home

contmenu.dll

msnshell.com

Publisher:
msnshell.com  (signed and verified)

MD5:
34f1062ed9b4d9e1233b89c1afed3d34

SHA-1:
4587638f0ceaba2bea5b929d24ffc969972e9fa0

SHA-256:
4004693a8f09768525373c251f84a79635c6fac1e81d3a1bf567fc29d88e20ef

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/26/2024 11:37:56 AM UTC  (today)

File size:
162.3 KB (166,216 bytes)

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\Windows\System32\contmenu.dll

Digital Signature
Signed by:
msnshell.com

Authority:
Wotone Communications, Inc.

Valid from:
12/14/2006 8:00:00 AM

Valid to:
12/15/2007 7:59:59 AM

Subject:
CN=msnshell.com, OU=msnshell.com, O=msnshell.com, L=广州, S=广东, C=CN

Issuer:
CN=WoTrust Code Signing Authority, O="Wotone Communications, Inc.", C=US

Serial number:
188B7AFF6CAC834752B82304EF52095D

Registration
CLSID:
{09DEC9CF-1DC5-4BAC-BEAB-99FE16DECE9A}

COM registered:
Yes

File PE Metadata
Compilation timestamp:
6/20/1992 6:22:17 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
3072:avHnMlhH4U4HagSSA5/UbsgUCZ/bcY6mWT/hZDnVbE6JryvhN+qrcHfV6ZWj:avMlhYUOVA58r7hcJrJ+JN+7

Entry address:
0x213F8

Entry point:
55, 8B, EC, 83, C4, C4, B8, B8, 12, 42, 00, E8, 08, 4C, FE, FF, E8, 73, 29, FE, FF, 8D, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
6.5873

Developed / compiled with:
Microsoft Visual C++

Code size:
129.5 KB (132,608 bytes)

Approved Shell Extension
Name:
MSNShell

CLSID:
{09DEC9CF-1DC5-4BAC-BEAB-99FE16DECE9A}

CLSID name:
MSNShell Context Menu Shell Extension


Scan contmenu.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.