ndshellext.dll

ndshellext 动态链接库

TaoBao(china) Software Co., Ltd

It is registered as a context menu handler (displays a menu when right-clicked in Explorer) named “.YunPanExtMenu”.
Publisher:
浙江天猫技术有限公司  (signed by TaoBao(china) Software Co., Ltd)

Product:
ndshellext 动态链接库

Version:
1, 3, 1

MD5:
9390b2c4ae2a6d5d6a204602a4fc5a16

SHA-1:
8f3f9f00d393d92377459f84ec7d590bd3227726

SHA-256:
414b693008c83d8fe5d6b7b376c100f17cfbf6c3fc3be78c259479548f278329

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/23/2024 11:39:48 PM UTC  (a few moments ago)

File size:
1.8 MB (1,886,024 bytes)

Product version:
1, 3, 1

Copyright:
Copyright(C): 2011-2013 TMALL.COM. All Rights Reserved.

Original file name:
ndshellext.dll

File type:
Dynamic link library (Win64 DLL)

Common path:
C:\ProgramData\alidrive\ndshellext.dll

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
4/23/2012 8:00:00 AM

Valid to:
6/23/2014 7:59:59 AM

Subject:
CN="TaoBao(china) Software Co., Ltd", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="TaoBao(china) Software Co., Ltd", L=HangZhou, S=ZheJiang, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
476AB70C913F23091F0B21B7416C5242

Registration
CLSIDs:
{009A41DB-3978-49FE-A522-A78BF00B013A}, {C47483AA-5B4A-4CF7-AB40-C3C6743B94A0}, {DC098570-10AF-4CA8-9821-EC2F44E8B0BA}, {E8170AAE-A9DA-46F4-9E55-460BFD350B98}

ProgIDs:
ndshellext.IconOverlayIgnore.1, ndshellext.IconOverlaySyncing.1, ndshellext.IconOverlaySyncDone.1

COM registered:
Yes

File PE Metadata
Compilation timestamp:
11/28/2013 5:19:18 PM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
9.0

Entry address:
0xB002C

Entry point:
48, 89, 5C, 24, 08, 48, 89, 74, 24, 10, 57, 48, 83, EC, 20, 49, 8B, F8, 8B, DA, 48, 8B, F1, 83, FA, 01, 75, 05, E8, 03, 03, 00, 00, 4C, 8B, C7, 8B, D3, 48, 8B, CE, 48, 8B, 5C, 24, 30, 48, 8B, 74, 24, 38, 48, 83, C4, 20, 5F, E9, 8B, FE, FF, FF, CC, CC, CC, 48, 89, 4C, 24, 08, 48, 81, EC, 88, 00, 00, 00, 48, 8D, 0D, E1, 93, 02, 00, FF, 15, FB, 31, 00, 00, 4C, 8B, 1D, CC, 94, 02, 00, 4C, 89, 5C, 24, 58, 45, 33, C0, 48, 8D, 54, 24, 60, 48, 8B, 4C, 24, 58, E8, 93, 04, 00, 00, 48, 89, 44, 24, 50, 48, 83, 7C, 24...
 
[+]

Entropy:
6.9950

Code size:
709.5 KB (726,528 bytes)

Context Menu Handler
Display name:
.YunPanExtMenu

CLSID:
{E8170AAE-A9DA-46F4-9E55-460BFD350B98}

CLSID name:
YunPanShlExt Class


Scan ndshellext.dll - Powered by Reason Core Security