Trojan

About “Trojan.Win32.Shelma.azcq” infection

Malware Removal

The Trojan.Win32.Shelma.azcq is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Win32.Shelma.azcq virus can do?

  • Creates RWX memory
  • The binary likely contains encrypted or compressed data.

How to determine Trojan.Win32.Shelma.azcq?



File Info:

crc32: 2D033B25
md5: dd995c060e3fe56c5a9a7a4c043ae4e5
name: DD995C060E3FE56C5A9A7A4C043AE4E5.mlw
sha1: e4e27f4ef6a33f0b91dc1d18a4a18b570f014c5d
sha256: c97bac56bee0184cf31eb3c89cb710c492a805142b26d7aeea121c7a94e7368d
sha512: 2b7e54cdefea567d73ff3527fe76e48a9930c3c981603a170df9084fd398796644d7e054aae904f54b692deabb38835c43abff8b5697fa066505b1b1342544bf
ssdeep: 6144:vsM9IbMaMrjPtts8dE1gwxqCDiEEiEEsfByAwZZS4onQF6y:vsoIb+4821g0XIB7GjF6y
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: xa9 Microsoft Corporation. All rights reserved.
InternalName: wksprt
FileVersion: 6.1.7600.16385 (win7_rtm.090713-1255)
CompanyName: Microsoft Corporation
ProductName: Microsoftxae Windowsxae Operating System
ProductVersion: 6.1.7600.16385
FileDescription: WorkspaceRuntime
OriginalFilename: wksprt.exe
Translation: 0x0409 0x04b0

Trojan.Win32.Shelma.azcq also known as:

K7AntiVirusRiskware ( 0040eff71 )
ALYacTrojan.GenericKD.43905058
CylanceUnsafe
ZillyaTrojan.Shelma.Win32.6706
SangforTrojan.Win32.Swrort.A
AlibabaTrojan:Win32/Shelma.89000aba
K7GWRiskware ( 0040eff71 )
Cybereasonmalicious.60e3fe
SymantecML.Attribute.HighConfidence
APEXMalicious
AvastFileRepMalware
KasperskyTrojan.Win32.Shelma.azcq
BitDefenderTrojan.GenericKD.43905058
MicroWorld-eScanTrojan.GenericKD.43905058
Ad-AwareTrojan.GenericKD.43905058
SophosATK/Shellter-AC
VIPRETrojan.Win32.Generic!BT
McAfee-GW-EditionArtemis!Trojan
FireEyeTrojan.GenericKD.43905058
EmsisoftTrojan.GenericKD.43905058 (B)
MicrosoftTrojan:Win32/Swrort.A
ArcabitTrojan.Generic.D29DF022
AegisLabTrojan.Win32.Shelma.4!c
GDataTrojan.GenericKD.43905058
McAfeeArtemis!DD995C060E3F
MAXmalware (ai score=84)
PandaTrj/CI.A
RisingTrojan.Swrort!8.296 (CLOUD)
IkarusTrojan.Win32.Swrort
FortinetW32/Shelma.AC!tr
AVGFileRepMalware
Paloaltogeneric.ml
Qihoo-360Win32/Ransom.DogHousePower.HgIASOoA

How to remove Trojan.Win32.Shelma.azcq?

Trojan.Win32.Shelma.azcq removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment