\AppData\Roaming\Copy\overlay\CopyShExt.dll -> No File
ShellIconOverlayIdentifiers: [8aCopyShExtSyncingProg5] -> {03F9AD29-1C78-4B66-8890-B177B5430C53} => C:\Users\roan_000\AppData\Roaming\Copy\overlay\CopyShExt.dll -> No File
ContextMenuHandlers1: [###MegaContextMenuExt] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\ProgramData\MEGAsync\ShellExtX64.dll -> No File
ContextMenuHandlers1: [CopyShExt] -> {D8CAB8C2-9E58-471C-BD75-2ED1BA091CE8} => C:\Users\roan_000\AppData\Roaming\Copy\overlay\CopyShExt.dll -> No File
ContextMenuHandlers3: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers4: [###MegaContextMenuExt] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\ProgramData\MEGAsync\ShellExtX64.dll -> No File
ContextMenuHandlers5: [CopyShExt] -> {D8CAB8C2-9E58-471C-BD75-2ED1BA091CE8} => C:\Users\roan_000\AppData\Roaming\Copy\overlay\CopyShExt.dll -> No File
ContextMenuHandlers6: [CopyShExt] -> {D8CAB8C2-9E58-471C-BD75-2ED1BA091CE8} => C:\Users\roan_000\AppData\Roaming\Copy\overlay\CopyShExt.dll -> No File
AlternateDataStreams: C:\ProgramData\TEMP:FB6A21E3 [214]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [484]
AlternateDataStreams: C:\Users\roan_000\ntuser.ini:NTV [10148]
AlternateDataStreams: C:\Users\roan_000\SkyDrive:${3D0CE612-FDEE-43f7-8ACA-957BEC0CCBA0}.SyncRootIdentity [130]
AlternateDataStreams: C:\Users\romik\OneDrive:${3D0CE612-FDEE-43f7-8ACA-957BEC0CCBA0}.SyncRootIdentity [118]
FirewallRules: [{265AB6F3-C1F4-4DDB-AD8A-86A24F03A34B}] => (Block) C:\program files\java\jre1.8.0_161\bin\java.exe => No File
FirewallRules: [{E676BF21-D790-44FF-A88F-EE7BC0229D39}] => (Block) C:\program files\java\jre1.8.0_161\bin\java.exe => No File
FirewallRules: [UDP Query User{01A59F05-4133-4FA9-BDCD-8256ACDA3C65}C:\program files\java\jre1.8.0_161\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_161\bin\java.exe => No File
FirewallRules: [TCP Query User{F8E7C57F-5FC6-45A5-A5C3-A7833C7BFC7E}C:\program files\java\jre1.8.0_161\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_161\bin\java.exe => No File
FirewallRules: [{653F66F5-C788-46DF-B479-6484617F1E0A}] => (Allow) E:\Programs\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe => No File
FirewallRules: [{031AFA38-A034-4F15-AC08-EB054DF71013}] => (Allow) E:\Programs\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe => No File
FirewallRules: [UDP Query User{9DEC9DFE-BB68-409C-AB86-3695DD5DEABA}C:\program files\java\jre1.8.0_161\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_161\bin\javaw.exe => No File
FirewallRules: [TCP Query User{2C99ED32-CC49-4A5D-868C-78710A6D3596}C:\program files\java\jre1.8.0_161\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_161\bin\javaw.exe => No File
FirewallRules: [{F03FCC5B-9C23-4DB8-9E41-B94675058D12}] => (Allow) E:\Programs\Steam\steamapps\common\CaptainSpirit\CaptainSpirit\Binaries\Win64\CaptainSpirit-Win64-Shipping.exe => No File
FirewallRules: [{FC7D8CF2-4157-4F18-8BFC-5F7BFF8355FE}] => (Allow) E:\Programs\Steam\steamapps\common\CaptainSpirit\CaptainSpirit\Binaries\Win64\CaptainSpirit-Win64-Shipping.exe => No File
FirewallRules: [{61E33DC7-4AE7-49A6-ADB3-2476A03C4BDE}] => (Allow) E:\Programs\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe => No File
FirewallRules: [{C9034C20-C81F-4255-AFFF-442DAC180411}] => (Allow) E:\Programs\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe => No File
FirewallRules: [TCP Query User{994446F0-7DA2-4B55-ADB6-6280CF8CB29C}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe => No File
FirewallRules: [{B0F0E6D2-CB58-41EC-AE86-2D6A87B66F47}] => (Allow) C:\Program Files (x86)\Firefox\bin\FirefoxCommand.exe => No File
FirewallRules: [{18B38AB9-F658-4B16-8B8F-AE320567DA83}] => (Allow) C:\Program Files (x86)\Firefox\Firefox.exe => No File
FirewallRules: [TCP Query User{C68F7071-63E3-4F78-BEA9-A58BD76320E2}C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe => No File
FirewallRules: [UDP Query User{560E4327-0602-4ECA-B238-6CE4EC517FE5}C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe => No File
FirewallRules: [TCP Query User{676C84D4-950A-4044-AF46-A09764322A34}E:\programs\tibco business studio\tibcojre64\1.8.0\bin\java.exe] => (Allow) E:\programs\tibco business studio\tibcojre64\1.8.0\bin\java.exe => No File
FirewallRules: [UDP Query User{473293D5-796B-4473-AF0A-5E5E7A9CE841}E:\programs\tibco business studio\tibcojre64\1.8.0\bin\java.exe] => (Allow) E:\programs\tibco business studio\tibcojre64\1.8.0\bin\java.exe => No File
FirewallRules: [{CEB11E62-6D83-4EDC-AEBA-30C69EAA5278}] => (Allow) E:\Programs\Steam\bin\steamwebhelper.exe => No File
FirewallRules: [{446ED257-1B17-4E02-8B78-D453FC90D439}] => (Allow) E:\Programs\Steam\bin\steamwebhelper.exe => No File
FirewallRules: [{4E0C01EA-2EAD-43B6-A0CE-68E1E5A20CD4}] => (Allow) E:\Programs\Steam\steamapps\common\Batman The Telltale Series\Batman_win8.exe => No File
FirewallRules: [{B82FC2B7-D4AF-4E14-B305-879DD3C7E8FB}] => (Allow) E:\Programs\Steam\steamapps\common\Batman The Telltale Series\Batman_win8.exe => No File
FirewallRules: [{B8651877-2C19-4DF3-84BE-8B629D0530BE}] => (Allow) E:\Programs\Steam\steamapps\common\Batman The Telltale Series\Batman_win7.exe => No File
FirewallRules: [{6309BBED-7F2C-498A-8FF7-BECF3FAE3A71}] => (Allow) E:\Programs\Steam\steamapps\common\Batman The Telltale Series\Batman_win7.exe => No File
FirewallRules: [{B85EA13B-7B9F-46E2-A66E-1C641D1E5E6D}] => (Allow) E:\Programs\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{1BC7CB83-18DC-4497-A740-CBB6872020EF}] => (Allow) E:\Programs\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [TCP Query User{B443792A-AB33-480A-A147-E9FA5BB7F272}C:\program files\java\jre1.8.0_111\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_111\bin\javaw.exe => No File
FirewallRules: [UDP Query User{2105D275-6D45-430D-8BEB-B48FD3E49E51}C:\program files\java\jre1.8.0_111\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_111\bin\javaw.exe => No File
FirewallRules: [TCP Query User{053FD8AD-72C7-4128-8E24-1C20DE45F1C6}C:\program files\mysql\mysql server 5.1\bin\mysqld.exe] => (Allow) C:\program files\mysql\mysql server 5.1\bin\mysqld.exe => No File
FirewallRules: [UDP Query User{AAE698C8-8B50-41DC-9CA6-D05D058B75C4}C:\program files\mysql\mysql server 5.1\bin\mysqld.exe] => (Allow) C:\program files\mysql\mysql server 5.1\bin\mysqld.exe => No File
FirewallRules: [TCP Query User{027390E9-2701-4280-BBDC-BB67E7AA8CB1}C:\program files\java\jre1.8.0_111\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_111\bin\java.exe => No File
FirewallRules: [UDP Query User{CCE0DC05-FAC3-4EE3-999F-DF70A4520CAB}C:\program files\java\jre1.8.0_111\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_111\bin\java.exe => No File
FirewallRules: [TCP Query User{CE8A77CB-816C-4847-84D9-1EC1D9748599}E:\programs\bitnami\apache2\bin\httpd.exe] => (Allow) E:\programs\bitnami\apache2\bin\httpd.exe => No File
FirewallRules: [UDP Query User{516E5E7B-F9E2-47EA-81EF-0D9D715F4898}E:\programs\bitnami\apache2\bin\httpd.exe] => (Allow) E:\programs\bitnami\apache2\bin\httpd.exe => No File
FirewallRules: [TCP Query User{337557F8-363B-4478-B398-86E50A81A781}C:\users\roan_000\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\roan_000\appdata\local\akamai\netsession_win.exe (Akamai Technologies, Inc. -> Akamai Technologies, Inc.)
FirewallRules: [UDP Query User{CD557F22-251E-4519-9598-A840026B979C}C:\users\roan_000\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\roan_000\appdata\local\akamai\netsession_win.exe (Akamai Technologies, Inc. -> Akamai Technologies, Inc.)
FirewallRules: [{C41952C5-554D-4BDD-A060-ED8992EF07A6}] => (Allow) E:\Programs\Steam\steamapps\common\Minecraft Story Mode - A Telltale Game Series\MinecraftStoryMode.exe => No File
FirewallRules: [{F95E35C8-8DF5-470B-9234-20633ED8B946}] => (Allow) E:\Programs\Steam\steamapps\common\Minecraft Story Mode - A Telltale Game Series\MinecraftStoryMode.exe => No File
FirewallRules: [TCP Query User{5923C697-7CB5-4021-87B9-023D7EA293DE}C:\program files\java\jre1.8.0_121\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_121\bin\javaw.exe => No File
FirewallRules: [UDP Query User{F39D1253-EB50-4399-88EB-2159FE43C5C5}C:\program files\java\jre1.8.0_121\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_121\bin\javaw.exe => No File
FirewallRules: [TCP Query User{6DB37309-00B6-4862-8028-38F36513491F}E:\programs\arduino\java\bin\javaw.exe] => (Allow) E:\programs\arduino\java\bin\javaw.exe => No File
FirewallRules: [UDP Query User{ABEEBB15-D70B-45E4-A9D1-15BB88945BF7}E:\programs\arduino\java\bin\javaw.exe] => (Allow) E:\programs\arduino\java\bin\javaw.exe => No File
FirewallRules: [{0CF84FE8-2C87-4E4A-8CE0-45FBABF80A82}] => (Block) E:\programs\arduino\java\bin\javaw.exe => No File
FirewallRules: [{2BD9D7AF-5AC7-4398-9ACC-0AF277B9DBA0}] => (Block) E:\programs\arduino\java\bin\javaw.exe => No File
FirewallRules: [{3E1BD50B-09FD-469C-A4DE-2A4BD29FCC8E}] => (Allow) E:\Programs\Steam\steamapps\common\Batman The Telltale Series\Batman.exe => No File
FirewallRules: [{7890F177-D232-4D6D-A65B-5960C09FBE4F}] => (Allow) E:\Programs\Steam\steamapps\common\Batman The Telltale Series\Batman.exe => No File
FirewallRules: [TCP Query User{EA86147E-BE22-49BA-B480-0F758B74D5C0}E:\windowsapps\spotifyab.spotifymusic_1.101.348.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.101.348.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{FA1A478A-CF06-4ECB-A0C0-5E647106C0DF}E:\windowsapps\spotifyab.spotifymusic_1.101.348.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.101.348.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [{746380F2-ABE1-4BDB-9946-B625EA96568F}] => (Block) E:\windowsapps\spotifyab.spotifymusic_1.101.348.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [{8BB1C19D-9115-4F73-9C2E-B5D2A1481105}] => (Block) E:\windowsapps\spotifyab.spotifymusic_1.101.348.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{24D9F9AA-1F14-4A20-9D51-3FC9E8B327D1}E:\windowsapps\spotifyab.spotifymusic_1.103.259.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.103.259.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{D4FD6D2F-FF1C-4FC6-B5BA-4DBB6C8EA4E7}E:\windowsapps\spotifyab.spotifymusic_1.103.259.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.103.259.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{11A2EDE9-E6AA-4444-882F-1FD0DF62A55A}E:\windowsapps\spotifyab.spotifymusic_1.104.197.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.104.197.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{D6D81F07-B750-42E5-BE0A-58DC89576D80}E:\windowsapps\spotifyab.spotifymusic_1.104.197.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.104.197.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{7661D0F4-8976-4577-A296-C1C12D642721}E:\windowsapps\spotifyab.spotifymusic_1.105.152.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.105.152.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{ACB2C56A-F863-4F60-AF17-AC68CF7CD0C2}E:\windowsapps\spotifyab.spotifymusic_1.105.152.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.105.152.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{1C7DBA12-6C08-4EB1-AF39-3D64C85DB53A}E:\windowsapps\spotifyab.spotifymusic_1.106.113.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.106.113.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{8975A2DD-275E-463D-8441-7386932C98BA}E:\windowsapps\spotifyab.spotifymusic_1.106.113.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.106.113.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{389E2FD4-97C1-4293-89F7-A895DD258912}E:\windowsapps\spotifyab.spotifymusic_1.107.13766.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.107.13766.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{EDF0981D-838E-4B57-8FF2-629ABE240B83}E:\windowsapps\spotifyab.spotifymusic_1.107.13766.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.107.13766.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{8074163F-8DFE-4BC4-BA36-C383FACBB28F}E:\windowsapps\spotifyab.spotifymusic_1.108.439.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.108.439.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{B5334FC3-4E16-40E8-8A87-4F76E253C471}E:\windowsapps\spotifyab.spotifymusic_1.108.439.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.108.439.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{BAA72DFE-D5F3-45EC-8720-71B3D70C6F81}E:\windowsapps\spotifyab.spotifymusic_1.108.439.0_x86__zpdnekdrzrea0\spotify.exe] => (Block) E:\windowsapps\spotifyab.spotifymusic_1.108.439.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{3312956E-F825-466A-9080-B8D97973BE0E}E:\windowsapps\spotifyab.spotifymusic_1.108.439.0_x86__zpdnekdrzrea0\spotify.exe] => (Block) E:\windowsapps\spotifyab.spotifymusic_1.108.439.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{BCF9DDDB-D64B-4583-B11E-4CA2D0C5C7D5}E:\windowsapps\spotifyab.spotifymusic_1.109.383.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.109.383.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{613AF6E9-7FEE-40CD-AB47-D527582441CE}E:\windowsapps\spotifyab.spotifymusic_1.109.383.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.109.383.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{BD6E9072-55E5-431B-8F7F-5580A14BF432}E:\windowsapps\spotifyab.spotifymusic_1.110.540.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.110.540.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{6DCEAA0B-EE6E-4A4C-8649-1ED99445420A}E:\windowsapps\spotifyab.spotifymusic_1.110.540.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.110.540.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{363A294B-A1A7-4D15-98A1-538B97B5B415}E:\windowsapps\spotifyab.spotifymusic_1.110.540.0_x86__zpdnekdrzrea0\spotify.exe] => (Block) E:\windowsapps\spotifyab.spotifymusic_1.110.540.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{D51E9425-1FE1-4C89-83B0-D6A7E0A50BF1}E:\windowsapps\spotifyab.spotifymusic_1.110.540.0_x86__zpdnekdrzrea0\spotify.exe] => (Block) E:\windowsapps\spotifyab.spotifymusic_1.110.540.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{CF99ED68-09E7-4BD6-B3A9-2E48D1708048}E:\windowsapps\spotifyab.spotifymusic_1.112.449.0_x86__zpdnekdrzrea0\spotify.exe] => (Block) E:\windowsapps\spotifyab.spotifymusic_1.112.449.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{AF490211-A3AA-42BB-B5B9-D4A39BBEE873}E:\windowsapps\spotifyab.spotifymusic_1.112.449.0_x86__zpdnekdrzrea0\spotify.exe] => (Block) E:\windowsapps\spotifyab.spotifymusic_1.112.449.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{27E6B08B-97C0-465D-A1BE-AC1FFD1FC898}E:\windowsapps\spotifyab.spotifymusic_1.112.451.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.112.451.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{0544260C-9AAC-4313-A412-7E1A280B3471}E:\windowsapps\spotifyab.spotifymusic_1.112.451.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.112.451.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{4218AC42-AA3D-42D9-B67B-998D73C15742}E:\windowsapps\spotifyab.spotifymusic_1.114.475.0_x86__zpdnekdrzrea0\spotify.exe] => (Block) E:\windowsapps\spotifyab.spotifymusic_1.114.475.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{326D25EE-0AD9-499A-8FC6-D6A70824C5F3}E:\windowsapps\spotifyab.spotifymusic_1.114.475.0_x86__zpdnekdrzrea0\spotify.exe] => (Block) E:\windowsapps\spotifyab.spotifymusic_1.114.475.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{F2C4EEA0-5756-456F-8AB7-8C9F54288C89}E:\windowsapps\spotifyab.spotifymusic_1.115.448.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.115.448.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{DE745326-653A-4B11-84F1-EB6383EF3041}E:\windowsapps\spotifyab.spotifymusic_1.115.448.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.115.448.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{DFB464B0-734B-432D-BB76-0CB1AB2873EA}E:\windowsapps\spotifyab.spotifymusic_1.116.522.0_x86__zpdnekdrzrea0\spotify.exe] => (Block) E:\windowsapps\spotifyab.spotifymusic_1.116.522.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{239FCC22-16F3-43E9-BB84-0CFE3B19341C}E:\windowsapps\spotifyab.spotifymusic_1.116.522.0_x86__zpdnekdrzrea0\spotify.exe] => (Block) E:\windowsapps\spotifyab.spotifymusic_1.116.522.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{CB359F2B-E28E-4050-B961-131592765A97}E:\windowsapps\spotifyab.spotifymusic_1.117.543.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.117.543.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{7E592809-D00D-4E62-A08A-6690B2E84CCC}E:\windowsapps\spotifyab.spotifymusic_1.117.543.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.117.543.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{5131C73A-A461-4A98-BC58-1FD39F587AA3}E:\windowsapps\spotifyab.spotifymusic_1.118.611.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.118.611.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{58A6AED0-8ECB-4243-8A32-809B17F251F8}E:\windowsapps\spotifyab.spotifymusic_1.118.611.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.118.611.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{30D81900-B55A-49DD-BE0F-71B430805130}E:\windowsapps\spotifyab.spotifymusic_1.119.480.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.119.480.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{42C0BB80-8A1D-4DC2-8194-86138C398A73}E:\windowsapps\spotifyab.spotifymusic_1.119.480.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.119.480.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{3BA4F188-26D1-47C8-96BC-BD9A03545B73}E:\windowsapps\spotifyab.spotifymusic_1.120.510.0_x86__zpdnekdrzrea0\spotify.exe] => (Block) E:\windowsapps\spotifyab.spotifymusic_1.120.510.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{69330C10-9FE4-425B-85DB-955737302E31}E:\windowsapps\spotifyab.spotifymusic_1.120.510.0_x86__zpdnekdrzrea0\spotify.exe] => (Block) E:\windowsapps\spotifyab.spotifymusic_1.120.510.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [{343F5C8F-5BDC-4AF0-B197-523359A86AD3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.121.1654.0_x86__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{70825BCE-E3F4-4E42-AC0A-C4DBE30EBBDE}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.121.1654.0_x86__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{69E5DA2A-35AD-46F4-8077-A02AD01D3B31}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.121.1654.0_x86__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{645FB7B9-BEC6-4C74-97A5-492C452C12C1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.121.1654.0_x86__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{2D3ADEAC-0575-412E-8CAA-35554BAF898D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.121.1654.0_x86__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{DB36BAA5-AC95-43F1-ADA6-DDC27B55B9B1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.121.1654.0_x86__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{75FB2146-51BD-428B-83FF-E5EDD2D51E10}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.121.1654.0_x86__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{CFCE920C-210A-4409-9C25-6A144A011991}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.121.1654.0_x86__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [TCP Query User{0FC1A9CB-5DA5-4A2A-AE18-41E873C36D4E}E:\windowsapps\spotifyab.spotifymusic_1.121.1654.0_x86__zpdnekdrzrea0\spotify.exe] => (Block) E:\windowsapps\spotifyab.spotifymusic_1.121.1654.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{77F12AEC-C178-4790-8398-8DCE0F3515E1}E:\windowsapps\spotifyab.spotifymusic_1.121.1654.0_x86__zpdnekdrzrea0\spotify.exe] => (Block) E:\windowsapps\spotifyab.spotifymusic_1.121.1654.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{F0E24A8C-4F8F-4AC4-A1E1-175C83B0DA79}E:\windowsapps\spotifyab.spotifymusic_1.122.633.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.122.633.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{7B1117EE-6B7C-43A4-B434-2BB7259E19E9}E:\windowsapps\spotifyab.spotifymusic_1.122.633.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.122.633.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{FCD4522A-D1C5-4CA0-A29D-1E6A4FF00797}E:\programs\java\jre8231\bin\java.exe] => (Allow) E:\programs\java\jre8231\bin\java.exe => No File
FirewallRules: [UDP Query User{44495E28-2B1C-457D-AF8B-A3AA3F2DDB81}E:\programs\java\jre8231\bin\java.exe] => (Allow) E:\programs\java\jre8231\bin\java.exe => No File
FirewallRules: [TCP Query User{2A3D1BE4-9FE5-4A9F-A8EF-21C0F58A29E9}E:\windowsapps\spotifyab.spotifymusic_1.124.91.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.124.91.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{FC761AA5-013D-4CBF-9A21-9D27BADFEB86}E:\windowsapps\spotifyab.spotifymusic_1.124.91.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.124.91.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{1D53726F-9876-49AB-A9A0-21BB993A1459}E:\programs\microsoft vs code\code.exe] => (Allow) E:\programs\microsoft vs code\code.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{D1420C3D-1131-4356-971F-D8E567951B5A}E:\programs\microsoft vs code\code.exe] => (Allow) E:\programs\microsoft vs code\code.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{E14918A6-8F5F-44C0-87BE-43FB8B766518}E:\windowsapps\spotifyab.spotifymusic_1.125.559.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.125.559.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{ED3C1E82-6F4D-46F0-B273-3DA83370B829}E:\windowsapps\spotifyab.spotifymusic_1.125.559.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.125.559.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{C1999497-E9F3-4107-B6A2-A5378B6901FC}E:\windowsapps\spotifyab.spotifymusic_1.126.501.0_x86__zpdnekdrzrea0\spotify.exe] => (Block) E:\windowsapps\spotifyab.spotifymusic_1.126.501.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{901BE9D3-8BB6-4B58-AD92-C2F4D39E8936}E:\windowsapps\spotifyab.spotifymusic_1.126.501.0_x86__zpdnekdrzrea0\spotify.exe] => (Block) E:\windowsapps\spotifyab.spotifymusic_1.126.501.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{B6F634D1-D3D9-4766-9303-A4BDDB7B5A67}E:\windowsapps\spotifyab.spotifymusic_1.127.472.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.127.472.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{8FCD072C-E08E-4EE1-B84D-B0D50F15B200}E:\windowsapps\spotifyab.spotifymusic_1.127.472.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.127.472.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{5F550E48-E096-4AB6-B448-DEE08EB43C1A}E:\windowsapps\spotifyab.spotifymusic_1.128.721.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.128.721.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{CAD61A33-0A6B-4099-8BB6-F1B4504401E6}E:\windowsapps\spotifyab.spotifymusic_1.128.721.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.128.721.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [{4D5C40EA-67EF-4F0B-BBAF-2F03FE2FA928}] => (Allow) E:\Programs\AOMEI\AOMEI Backupper 5.7.0\ABService.exe => No File
FirewallRules: [{1A9A7053-A399-4F46-A4DD-37474FCB6BA0}] => (Allow) E:\Programs\AOMEI\AOMEI Backupper 5.7.0\ABService.exe => No File
FirewallRules: [{5AAEF38C-B61E-4DAC-B33B-E3691C1BB84D}] => (Allow) E:\Programs\AOMEI\AOMEI Backupper 5.7.0\ABService.exe => No File
FirewallRules: [{6D2C6461-EB37-4250-BAF4-BB28E0B8F2F9}] => (Allow) E:\Programs\AOMEI\AOMEI Backupper 5.7.0\ABService.exe => No File

EmptyTemp:
Hosts:
End
Uložte do E:\bl\Instal jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

roan
Návštěvník
Návštěvník
Příspěvky: 27
Registrován: 29 led 2006 09:13

Re: Prosím o kontrolu logu - podezřelé GET požadavky ve fire

#7 Příspěvek od roan »

Fix result of Farbar Recovery Scan Tool (x64) Version: 11-05-2020
Ran by roan_000 (11-05-2020 21:04:37) Run:1
Running from E:\bl\Instal
Loaded Profiles: roan_000 & romik & SSASTELEMETRY & SQLTELEMETRY & MSSQLServerOLAPService & SSISTELEMETRY140 & MSSQLSERVER & MsDtsServer140 & SQLTELEMETRY$ROANSQL
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2490308184-3408559818-3602897103-1001\...\Run: [Akamai NetSession Interface] => C:\Users\roan_000\AppData\Local\Akamai\netsession_win.exe [4490200 2017-01-03] (Akamai Technologies, Inc. -> Akamai Technologies, Inc.)
HKU\S-1-5-21-2490308184-3408559818-3602897103-1001\...\MountPoints2: {2152298c-aca8-11e9-8454-000272da0739} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2490308184-3408559818-3602897103-1001\...\MountPoints2: {21bc381b-bb39-11e9-8470-000272da0739} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2490308184-3408559818-3602897103-1001\...\MountPoints2: {2d334d83-c641-11e9-848a-000272da0739} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2490308184-3408559818-3602897103-1001\...\MountPoints2: {402879e7-0850-11ea-84eb-000272da0739} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2490308184-3408559818-3602897103-1001\...\MountPoints2: {609148d7-4d3c-11e9-83e1-000272da0739} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2490308184-3408559818-3602897103-1001\...\MountPoints2: {91872e81-89b9-11e9-8430-000272da0739} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2490308184-3408559818-3602897103-1001\...\MountPoints2: {a4eb48dd-2888-11e8-82db-000272da0739} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2490308184-3408559818-3602897103-1001\...\MountPoints2: {c2523e65-d139-11e9-84a3-000272da0739} - "H:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2490308184-3408559818-3602897103-1001\...\MountPoints2: {c565934f-3f4d-11ea-853e-000272da0739} - "D:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2490308184-3408559818-3602897103-1001\...\MountPoints2: {cbf9aeb3-73b2-11e9-8411-000272da0739} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2490308184-3408559818-3602897103-1001\...\MountPoints2: {f46a8d4f-20e1-11e5-8276-e0cb4e2c3ddd} - "K:\setup.exe"
GroupPolicy: Restriction - Chrome <==== ATTENTION
Task: {0BF5BF6D-6055-49CD-BCEF-2B25102AE54B} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {1EC9FEAF-EC7A-4B15-B3E4-D6D708F0AADD} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {1F0F6083-10C7-4C41-B10C-727E836CAAC8} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {2F541B11-5B84-4367-9FFE-1C7FA11F61E3} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {42015818-68C6-4E19-8DEC-3E19980A74E3} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {44A98849-2EC7-467A-97B8-A99C70A5971D} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {69F60ADA-DE55-4CA1-B574-9AE12309DCEF} - System32\Tasks\Microsoft\Windows\Software\UpdaterService => C:\ProgramData\UpdaterService\UpdaterService.exe <==== ATTENTION
Task: {6C24D94D-66CA-4840-9E87-A485C066DD98} - \CCleanerSkipUAC -> No File <==== ATTENTION
Task: {76CB1F29-EFC4-4C67-B91D-D65B133C6748} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {8663B173-CF5D-45F0-9BBD-1D62D22808C1} - no filepath
Task: {8ABC3242-46AA-45F4-B8FA-8A414E0AB006} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-10-28] (Google Inc -> Google Inc.)
Task: {998DCFD2-3825-4B0F-BF7E-16A93A2CB7BA} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {B5B3DB4E-3A94-47C9-963B-B3C27DE397E0} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {B7E50A9B-28DC-4077-9543-FD213B15E795} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {CB5A1E4E-CF21-402C-BD1E-A0140DEAAE09} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {D560C074-AC55-46B6-86AF-AA64ECA46A94} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {DA87A77D-EBB2-49DA-B76B-BC2705CCC98B} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {ECB25DED-04F3-4CBB-9905-8FBAB8024F60} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {EF2F97C1-F2AC-4242-ACF2-44EE2AF8E606} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {3C9894A7-46DA-4960-B597-1803F426CF88} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-10-28] (Google Inc -> Google Inc.)
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
HKLM\SYSTEM\ControlSet001\Services\BEDaisy => \??\C:\Program Files (x86)\Common Files\BattlEye\BEDaisy.sys <==== ATTENTION
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [1aCopyShExtError] -> {83BEA36E-7680-4598-A4DF-994426F6E78D} => C:\Users\roan_000\AppData\Roaming\Copy\overlay\CopyShExt.dll -> No File
ShellIconOverlayIdentifiers: [2aCopyShExtSynced] -> {845B7388-6F85-4F32-9FD5-F02DC7882B89} => C:\Users\roan_000\AppData\Roaming\Copy\overlay\CopyShExt.dll -> No File
ShellIconOverlayIdentifiers: [3aCopyShExtSyncing] -> {F6378A7A-F753-449B-AE1B-997A96132E61} => C:\Users\roan_000\AppData\Roaming\Copy\overlay\CopyShExt.dll -> No File
ShellIconOverlayIdentifiers: [4aCopyShExtSyncingProg1] -> {3A511828-777D-46F8-82F4-5B530C1B3D9E} => C:\Users\roan_000\AppData\Roaming\Copy\overlay\CopyShExt.dll -> No File
ShellIconOverlayIdentifiers: [5aCopyShExtSyncingProg2] -> {C8C88204-5B14-40EC-BA72-8AEBC762047E} => C:\Users\roan_000\AppData\Roaming\Copy\overlay\CopyShExt.dll -> No File
ShellIconOverlayIdentifiers: [6aCopyShExtSyncingProg3] -> {ACFF45C3-3EEB-4351-86C2-6696BA264239} => C:\Users\roan_000\AppData\Roaming\Copy\overlay\CopyShExt.dll -> No File
ShellIconOverlayIdentifiers: [7aCopyShExtSyncingProg4] -> {29AF997F-488B-46F0-AE78-7146F1B89CC3} => C:\Users\roan_000\AppData\Roaming\Copy\overlay\CopyShExt.dll -> No File
ShellIconOverlayIdentifiers: [8aCopyShExtSyncingProg5] -> {03F9AD29-1C78-4B66-8890-B177B5430C53} => C:\Users\roan_000\AppData\Roaming\Copy\overlay\CopyShExt.dll -> No File
ContextMenuHandlers1: [###MegaContextMenuExt] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\ProgramData\MEGAsync\ShellExtX64.dll -> No File
ContextMenuHandlers1: [CopyShExt] -> {D8CAB8C2-9E58-471C-BD75-2ED1BA091CE8} => C:\Users\roan_000\AppData\Roaming\Copy\overlay\CopyShExt.dll -> No File
ContextMenuHandlers3: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers4: [###MegaContextMenuExt] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\ProgramData\MEGAsync\ShellExtX64.dll -> No File
ContextMenuHandlers5: [CopyShExt] -> {D8CAB8C2-9E58-471C-BD75-2ED1BA091CE8} => C:\Users\roan_000\AppData\Roaming\Copy\overlay\CopyShExt.dll -> No File
ContextMenuHandlers6: [CopyShExt] -> {D8CAB8C2-9E58-471C-BD75-2ED1BA091CE8} => C:\Users\roan_000\AppData\Roaming\Copy\overlay\CopyShExt.dll -> No File
AlternateDataStreams: C:\ProgramData\TEMP:FB6A21E3 [214]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [484]
AlternateDataStreams: C:\Users\roan_000\ntuser.ini:NTV [10148]
AlternateDataStreams: C:\Users\roan_000\SkyDrive:${3D0CE612-FDEE-43f7-8ACA-957BEC0CCBA0}.SyncRootIdentity [130]
AlternateDataStreams: C:\Users\romik\OneDrive:${3D0CE612-FDEE-43f7-8ACA-957BEC0CCBA0}.SyncRootIdentity [118]
FirewallRules: [{265AB6F3-C1F4-4DDB-AD8A-86A24F03A34B}] => (Block) C:\program files\java\jre1.8.0_161\bin\java.exe => No File
FirewallRules: [{E676BF21-D790-44FF-A88F-EE7BC0229D39}] => (Block) C:\program files\java\jre1.8.0_161\bin\java.exe => No File
FirewallRules: [UDP Query User{01A59F05-4133-4FA9-BDCD-8256ACDA3C65}C:\program files\java\jre1.8.0_161\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_161\bin\java.exe => No File
FirewallRules: [TCP Query User{F8E7C57F-5FC6-45A5-A5C3-A7833C7BFC7E}C:\program files\java\jre1.8.0_161\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_161\bin\java.exe => No File
FirewallRules: [{653F66F5-C788-46DF-B479-6484617F1E0A}] => (Allow) E:\Programs\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe => No File
FirewallRules: [{031AFA38-A034-4F15-AC08-EB054DF71013}] => (Allow) E:\Programs\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe => No File
FirewallRules: [UDP Query User{9DEC9DFE-BB68-409C-AB86-3695DD5DEABA}C:\program files\java\jre1.8.0_161\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_161\bin\javaw.exe => No File
FirewallRules: [TCP Query User{2C99ED32-CC49-4A5D-868C-78710A6D3596}C:\program files\java\jre1.8.0_161\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_161\bin\javaw.exe => No File
FirewallRules: [{F03FCC5B-9C23-4DB8-9E41-B94675058D12}] => (Allow) E:\Programs\Steam\steamapps\common\CaptainSpirit\CaptainSpirit\Binaries\Win64\CaptainSpirit-Win64-Shipping.exe => No File
FirewallRules: [{FC7D8CF2-4157-4F18-8BFC-5F7BFF8355FE}] => (Allow) E:\Programs\Steam\steamapps\common\CaptainSpirit\CaptainSpirit\Binaries\Win64\CaptainSpirit-Win64-Shipping.exe => No File
FirewallRules: [{61E33DC7-4AE7-49A6-ADB3-2476A03C4BDE}] => (Allow) E:\Programs\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe => No File
FirewallRules: [{C9034C20-C81F-4255-AFFF-442DAC180411}] => (Allow) E:\Programs\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe => No File
FirewallRules: [TCP Query User{994446F0-7DA2-4B55-ADB6-6280CF8CB29C}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe => No File
FirewallRules: [{B0F0E6D2-CB58-41EC-AE86-2D6A87B66F47}] => (Allow) C:\Program Files (x86)\Firefox\bin\FirefoxCommand.exe => No File
FirewallRules: [{18B38AB9-F658-4B16-8B8F-AE320567DA83}] => (Allow) C:\Program Files (x86)\Firefox\Firefox.exe => No File
FirewallRules: [TCP Query User{C68F7071-63E3-4F78-BEA9-A58BD76320E2}C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe => No File
FirewallRules: [UDP Query User{560E4327-0602-4ECA-B238-6CE4EC517FE5}C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe => No File
FirewallRules: [TCP Query User{676C84D4-950A-4044-AF46-A09764322A34}E:\programs\tibco business studio\tibcojre64\1.8.0\bin\java.exe] => (Allow) E:\programs\tibco business studio\tibcojre64\1.8.0\bin\java.exe => No File
FirewallRules: [UDP Query User{473293D5-796B-4473-AF0A-5E5E7A9CE841}E:\programs\tibco business studio\tibcojre64\1.8.0\bin\java.exe] => (Allow) E:\programs\tibco business studio\tibcojre64\1.8.0\bin\java.exe => No File
FirewallRules: [{CEB11E62-6D83-4EDC-AEBA-30C69EAA5278}] => (Allow) E:\Programs\Steam\bin\steamwebhelper.exe => No File
FirewallRules: [{446ED257-1B17-4E02-8B78-D453FC90D439}] => (Allow) E:\Programs\Steam\bin\steamwebhelper.exe => No File
FirewallRules: [{4E0C01EA-2EAD-43B6-A0CE-68E1E5A20CD4}] => (Allow) E:\Programs\Steam\steamapps\common\Batman The Telltale Series\Batman_win8.exe => No File
FirewallRules: [{B82FC2B7-D4AF-4E14-B305-879DD3C7E8FB}] => (Allow) E:\Programs\Steam\steamapps\common\Batman The Telltale Series\Batman_win8.exe => No File
FirewallRules: [{B8651877-2C19-4DF3-84BE-8B629D0530BE}] => (Allow) E:\Programs\Steam\steamapps\common\Batman The Telltale Series\Batman_win7.exe => No File
FirewallRules: [{6309BBED-7F2C-498A-8FF7-BECF3FAE3A71}] => (Allow) E:\Programs\Steam\steamapps\common\Batman The Telltale Series\Batman_win7.exe => No File
FirewallRules: [{B85EA13B-7B9F-46E2-A66E-1C641D1E5E6D}] => (Allow) E:\Programs\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{1BC7CB83-18DC-4497-A740-CBB6872020EF}] => (Allow) E:\Programs\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [TCP Query User{B443792A-AB33-480A-A147-E9FA5BB7F272}C:\program files\java\jre1.8.0_111\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_111\bin\javaw.exe => No File
FirewallRules: [UDP Query User{2105D275-6D45-430D-8BEB-B48FD3E49E51}C:\program files\java\jre1.8.0_111\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_111\bin\javaw.exe => No File
FirewallRules: [TCP Query User{053FD8AD-72C7-4128-8E24-1C20DE45F1C6}C:\program files\mysql\mysql server 5.1\bin\mysqld.exe] => (Allow) C:\program files\mysql\mysql server 5.1\bin\mysqld.exe => No File
FirewallRules: [UDP Query User{AAE698C8-8B50-41DC-9CA6-D05D058B75C4}C:\program files\mysql\mysql server 5.1\bin\mysqld.exe] => (Allow) C:\program files\mysql\mysql server 5.1\bin\mysqld.exe => No File
FirewallRules: [TCP Query User{027390E9-2701-4280-BBDC-BB67E7AA8CB1}C:\program files\java\jre1.8.0_111\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_111\bin\java.exe => No File
FirewallRules: [UDP Query User{CCE0DC05-FAC3-4EE3-999F-DF70A4520CAB}C:\program files\java\jre1.8.0_111\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_111\bin\java.exe => No File
FirewallRules: [TCP Query User{CE8A77CB-816C-4847-84D9-1EC1D9748599}E:\programs\bitnami\apache2\bin\httpd.exe] => (Allow) E:\programs\bitnami\apache2\bin\httpd.exe => No File
FirewallRules: [UDP Query User{516E5E7B-F9E2-47EA-81EF-0D9D715F4898}E:\programs\bitnami\apache2\bin\httpd.exe] => (Allow) E:\programs\bitnami\apache2\bin\httpd.exe => No File
FirewallRules: [TCP Query User{337557F8-363B-4478-B398-86E50A81A781}C:\users\roan_000\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\roan_000\appdata\local\akamai\netsession_win.exe (Akamai Technologies, Inc. -> Akamai Technologies, Inc.)
FirewallRules: [UDP Query User{CD557F22-251E-4519-9598-A840026B979C}C:\users\roan_000\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\roan_000\appdata\local\akamai\netsession_win.exe (Akamai Technologies, Inc. -> Akamai Technologies, Inc.)
FirewallRules: [{C41952C5-554D-4BDD-A060-ED8992EF07A6}] => (Allow) E:\Programs\Steam\steamapps\common\Minecraft Story Mode - A Telltale Game Series\MinecraftStoryMode.exe => No File
FirewallRules: [{F95E35C8-8DF5-470B-9234-20633ED8B946}] => (Allow) E:\Programs\Steam\steamapps\common\Minecraft Story Mode - A Telltale Game Series\MinecraftStoryMode.exe => No File
FirewallRules: [TCP Query User{5923C697-7CB5-4021-87B9-023D7EA293DE}C:\program files\java\jre1.8.0_121\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_121\bin\javaw.exe => No File
FirewallRules: [UDP Query User{F39D1253-EB50-4399-88EB-2159FE43C5C5}C:\program files\java\jre1.8.0_121\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_121\bin\javaw.exe => No File
FirewallRules: [TCP Query User{6DB37309-00B6-4862-8028-38F36513491F}E:\programs\arduino\java\bin\javaw.exe] => (Allow) E:\programs\arduino\java\bin\javaw.exe => No File
FirewallRules: [UDP Query User{ABEEBB15-D70B-45E4-A9D1-15BB88945BF7}E:\programs\arduino\java\bin\javaw.exe] => (Allow) E:\programs\arduino\java\bin\javaw.exe => No File
FirewallRules: [{0CF84FE8-2C87-4E4A-8CE0-45FBABF80A82}] => (Block) E:\programs\arduino\java\bin\javaw.exe => No File
FirewallRules: [{2BD9D7AF-5AC7-4398-9ACC-0AF277B9DBA0}] => (Block) E:\programs\arduino\java\bin\javaw.exe => No File
FirewallRules: [{3E1BD50B-09FD-469C-A4DE-2A4BD29FCC8E}] => (Allow) E:\Programs\Steam\steamapps\common\Batman The Telltale Series\Batman.exe => No File
FirewallRules: [{7890F177-D232-4D6D-A65B-5960C09FBE4F}] => (Allow) E:\Programs\Steam\steamapps\common\Batman The Telltale Series\Batman.exe => No File
FirewallRules: [TCP Query User{EA86147E-BE22-49BA-B480-0F758B74D5C0}E:\windowsapps\spotifyab.spotifymusic_1.101.348.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.101.348.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{FA1A478A-CF06-4ECB-A0C0-5E647106C0DF}E:\windowsapps\spotifyab.spotifymusic_1.101.348.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.101.348.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [{746380F2-ABE1-4BDB-9946-B625EA96568F}] => (Block) E:\windowsapps\spotifyab.spotifymusic_1.101.348.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [{8BB1C19D-9115-4F73-9C2E-B5D2A1481105}] => (Block) E:\windowsapps\spotifyab.spotifymusic_1.101.348.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{24D9F9AA-1F14-4A20-9D51-3FC9E8B327D1}E:\windowsapps\spotifyab.spotifymusic_1.103.259.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.103.259.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{D4FD6D2F-FF1C-4FC6-B5BA-4DBB6C8EA4E7}E:\windowsapps\spotifyab.spotifymusic_1.103.259.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.103.259.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{11A2EDE9-E6AA-4444-882F-1FD0DF62A55A}E:\windowsapps\spotifyab.spotifymusic_1.104.197.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.104.197.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{D6D81F07-B750-42E5-BE0A-58DC89576D80}E:\windowsapps\spotifyab.spotifymusic_1.104.197.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.104.197.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{7661D0F4-8976-4577-A296-C1C12D642721}E:\windowsapps\spotifyab.spotifymusic_1.105.152.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.105.152.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{ACB2C56A-F863-4F60-AF17-AC68CF7CD0C2}E:\windowsapps\spotifyab.spotifymusic_1.105.152.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.105.152.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{1C7DBA12-6C08-4EB1-AF39-3D64C85DB53A}E:\windowsapps\spotifyab.spotifymusic_1.106.113.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.106.113.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{8975A2DD-275E-463D-8441-7386932C98BA}E:\windowsapps\spotifyab.spotifymusic_1.106.113.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.106.113.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{389E2FD4-97C1-4293-89F7-A895DD258912}E:\windowsapps\spotifyab.spotifymusic_1.107.13766.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.107.13766.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{EDF0981D-838E-4B57-8FF2-629ABE240B83}E:\windowsapps\spotifyab.spotifymusic_1.107.13766.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.107.13766.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{8074163F-8DFE-4BC4-BA36-C383FACBB28F}E:\windowsapps\spotifyab.spotifymusic_1.108.439.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.108.439.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{B5334FC3-4E16-40E8-8A87-4F76E253C471}E:\windowsapps\spotifyab.spotifymusic_1.108.439.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.108.439.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{BAA72DFE-D5F3-45EC-8720-71B3D70C6F81}E:\windowsapps\spotifyab.spotifymusic_1.108.439.0_x86__zpdnekdrzrea0\spotify.exe] => (Block) E:\windowsapps\spotifyab.spotifymusic_1.108.439.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{3312956E-F825-466A-9080-B8D97973BE0E}E:\windowsapps\spotifyab.spotifymusic_1.108.439.0_x86__zpdnekdrzrea0\spotify.exe] => (Block) E:\windowsapps\spotifyab.spotifymusic_1.108.439.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{BCF9DDDB-D64B-4583-B11E-4CA2D0C5C7D5}E:\windowsapps\spotifyab.spotifymusic_1.109.383.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.109.383.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{613AF6E9-7FEE-40CD-AB47-D527582441CE}E:\windowsapps\spotifyab.spotifymusic_1.109.383.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.109.383.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{BD6E9072-55E5-431B-8F7F-5580A14BF432}E:\windowsapps\spotifyab.spotifymusic_1.110.540.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.110.540.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{6DCEAA0B-EE6E-4A4C-8649-1ED99445420A}E:\windowsapps\spotifyab.spotifymusic_1.110.540.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.110.540.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{363A294B-A1A7-4D15-98A1-538B97B5B415}E:\windowsapps\spotifyab.spotifymusic_1.110.540.0_x86__zpdnekdrzrea0\spotify.exe] => (Block) E:\windowsapps\spotifyab.spotifymusic_1.110.540.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{D51E9425-1FE1-4C89-83B0-D6A7E0A50BF1}E:\windowsapps\spotifyab.spotifymusic_1.110.540.0_x86__zpdnekdrzrea0\spotify.exe] => (Block) E:\windowsapps\spotifyab.spotifymusic_1.110.540.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{CF99ED68-09E7-4BD6-B3A9-2E48D1708048}E:\windowsapps\spotifyab.spotifymusic_1.112.449.0_x86__zpdnekdrzrea0\spotify.exe] => (Block) E:\windowsapps\spotifyab.spotifymusic_1.112.449.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{AF490211-A3AA-42BB-B5B9-D4A39BBEE873}E:\windowsapps\spotifyab.spotifymusic_1.112.449.0_x86__zpdnekdrzrea0\spotify.exe] => (Block) E:\windowsapps\spotifyab.spotifymusic_1.112.449.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{27E6B08B-97C0-465D-A1BE-AC1FFD1FC898}E:\windowsapps\spotifyab.spotifymusic_1.112.451.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.112.451.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{0544260C-9AAC-4313-A412-7E1A280B3471}E:\windowsapps\spotifyab.spotifymusic_1.112.451.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.112.451.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{4218AC42-AA3D-42D9-B67B-998D73C15742}E:\windowsapps\spotifyab.spotifymusic_1.114.475.0_x86__zpdnekdrzrea0\spotify.exe] => (Block) E:\windowsapps\spotifyab.spotifymusic_1.114.475.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{326D25EE-0AD9-499A-8FC6-D6A70824C5F3}E:\windowsapps\spotifyab.spotifymusic_1.114.475.0_x86__zpdnekdrzrea0\spotify.exe] => (Block) E:\windowsapps\spotifyab.spotifymusic_1.114.475.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{F2C4EEA0-5756-456F-8AB7-8C9F54288C89}E:\windowsapps\spotifyab.spotifymusic_1.115.448.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.115.448.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{DE745326-653A-4B11-84F1-EB6383EF3041}E:\windowsapps\spotifyab.spotifymusic_1.115.448.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.115.448.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{DFB464B0-734B-432D-BB76-0CB1AB2873EA}E:\windowsapps\spotifyab.spotifymusic_1.116.522.0_x86__zpdnekdrzrea0\spotify.exe] => (Block) E:\windowsapps\spotifyab.spotifymusic_1.116.522.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{239FCC22-16F3-43E9-BB84-0CFE3B19341C}E:\windowsapps\spotifyab.spotifymusic_1.116.522.0_x86__zpdnekdrzrea0\spotify.exe] => (Block) E:\windowsapps\spotifyab.spotifymusic_1.116.522.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{CB359F2B-E28E-4050-B961-131592765A97}E:\windowsapps\spotifyab.spotifymusic_1.117.543.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.117.543.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{7E592809-D00D-4E62-A08A-6690B2E84CCC}E:\windowsapps\spotifyab.spotifymusic_1.117.543.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.117.543.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{5131C73A-A461-4A98-BC58-1FD39F587AA3}E:\windowsapps\spotifyab.spotifymusic_1.118.611.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.118.611.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{58A6AED0-8ECB-4243-8A32-809B17F251F8}E:\windowsapps\spotifyab.spotifymusic_1.118.611.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.118.611.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{30D81900-B55A-49DD-BE0F-71B430805130}E:\windowsapps\spotifyab.spotifymusic_1.119.480.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.119.480.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{42C0BB80-8A1D-4DC2-8194-86138C398A73}E:\windowsapps\spotifyab.spotifymusic_1.119.480.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.119.480.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{3BA4F188-26D1-47C8-96BC-BD9A03545B73}E:\windowsapps\spotifyab.spotifymusic_1.120.510.0_x86__zpdnekdrzrea0\spotify.exe] => (Block) E:\windowsapps\spotifyab.spotifymusic_1.120.510.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{69330C10-9FE4-425B-85DB-955737302E31}E:\windowsapps\spotifyab.spotifymusic_1.120.510.0_x86__zpdnekdrzrea0\spotify.exe] => (Block) E:\windowsapps\spotifyab.spotifymusic_1.120.510.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [{343F5C8F-5BDC-4AF0-B197-523359A86AD3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.121.1654.0_x86__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{70825BCE-E3F4-4E42-AC0A-C4DBE30EBBDE}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.121.1654.0_x86__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{69E5DA2A-35AD-46F4-8077-A02AD01D3B31}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.121.1654.0_x86__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{645FB7B9-BEC6-4C74-97A5-492C452C12C1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.121.1654.0_x86__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{2D3ADEAC-0575-412E-8CAA-35554BAF898D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.121.1654.0_x86__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{DB36BAA5-AC95-43F1-ADA6-DDC27B55B9B1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.121.1654.0_x86__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{75FB2146-51BD-428B-83FF-E5EDD2D51E10}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.121.1654.0_x86__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{CFCE920C-210A-4409-9C25-6A144A011991}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.121.1654.0_x86__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [TCP Query User{0FC1A9CB-5DA5-4A2A-AE18-41E873C36D4E}E:\windowsapps\spotifyab.spotifymusic_1.121.1654.0_x86__zpdnekdrzrea0\spotify.exe] => (Block) E:\windowsapps\spotifyab.spotifymusic_1.121.1654.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{77F12AEC-C178-4790-8398-8DCE0F3515E1}E:\windowsapps\spotifyab.spotifymusic_1.121.1654.0_x86__zpdnekdrzrea0\spotify.exe] => (Block) E:\windowsapps\spotifyab.spotifymusic_1.121.1654.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{F0E24A8C-4F8F-4AC4-A1E1-175C83B0DA79}E:\windowsapps\spotifyab.spotifymusic_1.122.633.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.122.633.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{7B1117EE-6B7C-43A4-B434-2BB7259E19E9}E:\windowsapps\spotifyab.spotifymusic_1.122.633.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.122.633.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{FCD4522A-D1C5-4CA0-A29D-1E6A4FF00797}E:\programs\java\jre8231\bin\java.exe] => (Allow) E:\programs\java\jre8231\bin\java.exe => No File
FirewallRules: [UDP Query User{44495E28-2B1C-457D-AF8B-A3AA3F2DDB81}E:\programs\java\jre8231\bin\java.exe] => (Allow) E:\programs\java\jre8231\bin\java.exe => No File
FirewallRules: [TCP Query User{2A3D1BE4-9FE5-4A9F-A8EF-21C0F58A29E9}E:\windowsapps\spotifyab.spotifymusic_1.124.91.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.124.91.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{FC761AA5-013D-4CBF-9A21-9D27BADFEB86}E:\windowsapps\spotifyab.spotifymusic_1.124.91.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.124.91.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{1D53726F-9876-49AB-A9A0-21BB993A1459}E:\programs\microsoft vs code\code.exe] => (Allow) E:\programs\microsoft vs code\code.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{D1420C3D-1131-4356-971F-D8E567951B5A}E:\programs\microsoft vs code\code.exe] => (Allow) E:\programs\microsoft vs code\code.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{E14918A6-8F5F-44C0-87BE-43FB8B766518}E:\windowsapps\spotifyab.spotifymusic_1.125.559.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.125.559.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{ED3C1E82-6F4D-46F0-B273-3DA83370B829}E:\windowsapps\spotifyab.spotifymusic_1.125.559.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.125.559.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{C1999497-E9F3-4107-B6A2-A5378B6901FC}E:\windowsapps\spotifyab.spotifymusic_1.126.501.0_x86__zpdnekdrzrea0\spotify.exe] => (Block) E:\windowsapps\spotifyab.spotifymusic_1.126.501.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{901BE9D3-8BB6-4B58-AD92-C2F4D39E8936}E:\windowsapps\spotifyab.spotifymusic_1.126.501.0_x86__zpdnekdrzrea0\spotify.exe] => (Block) E:\windowsapps\spotifyab.spotifymusic_1.126.501.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{B6F634D1-D3D9-4766-9303-A4BDDB7B5A67}E:\windowsapps\spotifyab.spotifymusic_1.127.472.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.127.472.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{8FCD072C-E08E-4EE1-B84D-B0D50F15B200}E:\windowsapps\spotifyab.spotifymusic_1.127.472.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.127.472.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{5F550E48-E096-4AB6-B448-DEE08EB43C1A}E:\windowsapps\spotifyab.spotifymusic_1.128.721.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.128.721.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{CAD61A33-0A6B-4099-8BB6-F1B4504401E6}E:\windowsapps\spotifyab.spotifymusic_1.128.721.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) E:\windowsapps\spotifyab.spotifymusic_1.128.721.0_x86__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [{4D5C40EA-67EF-4F0B-BBAF-2F03FE2FA928}] => (Allow) E:\Programs\AOMEI\AOMEI Backupper 5.7.0\ABService.exe => No File
FirewallRules: [{1A9A7053-A399-4F46-A4DD-37474FCB6BA0}] => (Allow) E:\Programs\AOMEI\AOMEI Backupper 5.7.0\ABService.exe => No File
FirewallRules: [{5AAEF38C-B61E-4DAC-B33B-E3691C1BB84D}] => (Allow) E:\Programs\AOMEI\AOMEI Backupper 5.7.0\ABService.exe => No File
FirewallRules: [{6D2C6461-EB37-4250-BAF4-BB28E0B8F2F9}] => (Allow) E:\Programs\AOMEI\AOMEI Backupper 5.7.0\ABService.exe => No File

EmptyTemp:
Hosts:
End
*****************

Processes closed successfully.
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION => restored successfully
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully
"HKU\S-1-5-21-2490308184-3408559818-3602897103-1001\Software\Microsoft\Windows\CurrentVersion\Run\\Akamai NetSession Interface" => removed successfully
HKU\S-1-5-21-2490308184-3408559818-3602897103-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{2152298c-aca8-11e9-8454-000272da0739} => removed successfully
HKU\S-1-5-21-2490308184-3408559818-3602897103-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{21bc381b-bb39-11e9-8470-000272da0739} => removed successfully
HKU\S-1-5-21-2490308184-3408559818-3602897103-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{2d334d83-c641-11e9-848a-000272da0739} => removed successfully
HKU\S-1-5-21-2490308184-3408559818-3602897103-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{402879e7-0850-11ea-84eb-000272da0739} => removed successfully
HKU\S-1-5-21-2490308184-3408559818-3602897103-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{609148d7-4d3c-11e9-83e1-000272da0739} => removed successfully
HKU\S-1-5-21-2490308184-3408559818-3602897103-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{91872e81-89b9-11e9-8430-000272da0739} => removed successfully
HKU\S-1-5-21-2490308184-3408559818-3602897103-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a4eb48dd-2888-11e8-82db-000272da0739} => removed successfully
HKU\S-1-5-21-2490308184-3408559818-3602897103-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c2523e65-d139-11e9-84a3-000272da0739} => removed successfully
HKU\S-1-5-21-2490308184-3408559818-3602897103-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c565934f-3f4d-11ea-853e-000272da0739} => removed successfully
HKU\S-1-5-21-2490308184-3408559818-3602897103-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{cbf9aeb3-73b2-11e9-8411-000272da0739} => removed successfully
HKU\S-1-5-21-2490308184-3408559818-3602897103-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f46a8d4f-20e1-11e5-8276-e0cb4e2c3ddd} => removed successfully
C:\Windows\system32\GroupPolicy\Machine => moved successfully
C:\Windows\system32\GroupPolicy\GPT.ini => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0BF5BF6D-6055-49CD-BCEF-2B25102AE54B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0BF5BF6D-6055-49CD-BCEF-2B25102AE54B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1EC9FEAF-EC7A-4B15-B3E4-D6D708F0AADD}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1EC9FEAF-EC7A-4B15-B3E4-D6D708F0AADD}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1F0F6083-10C7-4C41-B10C-727E836CAAC8}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1F0F6083-10C7-4C41-B10C-727E836CAAC8}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2F541B11-5B84-4367-9FFE-1C7FA11F61E3}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2F541B11-5B84-4367-9FFE-1C7FA11F61E3}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{42015818-68C6-4E19-8DEC-3E19980A74E3}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{42015818-68C6-4E19-8DEC-3E19980A74E3}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{44A98849-2EC7-467A-97B8-A99C70A5971D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{44A98849-2EC7-467A-97B8-A99C70A5971D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\rundetector" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{69F60ADA-DE55-4CA1-B574-9AE12309DCEF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{69F60ADA-DE55-4CA1-B574-9AE12309DCEF}" => removed successfully
C:\Windows\System32\Tasks\Microsoft\Windows\Software\UpdaterService => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Software\UpdaterService" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6C24D94D-66CA-4840-9E87-A485C066DD98}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6C24D94D-66CA-4840-9E87-A485C066DD98}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\CCleanerSkipUAC" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{76CB1F29-EFC4-4C67-B91D-D65B133C6748}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{76CB1F29-EFC4-4C67-B91D-D65B133C6748}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{8663B173-CF5D-45F0-9BBD-1D62D22808C1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8663B173-CF5D-45F0-9BBD-1D62D22808C1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{8ABC3242-46AA-45F4-B8FA-8A414E0AB006}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8ABC3242-46AA-45F4-B8FA-8A414E0AB006}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{998DCFD2-3825-4B0F-BF7E-16A93A2CB7BA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{998DCFD2-3825-4B0F-BF7E-16A93A2CB7BA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B5B3DB4E-3A94-47C9-963B-B3C27DE397E0}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B5B3DB4E-3A94-47C9-963B-B3C27DE397E0}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B7E50A9B-28DC-4077-9543-FD213B15E795}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B7E50A9B-28DC-4077-9543-FD213B15E795}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CB5A1E4E-CF21-402C-BD1E-A0140DEAAE09}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CB5A1E4E-CF21-402C-BD1E-A0140DEAAE09}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{D560C074-AC55-46B6-86AF-AA64ECA46A94}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D560C074-AC55-46B6-86AF-AA64ECA46A94}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DA87A77D-EBB2-49DA-B76B-BC2705CCC98B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DA87A77D-EBB2-49DA-B76B-BC2705CCC98B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{ECB25DED-04F3-4CBB-9905-8FBAB8024F60}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{ECB25DED-04F3-4CBB-9905-8FBAB8024F60}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{EF2F97C1-F2AC-4242-ACF2-44EE2AF8E606}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EF2F97C1-F2AC-4242-ACF2-44EE2AF8E606}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3C9894A7-46DA-4960-B597-1803F426CF88}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3C9894A7-46DA-4960-B597-1803F426CF88}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} => removed successfully
"HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKLM\SYSTEM\ControlSet001\Services\BEDaisy => \??\C:\Program Files (x86)\Common Files\BattlEye\BEDaisy.sys <==== ATTENTION => Error: No automatic fix found for this entry.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\1aCopyShExtError => removed successfully
HKLM\Software\Classes\CLSID\{83BEA36E-7680-4598-A4DF-994426F6E78D} => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\2aCopyShExtSynced => removed successfully
HKLM\Software\Classes\CLSID\{845B7388-6F85-4F32-9FD5-F02DC7882B89} => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\3aCopyShExtSyncing => removed successfully
HKLM\Software\Classes\CLSID\{F6378A7A-F753-449B-AE1B-997A96132E61} => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\4aCopyShExtSyncingProg1 => removed successfully
HKLM\Software\Classes\CLSID\{3A511828-777D-46F8-82F4-5B530C1B3D9E} => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\5aCopyShExtSyncingProg2 => removed successfully
HKLM\Software\Classes\CLSID\{C8C88204-5B14-40EC-BA72-8AEBC762047E} => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\6aCopyShExtSyncingProg3 => removed successfully
HKLM\Software\Classes\CLSID\{ACFF45C3-3EEB-4351-86C2-6696BA264239} => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\7aCopyShExtSyncingProg4 => removed successfully
HKLM\Software\Classes\CLSID\{29AF997F-488B-46F0-AE78-7146F1B89CC3} => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\8aCopyShExtSyncingProg5 => removed successfully
HKLM\Software\Classes\CLSID\{03F9AD29-1C78-4B66-8890-B177B5430C53} => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\###MegaContextMenuExt => removed successfully
HKLM\Software\Classes\CLSID\{0229E5E7-09E9-45CF-9228-0228EC7D5F17} => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\CopyShExt => removed successfully
HKLM\Software\Classes\CLSID\{D8CAB8C2-9E58-471C-BD75-2ED1BA091CE8} => removed successfully
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\00avast => removed successfully
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\###MegaContextMenuExt => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\CopyShExt => removed successfully
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\CopyShExt => removed successfully
C:\ProgramData\TEMP => ":FB6A21E3" ADS removed successfully
C:\Users\Public\Shared Files => ":VersionCache" ADS removed successfully
C:\Users\roan_000\ntuser.ini => ":NTV" ADS removed successfully
C:\Users\roan_000\SkyDrive => ":${3D0CE612-FDEE-43f7-8ACA-957BEC0CCBA0}.SyncRootIdentity" ADS could not remove.
C:\Users\romik\OneDrive => ":${3D0CE612-FDEE-43f7-8ACA-957BEC0CCBA0}.SyncRootIdentity" ADS could not remove.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{265AB6F3-C1F4-4DDB-AD8A-86A24F03A34B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E676BF21-D790-44FF-A88F-EE7BC0229D39}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{01A59F05-4133-4FA9-BDCD-8256ACDA3C65}C:\program files\java\jre1.8.0_161\bin\java.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{F8E7C57F-5FC6-45A5-A5C3-A7833C7BFC7E}C:\program files\java\jre1.8.0_161\bin\java.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{653F66F5-C788-46DF-B479-6484617F1E0A}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{031AFA38-A034-4F15-AC08-EB054DF71013}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{9DEC9DFE-BB68-409C-AB86-3695DD5DEABA}C:\program files\java\jre1.8.0_161\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{2C99ED32-CC49-4A5D-868C-78710A6D3596}C:\program files\java\jre1.8.0_161\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F03FCC5B-9C23-4DB8-9E41-B94675058D12}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FC7D8CF2-4157-4F18-8BFC-5F7BFF8355FE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{61E33DC7-4AE7-49A6-ADB3-2476A03C4BDE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C9034C20-C81F-4255-AFFF-442DAC180411}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{994446F0-7DA2-4B55-ADB6-6280CF8CB29C}C:\program files (x86)\skype\phone\skype.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B0F0E6D2-CB58-41EC-AE86-2D6A87B66F47}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{18B38AB9-F658-4B16-8B8F-AE320567DA83}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{C68F7071-63E3-4F78-BEA9-A58BD76320E2}C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{560E4327-0602-4ECA-B238-6CE4EC517FE5}C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{676C84D4-950A-4044-AF46-A09764322A34}E:\programs\tibco business studio\tibcojre64\1.8.0\bin\java.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{473293D5-796B-4473-AF0A-5E5E7A9CE841}E:\programs\tibco business studio\tibcojre64\1.8.0\bin\java.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{CEB11E62-6D83-4EDC-AEBA-30C69EAA5278}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{446ED257-1B17-4E02-8B78-D453FC90D439}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4E0C01EA-2EAD-43B6-A0CE-68E1E5A20CD4}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B82FC2B7-D4AF-4E14-B305-879DD3C7E8FB}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B8651877-2C19-4DF3-84BE-8B629D0530BE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6309BBED-7F2C-498A-8FF7-BECF3FAE3A71}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B85EA13B-7B9F-46E2-A66E-1C641D1E5E6D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1BC7CB83-18DC-4497-A740-CBB6872020EF}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{B443792A-AB33-480A-A147-E9FA5BB7F272}C:\program files\java\jre1.8.0_111\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{2105D275-6D45-430D-8BEB-B48FD3E49E51}C:\program files\java\jre1.8.0_111\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{053FD8AD-72C7-4128-8E24-1C20DE45F1C6}C:\program files\mysql\mysql server 5.1\bin\mysqld.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{AAE698C8-8B50-41DC-9CA6-D05D058B75C4}C:\program files\mysql\mysql server 5.1\bin\mysqld.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{027390E9-2701-4280-BBDC-BB67E7AA8CB1}C:\program files\java\jre1.8.0_111\bin\java.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{CCE0DC05-FAC3-4EE3-999F-DF70A4520CAB}C:\program files\java\jre1.8.0_111\bin\java.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{CE8A77CB-816C-4847-84D9-1EC1D9748599}E:\programs\bitnami\apache2\bin\httpd.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{516E5E7B-F9E2-47EA-81EF-0D9D715F4898}E:\programs\bitnami\apache2\bin\httpd.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{337557F8-363B-4478-B398-86E50A81A781}C:\users\roan_000\appdata\local\akamai\netsession_win.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{CD557F22-251E-4519-9598-A840026B979C}C:\users\roan_000\appdata\local\akamai\netsession_win.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C41952C5-554D-4BDD-A060-ED8992EF07A6}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F95E35C8-8DF5-470B-9234-20633ED8B946}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{5923C697-7CB5-4021-87B9-023D7EA293DE}C:\program files\java\jre1.8.0_121\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{F39D1253-EB50-4399-88EB-2159FE43C5C5}C:\program files\java\jre1.8.0_121\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{6DB37309-00B6-4862-8028-38F36513491F}E:\programs\arduino\java\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{ABEEBB15-D70B-45E4-A9D1-15BB88945BF7}E:\programs\arduino\java\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0CF84FE8-2C87-4E4A-8CE0-45FBABF80A82}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2BD9D7AF-5AC7-4398-9ACC-0AF277B9DBA0}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3E1BD50B-09FD-469C-A4DE-2A4BD29FCC8E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7890F177-D232-4D6D-A65B-5960C09FBE4F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{EA86147E-BE22-49BA-B480-0F758B74D5C0}E:\windowsapps\spotifyab.spotifymusic_1.101.348.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{FA1A478A-CF06-4ECB-A0C0-5E647106C0DF}E:\windowsapps\spotifyab.spotifymusic_1.101.348.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{746380F2-ABE1-4BDB-9946-B625EA96568F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8BB1C19D-9115-4F73-9C2E-B5D2A1481105}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{24D9F9AA-1F14-4A20-9D51-3FC9E8B327D1}E:\windowsapps\spotifyab.spotifymusic_1.103.259.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{D4FD6D2F-FF1C-4FC6-B5BA-4DBB6C8EA4E7}E:\windowsapps\spotifyab.spotifymusic_1.103.259.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{11A2EDE9-E6AA-4444-882F-1FD0DF62A55A}E:\windowsapps\spotifyab.spotifymusic_1.104.197.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{D6D81F07-B750-42E5-BE0A-58DC89576D80}E:\windowsapps\spotifyab.spotifymusic_1.104.197.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{7661D0F4-8976-4577-A296-C1C12D642721}E:\windowsapps\spotifyab.spotifymusic_1.105.152.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{ACB2C56A-F863-4F60-AF17-AC68CF7CD0C2}E:\windowsapps\spotifyab.spotifymusic_1.105.152.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{1C7DBA12-6C08-4EB1-AF39-3D64C85DB53A}E:\windowsapps\spotifyab.spotifymusic_1.106.113.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{8975A2DD-275E-463D-8441-7386932C98BA}E:\windowsapps\spotifyab.spotifymusic_1.106.113.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{389E2FD4-97C1-4293-89F7-A895DD258912}E:\windowsapps\spotifyab.spotifymusic_1.107.13766.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{EDF0981D-838E-4B57-8FF2-629ABE240B83}E:\windowsapps\spotifyab.spotifymusic_1.107.13766.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{8074163F-8DFE-4BC4-BA36-C383FACBB28F}E:\windowsapps\spotifyab.spotifymusic_1.108.439.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{B5334FC3-4E16-40E8-8A87-4F76E253C471}E:\windowsapps\spotifyab.spotifymusic_1.108.439.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{BAA72DFE-D5F3-45EC-8720-71B3D70C6F81}E:\windowsapps\spotifyab.spotifymusic_1.108.439.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{3312956E-F825-466A-9080-B8D97973BE0E}E:\windowsapps\spotifyab.spotifymusic_1.108.439.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{BCF9DDDB-D64B-4583-B11E-4CA2D0C5C7D5}E:\windowsapps\spotifyab.spotifymusic_1.109.383.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{613AF6E9-7FEE-40CD-AB47-D527582441CE}E:\windowsapps\spotifyab.spotifymusic_1.109.383.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{BD6E9072-55E5-431B-8F7F-5580A14BF432}E:\windowsapps\spotifyab.spotifymusic_1.110.540.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{6DCEAA0B-EE6E-4A4C-8649-1ED99445420A}E:\windowsapps\spotifyab.spotifymusic_1.110.540.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{363A294B-A1A7-4D15-98A1-538B97B5B415}E:\windowsapps\spotifyab.spotifymusic_1.110.540.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{D51E9425-1FE1-4C89-83B0-D6A7E0A50BF1}E:\windowsapps\spotifyab.spotifymusic_1.110.540.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{CF99ED68-09E7-4BD6-B3A9-2E48D1708048}E:\windowsapps\spotifyab.spotifymusic_1.112.449.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{AF490211-A3AA-42BB-B5B9-D4A39BBEE873}E:\windowsapps\spotifyab.spotifymusic_1.112.449.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{27E6B08B-97C0-465D-A1BE-AC1FFD1FC898}E:\windowsapps\spotifyab.spotifymusic_1.112.451.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{0544260C-9AAC-4313-A412-7E1A280B3471}E:\windowsapps\spotifyab.spotifymusic_1.112.451.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{4218AC42-AA3D-42D9-B67B-998D73C15742}E:\windowsapps\spotifyab.spotifymusic_1.114.475.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{326D25EE-0AD9-499A-8FC6-D6A70824C5F3}E:\windowsapps\spotifyab.spotifymusic_1.114.475.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{F2C4EEA0-5756-456F-8AB7-8C9F54288C89}E:\windowsapps\spotifyab.spotifymusic_1.115.448.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{DE745326-653A-4B11-84F1-EB6383EF3041}E:\windowsapps\spotifyab.spotifymusic_1.115.448.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{DFB464B0-734B-432D-BB76-0CB1AB2873EA}E:\windowsapps\spotifyab.spotifymusic_1.116.522.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{239FCC22-16F3-43E9-BB84-0CFE3B19341C}E:\windowsapps\spotifyab.spotifymusic_1.116.522.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{CB359F2B-E28E-4050-B961-131592765A97}E:\windowsapps\spotifyab.spotifymusic_1.117.543.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{7E592809-D00D-4E62-A08A-6690B2E84CCC}E:\windowsapps\spotifyab.spotifymusic_1.117.543.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{5131C73A-A461-4A98-BC58-1FD39F587AA3}E:\windowsapps\spotifyab.spotifymusic_1.118.611.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{58A6AED0-8ECB-4243-8A32-809B17F251F8}E:\windowsapps\spotifyab.spotifymusic_1.118.611.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{30D81900-B55A-49DD-BE0F-71B430805130}E:\windowsapps\spotifyab.spotifymusic_1.119.480.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{42C0BB80-8A1D-4DC2-8194-86138C398A73}E:\windowsapps\spotifyab.spotifymusic_1.119.480.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{3BA4F188-26D1-47C8-96BC-BD9A03545B73}E:\windowsapps\spotifyab.spotifymusic_1.120.510.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{69330C10-9FE4-425B-85DB-955737302E31}E:\windowsapps\spotifyab.spotifymusic_1.120.510.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{343F5C8F-5BDC-4AF0-B197-523359A86AD3}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{70825BCE-E3F4-4E42-AC0A-C4DBE30EBBDE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{69E5DA2A-35AD-46F4-8077-A02AD01D3B31}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{645FB7B9-BEC6-4C74-97A5-492C452C12C1}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2D3ADEAC-0575-412E-8CAA-35554BAF898D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DB36BAA5-AC95-43F1-ADA6-DDC27B55B9B1}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{75FB2146-51BD-428B-83FF-E5EDD2D51E10}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{CFCE920C-210A-4409-9C25-6A144A011991}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{0FC1A9CB-5DA5-4A2A-AE18-41E873C36D4E}E:\windowsapps\spotifyab.spotifymusic_1.121.1654.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{77F12AEC-C178-4790-8398-8DCE0F3515E1}E:\windowsapps\spotifyab.spotifymusic_1.121.1654.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{F0E24A8C-4F8F-4AC4-A1E1-175C83B0DA79}E:\windowsapps\spotifyab.spotifymusic_1.122.633.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{7B1117EE-6B7C-43A4-B434-2BB7259E19E9}E:\windowsapps\spotifyab.spotifymusic_1.122.633.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{FCD4522A-D1C5-4CA0-A29D-1E6A4FF00797}E:\programs\java\jre8231\bin\java.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{44495E28-2B1C-457D-AF8B-A3AA3F2DDB81}E:\programs\java\jre8231\bin\java.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{2A3D1BE4-9FE5-4A9F-A8EF-21C0F58A29E9}E:\windowsapps\spotifyab.spotifymusic_1.124.91.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{FC761AA5-013D-4CBF-9A21-9D27BADFEB86}E:\windowsapps\spotifyab.spotifymusic_1.124.91.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{1D53726F-9876-49AB-A9A0-21BB993A1459}E:\programs\microsoft vs code\code.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{D1420C3D-1131-4356-971F-D8E567951B5A}E:\programs\microsoft vs code\code.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{E14918A6-8F5F-44C0-87BE-43FB8B766518}E:\windowsapps\spotifyab.spotifymusic_1.125.559.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{ED3C1E82-6F4D-46F0-B273-3DA83370B829}E:\windowsapps\spotifyab.spotifymusic_1.125.559.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{C1999497-E9F3-4107-B6A2-A5378B6901FC}E:\windowsapps\spotifyab.spotifymusic_1.126.501.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{901BE9D3-8BB6-4B58-AD92-C2F4D39E8936}E:\windowsapps\spotifyab.spotifymusic_1.126.501.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{B6F634D1-D3D9-4766-9303-A4BDDB7B5A67}E:\windowsapps\spotifyab.spotifymusic_1.127.472.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{8FCD072C-E08E-4EE1-B84D-B0D50F15B200}E:\windowsapps\spotifyab.spotifymusic_1.127.472.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{5F550E48-E096-4AB6-B448-DEE08EB43C1A}E:\windowsapps\spotifyab.spotifymusic_1.128.721.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{CAD61A33-0A6B-4099-8BB6-F1B4504401E6}E:\windowsapps\spotifyab.spotifymusic_1.128.721.0_x86__zpdnekdrzrea0\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4D5C40EA-67EF-4F0B-BBAF-2F03FE2FA928}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1A9A7053-A399-4F46-A4DD-37474FCB6BA0}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5AAEF38C-B61E-4DAC-B33B-E3691C1BB84D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6D2C6461-EB37-4250-BAF4-BB28E0B8F2F9}" => removed successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 10510336 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 371538227 B
Java, Flash, Steam htmlcache => 69940952 B
Windows/system/drivers => 30106223 B
Edge => 18856764 B
Chrome => 12827160 B
Firefox => 1168415293 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 4604 B
NetworkService => 1182082 B
roan_000 => 86283308 B
romik => 239173017 B
SSASTELEMETRY => 239173017 B
SQLTELEMETRY => 239173017 B
MSSQLServerOLAPService => 239173017 B
SSISTELEMETRY140 => 239173017 B
MSSQLSERVER => 239173017 B
MsDtsServer140 => 239173017 B
MSSQL$ROANSQL => 239173017 B
SQLTELEMETRY$ROANSQL => 239173017 B
DefaultAppPool => 239173017 B

RecycleBin => 0 B
EmptyTemp: => 3.9 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 21:06:34 ====

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118198
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o kontrolu logu - podezřelé GET požadavky ve fire

#8 Příspěvek od Rudy »

Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

roan
Návštěvník
Návštěvník
Příspěvky: 27
Registrován: 29 led 2006 09:13

Re: Prosím o kontrolu logu - podezřelé GET požadavky ve fire

#9 Příspěvek od roan »

Bohužel ne..... přemýšlím, že to nejspíš bude dělat nějaký plugin do Firefoxu

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118198
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o kontrolu logu - podezřelé GET požadavky ve fire

#10 Příspěvek od Rudy »

To je docela možné. Z praxe ale nevím, který by to mohl dělat. Asi vám nezbude, než je zkusmo odinstalovávat.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

roan
Návštěvník
Návštěvník
Příspěvky: 27
Registrován: 29 led 2006 09:13

Re: Prosím o kontrolu logu - podezřelé GET požadavky ve fire

#11 Příspěvek od roan »

Tak jsem odinstaloval všechny doplňky, ale traffic zůstal...pokud ale pustím prohlížeč v anonymním módu tak je to OK. Zatím jsem si nainstaloval plugin Privacy Budger a ten ten traffic blokuje

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118198
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o kontrolu logu - podezřelé GET požadavky ve fire

#12 Příspěvek od Rudy »

Zkuste ještě vyčistit prohlížeče. Spusťte postupně tyto uriliry:

1. Stahnete Zoek.exe http://download.bleepingcomputer.com/smeenk/zoek.exe a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize




autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;





Nasledne kliknete na Run Script
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem.

a

2. Junkware removal tool: https://www.stahuj.cz/utility_a_ostatni ... oval-tool/
•Ulozte nejlepe na plochu
•Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
•Probehne vytvoreni zalohy a nasledne prohledavani
•Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

roan
Návštěvník
Návštěvník
Příspěvky: 27
Registrován: 29 led 2006 09:13

Re: Prosím o kontrolu logu - podezřelé GET požadavky ve fire

#13 Příspěvek od roan »

Dostal jsem se k tomu až dneska, logy v příloze.

Díky
Přílohy
Logs2.zip
(8.39 KiB) Staženo 53 x

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118198
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o kontrolu logu - podezřelé GET požadavky ve fire

#14 Příspěvek od Rudy »

OK. Změnilo se něco?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Odpovědět