firewallCtrl.exe 이건 또 뭐여.

프로그램분석

firewallCtrl.exe 이건 또 뭐여.

프로세스 천국 2012. 11. 30. 04:13

대충 보니 일주일에 한번씩은 이름을 바꿔서 배포하는거 같다.

Netctrlmgr.exe, sysctrl.exe 그리고 이 파일 역시 백신에서 진단을 하지 않는다. 일부는 빼고..

무슨용도로 배포하는지는 모르겠다.

FirewallControl -/- Firewall Contrl System -/- Auto/Running -/- -/- C:\Program Files\Windows NT\firewallCtrl.exe

이 프로그램들에 대한 정보가 있는 곳은 아직까지 단 한군데도 없다.ㅎㅎ

[00-PROCESS]**DaumCleaner -/- C:\Program Files\Daum\Cleaner\DaumCleaner.exe
[00-PROCESS]**DaumCleanerService -/- C:\Program Files\Daum\Cleaner\DaumCleanerService.exe
[00-PROCESS]**EasyPop -/- C:\Users\Administrator\AppData\Local\EasyPop\EasyPop.exe
[00-PROCESS]**infocard -/- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
[00-PROCESS]**natsvc -/- C:\Program Files\NAT Service\natsvc.exe
[00-PROCESS]**NetCtrlMgr -/- C:\Windows\NetCtrlMgr.exe
[00-PROCESS]**PresentationFontCache -/- C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
[00-PROCESS]**userinit -/- C:\WINDOWS\system32\userinit.exe
[00-PROCESS]**UtilZone -/- C:\Program Files\UtilZone\UtilZone.exe
[00-PROCESS]**Viewsystem -/- C:\Program Files\Viewsystem\Viewsystem.exe
[00-PROCESS]**WinPro -/- C:\Program Files\WinPro\WinPro.exe
[00-PROCESS]**winspkv -/- C:\Program Files\Windows Search Pack\winspkv.exe
[00-PROCESS]**wmpnetwk -/- C:\Program Files\Windows Media Player\wmpnetwk.exe
[01-HKCUREG]**DaumCleaner -/- C:\Program Files\Daum\Cleaner\DaumCleaner.exe /T
[01-HKCUREG]**EasyPop -/- C:\Users\Administrator\AppData\Local\EasyPop\EasyPop.exe
[01-HKCUREG]**UtilZone -/- C:\Program Files\UtilZone\UtilZone.exe
[01-HKCUREG]**Viewsystem.exe -/- C:\Program Files\Viewsystem\Viewsystem.exe
[01-HKCUREG]**WinPro -/- C:\Program Files\WinPro\WinPro.exe
[02-HKLMREG]**DaumCleaner -/- C:\Program Files\Daum\Cleaner\DaumCleaner.exe /T
[02-HKLMREG]**EasyPop -/- C:\Users\Administrator\AppData\Local\EasyPop\EasyPop.exe
[02-HKLMREG]**UtilZone -/- C:\Program Files\UtilZone\UtilZone.exe
[02-HKLMREG]**Viewsystem.exe -/- C:\Program Files\Viewsystem\Viewsystem.exe
[02-HKLMREG]**WinPro -/- C:\Program Files\WinPro\WinPro.exe
[03-BHOCLSD]**{1C5099DD-7923-45e8-9680-5F285DC61213} -/- C:\Program Files\UtilZone\UtilZone.dll
[03-BHOCLSD]**{339E5541-DA75-412A-9F9B-3C014BE1050B} -/- C:\Program Files\WinPro\WinPro.dll
[03-BHOCLSD]**{BDDB5A00-D1EB-49D5-B197-72A06DF78AA1} -/- C:\Program Files\Daum\Cleaner\DaumStart.1.5.0.118.dll
[03-BHOCLSD]**{C94FF62F-10A4-4B78-A36C-E46934BDC8F5} -/- C:\Users\Administrator\AppData\Local\EasyPop\WinMgr.dll
[04-TOOLBAR]**{9CA634EF-ECF0-4DD1-B7E2-B9CCFF40BCAF} -/- N.A
[05-SERVICE]**DaumCleanerService -/- C:\Program Files\Daum\Cleaner\DaumCleanerService.exe
[05-SERVICE]**NATService -/- C:\Program Files\NAT Service\natsvc.exe
[05-SERVICE]**NetControl -/- C:\Windows\NetCtrlMgr.exe
[05-SERVICE]**NetTcpPortSharing -/- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
[05-SERVICE]**PerfHost -/- C:\Windows\system32\perfhost.exe
[05-SERVICE]**vmvss -/- C:\Windows\system32\dllhost.exe
[05-SERVICE]**winspksvc -/- C:\Program Files\Windows Search Pack\winspkv.exe