home

windows8firewallcontrol.exe

Vista-Wall extended control for Windows 8, Windows 7 and Vista Firewall

ABITEL-DATA

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘Windows8FirewallControl’.
Publisher:
Sphinx Software  (signed by ABITEL-DATA)

Product:
Vista-Wall extended control for Windows 8, Windows 7 and Vista Firewall

Description:
Windows 8 Firewall Control

Version:
6.5.77.47

MD5:
8428007691e24b8b1b1ac98e6fd7d3e3

SHA-1:
d11aa31c32f2eb13928c23ece5daa5f109dc86b9

SHA-256:
da9a1a622abdd58e6b910ac4dd2c08b40f767d77ed9b31811fd5311dbe59b28f

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/23/2024 8:00:31 PM UTC  (today)

File size:
952.9 KB (975,808 bytes)

Product version:
6.5.77.47

Copyright:
(c) Sphinx Software

Original file name:
Vista-Wall.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\windows8firewallcontrol\windows8firewallcontrol.exe

Digital Signature
Signed by:
ABITEL-DATA

Authority:
COMODO CA Limited

Valid from:
1/22/2014 1:00:00 AM

Valid to:
1/23/2015 12:59:59 AM

Subject:
CN=ABITEL-DATA, O=ABITEL-DATA, STREET=Teterinsky lane 16 building 1, L=Moscow, S=Moscow, PostalCode=109004, C=RU

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00EBFC04E5726C0411D580FEE74426E7BB

File PE Metadata
Compilation timestamp:
12/5/2014 12:30:27 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
12288:dCVi+xYlYvL/9EPY2sqlIDoZ/4582UzfDWzd8JL1Y7:Oi+xYl8/9EwelZZQfUzizd8h12

Entry address:
0x49DA4

Entry point:
E8, 90, 55, 00, 00, E9, 17, FE, FF, FF, 8B, C1, 83, 60, 04, 00, 83, 60, 08, 00, C7, 00, FC, F9, 46, 00, C3, 53, 8B, 5C, 24, 08, 56, 57, 8B, F9, C7, 07, FC, F9, 46, 00, 8B, 03, 85, C0, 74, 26, 50, E8, 96, 37, 00, 00, 8B, F0, 46, 56, E8, D6, 2C, 00, 00, 85, C0, 59, 59, 89, 47, 04, 74, 12, FF, 33, 56, 50, E8, D8, 55, 00, 00, 83, C4, 0C, EB, 04, 83, 67, 04, 00, C7, 47, 08, 01, 00, 00, 00, 8B, C7, 5F, 5E, 5B, C2, 04, 00, 53, 8B, 5C, 24, 08, 56, 8B, F1, C7, 06, FC, F9, 46, 00, 8B, 43, 08, 89, 46, 08, 85, C0, 8B...
 
[+]

Code size:
404 KB (413,696 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
Windows8FirewallControl

Command:
C:\Program Files\windows8firewallcontrol\windows8firewallcontrol.exe


Scan windows8firewallcontrol.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.