ISOShell.DLL

ISOShell

SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD.

The library ISOShell.DLL has been detected as malware by 3 anti-virus scanners.
Publisher:
EZB Systems, Inc.  (signed by SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD.)

Product:
ISOShell

Version:
1, 0, 0, 2

MD5:
f6755768d9c9779242860fe79ff00d7d

SHA-1:
0e57ca5831d598817ca50f2b2e38c902172a6220

SHA-256:
61d9714a5c89f9690a30ea4255515c586d85f5f6ac789592081a330085e9e239

Scanner detections:
3 / 68

Status:
Malware

Analysis date:
12/25/2024 5:03:22 AM UTC  (today)

Scan engine
Detection
Engine version

ESET NOD32
Win32/Floxif.H virus
6.3.12010.0

F-Prot
W32/Floxif.B
4.6.5.141

F-Secure
Win32.Floxif.A
5.15.154

File size:
135.8 KB (139,095 bytes)

Product version:
1, 0, 0, 2

Copyright:
Copyright (c) 2006-2007 EZB Systems, Inc.

Original file name:
ISOShell.DLL

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\Program Files\ultraiso\isoshell.dll

Digital Signature
Authority:
GlobalSign nv-sa

Valid from:
1/30/2009 11:29:58 AM

Valid to:
1/30/2010 11:29:58 AM

Subject:
E=cert@ezbsystems.com, CN=SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD., O=SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD., C=CN

Issuer:
CN=GlobalSign ObjectSign CA, OU=ObjectSign CA, O=GlobalSign nv-sa, C=BE

Serial number:
0100000000011F27455749

Registration
CLSID:
{AD392E40-428C-459F-961E-9B147782D099}

ProgID:
ISOShell.UIContextMenu.1

COM registered:
Yes

File PE Metadata
Compilation timestamp:
7/17/2007 4:53:08 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

Entry address:
0x40FF

Entry point:
E9, 54, F6, FF, FF, 74, 24, 0C, FF, 74, 24, 0C, E8, D7, D5, FF, FF, C2, 0C, 00, FF, 15, A8, 70, 00, 10, 33, C0, C3, A1, F0, A6, 00, 10, 56, 85, C0, 75, 13, FF, 74, 24, 08, 50, FF, 35, 90, A6, 00, 10, FF, 15, 34, 70, 00, 10, 5E, C3, 8B, 0D, F4, A6, 00, 10, 8B, 15, EC, A6, 00, 10, FF, 05, F4, A6, 00, 10, 23, D1, 8B, 34, 90, 8B, 44, 24, 08, 83, C0, 08, 50, 6A, 00, 56, FF, 15, 34, 70, 00, 10, 85, C0, 74, 07, 89, 30, 83, C0, 08, 5E, C3, 33, C0, 5E, C3, 8B, 44, 24, 04, 33, C9, 3B, C1, 75, 0B, FF, 74, 24, 08, E8...
 
[+]

Packer / compiler:
tElock 0.99 - 1.0 private

Code size:
24 KB (24,576 bytes)

Approved Shell Extension
Name:
UltraISO

CLSID:
{AD392E40-428C-459F-961E-9B147782D099}

CLSID name:
UIContextMenu Class


Remove ISOShell.DLL - Powered by Reason Core Security