home

albumdownloadprotocolhandler.dll

Windows Live™ Photo Gallery

Microsoft Corporation

This is installed with multiple programs including Windows Live Photo Gallery and Windows Live Essentials. The file has been seen being downloaded from doc-00-7k-docs.googleusercontent.com.
Publisher:
Microsoft Corporation  (signed and verified)

Product:
Windows Live™ Photo Gallery

Description:
Windows Live Album Download Protocol Handler

Version:
15.4.3555.0308_ship.wlx.w4m4 (ship)

MD5:
f70d4a14ab747bac68b559c046d6fbff

SHA-1:
d2fd2de3b39ccaa1cba2e9c1e0ee5e665de76b0e

SHA-256:
62d7706cf0619592c8628be89a4139c15a802d15c1a1fc60dadacfaaf6fc64b6

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)
Whitelisted  (by digital signature)

Analysis date:
4/24/2024 8:57:03 AM UTC  (today)

File size:
41.9 KB (42,864 bytes)

Product version:
15.4.3555.0308

Copyright:
© 2010 Microsoft Corporation. All rights reserved.

Original file name:
WLXAlbumDownloadProtocolHandler.dll

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\Program Files\windows live\photo gallery\albumdownloadprotocolhandler.dll

Digital Signature
Signed by:
Microsoft Corporation

Authority:
Microsoft Corporation

Valid from:
2/21/2011 11:53:12 PM

Valid to:
5/21/2012 11:53:12 PM

Subject:
CN=Microsoft Corporation, OU=MOPR, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

Issuer:
CN=Microsoft Code Signing PCA, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

Serial number:
6101B29B000000000015

File PE Metadata
Compilation timestamp:
3/9/2012 5:32:16 AM

OS version:
6.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
768:s7ONcY9eZNMflo2BkRVlxfl8h9sGNkkZOSleh8E/wHaQb6FjXHUeT:I4/8Z2d6RBCsGWkZOt+E/wHh6FrHUeT

Entry address:
0x606F

Entry point:
8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, D2, 04, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, C7, FE, FF, FF, 59, 5D, C2, 0C, 00, CC, CC, CC, CC, CC, CC, FF, 25, CC, 10, 00, 10, CC, CC, CC, CC, CC, 3B, 0D, 24, 80, 00, 10, 75, 02, F3, C3, E9, 3A, 05, 00, 00, CC, CC, CC, CC, CC, 6A, 14, 68, 40, 6C, 00, 10, E8, 11, 02, 00, 00, 83, 65, FC, 00, FF, 4D, 10, 78, 3A, 8B, 4D, 08, 2B, 4D, 0C, 89, 4D, 08, FF, 55, 14, EB, ED, 8B, 45, EC, 89, 45, E4, 8B, 45, E4, 8B, 00, 89, 45, E0, 8B, 45, E0, 81, 38, 63, 73...
 
[+]

Entropy:
6.3164

Code size:
27 KB (27,648 bytes)

PROTOCOLS Handler
Type of handler:
wlpg

CLSID:
{E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324}

CLSID name:
Album Download IE Asynchronous Pluggable Protocol Interface


The file albumdownloadprotocolhandler.dll has been discovered within the following programs.

Windows Live  by Microsoft Corporation
Windows Live "is a way to extend the Windows user experience".
explore.live.com/windows-live-essentials
9% remove it
Windows Live Essentials  by Microsoft Corporation
Windows Live Essentials is a suite of freeware applications by Microsoft that aims to offer integrated and bundled e-mail, instant messaging, photo-sharing, blog publishing, and security services.
10% remove it
Windows Live Photo Gallery  by Microsoft Corporation
Windows Photo Gallery is a photo editing software that is a part of Microsoft's Windows Essentials software suite. Windows Photo Gallery provides management, tagging, and searching capabilities for digital photos.
windows.microsoft.com/en-us/windows-live/essentials
3% remove it
 
Powered by Should I Remove It?

The file albumdownloadprotocolhandler.dll has been seen being distributed by the following URL.

https://doc-00-7k-docs.googleusercontent.com/docs/securesc/ctq773d9956sb7lmcau0kfm2u9kbodpe/vbjv89ir2hvasvb236ffank0eim7qpq3/1449237600000/.../10042993650064100152/0BylO4MUvwU9mSzZVbkNIbkJmU2s?e=download

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.