|
user32.dll overview
The file user32.dll is contained in the following software- Windows XP Home Edition, Deutsch More information
Version: 5.1.2600.1255
Filedate: 2003-09-25 18:52:01
Filesize: 561.664 bytes
Filepath: C:\WINDOWS\system32\user32.dll
Show user32.dll details - Windows XP Home Edition, Deutsch More information
Version: 5.1.2600.1134
Filedate: 2002-11-22 20:28:16
Filesize: 530.432 bytes
Filepath: C:\WINDOWS\$NtUninstallKB824141$\user32.dll
Show user32.dll details - Windows XP Home Edition, Deutsch More information
Version: 5.1.2600.1106
Filedate: 2002-08-29 14:00:00
Filesize: 561.664 bytes
Filepath: C:\WINDOWS\$NtUninstallKB826939$\user32.dll
Show user32.dll details
user32.dll was found in the following malware reports:
|
|
|---|
JS.Rootlet.A@m |
|---|
Technical details
...Mapi32.dll.js User32.dll.js Wsock32.dll.js...
Source: http://securityresponse.symantec.com/avcenter/venc/data/js.rootlet.a@m.html |
|---|
Ceydem.6750.Worm |
|---|
Technical details
...The worm copies itself to %windir%CeyDem.com, %windir%WinuserUser32.dll, and %windir%Winuser2Sexy_jpg.com....
Source: http://securityresponse.symantec.com/avcenter/venc/data/ceydem.6750.worm.html |
|---|
W32.Simile |
|---|
Technical details
...the host file (the file that is infected with the virus) imports the Windows file User32.dll, then on the 17th of March, June, September, or December, a message is displayed....
Source: http://securityresponse.symantec.com/avcenter/venc/data/w32.simile.html |
|---|
W95.Sleepyhead.5632 |
|---|
Technical details
...for Kernel32.dll functions. Then it loads User32.dll and WSock32.dll libraries and searches for functions in them....
Source: http://securityresponse.symantec.com/avcenter/venc/data/w95.sleepyhead.5632.html |
|---|
Symantec Vulnerability Assessment 1.0 Vulnerability Updates |
|---|
Variable Buffer Overflow Vulnerability 8827 Host Microsoft ListBox/ComboBox Control User32.dll Function Buffer Overrun Vulnerability 8828 Host Microsoft Windows Help And Support...
Source: http://securityresponse.symantec.com/avcenter/security/Content/2003.11.06.html |
|---|
Symantec Vulnerability Assessment 1.0 Vulnerability Updates |
|---|
Engine Remote Code Execution Vulnerability 8827 Microsoft ListBox/ComboBox Control User32.dll Function Buffer Overrun Vulnerability 10113 Microsoft Negotiate SSP Remote Buffer...
Source: http://securityresponse.symantec.com/avcenter/security/Content/2004.06.30a.html |
|---|
CodeRed II |
|---|
Technical details
...closesocket, and WSAGetLastError. From User32.dll, it gets ExitWindowsEx, which the worm uses to reboot the system....
Source: http://securityresponse.symantec.com/avcenter/venc/data/codered.ii.html |
|---|
CodeRed.F |
|---|
Technical details
...closesocket, and WSAGetLastError. From User32.dll, the worm gets ExitWindowsEx, which it uses to restart the system....
......
Source: http://securityresponse.symantec.com/avcenter/venc/data/codered.f.html |
|---|
|
|
![[filename.info logo]](/img/logo.png){kind=logo}
![[cn user32.dll]](/img/nix.gif){kind=small}
