shell32.dll
Windows Shell Common Dll by Microsoft Corporation (Signed)
Version: | 6.2.9200.16384 (win8_rtm.120725-1247) |
MD5: | 19e82140190d8dc198c27296abff4912 |
SHA1: | 7a8f7aad930eae1264890b276bd10e5a5a5bab31 |
SHA256: | 41b5eb7d846e31192f4299170a282ae19757cadb3cfc1850d65b15b448140e7f |
This is a Windows system installed file with Windows File Protection (WFP) enabled.
What is shell32.dll?
The Windows common shell DLL files (such as Shell32) are operating system (OS) files that contain vital information about the OS and your PC's hardware configuration. The Windows shell is the main graphical user interface in Microsoft Windows, today hosted by Windows Explorer. The Windows shell includes well-known Windows components such as the Taskbar and the Start menu.
About shell32.dll (from Microsoft Corporation)
“The Windows shell desktop is an array of icons, rendered behind all open windows and taking up the space left by the taskbar.”
Overview
shell32.dll executes as a process with the local user's privileges. It configures an autoplay handler withing explorer.exe named MSCDBurningOnArrival that will launch the program automatically. The file is digitally signed by Microsoft Corporation. This version is installed on Windows 8 and is compiled as a 32 bit program.
Details
File name: | shell32.dll |
Publisher: | Microsoft Corporation |
Product name: | Windows Shell Common Dll |
Description: | Microsoft® Windows® Operating System |
Typical file path: | C:\Windows\System32\shell32.dll |
Original name: | SHELL32.DLL.MUI |
File version: | 6.2.9200.16384 (win8_rtm.120725-1247) |
Product version: | 6.2.9200.16384 |
Size: | 16.75 MB (17,559,552 bytes) |
Certificate |
Issued to: | Microsoft Corporation |
Authority (CA): | Microsoft Corporation |
Expiration date: | Tuesday, July 9, 2013 |
Digital DNA |
PE subsystem: | Windows GUI |
Entropy: | 6.247305 |
File packed: | No |
Code language: | Microsoft Visual C++ |
.NET CLR: | No |
More details
Behaviors
Shell open commands
Context menu handlers
Located in '*\shellex\ContextMenuHandlers'
- CLSID: {645FF040-5081-101B-9F08-00AA002F954E}
- Name: 'New'
- CLSID: {a2a9545d-a0c2-42b4-9708-a0b2badd77c8}
- CLSID: {90AA3A4E-1CBA-4233-B8BB-535773D48449}
- Name: 'Open With EncryptionMenu'
- Name: 'Open With'
Search handlers
Autoplay handlers
Runs under the registry key 'SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers'
- Handler name 'MSCDBurningOnArrival'
Copy hook handlers
Approved shell extensions
Located in the registry at 'SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved'
- 'Window TXT Preview Handler' with CLSID {1531d583-8375-4d3f-b5fb-d23bbd169f22}
- 'Microsoft Windows RTF Preview Handler' with CLSID {a42c2ccb-67d3-46fa-abe6-7d2f3488c7a3}
- 'Client application shell extension' with CLSID {25585dc7-4da0-438d-ad04-e42c8d2d64b9}
- 'Control Panel' with CLSID {21ec2020-3aea-1069-a2dd-08002b30309d}
- 'Programs Folder and Fast Items' with CLSID {865e5e76-ad83-4dca-a109-50dc2113ce9a}
- '.cpl, .dll, .exe, .ocx, .rll or .sys files' with CLSID {66742402-F9B9-11D1-A202-0000F81FEDEE}
- '.fon, .otf, .ttc or .ttf files' with CLSID {0AFCCBA6-BF90-4A4E-8482-0AC960981F5B}
- 'Shortcut' with CLSID {00021401-0000-0000-C000-000000000046}
- 'Layout Folder' with CLSID {328B0346-7EAF-4BBE-A479-7CB88A095F5B}
- 'Command Folder' with CLSID {437ff9c0-a07f-4fa0-af80-84b6c6440a16}
- 'Search Folders' with CLSID {b2952b16-0e07-4e5a-b993-58c52cb94cae}
- 'Explorer Browser' with CLSID {71f96385-ddd6-48d3-a0c1-ae06e8b055fb}
- 'Tree property value folder' with CLSID {708e1662-b832-42a8-bbe1-0a77121e3908}
- 'Summary Info Thumbnail handler (DOCFILES)' with CLSID {9DBD2C50-62AD-11d0-B806-00C04FD706EC}
- 'Alphabetical Categorizer' with CLSID {3c2654c6-7372-4f6b-b310-55d6128f49d2}
Internet Explorer web browsers
Located in the registry at 'SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser'
- CLSID: {0E5CBF21-D15F-11D0-8301-00AA005B4383}
Resource utilization
(Note: statistics below are averages based on a minimum sample size of 200 unique participants)
Averages
CPU |
Total CPU: | 0.14835119% | |
Kernel CPU: | 0.09331768% | |
User CPU: | 0.05503351% | |
Memory |
Private (maximum): | 7.25 MB | |
Private (minimum): | 7.25 MB | |
Process properties
Platform: | 32-bit |
Command line: | C:\Windows\System32\rundll32.exe shell32.dll,control_rundll ntvdmcpl.dll,,/originalapC:"C:\users\user\appdata\local\temp\rom2ab~1.exe" |
Owner: | User |
Distribution by Windows OS
OS version | distribution |
Windows 8.1 Pro |
35.00% |
|
Windows 8.1 |
28.00% |
|
Windows 8.1 Single Language |
15.00% |
|
Windows 7 Ultimate |
12.00% |
|
Windows 8.1 Pro with Media Center |
5.00% |
|
Windows 8.1 N |
5.00% |
|
Distribution by country
United States installs about 33.00% of Windows Shell Common Dll.
Distribution by PC manufacturer
PC Manufacturer | distribution |
ASUS |
37.04% |
|
Acer |
20.37% |
|
Dell |
14.81% |
|
Hewlett-Packard |
13.89% |
|
Lenovo |
9.26% |
|
Alienware |
4.63% |
|