Trojan

Trojan.Win32.Shelma.bmip removal tips

Malware Removal

The Trojan.Win32.Shelma.bmip is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Win32.Shelma.bmip virus can do?

  • Executable code extraction
  • Attempts to connect to a dead IP:Port (1 unique times)
  • Creates RWX memory
  • Unconventionial language used in binary resources: Hebrew

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine Trojan.Win32.Shelma.bmip?



File Info:

crc32: 580A0BC6
md5: f06750c26e3ee45ad7156f20547b28ac
name: F06750C26E3EE45AD7156F20547B28AC.mlw
sha1: f4f9cfa0050f14326e6390ceac2f45626c5975cd
sha256: 196d38dfccfac481af94c86d1bb3eb991d0812f51c89f5c77af109855cdfe2f0
sha512: 389d88f42644ff6a8e80b62989121e94bc150b135ef5afd7316f7cf5247f6e1b674983fa5b99cb85c7c5d9739935475a627bd3711406785ecbe670e6b79a1c04
ssdeep: 1536:xCiwzmj6vMoXkAezxToSgpAGz1lSk482h+NiCt7J9ftLA/:xGCoXk9zFoSgKSek43ciCt7J9fh6
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: Copyright xa9 2017 Nir Sofer
InternalName: TimeZonesView
FileVersion: 1.06
CompanyName: NirSoft
ProductName: TimeZonesView
ProductVersion: 1.06
FileDescription: TimeZonesView
OriginalFilename: TimeZonesView.exe
Translation: 0x0409 0x04b0

Trojan.Win32.Shelma.bmip also known as:

K7AntiVirusTrojan ( 00538a561 )
LionicTrojan.Win32.Shelma.4!c
ALYacTrojan.GenericKD.37345886
CrowdStrikewin/malicious_confidence_60% (D)
AlibabaTrojan:Win32/Generic.481d681b
K7GWTrojan ( 00538a561 )
BitDefenderThetaGen:NN.ZexaF.34058.fq0@a49bb6oO
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/Patched.IX
AvastFileRepMalware
KasperskyTrojan.Win32.Shelma.bmip
BitDefenderTrojan.GenericKD.37345886
MicroWorld-eScanTrojan.GenericKD.37345886
Ad-AwareTrojan.GenericKD.37345886
SophosMal/Generic-S
McAfee-GW-EditionRDN/Generic.grp
FireEyeTrojan.GenericKD.37345886
EmsisoftTrojan.GenericKD.37345886 (B)
JiangminBackdoor.Generic.bwzo
MicrosoftTrojan:Win32/Swrort.A
ZoneAlarmTrojan.Win32.Shelma.bmip
GDataTrojan.GenericKD.37345886
AhnLab-V3Trojan/Win.Swrort.C4583876
McAfeeRDN/Generic.grp
MAXmalware (ai score=82)
VBA32Trojan.Shelma
PandaTrj/CI.A
IkarusTrojan.Win32.Patched
FortinetW32/Patched.IX!tr
AVGFileRepMalware
Qihoo-360Win32/Ransom.DogHousePower.HgIASZ0A

How to remove Trojan.Win32.Shelma.bmip?

Trojan.Win32.Shelma.bmip removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment