I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:
Free Download Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.
VMWARE-VMX.EXE – Trojan Agent removal
| File | MD5 | Virus Alias |
|---|---|---|
| VMWARE-VMX.EXE | 0345b4e9d39fd975433bcd0b6f21a72e | Trojan Agent |
| VMWARE-VMX.EXE | 0345b4e9d39fd975433bcd0b6f21a72e | Trojan Generic |
| VMWARE-VMX.EXE | 0345b4e9d39fd975433bcd0b6f21a72e | Backdoor RBot |
| VMWARE-VMX.EXE | 0345b4e9d39fd975433bcd0b6f21a72e | Trojan Downloader |
| VMWARE-VMX.EXE | 0345b4e9d39fd975433bcd0b6f21a72e | Trojan CI |
VMWARE-VMX.EXE size: 57344 bytes
VMWARE-VMX.EXE hash: 0345B4E9D39FD975433BCD0B6F21A72E
Created files:
C:\2685000.dll
%SysDir%\vmware-vmx.exe
%SysDir%\WinHbwf32.exe
%TEMP%\1.exe
%TEMP%\dos.exe
%TEMP%\svchost.exe
Autostart registry keys:
HKLM\System\CurrentControlSet\Services\RemoteAccess\RouterManagers\Ip\DLLPath: 43003A005C0032003600380035003000300030002E0064006C006C000000
HKLM\System\CurrentControlSet\Services\Windows Test My Test 1.0\Type: 10000000
HKLM\System\CurrentControlSet\Services\Windows Test My Test 1.0\Start: 02000000
HKLM\System\CurrentControlSet\Services\Windows Test My Test 1.0\DisplayName: Windows Test My Test Server 1.0
HKLM\System\CurrentControlSet\Services\Windows Test My Test 1.0\ImagePath: %WinDir%\System32\vmware-vmx.exe
HKLM\System\CurrentControlSet\Services\Windows Test My Test 1.0\Description: This is Windows Test My Test Server 1.0
Detected by UnHackMe:
VMWARE-VMX.EXE
Default location: %SYSDIR%\VMWARE-VMX.EXE
Dropper information:
MD5: 68d8b723e5d35a0a7dda485629a77d07
File size: 7564288 bytes