Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 1/10/17 Scan Time: 7:31 PM Logfile: ml.txt Administrator: Yes -Software Information- Version: 3.0.5.1299 Components Version: 1.0.43 Update Package Version: 1.0.971 License: Trial -System Information- OS: Windows 10 CPU: x64 File System: NTFS User: DESKTOP-OLERN5S\yan-9 -Scan Summary- Scan Type: Threat Scan Result: Completed Objects Scanned: 392962 Time Elapsed: 1 min, 57 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Enabled PUM: Enabled -Scan Details- Process: 0 (No malicious items detected) Module: 3 Adware.Elex, C:\PROGRAM FILES (X86)\GUBED\GUBEDZL.DLL, No Action By User, [1624], [356680],1.0.971 PUP.Optional.Elex, C:\PROGRAM FILES (X86)\WINARCHER\ARCHER.DLL, No Action By User, [15], [339886],1.0.971 PUP.Optional.Elex, C:\PROGRAMDATA\WINSAPSVC\WINSAP.DLL, No Action By User, [15], [339887],1.0.971 Registry Key: 10 Adware.Elex, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\iThemes5, No Action By User, [1624], [352907],1.0.971 Adware.Elex, HKLM\SOFTWARE\jhdbca, No Action By User, [1624], [358186],1.0.971 PUP.Optional.Elex, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Archer, No Action By User, [15], [339886],1.0.971 Adware.Elex, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\GubedZL, No Action By User, [1624], [356694],1.0.971 PUP.Optional.Elex, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WinSAPSvc, No Action By User, [15], [339887],1.0.971 PUP.Optional.HohoSearch, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{639C15A9-3861-4F2A-A194-3C117F17601C}, No Action By User, [103], [305440],1.0.971 Adware.Elex, HKLM\SOFTWARE\WOW6432NODE\jhdbca, No Action By User, [1624], [358186],1.0.971 Adware.Elex, HKLM\SOFTWARE\WOW6432NODE\WinArcher, No Action By User, [1624], [358185],1.0.971 Adware.Elex, HKU\S-1-5-18\SOFTWARE\jhdbca, No Action By User, [1624], [358190],1.0.971 PUP.Optional.HohoSearch, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Riophmikuly Verfier, No Action By User, [103], [305439],1.0.971 Registry Value: 4 PUP.Optional.HohoSearch, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{639C15A9-3861-4F2A-A194-3C117F17601C}|PATH, No Action By User, [103], [305440],1.0.971 PUP.Optional.Qone8, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DEFAULTSCOPE, No Action By User, [16252], [292819],1.0.971 PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DEFAULTSCOPE, No Action By User, [16252], [292819],1.0.971 Trojan.Elex, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\THEMES|DEPENDONSERVICE, No Action By User, [3063], [352344],1.0.971 Data Stream: 0 (No malicious items detected) Folder: 3 Adware.Elex, C:\PROGRAM FILES (X86)\GUBED, No Action By User, [1624], [356680],1.0.971 PUP.Optional.Elex, C:\PROGRAMDATA\WINSAPSVC, No Action By User, [15], [338081],1.0.971 PUP.Optional.Elex, C:\PROGRAM FILES (X86)\WINARCHER, No Action By User, [15], [338087],1.0.971 File: 11 Adware.Elex, C:\PROGRAM FILES (X86)\COMMON FILES\SERVICES\ITHEMES.DLL, No Action By User, [1624], [352907],1.0.971 PUP.Optional.Elex, C:\PROGRAM FILES (X86)\WINDOWS MEDIA PLAYER\G1GM2S.DLL, No Action By User, [15], [338238],1.0.971 Hijack.HostFile, C:\WINDOWS\SYSTEM32\DRIVERS\ETC\HOSTS, No Action By User, [211], [329328],1.0.971 Adware.Elex, C:\WINDOWS\TEMP\OUA4CC7.TMP\SECONDU71\QQBROWSERFRAME.DLL, No Action By User, [1624], [355140],1.0.971 Adware.Elex, C:\WINDOWS\TEMP\WEA6699.TMP\YACQQ.EXE, No Action By User, [1624], [350504],1.0.971 Adware.Elex, C:\WINDOWS\TEMP\OUACB81.TMP\SECONDU71\QQBROWSERFRAME.DLL, No Action By User, [1624], [355140],1.0.971 Adware.Elex, C:\PROGRAM FILES (X86)\GUBED\GUBEDZL.DLL, No Action By User, [1624], [356680],1.0.971 PUP.Optional.Elex, C:\PROGRAM FILES (X86)\WINARCHER\ARCHER.DLL, No Action By User, [15], [339886],1.0.971 PUP.Optional.Elex, C:\PROGRAMDATA\WINSAPSVC\WINSAP.DLL, No Action By User, [15], [339887],1.0.971 PUP.Optional.HohoSearch, C:\WINDOWS\SYSTEM32\TASKS\Riophmikuly Verfier, No Action By User, [103], [305442],1.0.971 PUP.Optional.Elex, C:\Program Files (x86)\WinArcher\Packet.dll, No Action By User, [15], [338087],1.0.971 Physical Sector: 0 (No malicious items detected) (end)