DDRAWCOM.DLL – Trojan OnLineGames

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

DDRAWCOM.DLL – Trojan OnLineGames removal

FileMD5Virus Alias
DDRAWCOM.DLL 95d92c2ea0ff3d398eac86ccef9a42ec Trojan OnLineGames
DDRAWCOM.DLL 95d92c2ea0ff3d398eac86ccef9a42ec Trojan PAK_Generic
DDRAWCOM.DLL 95d92c2ea0ff3d398eac86ccef9a42ec Trojan Agent

DDRAWCOM.DLL size: 29184 bytes
DDRAWCOM.DLL hash: 95D92C2EA0FF3D398EAC86CCEF9A42EC

Created files:

C:\casino\ho788\ZH\game.config
C:\casino\ho788\ZH\game.exe
C:\casino\ho788\ZH\gameW.exe
C:\casino\ho788\ZH\jawt.dll
C:\casino\ho788\ZH\jdk.config
C:\casino\ho788\ZH\update.jar
C:\casino\jre\bin\ActPanel.dll
C:\casino\jre\bin\awt.dll
C:\casino\jre\bin\client\jvm.dll
C:\casino\jre\bin\cmm.dll
C:\casino\jre\bin\dcpr.dll
C:\casino\jre\bin\DDrawCom.dll
C:\casino\jre\bin\dt_shmem.dll
C:\casino\jre\bin\dt_socket.dll
C:\casino\jre\bin\eula.dll
C:\casino\jre\bin\fontmanager.dll
C:\casino\jre\bin\hpi.dll
C:\casino\jre\bin\hprof.dll
C:\casino\jre\bin\ioser12.dll
C:\casino\jre\bin\jaas_nt.dll
C:\casino\jre\bin\java.dll
C:\casino\jre\bin\java.exe
C:\casino\jre\bin\javaw.exe
C:\casino\jre\bin\jawin.dll
C:\casino\jre\bin\jawt.dll
C:\casino\jre\bin\jcov.dll
C:\casino\jre\bin\JdbcOdbc.dll
C:\casino\jre\bin\jdwp.dll
C:\casino\jre\bin\jpeg.dll
C:\casino\jre\bin\jpicom32.dll
C:\casino\jre\bin\jpicpl32.cpl
C:\casino\jre\bin\jpicpl32.exe
C:\casino\jre\bin\jpiexp32.dll
C:\casino\jre\bin\jpins32.dll
C:\casino\jre\bin\jpishare.dll
C:\casino\jre\bin\jsound.dll
C:\casino\jre\bin\keytool.exe
C:\casino\jre\bin\kinit.exe
C:\casino\jre\bin\klist.exe
C:\casino\jre\bin\ktab.exe
C:\casino\jre\bin\msvcrt.dll
C:\casino\jre\bin\net.dll
C:\casino\jre\bin\nio.dll
C:\casino\jre\bin\NPJava11.dll
C:\casino\jre\bin\NPJava12.dll
C:\casino\jre\bin\NPJava13.dll
C:\casino\jre\bin\NPJava32.dll
C:\casino\jre\bin\NPJPI141_02.dll
C:\casino\jre\bin\NPOJI610.dll
C:\casino\jre\bin\orbd.exe
C:\casino\jre\bin\policytool.exe
C:\casino\jre\bin\rmi.dll
C:\casino\jre\bin\rmid.exe
C:\casino\jre\bin\rmiregistry.exe
C:\casino\jre\bin\servertool.exe
C:\casino\jre\bin\silib.dll
C:\casino\jre\bin\SocketCom.dll
C:\casino\jre\bin\tnameserv.exe
C:\casino\jre\bin\verify.dll
C:\casino\jre\bin\w2k_lsa_auth.dll
C:\casino\jre\bin\win32com.dll
C:\casino\jre\bin\X264Com.dll
C:\casino\jre\bin\zip.dll
C:\casino\jre\lib\audio\soundbank.gm
C:\casino\jre\lib\charsets.jar
C:\casino\jre\lib\cmm\CIEXYZ.pf
C:\casino\jre\lib\cmm\GRAY.pf
C:\casino\jre\lib\cmm\LINEAR_RGB.pf
C:\casino\jre\lib\cmm\PYCC.pf
C:\casino\jre\lib\cmm\sRGB.pf
C:\casino\jre\lib\content-types.properties
C:\casino\jre\lib\ext\dnsns.jar
C:\casino\jre\lib\ext\ldapsec.jar
C:\casino\jre\lib\ext\localedata.jar
C:\casino\jre\lib\ext\sound.jar
C:\casino\jre\lib\ext\sunjce_provider.jar
C:\casino\jre\lib\flavormap.properties
C:\casino\jre\lib\font.properties
C:\casino\jre\lib\font.properties.CP1250
C:\casino\jre\lib\font.properties.CP1251
C:\casino\jre\lib\font.properties.CP1253
C:\casino\jre\lib\font.properties.CP1254
C:\casino\jre\lib\font.properties.CP1256
C:\casino\jre\lib\font.properties.CP1257
C:\casino\jre\lib\font.properties.GB18030
C:\casino\jre\lib\font.properties.hi
C:\casino\jre\lib\font.properties.iw
C:\casino\jre\lib\font.properties.ja
C:\casino\jre\lib\font.properties.ko
C:\casino\jre\lib\font.properties.MS950_HKSCS
C:\casino\jre\lib\font.properties.ru
C:\casino\jre\lib\font.properties.th
C:\casino\jre\lib\font.properties.zh
C:\casino\jre\lib\font.properties.zh.98
C:\casino\jre\lib\font.properties.zh_TW
C:\casino\jre\lib\font.properties.zh_TW.95
C:\casino\jre\lib\font.properties.zh_TW_MS950_HKSCS
C:\casino\jre\lib\im\indicim.jar
C:\casino\jre\lib\images\cursors\cursors.properties
C:\casino\jre\lib\javax.comm.properties
C:\casino\jre\lib\jce.jar
C:\casino\jre\lib\jsse.jar
C:\casino\jre\lib\logging.properties
C:\casino\jre\lib\psfont.properties.ja
C:\casino\jre\lib\psfontj2d.properties
C:\casino\jre\lib\rt.jar
C:\casino\jre\lib\security\cacerts
C:\casino\jre\lib\security\java.policy
C:\casino\jre\lib\security\java.security
C:\casino\jre\lib\security\local_policy.jar
C:\casino\jre\lib\security\US_export_policy.jar
C:\casino\jre\lib\sunrsasign.jar
C:\casino\jre\lib\tzmappings
C:\casino\jre\lib\zi\Asia\Aden
C:\casino\jre\lib\zi\Asia\Almaty
C:\casino\jre\lib\zi\Asia\Amman
C:\casino\jre\lib\zi\Asia\Anadyr
C:\casino\jre\lib\zi\Asia\Aqtau
C:\casino\jre\lib\zi\Asia\Aqtobe
C:\casino\jre\lib\zi\Asia\Ashgabat
C:\casino\jre\lib\zi\Asia\Baghdad
C:\casino\jre\lib\zi\Asia\Bahrain
C:\casino\jre\lib\zi\Asia\Baku
C:\casino\jre\lib\zi\Asia\Bangkok
C:\casino\jre\lib\zi\Asia\Beirut
C:\casino\jre\lib\zi\Asia\Bishkek
C:\casino\jre\lib\zi\Asia\Brunei
C:\casino\jre\lib\zi\Asia\Calcutta
C:\casino\jre\lib\zi\Asia\Choibalsan
C:\casino\jre\lib\zi\Asia\Chongqing
C:\casino\jre\lib\zi\Asia\Colombo
C:\casino\jre\lib\zi\Asia\Damascus
C:\casino\jre\lib\zi\Asia\Dhaka
C:\casino\jre\lib\zi\Asia\Dili
C:\casino\jre\lib\zi\Asia\Dubai
C:\casino\jre\lib\zi\Asia\Dushanbe
C:\casino\jre\lib\zi\Asia\Gaza
C:\casino\jre\lib\zi\Asia\Harbin
C:\casino\jre\lib\zi\Asia\Hong_Kong
C:\casino\jre\lib\zi\Asia\Hovd
C:\casino\jre\lib\zi\Asia\Irkutsk
C:\casino\jre\lib\zi\Asia\Jakarta
C:\casino\jre\lib\zi\Asia\Jayapura
C:\casino\jre\lib\zi\Asia\Jerusalem
C:\casino\jre\lib\zi\Asia\Kabul
C:\casino\jre\lib\zi\Asia\Kamchatka
C:\casino\jre\lib\zi\Asia\Karachi
C:\casino\jre\lib\zi\Asia\Kashgar
C:\casino\jre\lib\zi\Asia\Katmandu
C:\casino\jre\lib\zi\Asia\Krasnoyarsk
C:\casino\jre\lib\zi\Asia\Kuala_Lumpur
C:\casino\jre\lib\zi\Asia\Kuching
C:\casino\jre\lib\zi\Asia\Kuwait
C:\casino\jre\lib\zi\Asia\Macau
C:\casino\jre\lib\zi\Asia\Magadan
C:\casino\jre\lib\zi\Asia\Makassar
C:\casino\jre\lib\zi\Asia\Manila
C:\casino\jre\lib\zi\Asia\Muscat
C:\casino\jre\lib\zi\Asia\Nicosia
C:\casino\jre\lib\zi\Asia\Novosibirsk
C:\casino\jre\lib\zi\Asia\Omsk
C:\casino\jre\lib\zi\Asia\Oral
C:\casino\jre\lib\zi\Asia\Phnom_Penh
C:\casino\jre\lib\zi\Asia\Pontianak
C:\casino\jre\lib\zi\Asia\Pyongyang
C:\casino\jre\lib\zi\Asia\Qatar
C:\casino\jre\lib\zi\Asia\Qyzylorda
C:\casino\jre\lib\zi\Asia\Rangoon
C:\casino\jre\lib\zi\Asia\Riyadh
C:\casino\jre\lib\zi\Asia\Riyadh87
C:\casino\jre\lib\zi\Asia\Riyadh88
C:\casino\jre\lib\zi\Asia\Riyadh89
C:\casino\jre\lib\zi\Asia\Saigon
C:\casino\jre\lib\zi\Asia\Sakhalin
C:\casino\jre\lib\zi\Asia\Samarkand
C:\casino\jre\lib\zi\Asia\Seoul
C:\casino\jre\lib\zi\Asia\Shanghai
C:\casino\jre\lib\zi\Asia\Singapore
C:\casino\jre\lib\zi\Asia\Taipei
C:\casino\jre\lib\zi\Asia\Tashkent
C:\casino\jre\lib\zi\Asia\Tbilisi
C:\casino\jre\lib\zi\Asia\Tehran
C:\casino\jre\lib\zi\Asia\Thimphu
C:\casino\jre\lib\zi\Asia\Tokyo
C:\casino\jre\lib\zi\Asia\Ulaanbaatar
C:\casino\jre\lib\zi\Asia\Urumqi
C:\casino\jre\lib\zi\Asia\Vientiane
C:\casino\jre\lib\zi\Asia\Vladivostok
C:\casino\jre\lib\zi\Asia\Yakutsk
C:\casino\jre\lib\zi\Asia\Yekaterinburg
C:\casino\jre\lib\zi\Asia\Yerevan
C:\casino\jre\lib\zi\CET
C:\casino\jre\lib\zi\GMT
C:\casino\jre\lib\zi\MET
C:\casino\jre\lib\zi\WET
C:\casino\jre\lib\zi\ZoneInfoMappings

Detected by UnHackMe:

DDRAWCOM.DLL
Default location: C:\CASINO\JRE\BIN\DDRAWCOM.DLL

Dropper information:
MD5: 117638b0b194c79717371bcc7df8e70a
File size: 13911317 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images