Outbound Firewall.


  1. adop1
    Posts : 2
    Win10
       New #1

    Outbound Firewall.


    Hello everyone.

    For last couple of days I'm feeling like someone hacked my computer. I can see a lot of weird things installed in system.
    I've already put everything off but I wish You guys to let me know if there's something wrong.

    Thank You very much.



    Code:
    Name	Group	Profile	Enabled	Action	Override	Program	Local Address	Remote Address	Protocol	Local Port	Remote Port	Authorized Computers	Authorized Local Principals	Local User Owner	Application Package	
 @firewallAPI.dll,-80204 @firewallAPI.dll,-80200	All	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Local subnet	TCP	Any	554, 8554-8558	Any	Any	Any	Any	
AllJoyn Router (TCP-Out)	AllJoyn Router	Domain, Private	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Any	TCP	Any	Any	Any	Any	Any	Any	
AllJoyn Router (UDP-Out)	AllJoyn Router	Domain, Private	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Any	UDP	Any	Any	Any	Any	Any	Any	
Cast to Device functionality (qWave-TCP-Out)	Cast to Device functionality	Private, Public	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	PlayTo Renderers	TCP	Any	2177	Any	Any	Any	Any	
Cast to Device functionality (qWave-UDP-Out)	Cast to Device functionality	Private, Public	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	PlayTo Renderers	UDP	Any	2177	Any	Any	Any	Any	
Cast to Device streaming server (RTP-Streaming-Out)	Cast to Device functionality	Domain	No	Allow	No	%SystemRoot%\system32\mdeserver.exe	Any	Any	UDP	Any	Any	Any	Any	Any	Any	
Cast to Device streaming server (RTP-Streaming-Out)	Cast to Device functionality	Public	No	Allow	No	%SystemRoot%\system32\mdeserver.exe	Any	PlayTo Renderers	UDP	Any	Any	Any	Any	Any	Any	
Cast to Device streaming server (RTP-Streaming-Out)	Cast to Device functionality	Private	No	Allow	No	%SystemRoot%\system32\mdeserver.exe	Any	Local subnet	UDP	Any	Any	Any	Any	Any	Any	
Connected Devices Platform - Wi-Fi Direct Transport (TCP-Out)	Connected Devices Platform	Public	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Any	TCP	Any	Any	Any	Any	Any	Any	
Connected Devices Platform (TCP-Out)	Connected Devices Platform	Domain, Private	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Any	TCP	Any	Any	Any	Any	Any	Any	
Connected Devices Platform (UDP-Out)	Connected Devices Platform	Domain, Private	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Any	UDP	Any	Any	Any	Any	Any	Any	
Core Networking - DNS (UDP-Out)	Core Networking	All	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Any	UDP	Any	53	Any	Any	Any	Any	
Core Networking - Dynamic Host Configuration Protocol (DHCP-Out)	Core Networking	All	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Any	UDP	68	67	Any	Any	Any	Any	
Core Networking - Dynamic Host Configuration Protocol for IPv6(DHCPV6-Out)	Core Networking	All	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Any	UDP	546	547	Any	Any	Any	Any	
Core Networking - Group Policy (LSASS-Out)	Core Networking	Domain	No	Allow	No	%SystemRoot%\system32\lsass.exe	Any	Any	TCP	Any	Any	Any	Any	Any	Any	
Core Networking - Group Policy (NP-Out)	Core Networking	Domain	No	Allow	No	System	Any	Any	TCP	Any	445	Any	Any	Any	Any	
Core Networking - Group Policy (TCP-Out)	Core Networking	Domain	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Any	TCP	Any	Any	Any	Any	Any	Any	
Core Networking - Internet Group Management Protocol (IGMP-Out)	Core Networking	All	No	Allow	No	System	Any	Any	IGMP	Any	Any	Any	Any	Any	Any	
Core Networking - IPHTTPS (TCP-Out)	Core Networking	All	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Any	TCP	Any	IPHTTPS	Any	Any	Any	Any	
Core Networking - IPv6 (IPv6-Out)	Core Networking	All	No	Allow	No	System	Any	Any	IPv6	Any	Any	Any	Any	Any	Any	
Core Networking - Multicast Listener Done (ICMPv6-Out)	Core Networking	All	No	Allow	No	System	Any	Local subnet	ICMPv6	Any	Any	Any	Any	Any	Any	
Core Networking - Multicast Listener Query (ICMPv6-Out)	Core Networking	All	No	Allow	No	System	Any	Local subnet	ICMPv6	Any	Any	Any	Any	Any	Any	
Core Networking - Multicast Listener Report (ICMPv6-Out)	Core Networking	All	No	Allow	No	System	Any	Local subnet	ICMPv6	Any	Any	Any	Any	Any	Any	
Core Networking - Multicast Listener Report v2 (ICMPv6-Out)	Core Networking	All	No	Allow	No	System	Any	Local subnet	ICMPv6	Any	Any	Any	Any	Any	Any	
Core Networking - Neighbor Discovery Advertisement (ICMPv6-Out)	Core Networking	All	No	Allow	No	System	Any	Any	ICMPv6	Any	Any	Any	Any	Any	Any	
Core Networking - Neighbor Discovery Solicitation (ICMPv6-Out)	Core Networking	All	No	Allow	No	System	Any	Any	ICMPv6	Any	Any	Any	Any	Any	Any	
Core Networking - Packet Too Big (ICMPv6-Out)	Core Networking	All	No	Allow	No	System	Any	Any	ICMPv6	Any	Any	Any	Any	Any	Any	
Core Networking - Parameter Problem (ICMPv6-Out)	Core Networking	All	No	Allow	No	System	Any	Any	ICMPv6	Any	Any	Any	Any	Any	Any	
Core Networking - Router Advertisement (ICMPv6-Out)	Core Networking	All	No	Allow	No	System	fe80::/64	Local subnet, ff02::1, fe80::/64	ICMPv6	Any	Any	Any	Any	Any	Any	
Core Networking - Router Solicitation (ICMPv6-Out)	Core Networking	All	No	Allow	No	System	Any	Local subnet, ff02::2, fe80::/64	ICMPv6	Any	Any	Any	Any	Any	Any	
Core Networking - Teredo (UDP-Out)	Core Networking	All	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Any	UDP	Any	Any	Any	Any	Any	Any	
Core Networking - Time Exceeded (ICMPv6-Out)	Core Networking	All	No	Allow	No	System	Any	Any	ICMPv6	Any	Any	Any	Any	Any	Any	
Connected User Experiences and Telemetry	DiagTrack	All	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Any	TCP	Any	443	Any	Any	Any	Any	
Distributed Transaction Coordinator (TCP-Out)	Distributed Transaction Coordinator	Private, Public	No	Allow	No	%SystemRoot%\system32\msdtc.exe	Any	Local subnet	TCP	Any	Any	Any	Any	Any	Any	
Distributed Transaction Coordinator (TCP-Out)	Distributed Transaction Coordinator	Domain	No	Allow	No	%SystemRoot%\system32\msdtc.exe	Any	Any	TCP	Any	Any	Any	Any	Any	Any	
File and Printer Sharing (Echo Request - ICMPv4-Out)	File and Printer Sharing	Domain	No	Allow	No	System	Any	Any	ICMPv4	Any	Any	Any	Any	Any	Any	
File and Printer Sharing (Echo Request - ICMPv4-Out)	File and Printer Sharing	Private, Public	No	Allow	No	System	Any	Local subnet	ICMPv4	Any	Any	Any	Any	Any	Any	
File and Printer Sharing (Echo Request - ICMPv6-Out)	File and Printer Sharing	Domain	No	Allow	No	System	Any	Any	ICMPv6	Any	Any	Any	Any	Any	Any	
File and Printer Sharing (Echo Request - ICMPv6-Out)	File and Printer Sharing	Private, Public	No	Allow	No	System	Any	Local subnet	ICMPv6	Any	Any	Any	Any	Any	Any	
File and Printer Sharing (LLMNR-UDP-Out)	File and Printer Sharing	All	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Local subnet	UDP	Any	5355	Any	Any	Any	Any	
File and Printer Sharing (NB-Datagram-Out)	File and Printer Sharing	Domain	No	Allow	No	System	Any	Any	UDP	Any	138	Any	Any	Any	Any	
File and Printer Sharing (NB-Datagram-Out)	File and Printer Sharing	Private, Public	No	Allow	No	System	Any	Local subnet	UDP	Any	138	Any	Any	Any	Any	
File and Printer Sharing (NB-Name-Out)	File and Printer Sharing	Private, Public	No	Allow	No	System	Any	Local subnet	UDP	Any	137	Any	Any	Any	Any	
File and Printer Sharing (NB-Name-Out)	File and Printer Sharing	Domain	No	Allow	No	System	Any	Any	UDP	Any	137	Any	Any	Any	Any	
File and Printer Sharing (NB-Session-Out)	File and Printer Sharing	Domain	No	Allow	No	System	Any	Any	TCP	Any	139	Any	Any	Any	Any	
File and Printer Sharing (NB-Session-Out)	File and Printer Sharing	Private, Public	No	Allow	No	System	Any	Local subnet	TCP	Any	139	Any	Any	Any	Any	
File and Printer Sharing (SMB-Out)	File and Printer Sharing	Private, Public	No	Allow	No	System	Any	Local subnet	TCP	Any	445	Any	Any	Any	Any	
File and Printer Sharing (SMB-Out)	File and Printer Sharing	Domain	No	Allow	No	System	Any	Any	TCP	Any	445	Any	Any	Any	Any	
HomeGroup Out	HomeGroup	Private	No	Allow	No	%systemroot%\system32\svchost.exe	Any	Local subnet	TCP	Any	3587	Any	Any	Any	Any	
HomeGroup Out (PNRP)	HomeGroup	Private	No	Allow	No	%systemroot%\system32\svchost.exe	Any	Local subnet	UDP	Any	3540	Any	Any	Any	Any	
iSCSI Service (TCP-Out)	iSCSI Service	Domain	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Any	TCP	Any	Any	Any	Any	Any	Any	
iSCSI Service (TCP-Out)	iSCSI Service	Private, Public	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Local subnet	TCP	Any	Any	Any	Any	Any	Any	
mDNS (UDP-Out)	mDNS	Domain	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Any	UDP	Any	5353	Any	Any	Any	Any	
mDNS (UDP-Out)	mDNS	Private	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Local subnet	UDP	Any	5353	Any	Any	Any	Any	
mDNS (UDP-Out)	mDNS	Domain	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Any	UDP	Any	5353	Any	Any	Any	Any	
mDNS (UDP-Out)	mDNS	Public	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Local subnet	UDP	Any	5353	Any	Any	Any	Any	
Media Center Extenders - Device Provisioning (TCP-Out)	Media Center Extenders	All	No	Allow	No	%SystemRoot%\ehome\mcx2prov.exe	Any	Any	TCP	Any	Any	Any	Any	Any	Any	
Media Center Extenders - Device Validation (TCP-Out)	Media Center Extenders	All	No	Allow	No	%SystemRoot%\ehome\mcrmgr.exe	Any	Any	TCP	Any	Any	Any	Any	Any	Any	
Media Center Extenders - Media Streaming (TCP-Out)	Media Center Extenders	All	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Local subnet	TCP	Any	Any	Any	Any	Any	Any	
Media Center Extenders - Media Streaming (UDP-Out)	Media Center Extenders	All	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Local subnet	UDP	1900	Any	Any	Any	Any	Any	
Media Center Extenders - qWave (TCP-Out)	Media Center Extenders	All	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Local subnet	TCP	Any	2177	Any	Any	Any	Any	
Media Center Extenders - qWave (UDP-Out)	Media Center Extenders	All	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Local subnet	UDP	Any	2177	Any	Any	Any	Any	
Media Center Extenders - RTSP (TCP-Out)	Media Center Extenders	All	No	Allow	No	%SystemRoot%\ehome\ehshell.exe	Any	Local subnet	TCP	Any	Any	Any	Any	Any	Any	
Media Center Extenders - Service (TCP-Out)	Media Center Extenders	All	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Local subnet	TCP	Any	Any	Any	Any	Any	Any	
Media Center Extenders - SSDP (UDP-Out)	Media Center Extenders	All	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Local subnet	UDP	Any	1900	Any	Any	Any	Any	
Media Center Extenders - UPnP (TCP-Out)	Media Center Extenders	All	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Local subnet	TCP	Any	Any	Any	Any	Any	Any	
Media Center Extenders - WMDRM-ND/RTP/RTCP (UDP-Out)	Media Center Extenders	All	No	Allow	No	%SystemRoot%\ehome\ehshell.exe	Any	Local subnet	UDP	Any	Any	Any	Any	Any	Any	
Network Discovery (LLMNR-UDP-Out)	Network Discovery	Domain, Public	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Local subnet	UDP	Any	5355	Any	Any	Any	Any	
Network Discovery (LLMNR-UDP-Out)	Network Discovery	Private	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Local subnet	UDP	Any	5355	Any	Any	Any	Any	
Network Discovery (NB-Datagram-Out)	Network Discovery	Domain	No	Allow	No	System	Any	Any	UDP	Any	138	Any	Any	Any	Any	
Network Discovery (NB-Datagram-Out)	Network Discovery	Public	No	Allow	No	System	Any	Local subnet	UDP	Any	138	Any	Any	Any	Any	
Network Discovery (NB-Datagram-Out)	Network Discovery	Private	No	Allow	No	System	Any	Local subnet	UDP	Any	138	Any	Any	Any	Any	
Network Discovery (NB-Name-Out)	Network Discovery	Public	No	Allow	No	System	Any	Local subnet	UDP	Any	137	Any	Any	Any	Any	
Network Discovery (NB-Name-Out)	Network Discovery	Domain	No	Allow	No	System	Any	Any	UDP	Any	137	Any	Any	Any	Any	
Network Discovery (NB-Name-Out)	Network Discovery	Private	No	Allow	No	System	Any	Local subnet	UDP	Any	137	Any	Any	Any	Any	
Network Discovery (Pub WSD-Out)	Network Discovery	Domain, Public	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Local subnet	UDP	Any	3702	Any	Any	Any	Any	
Network Discovery (Pub WSD-Out)	Network Discovery	Private	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Local subnet	UDP	Any	3702	Any	Any	Any	Any	
Network Discovery (SSDP-Out)	Network Discovery	Domain, Public	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Local subnet	UDP	Any	1900	Any	Any	Any	Any	
Network Discovery (SSDP-Out)	Network Discovery	Private	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Local subnet	UDP	Any	1900	Any	Any	Any	Any	
Network Discovery (UPnPHost-Out)	Network Discovery	Domain, Public	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Local subnet	TCP	Any	2869	Any	Any	Any	Any	
Network Discovery (UPnPHost-Out)	Network Discovery	Private	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Local subnet	TCP	Any	2869	Any	Any	Any	Any	
Network Discovery (UPnP-Out)	Network Discovery	Domain	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Any	TCP	Any	2869	Any	Any	Any	Any	
Network Discovery (UPnP-Out)	Network Discovery	Public	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Local subnet	TCP	Any	2869	Any	Any	Any	Any	
Network Discovery (UPnP-Out)	Network Discovery	Private	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Local subnet	TCP	Any	2869	Any	Any	Any	Any	
Network Discovery (WSD Events-Out)	Network Discovery	Public	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Local subnet	TCP	Any	5357	Any	Any	Any	Any	
Network Discovery (WSD Events-Out)	Network Discovery	Private	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Local subnet	TCP	Any	5357	Any	Any	Any	Any	
Network Discovery (WSD Events-Out)	Network Discovery	Domain	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Any	TCP	Any	5357	Any	Any	Any	Any	
Network Discovery (WSD EventsSecure-Out)	Network Discovery	Private	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Local subnet	TCP	Any	5358	Any	Any	Any	Any	
Network Discovery (WSD EventsSecure-Out)	Network Discovery	Domain	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Any	TCP	Any	5358	Any	Any	Any	Any	
Network Discovery (WSD EventsSecure-Out)	Network Discovery	Public	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Local subnet	TCP	Any	5358	Any	Any	Any	Any	
Network Discovery (WSD-Out)	Network Discovery	Private	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Local subnet	UDP	Any	3702	Any	Any	Any	Any	
Network Discovery (WSD-Out)	Network Discovery	Domain, Public	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Local subnet	UDP	Any	3702	Any	Any	Any	Any	
Proximity sharing over TCP (TCP sharing-Out)	Proximity Sharing	All	No	Allow	No	%SystemRoot%\system32\proximityuxhost.exe	Any	Any	TCP	Any	Any	Any	Any	Any	Any	
Recommended Troubleshooting Client (HTTP/HTTPS Out)	Recommended Troubleshooting	All	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Any	TCP	Any	80, 443	Any	Any	Any	Any	
Remote Assistance (PNRP-Out)	Remote Assistance	Domain, Private	No	Allow	No	%systemroot%\system32\svchost.exe	Any	Any	UDP	Any	Any	Any	Any	Any	Any	
Remote Assistance (PNRP-Out)	Remote Assistance	Public	No	Allow	No	%systemroot%\system32\svchost.exe	Any	Any	UDP	Any	Any	Any	Any	Any	Any	
Remote Assistance (RA Server TCP-Out)	Remote Assistance	Domain	No	Allow	No	%SystemRoot%\system32\raserver.exe	Any	Any	TCP	Any	Any	Any	Any	Any	Any	
Remote Assistance (SSDP TCP-Out)	Remote Assistance	Domain, Private	No	Allow	No	System	Any	Local subnet	TCP	Any	Any	Any	Any	Any	Any	
Remote Assistance (SSDP UDP-Out)	Remote Assistance	Domain, Private	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Local subnet	UDP	Any	1900	Any	Any	Any	Any	
Remote Assistance (TCP-Out)	Remote Assistance	Public	No	Allow	No	%SystemRoot%\system32\msra.exe	Any	Any	TCP	Any	Any	Any	Any	Any	Any	
Remote Assistance (TCP-Out)	Remote Assistance	Domain, Private	No	Allow	No	%SystemRoot%\system32\msra.exe	Any	Any	TCP	Any	Any	Any	Any	Any	Any	
Routing and Remote Access (GRE-Out)	Routing and Remote Access	All	No	Allow	No	System	Any	Any	GRE	Any	Any	Any	Any	Any	Any	
Routing and Remote Access (L2TP-Out)	Routing and Remote Access	All	No	Allow	No	System	Any	Any	UDP	Any	1701	Any	Any	Any	Any	
Routing and Remote Access (PPTP-Out)	Routing and Remote Access	All	No	Allow	No	System	Any	Any	TCP	Any	1723	Any	Any	Any	Any	
TPM Virtual Smart Card Management (TCP-Out)	TPM Virtual Smart Card Management	Domain	No	Allow	No	%SystemRoot%\system32\RmtTpmVscMgrSvr.exe	Any	Any	TCP	Any	Any	Any	Any	Any	Any	
TPM Virtual Smart Card Management (TCP-Out)	TPM Virtual Smart Card Management	Private, Public	No	Allow	No	%SystemRoot%\system32\RmtTpmVscMgrSvr.exe	Any	Local subnet	TCP	Any	Any	Any	Any	Any	Any	
Wi-Fi Direct Network Discovery (Out)	Wi-Fi Direct Network Discovery	Public	No	Allow	No	%SystemRoot%\system32\dashost.exe	Any	Any	Any	Any	Any	Any	S-1-5-92-3339056971-1291069075-3798698925-2882100687-0	Any	Any	
Wi-Fi Direct Scan Service Use (Out)	Wi-Fi Direct Network Discovery	Public	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Any	Any	Any	Any	Any	Any	Any	Any	
Wi-Fi Direct Spooler Use (Out)	Wi-Fi Direct Network Discovery	Public	No	Allow	No	%SystemRoot%\system32\spoolsv.exe	Any	Any	Any	Any	Any	Any	Any	Any	Any	
Windows Collaboration Computer Name Registration Service (PNRP-Out)	Windows Collaboration Computer Name Registration Service	All	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Any	UDP	Any	3540	Any	Any	Any	Any	
Windows Collaboration Computer Name Registration Service (SSDP-Out)	Windows Collaboration Computer Name Registration Service	All	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Local subnet	UDP	Any	1900	Any	Any	Any	Any	
Windows Device Management Certificate Installer (TCP out)	Windows Device Management	All	No	Allow	No	%SystemRoot%\system32\dmcertinst.exe	Any	Any	TCP	Any	Any	Any	Any	Any	Any	
Windows Device Management Device Enroller (TCP out)	Windows Device Management	All	No	Allow	No	%SystemRoot%\system32\deviceenroller.exe	Any	Any	TCP	Any	80, 443	Any	Any	Any	Any	
Windows Device Management Enrollment Service (TCP out)	Windows Device Management	All	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Any	TCP	Any	Any	Any	Any	Any	Any	
Windows Device Management Sync Client (TCP out)	Windows Device Management	All	No	Allow	No	%SystemRoot%\system32\omadmclient.exe	Any	Any	TCP	Any	Any	Any	Any	Any	Any	
Windows Management Instrumentation (WMI-Out)	Windows Management Instrumentation (WMI)	Domain	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Any	TCP	Any	Any	Any	Any	Any	Any	
Windows Management Instrumentation (WMI-Out)	Windows Management Instrumentation (WMI)	Private, Public	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Local subnet	TCP	Any	Any	Any	Any	Any	Any	
Windows Peer to Peer Collaboration Foundation (PNRP-Out)	Windows Peer to Peer Collaboration Foundation	All	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Any	UDP	Any	3540	Any	Any	Any	Any	
Windows Peer to Peer Collaboration Foundation (SSDP-Out)	Windows Peer to Peer Collaboration Foundation	All	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Local subnet	UDP	Any	1900	Any	Any	Any	Any	
Windows Peer to Peer Collaboration Foundation (TCP-Out)	Windows Peer to Peer Collaboration Foundation	All	No	Allow	No	%SystemRoot%\system32\p2phost.exe	Any	Any	TCP	Any	Any	Any	Any	Any	Any	
Windows Peer to Peer Collaboration Foundation (WSD-Out)	Windows Peer to Peer Collaboration Foundation	All	No	Allow	No	%SystemRoot%\system32\p2phost.exe	Any	Local subnet	UDP	Any	3702	Any	Any	Any	Any	
Wireless Display (TCP-Out)	Wireless Display	All	No	Allow	No	%systemroot%\system32\WUDFHost.exe	Any	Any	TCP	Any	Any	Any	NT AUTHORITY\USER MODE DRIVERS	Any	Any	
Wireless Display (UDP-Out)	Wireless Display	All	No	Allow	No	%systemroot%\system32\WUDFHost.exe	Any	Any	UDP	Any	Any	Any	NT AUTHORITY\USER MODE DRIVERS	Any	Any	
Wireless Portable Devices (SSDP-Out)	Wireless Portable Devices	All	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Local subnet	UDP	Any	1900	Any	Any	Any	Any	
Wireless Portable Devices (TCP-Out)	Wireless Portable Devices	Private, Public	No	Allow	No	%SystemRoot%\system32\wudfhost.exe	Any	Local subnet	TCP	Any	15740	Any	Any	Any	Any	
Wireless Portable Devices (TCP-Out)	Wireless Portable Devices	Domain	No	Allow	No	%SystemRoot%\system32\wudfhost.exe	Any	Any	TCP	Any	15740	Any	Any	Any	Any	
Wireless Portable Devices (UPnPHost-Out)	Wireless Portable Devices	All	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Local subnet	TCP	Any	2869	Any	Any	Any	Any	
Wireless Portable Devices (UPnP-Out)	Wireless Portable Devices	All	No	Allow	No	%SystemRoot%\system32\svchost.exe	Any	Local subnet	TCP	Any	2869	Any	Any	Any	Any	
WFD ASP Coordination Protocol (UDP-Out)	WLAN Service - WFD Application Services Platform Coordination Protocol (Uses UDP)	All	No	Allow	No	%systemroot%\system32\svchost.exe	Any	Local subnet	UDP	7235	7235	Any	Any	Any	Any	
WFD Driver-only (TCP-Out)	WLAN Service - WFD Services Kernel Mode Driver Rules	All	No	Allow	No	System	Any	Any	TCP	Any	Any	Any	Any	Any	Any	
WFD Driver-only (UDP-Out)	WLAN Service - WFD Services Kernel Mode Driver Rules	All	No	Allow	No	System	Any	Any	UDP	Any	Any	Any	Any	Any	Any
      My Computer
    Quote Quote

  3. FreeBooter
    Posts : 5,379
    Windows 11 Pro 64-bit
       New #2

    Firewall rules looks okay to me but if you want you can reset Windows Firewall rules.


    • Open Control Panel.
    • Click on System and Security.
    • Click on Windows Firewall.
    • On the left pane, click the Restore defaults link.
    • Click the Restore defaults button.
    • Click Yes to confirm.
      My Computer
    Quote Quote

  4. vgchat
    Posts : 456
    Windows 10 Pro
       New #3

    Hi adop, you can always open up the Resource Monitor, browse to the network tab and check out what's going on from there.
      My Computers
    Quote Quote

  6. adop1
    Posts : 2
    Win10
    Thread Starter
       New #4

    Hello once again.

    Unfortunately after making full format to drive, still having these weird things happening.
    My malwarebytes just made an actualization and restarted pc, when system comes back up, I couldn’t open it anymore.
    Few days ago I have lost my paypal account as well because of security thingy.

    Coderxru is a game program so I bet it’s all about that, it’s exactly bought license and program for that game I’m actually playing, problem is for other people it’s working all fine and there’s nothing happening to them.
    I feel really disgusted about processes from malware bytes, most of them are trying to go through opera.exe.

    If I’m wrong, I’m sorry. But if I’m not, I wish to ask You guys what should I do with this situation.





    I’m posting net stats and action about malware bytes.

    Outbound Firewall.-95f46eb7-0cc2-40c0-ab4e-457be30fc20c.jpegOutbound Firewall.-522b61d4-1595-46b3-beb9-9b1ffacdcfcb.jpegOutbound Firewall.-6de19dc5-5045-43e2-8d77-850fe06dda0b.png

    I really appreciate for help.
      My Computer
    Quote Quote

  7. Jacee
    Posts : 1,604
    Win 10 home 20H2 19042.1110
       New #5

    Malwarebytes probably sees it as a "hacker" ......
    Description: l2ph.exe file from CoderXru is part of L2PacketHack.
    I would suggest you post on https://forums.malwarebytes.com/
      My Computers
    Quote Quote

 

  Related Discussions
Windows Firewall-Action Center says Firewall not turned on
in AntiVirus, Firewalls and System Security

I keep getting this security notification in the Action Center saying: "Firewall and Network Protection - Turn on Windows Firewall" (see attached screenshots). 4 of the attached screenshots says/indicate that the firewall is turned on, but the...
Does anyone who is familiar with Windows Firewall with Advanced Security know the minimum set of allowed Firewall Rules required for being able to browse the internet and stream videos, download files etc? Could you specify which Firewall Rules...
Unblock outbound DCC from mIRC?
in Network and Sharing

I can't do DCC send from mIRC, but DCC *receive* works. How do I unblock outbound DCC for mIRC in Windows 10 pro x64?
hi there :) I intend to create an outbound rule in Windows Firewall to block connections certain software might attempt to make. My question is if I can add an IP exception, like blocking all outbound connections with the exception of certain IP...
Disable Windows firewall when running 3rd party firewall?
in AntiVirus, Firewalls and System Security

Quick question - I use Comodo firewall free edition as I like the functionality and interface. Should I disable Windows firewall since I have Comodo running? If so, how do I do that?
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

 © Designer Media Ltd
All times are GMT -5. The time now is 11:10.
Find Us




Windows 10 Forums