Should I block it?

No, this file is 100% safe to run.

Additional versions

6.1.7601.17514 (win7sp1_rtm.101119-1850)	99.90%
6.00.2900.5622 (xpsp_sp3_qfe.080617-1340)	0.10%

Relationships

Parent process

svchost.exe (Host Process for Windows Services by Microsoft Corporation)

Related files

SHELL32.dll

DLL comum do Shell do Windows by Microsoft

Remove SHELL32.dll

Version:	6.1.7601.17514 (win7sp1_rtm.101119-1850)
MD5:	427015d56df17241f634611557146c57
SHA1:	3a85d2cfb5b3c7b35282d9ae9268ca1b57aec555

Overview

shell32.dll executes as a process with the local user's privileges typically within the context of its parent svchost.exe (Host Process for Windows Services by Microsoft Corporation). It configures an autoplay handler withing explorer.exe named MSCDBurningOnArrival that will launch the program automatically. This version is designed to run on Windows 7 and is compiled as a 64 bit program.

Details

File name:	shell32.dll
Publisher:	Microsoft Corporation
Product name:	DLL comum do Shell do Windows
Description:	Sistema operacional Microsoft® Windows®
Typical file path:	C:\Windows\System32\shell32.dll
File version:	6.1.7601.17514 (win7sp1_rtm.101119-1850)
Product version:	6.1.7601.17514
Size:	13.52 MB (14,175,744 bytes)
Build date:	3/24/2014 11:41 PM
Digital DNA
File packed:	No
.NET CLR:	No

More details

Behaviors

Shell execute hooks

{AEB6717E-7E19-11d0-97EE-00C04FD91972}

Shell open commands

themefile
msstylesfile

Context menu handlers

Located in '*\shellex\ContextMenuHandlers'

Name: 'New'
CLSID: {a2a9545d-a0c2-42b4-9708-a0b2badd77c8}
CLSID: {90AA3A4E-1CBA-4233-B8BB-535773D48449}
Name: 'Open With EncryptionMenu'
Name: 'Open With'

Search handlers

ShellSearch

Autoplay handlers

Runs under the registry key 'SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers'

Handler name 'MSCDBurningOnArrival'

Copy hook handlers

FileSystem

Resource utilization

(Note: statistics below are averages based on a minimum sample size of 200 unique participants)

Averages

CPU
Total CPU:	0.00029436%	0.028634%
Kernel CPU:	0.00025383%	0.013761%
User CPU:	0.00004052%	0.014873%
Kernel CPU time:	156,233 ms/min	100,923,805ms/min
CPU cycles:	20,662/sec	17,470,203/sec
Context switches:	9/sec	284/sec
Memory
Private memory:	3.67 MB	21.59 MB
Private (maximum):	5.96 MB
Private (minimum):	3.6 MB
Non-paged memory:	3.67 MB	21.59 MB
Virtual memory:	66.24 MB	140.96 MB
Virtual memory (peak):	68.8 MB	169.69 MB
Working set:	3.84 MB	18.61 MB
Working set (peak):	13.64 MB	37.95 MB
Page faults:	3,750/min	2,039/min
I/O
I/O other transfer:	0 Bytes/sec	448.09 KB/min
I/O other operations:	1/sec	1,671/min
Resource allocations
Threads:	4	12
Handles:	91	600
GUI GDI count:	15	103
GUI GDI peak:	16	142
GUI USER count:	6	49
GUI USER peak:	12	71

Process properties

Integrety level:	Medium
Platform:	64-bit
Command lines:	C:\Windows\System32\rundll32.exe shell32.dll,shcreatelocalserverrundll {995c996e-d918-4a8c-a302-45719a6f4ea7} -embedding "C:\Windows\System32\rundll32.exe" shell32.dll,control_rundll mmsys.cpl
Owner:	User
Parent process:	svchost.exe (Host Process for Windows Services by Microsoft Corporation)

Threads

Averages

ntdll.dll
Total CPU:	0.00719411%	0.272967%
Kernel CPU:	0.00000000%	0.107585%
User CPU:	0.00719411%	0.165382%
CPU cycles:	28,199/sec	5,741,424/sec
Memory:	1.66 MB	1.16 MB
rundll32.exe (Windows host process (Rundll32) by Microsoft)
Total CPU:	0.00157983%
Kernel CPU:	0.00156630%
User CPU:	0.00001353%
CPU cycles:	233,884/sec
Context switches:	2/sec
Memory:	60 KB

Distribution by Windows OS

OS version	distribution
Windows 7 Home Premium	70.50%
Windows 7 Ultimate	17.50%
Windows 7 Professional	12.00%

Distribution by country

United States installs about 69.50% of DLL comum do Shell do Windows.

Distribution by PC manufacturer

PC Manufacturer	distribution
Toshiba	28.80%
Hewlett-Packard	28.00%
Dell	20.00%
ASUS	10.40%
Alienware	4.80%
Samsung	4.80%
Acer	3.20%

Remove Adware and Spyware Programs, FREE Download!