I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:
Free Download Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.
Trojan Generic
SHA256: 8dad82abb59c120acb78301967758855ff5d7cddcc953c2a7fc3fe2cbb530a66
SHA1: 5dd0fac842bcd08df57a2afe1884521fc3fa825f
MD5: 68db7a8209ad1cdd365845122f05b8c6
File size: 603648 bytes
Created files:
%Program Files%\Effective Measure\embho.dll – Trojan Generic
%Common AppData%\Tarma Installer\{0376BC0E-477C-4B6E-A6D6-0852927D4FDA}\Setup.exe – Trojan Generic
%Common AppData%\Tarma Installer\{0376BC0E-477C-4B6E-A6D6-0852927D4FDA}\TsuDll.dll – Trojan Generic
%Common AppData%\Tarma Installer\{0376BC0E-477C-4B6E-A6D6-0852927D4FDA}\_Setup.dll – Trojan Generic
%Temp%\6E72190A\Setup.exe – Trojan Generic
%Temp%\6E72190A\x64\regsvr32.exe – Trojan Generic
%Temp%\6E72190A\x86\regsvr32.exe – Trojan Generic
%Temp%\6E72190A\_Setup.dll – Trojan Generic
%Temp%\Tsu-2C2C.dll – Trojan Generic
Trojan Generic created autostart registry keys:
user\current_classes\CLSID\{13E3AF0A-2C78-40B7-B226-C8BF07FD2BE3}\InprocServer32 : %Program Files%\Effective Measure\embho.dll
user\current_classes\CLSID\{13E3AF0A-2C78-40B7-B226-C8BF07FD2BE3}\InprocServer32\ThreadingModel: Apartment
user\current_classes\CLSID\{3834E55F-A7A3-4F45-A9BF-5A09FF8E65DC}\InprocServer32 : %Program Files%\Effective Measure\embho.dll
user\current_classes\CLSID\{3834E55F-A7A3-4F45-A9BF-5A09FF8E65DC}\InprocServer32\ThreadingModel: Apartment
user\current_classes\CLSID\{6CB8D108-7959-4606-AADB-A1F7A5384711}\InprocServer32 : %Program Files%\Effective Measure\embho.dll
user\current_classes\CLSID\{6CB8D108-7959-4606-AADB-A1F7A5384711}\InprocServer32\ThreadingModel: Apartment