Ir ao conteúdo
  • Comunicados

    • diego_moicano

      Gostaria de se tornar um analista em Remoção de Malware?   07-12-2015

      Gostaria de se tornar um analista em Remoção de Malware? O Fórum Clube do Hardware deu início a um programa de treinamento em análises de log. Os interessados deverão enviar um email para aprendizes (arroba) clubedohardware (ponto) com (ponto) br respondendo as seguintes perguntas: Por que você gostaria de aprender a analisar logs? Possui tempo hábil para o treinamento? Tem conhecimentos em informática? Se sim descreva-os. Possui inglês para leitura? Qual seu objetivo após completar o treinamento?   Não se esqueça de incluir no e-mail o seu nome de usuário (fornecer o link também), idade e cidade onde vive. Adicione também qualquer experiência e/ou razão sobre o porquê você seria um bom Analista. É digno de nota que apenas os que forem selecionados receberão resposta por MP (Mensagem Pessoal), não existe um padrão na escolha dos futuros aprendizes, todos os e-mails serão lidos e serão analisados de forma imparcial, portanto não será permitido reclamações neste aspecto. O treinamento é dado no próprio fórum. Quando um aprendiz é selecionado ele é movido para um novo grupo, onde terá acesso a fóruns fechados para os demais usuários onde poderá dar inicio ao seu treinamento. Importante: A cada 30 dias os e-mails não selecionados serão apagados, portanto você pode enviar um novo e-mail após 1 mês, e-mails enviados antes serão desconsiderados.  
    • Gabriel Torres

      Seja um moderador do Clube do Hardware!   12-02-2016

      Prezados membros do Clube do Hardware, Está aberto o processo de seleção de novos moderadores para diversos setores ou áreas do Clube do Hardware. Os requisitos são:   Pelo menos 500 posts e um ano de cadastro; Boa frequência de participação; Ser respeitoso, cordial e educado com os demais membros; Ter bom nível de português; Ter razoável conhecimento da área em que pretende atuar; Saber trabalhar em equipe (com os moderadores, coordenadores e administradores).   Os interessados deverão enviar uma mensagem privada para o usuário @Equipe Clube do Hardware com o título "Candidato a moderador". A mensagem deverá conter respostas às perguntas abaixo:   Qual o seu nome completo? Qual sua data de nascimento? Qual sua formação/profissão? Já atuou como moderador em algo outro fórum, se sim, qual? De forma sucinta, explique o porquê de querer ser moderador do fórum e conte-nos um pouco sobre você.   OBS: Não se trata de função remunerada. Todos que fazem parte do staff são voluntários.
mvrodrigues

Memória sendo utilizada em 82%

Recommended Posts

Boa tarde,

 

Essa semana notei que o PC estava "trabalhando" sem ter nenhum aplicativo aberto, único que estava em execução era a Steam, fechei-o e as memórias continuaram a trabalhar em 82%.

Automaticamente reiniciei o computador, e o processo finalizou.. Voltou ao normal. 

Como faz muito tempo que não consulto vocês aqui, decidi fazer este checkup e espero que vocês mais uma vez analisem por gentileza.

 

Obrigado,

 

 

ZA-Scan.txt

Compartilhar este post


Link para o post
Compartilhar em outros sites

@mvrodrigues

 

Por favor, atente para o seguinte:

  • Sobre o Fórum: Este é um espaço privado, não público. Seu uso é um privilégio, não um direito.
  • Caso fique sem resposta durante 3 dias, me envie uma Mensagem Privada (MP);
  • O que será passado aqui, somente será com relação ao problema do seu computador portanto, não faça mais em nenhum outro;
  • Siga, por favor, atentamente as instruções passadas e em caso de dúvidas não hesite em perguntá-las;
  • Respeite a ordem das instruções passadas.
  • Observação: Não tome outra medida além das passadas aqui; atente para que, caso peça ajuda em outro fórum, não deixe de nos informar, sob risco de desconfigurar seu computador!

Baixe a Malwarebytes Anti-Malware (MBAM).
 
Clique duas vezes no mbam-setup.exe para instalar o programa.

  • Desmarque a caixa Ativar trial gratuito do MalwareBytes Anti-Malware PRO.
  • Se houver atualizações a serem feitas, serão baixadas e instaladas..
  • Clique em Configurações, clique em Detecção e proteção, marque Verificar por Rootkits.
  • Volte ao Painel e por fim clique em Verificar agora.
  • Começará então o exame. Aguarde, pois pode demorar.
  • Ao acabar o exame, se houver itens encontrados, certifique-se que estejam todas marcados e clique no botão Remover Selecionadas
  • Ao final da desinfecção, poderá aparecer um aviso se quer reiniciar o PC. (Ver Nota abaixo)
  • O log é automaticamente salvo pelo MBAM e para vê-lo, clique na aba Histórico -> Registros do aplicativo na janela principal do programa.
  • Clique duas vezes no log (Registro de verificação). Utilize o formato .txt para exportar o log.
  • O log de Proteção é desnecessário para a análise, exporte sempre o log correto.
  • Selecione, copie e cole o conteúdo deste log em sua próxima resposta.

 

NOTA: Se o MBAM encontrar arquivos que não consiga remover, poderá ter de reiniciar o PC (talvez mais de uma vez). Faça isso imediatamente, ao ser perguntado se quer reiniciar o PC.

 

 

Compartilhar este post


Link para o post
Compartilhar em outros sites
  • Autor do tópico
  • Malwarebytes Anti-Malware
    www.malwarebytes.org

    Data da verificação: 30/09/2016
    Hora da verificação: 14:03
    Arquivo de registro: log.txt
    Administrador: Sim

    Versão: 2.2.1.1043
    Banco de dados de malware: v2016.09.30.11
    Banco de dados de rootkit: v2016.09.26.02
    Licença: Gratuita
    Proteção contra malware: Desabilitado
    Proteção contra website malicioso: Desabilitado
    Autoproteção: Desabilitado

    Sistema operacional: Windows 7 Service Pack 1
    CPU: x64
    Sistema de arquivos: NTFS
    Usuário: Marlon

    Tipo de verificação: Verificação da ameaça
    Resultado: Concluído
    Objetos verificados: 338236
    Tempo decorrido: 16 min, 4 seg

    Memória: Habilitado
    Inicialização: Habilitado
    Sistema de arquivos: Habilitado
    Arquivos compactados: Habilitado
    Rootkits: Habilitado
    Heurística: Habilitado
    PUP: Habilitado
    PUM: Habilitado

    Processos: 0
    (Nenhum item malicioso detectado)

    Módulos: 0
    (Nenhum item malicioso detectado)

    Chaves de registro: 11
    PUP.Optional.BoBrowser, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{353C15EE-F988-48DD-9627-E1A19617AC46}, Excluir ao reiniciar, [b3a07bfd49510531ec61c40adc260bf5], 
    PUP.Optional.BoBrowser, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{C9C21314-18E3-4DE7-AE03-A7092B50D778}, Excluir ao reiniciar, [0d46e49403975bdb7b45b4197c8632ce], 
    PUP.Optional.BoBrowser, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\crash_service, Excluir ao reiniciar, [92c12b4dd8c242f40fc73aa1da29629e], 
    PUP.Optional.BoBrowser, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Run_Bobby_Browser, Excluir ao reiniciar, [a8ab5a1e03970d292196e4b412f1d62a], 
    PUP.Optional.CrossAd, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Virtual Bus, Excluir ao reiniciar, [173ccdab5d3d1c1a46519e4b45beff01], 
    PUP.Optional.CrossAd, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Virtual Bus2, Excluir ao reiniciar, [104368103b5f0d29643387621fe4fb05], 
    PUP.Optional.Groover.BrwsrFlsh, HKU\S-1-5-18\SOFTWARE\{D91E2C46-5620-4451-88C3-A136D747D692}, Quarentena, [6de60573e0ba46f01c04662fd33003fd], 
    PUP.Optional.Groover.BrwsrFlsh, HKU\S-1-5-19\SOFTWARE\{D91E2C46-5620-4451-88C3-A136D747D692}, Quarentena, [63f079ffbcde92a427f9187def14738d], 
    PUP.Optional.Groover.BrwsrFlsh, HKU\S-1-5-20\SOFTWARE\{D91E2C46-5620-4451-88C3-A136D747D692}, Quarentena, [f85b1b5df1a90c2a64bc0095e81ba15f], 
    PUP.Optional.Groover.BrwsrFlsh, HKU\S-1-5-21-2542739096-2858238111-3407170656-1000\SOFTWARE\{D91E2C46-5620-4451-88C3-A136D747D692}, Quarentena, [b59ef682aaf0d95d31efafe63cc7e818], 
    PUP.Optional.VBates, HKU\S-1-5-21-2542739096-2858238111-3407170656-1000_Classes\SOFTWARE\{D91E2C46-5620-4451-88C3-A136D747D692}, Quarentena, [351e95e33a602e0859cdfcf416ed9e62], 

    Valores de registro: 9
    PUP.Optional.BoBrowser, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{353C15EE-F988-48DD-9627-E1A19617AC46}|Path, \crash_service, Excluir ao reiniciar, [b3a07bfd49510531ec61c40adc260bf5]
    PUP.Optional.BoBrowser, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{C9C21314-18E3-4DE7-AE03-A7092B50D778}|Path, \Run_Bobby_Browser, Excluir ao reiniciar, [0d46e49403975bdb7b45b4197c8632ce]
    PUP.Optional.Groover.BrwsrFlsh, HKLM\SOFTWARE\MOZILLA\FIREFOX\EXTENSIONS|{6E4A386B-0394-4669-bFA0-F1C05B693366}, C:\Program Files\groover181220151144\Firefox\{6E4A386B-0394-4669-bFA0-F1C05B693366}.xpi, Quarentena, [1a390c6ce5b553e3a77cbdd8917247b9]
    PUP.Optional.Groover.BrwsrFlsh, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|{6E4A386B-0394-4669-bFA0-F1C05B693366}, C:\Program Files\groover181220151144\Firefox\{6E4A386B-0394-4669-bFA0-F1C05B693366}.xpi, Quarentena, [e073354323773ef83ce733628c7733cd]
    PUP.Optional.Groover.BrwsrFlsh, HKU\S-1-5-18\SOFTWARE\{D91E2C46-5620-4451-88C3-A136D747D692}|Name, C:\Program Files\groover181220151144\Xizeymub.exe, Quarentena, [6de60573e0ba46f01c04662fd33003fd]
    PUP.Optional.Groover.BrwsrFlsh, HKU\S-1-5-19\SOFTWARE\{D91E2C46-5620-4451-88C3-A136D747D692}|Name, C:\Program Files\groover181220151144\Xizeymub.exe, Quarentena, [63f079ffbcde92a427f9187def14738d]
    PUP.Optional.Groover.BrwsrFlsh, HKU\S-1-5-20\SOFTWARE\{D91E2C46-5620-4451-88C3-A136D747D692}|Name, C:\Program Files\groover181220151144\Xizeymub.exe, Quarentena, [f85b1b5df1a90c2a64bc0095e81ba15f]
    PUP.Optional.Groover.BrwsrFlsh, HKU\S-1-5-21-2542739096-2858238111-3407170656-1000\SOFTWARE\{D91E2C46-5620-4451-88C3-A136D747D692}|Name, C:\Program Files\groover181220151144\Xizeymub.exe, Quarentena, [b59ef682aaf0d95d31efafe63cc7e818]
    PUP.Optional.VBates, HKU\S-1-5-21-2542739096-2858238111-3407170656-1000_Classes\SOFTWARE\{D91E2C46-5620-4451-88C3-A136D747D692}|Name, C:\Program Files\groover181220151144\Xizeymub.exe, Quarentena, [351e95e33a602e0859cdfcf416ed9e62]

    Dados de registro: 0
    (Nenhum item malicioso detectado)

    Pastas: 19
    PUP.Optional.VBates, C:\Users\Marlon\AppData\LocalLow\Company\Product\1.0, Quarentena, [78dbbfb9bedc7db944f782422bd8be42], 
    PUP.Optional.VBates, C:\Users\Marlon\AppData\LocalLow\Company\Product, Quarentena, [78dbbfb9bedc7db944f782422bd8be42], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\log, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\startup, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\userbk, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\userbk\cfg, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\userbk\data, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\userbk\log, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\userbk\log\clog, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\userbk\user, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    PUP.Optional.IDSCProduct, C:\Program Files (x86)\SpaceSondPro_v53.11012, Quarentena, [5ff46711c8d2310523a036917f8304fc], 
    Adware.LaSuperba, C:\uninst, Quarentena, [351e94e4544679bd890fc4d7758fff01], 
    PUP.Optional.CrossAd.Gen, C:\Users\Marlon\AppData\Local\Virtual Bus\Component, Quarentena, [59faeb8d396189ad9b13cfca37cd8c74], 
    PUP.Optional.CrossAd.Gen, C:\Users\Marlon\AppData\Local\Virtual Bus, Quarentena, [59faeb8d396189ad9b13cfca37cd8c74], 
    PUP.Optional.CrossAd.Gen, C:\Users\Marlon\AppData\Local\Virtual Bus\{E7B5496B-2529-ED95-B023-558453DEA9D4}, Quarentena, [59faeb8d396189ad9b13cfca37cd8c74], 

    Arquivos: 1661
    Rootkit.Agent, C:\WINDOWS\SYSTEM32\drivers\cherimoya.sys, Excluir ao reiniciar, [2fed22167820da74dd6ffd68f375166b], 
    PUP.Optional.VBates, C:\Users\Marlon\AppData\LocalLow\Company\Product\1.0\localStorageIE.txt, Quarentena, [78dbbfb9bedc7db944f782422bd8be42], 
    PUP.Optional.VBates, C:\Users\Marlon\AppData\LocalLow\Company\Product\1.0\localStorageIE_backup.txt, Quarentena, [78dbbfb9bedc7db944f782422bd8be42], 
    PUP.Optional.CrossAd, C:\Windows\System32\Tasks\Virtual Bus, Quarentena, [ce85c2b682182e08128143a671926e92], 
    PUP.Optional.CrossAd, C:\Windows\System32\Tasks\Virtual Bus2, Quarentena, [f65d83f5a9f1f73f3d5627c253b0ec14], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\gcignore.dat, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\preference.ini, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\softmgr.dat, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\02c38bcab9ae0b838875a291b6ea754d_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\0300ea112b1f75bf10175cad7c5efb0d_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\0518fe55021edf226989d3075909073c_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\06bd0b9b962ee636cd57e76782e46817_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\08d13327d18aa0f9542165a36889bad0_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\0946349979fa4a3c9fd1bbdf036922f7.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\0946349979fa4a3c9fd1bbdf036922f7_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\0bc26632c41190759eb1a4261cfa3253_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\0c88a1cb8a542acd1d8b7b0f358ca7c1_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\0cb80dc6ab20bd3a7ab02a6deba3bf4a_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\0cf6ccedc9a58b684d8ce005f6816d22_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\0dfd8fd28d6d89170c72a4ec93d2bada.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\afa80b268029b68034172348baa8fd1c.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\afa80b268029b68034172348baa8fd1c_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\b000e52a0ec6c23eda15cac0c5f616c1.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\b000e52a0ec6c23eda15cac0c5f616c1_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\b006673d3ee6998885f0d8674ee1aa83.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\b006673d3ee6998885f0d8674ee1aa83_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\b038dc6a3465a1eb0af0ec19b4d151a8_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\b2b6304815ec2f17a663faddd05634fc.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\b2b6304815ec2f17a663faddd05634fc_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\59c7ee94bd8792cf651df4c17e1b33e3_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\5a21b92629a1f7d9f8c3f5d1602d8963.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\5a21b92629a1f7d9f8c3f5d1602d8963_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\5a5b32255c9e3b66c017bf25c02c81ae_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\5ec86e9c03e166790f8c9360b1ae1c81_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\6093cc89deb6aaaaf7de6bc67558f769.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\6093cc89deb6aaaaf7de6bc67558f769_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\63b20dd316eeb01823891696c98fe801_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\665135526c80f1a037f4bbc184f670c8_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\69b06ea7353a66035b1bd5e82aeb7f6b_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\e39d929f3a11345f5b3c1d198545448f_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\e587398a6cd0398f7431736717108afb_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\e8cc393a3f0534b05177c1c512c9a00d_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\ea6084edce0f7511b47163da5e797be7.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\ea6084edce0f7511b47163da5e797be7_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\ec2e22f2a0450c63a256aeb3bafac842_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\eea15bde00b4c8aae95eb828bf3f8b7d_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\extension.cab.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\extension.dll.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\f1c449c31c2a691c0ef29820c07d25a9.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\f1c449c31c2a691c0ef29820c07d25a9_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\321d71015da72552f363adf3b095dd06_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\3387207aa80e24888ad3bee8214a7ac7.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\3387207aa80e24888ad3bee8214a7ac7_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\343ac95c72780ed23a826d9135f5ba57_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\346c6ff837133ab22a6451835fc8b503_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\3534951daf82a0ae596b6785f25a5666.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\3534951daf82a0ae596b6785f25a5666_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\35651879744350ed4a8610b848f6c3f2_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\358566c81f8fce1d5d36f9755606ad56_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\373c9ff863b8bad6135528f361eca46c_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\0dfd8fd28d6d89170c72a4ec93d2bada_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\198f079c9e1db3436fd8a1ebdc38e433_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\30936ac067e843847b9972660671771e, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\3740156c40d4b8ba6fb987bd988f30e6_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\8ceed00d5df7df1a8c8d72e734220f1c_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\957638628ba98625efe1433c16fbebce_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\ad9527a4f2b336be057960d70ff175fa_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\b2d21dc5b0df1d6f243e6a2d27253c16_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\bfeb235467775cc42459ea3fd034bff1_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\ce2e2b3eba8ac46f760862e475b81de1_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\e39d929f3a11345f5b3c1d198545448f.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\8f6e3ab52f9860453651d054f1c132dc_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\90d9729075b84c22f51cf4e2ebdca4ca_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\923051a0cc9a36b6c262e8a4a1504ade_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\923bb6b3a5833034ed8d87154138fcc6_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\933a2fd01ad650c621e3cd7e94635e99_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\94710aba5b20193afa19de65f2249b59.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\94710aba5b20193afa19de65f2249b59_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\1a2837508fb54dc6f4c80144333c43fd_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\1da65dd3f3e6d8544056106a4ac43ec8_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\1e33d6aa9e9063cee888a47ecf59fd2d_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\1eab69d336160b91aa7fcaed2c3b8a86_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\1f458f0acde88a45dcc0be9a29c343f4_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\20dcbecdc1aa90885a7a5b23273fcb2a_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\226ff99654d7a21a85b4fa2b7882d365.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\226ff99654d7a21a85b4fa2b7882d365_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\229c7818d2a87d96ec1038a24e36be34_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\c0a5d22299bb1ecf6c5812659410988a_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\c11f3cd701ba60d90aba8f7610357585.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\c11f3cd701ba60d90aba8f7610357585_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\c250af04059bea444066764ea1b420fc_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\c29d502a70929ba564f9027bad700986_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\c2e7cc12fdac96612e5555a8e3c1743a_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\c4aeadfe1df1750e77a36c5d46d74268.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\c4aeadfe1df1750e77a36c5d46d74268_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\c97b679676810968ef930a6ec239871f_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\c98842bb5548fb5eff69a587c9f262f0_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\c9d07e241d57262451ef65cd19e043c9_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\9ef18c35a8a5ec196e68c6614091cdcd_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\9efab556357b8841c5f84c13158362e1_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\9f15e11f5a797991a8b9d8e57e3f6ac0.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\9f15e11f5a797991a8b9d8e57e3f6ac0_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\9fd9d5b9550d2e57f52ad023f9d27925.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\9fd9d5b9550d2e57f52ad023f9d27925_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\a1dac501efe34c89a8c056d2681a19e6_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\a1ed356692b822f214a1b6f9eeadaed5_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\8108ed2d7dfa9fa06b4e525f290df4eb_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\844664ab735cfbf954a7f1bba5be2a72_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\8598892004248e726d93e249c740571d_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\878c9cb584a4381ba27683c678649083_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\88901e46f0eb84309459d3721518f804.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\88901e46f0eb84309459d3721518f804_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\88e91732c46e0fff3d081ef96da824d1.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\88e91732c46e0fff3d081ef96da824d1_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\89fbb25db8ceb1e8547d92a13dead2e2_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\8ca705bd16c680207bf639e21f71b5ce.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\8ca705bd16c680207bf639e21f71b5ce_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\8ceed00d5df7df1a8c8d72e734220f1c.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\ce39f4934974bddc2c41c17bb0bf2ff7_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\d00fa489d68202da4f1cb1e6667f38b7_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\d3cb928e5d13002dbd2f4b716f842064_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\d61769df05df38df3ef4541e3f84ce71_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\dbb312cbce1de6943923f9516d5238e9_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\dbf7d647f3548fcc6630f1f265e8299b_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\dcdcccb301d51b206ad9bd7f254af1e7_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\dde7b0f161f9eaa3a8c6ce97f93d27e4.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\dde7b0f161f9eaa3a8c6ce97f93d27e4_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\e1f4b6de884275fbfccd43fdddfd008c_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\e2b9d9212e608c5929940e154e775fa2_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\40ce034eca9689415c76278a79dd4d4a_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\41ec386fec83cfc566fea1eb13bc284b_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\4476bc9186bd072f20af4b7545941459.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\4476bc9186bd072f20af4b7545941459_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\499912e15ebecf2f41c544e072c67eec_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\4af04b667855a9ca4735656ba93de605_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\4d74715fcd16141d92a8d96629a10213_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\2801b8cb17be192f459595250473cab6_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\283d145666f71e1251cc0cf32100e189.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\283d145666f71e1251cc0cf32100e189_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\28811744c75623eeaec3a96a551b8abc_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\2bc749aea4654bf4e9f816ae0e3fb1e5.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\2bc749aea4654bf4e9f816ae0e3fb1e5_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\2cab19e7144fc0d346b614b5cfabb116_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\2cc9cef4d506858c5a83def3d548effd_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\0e5d8368a1ed60a3a78722baa31466e4_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\0f7b94d35d0c4501df2d4654e227b98e_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\1266955f6ccbd722fe539f9d703e397c.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\1266955f6ccbd722fe539f9d703e397c_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\13a1b57cad3f17e6eace9d753a2bb751_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\1636d9c261d6e0f2ce50aed1f7cbacbb.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\1636d9c261d6e0f2ce50aed1f7cbacbb_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\1897e174e5ad3ff289f57aba36104a51_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\b2f4a9b45dcb7e32f2b958688332f6e4_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\b2f4a9b45dcb7e32f2b958688332f6e4_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\b6313fa6c634b21b9f221e906aa35ced.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\b6313fa6c634b21b9f221e906aa35ced_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\b7c80a5204a9aa1288d4e74ffc20a844_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\b93d8dae3b15fd54e6612d932929ca6a_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\bc899d6fa6559c8eb44a90fb9399848b_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\bfce73cee91b40d4146afccc0442d14b_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\f3802b2e2bc0be01ee7ac7f919e0336d_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\f3a3b192aa46d321e009ef17d1fd0c9f_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\f42fbc41bf5382c45d5306b17a3579c9_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\f60e118f728b9a067a1eb359880fc080_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\f704efb5c7496c3027f5f9f5a3731e0e_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\f76ff3189d4fa1c2399742fc4ac8efc0_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\f777e848fe2339213034abf27174b23b_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\fa3cf2b093c161789d58484039b238f3_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\fbc3b7fb6e961b6704f12ccd1223d769.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\fbc3b7fb6e961b6704f12ccd1223d769_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\6a98d99b5ebbc5238cb8536bdaa816d7_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\6cc6d30e5eed68d3a5e3cca21a5663de.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\6cc6d30e5eed68d3a5e3cca21a5663de_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\6d37d3a333d4357a44d6d120f4923fc2_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\72f51ea5d76a63ba79576615e9c770c9_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\74d9397200203a754d29cb844a5cd3a6_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\771df47a6eda264e0e2e8963f2ec43a2_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\7a75ad4877a91c832b19417c69776ac4_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\7bd99cca623c8eceebbeb9ecb88e2a1e.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\7bd99cca623c8eceebbeb9ecb88e2a1e_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\805fb6f66710f7647e4f5b5ebec5ba14.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\805fb6f66710f7647e4f5b5ebec5ba14_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\37d3bca2e4d4e75f5d671df06aa9a935.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\37d3bca2e4d4e75f5d671df06aa9a935_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\37f049fddd06461c8ecd826955d9b817_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\3b933b44ab026857a80e8bb72e0c495e_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\3c9362198235403b01a7510f33fa624b_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\3ce6698b3b0af8c7c3c9441938d628c0_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\3dcda0cc7f2f50dae54fd9828230cdb6_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\3e603c37b6b13cf6aabb20bbda1a1090_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\3ea503594151862607e8b67b477fda6f.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\3ea503594151862607e8b67b477fda6f_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\3f0483f9d8d6923366054e4006586ebe.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\3f0483f9d8d6923366054e4006586ebe_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\ca2b3c41ab8d51ddaceb975bc3554217_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\ca4ab382e294f6f36dcca4cb37961c10_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\ca7acd0c13b6a44f8b17e9cd52fc52cd.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\ca7acd0c13b6a44f8b17e9cd52fc52cd_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\cb90e6a30d3bced75346bd7c27118cd4.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\cb90e6a30d3bced75346bd7c27118cd4_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\cc4e42265e109ab4e77448bb60eb19d0_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\cdde03abdd15530d85e62de928a40831.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\cdde03abdd15530d85e62de928a40831_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\ce2e2b3eba8ac46f760862e475b81de1.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\2377f98ce709bd2f84e31b2655a502f9.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\2377f98ce709bd2f84e31b2655a502f9_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\245324f7e86de90e4c63f0e339a51468_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\24a51188f65f5fb4a1c830427812b84f_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\25a65587ece9751806500706103d99ae.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\25a65587ece9751806500706103d99ae_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\27f4acd315ea8177973d9fff42bdc568_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\a1ffae8f4e9a92e5cc17833c8ecba313_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\a8650df0743579efd0100250e7ef31c0_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\a8f9cf55ec8e0b3f7c0dd4767596cbc6_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\a9fdfa1ac2b461a333225e85b29b9350.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\a9fdfa1ac2b461a333225e85b29b9350_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\aaa6f4979136959502c8d2da7c730e57.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\aaa6f4979136959502c8d2da7c730e57_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\aaa6f4979136959502c8d2da7c730e57_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\ad9527a4f2b336be057960d70ff175fa.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\95b48a0608b39d9ce61ec7bb27fc1a24_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\95d0da12170866651871eed48c195168_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\9b25d9829a40a6de7a4361335cb9d65a_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\9be8e2140da67340a0feb3abffca75e3.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\9be8e2140da67340a0feb3abffca75e3_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\9c0647361b01143bb96895c04fc01eb1.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\9c0647361b01143bb96895c04fc01eb1_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\4eb52d104fdb0496b0f0883da1bb9b9c_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\4f97a092f99043e80efcbb9ce6c1c7db.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\4f97a092f99043e80efcbb9ce6c1c7db_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\52006d36ef7ea40aacbcb5b820039d58_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\532b77a61211b8d068a850bd13046cf1.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\532b77a61211b8d068a850bd13046cf1_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\53aae587e191be5566f7a3444f836ac1_20_20.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\53b00d7fcd99711047c2a8f6c5919947.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\ico\53b00d7fcd99711047c2a8f6c5919947_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\desk.ini, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\Marlon.bmp, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\shortcut.db, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\shortcut.xml, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\3D Vision Photo Viewer_905089902.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\3D Vision Photo Viewer_905089902_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\3D Vision preview pack 1_1996685411.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\3D Vision preview pack 1_1996685411_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\AdapterTroubleshooter_107836829.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\AdapterTroubleshooter_107836829_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\AdapterTroubleshooter_4035452869.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\AdapterTroubleshooter_4035452869_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Adobe Reader XI_2719622565_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\aitagent_3790554392_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Ajuda do Kaspersky Internet Security_2234899124_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Ajuda do WinRAR_3386560697_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Ajuda_1268301509_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\icon_default_file_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\icsunattend_3177388409_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\icsunattend_3671100705_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Ideias e soluções_1632592297_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Ideias e soluções_3967207701_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ie4uinit_3315129378_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\IEUDINIT_1347227322_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ieUnatt_1429167555_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ieUnatt_1519024571_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\iexpress_1974905134.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\iexpress_1974905134_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\iexpress_2561486886.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\iexpress_2561486886_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Image Editor_1276851392.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\net_2051187322_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\net_2118930354_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\newdev_2098492526.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\newdev_2098492526_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\newdev_3027228198.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\newdev_3027228198_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\nltest_2759911897_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\notepad_2782343544.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\notepad_2782343544_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Notepad_3488401848.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Notepad_3488401848_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\notepad_970464784.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\notepad_970464784_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SoundRecorder_2630889316.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SoundRecorder_2630889316_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Speech Recognition_1040339924.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Speech Recognition_1040339924_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Spider Solitaire_448022594.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Spider Solitaire_448022594_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\spinstall_636238383_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\System Restore_2202897822.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\System Restore_2202897822_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\systeminfo_2427714662_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\systeminfo_2573445486_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SystemPropertiesAdvanced_3647774383.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SystemPropertiesAdvanced_3647774383_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SystemPropertiesAdvanced_919498327.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SystemPropertiesAdvanced_919498327_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SystemPropertiesComputerName_2359891289.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SystemPropertiesComputerName_2359891289_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SystemPropertiesComputerName_537811601.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SystemPropertiesComputerName_537811601_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SystemPropertiesDataExecutionPrevention_1288697901.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SystemPropertiesDataExecutionPrevention_1288697901_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SystemPropertiesDataExecutionPrevention_1566144437.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SystemPropertiesDataExecutionPrevention_1566144437_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SystemPropertiesHardware_2066161199.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SystemPropertiesHardware_2066161199_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SystemPropertiesHardware_771208263.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SystemPropertiesHardware_771208263_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Ajuda_3967207701_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\autofmt_471813341_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\BitLockerWizard_1820007677_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Browser Hijack Recover(BHR)_2054028876.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Calculator_1879693864.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Centro de Carregamento do Microsoft Office 2010_2310898560_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\chrome_548837755_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\cmdkey_909928616_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\cmstp_1929922092_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Component Services_2462387452_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Data Sources (ODBC)_1042424984.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ddodiag_1962338009_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Desinstalar Malwarebytes Anti-Malware_2214649841.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\DevicePairingWizard_300953268.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Disk Cleanup_1502346248_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\WerFaultSecure_2977181312_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\WerFaultSecure_4077798504_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\WerFault_3941467143.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\WerFault_3941467143_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\WerFault_937680255.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\WerFault_937680255_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wermgr_193717661_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Windows PowerShell ISE (x86)_389768547.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Windows PowerShell ISE (x86)_389768547_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Windows PowerShell ISE_389768547.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Windows PowerShell ISE_389768547_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Windows PowerShell Modules_2021831123.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Windows PowerShell Modules_2021831123_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Windows PowerShell_2021831123.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Windows PowerShell_2021831123_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Windows Update_2407346581.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Windows Update_2407346581_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\WindowsAnytimeUpgradeResults_2610982387.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\WindowsAnytimeUpgradeResults_2610982387_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Computer Management_3497186045.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Computer Management_3497186045_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ComputerDefaults_1519696658.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ComputerDefaults_1519696658_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ComputerDefaults_630245962.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ComputerDefaults_630245962_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\computer_2224316110_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\comp_1202335436_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\comp_2736831556_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Configurar Java_3821617999.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Configurar Java_3821617999_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Configuração do M65 Corsair_1945640602.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Configuração do M65 Corsair_1945640602_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Configure_1073372715.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Configure_1073372715_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Remover o Kaspersky Internet Security_780235441.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Remover o Kaspersky Internet Security_780235441_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\repair-bde_2791733550_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\replace_1659643553_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\replace_589262889_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\reset_2832643456_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\resmon_2573952349.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Diagnóstico da impressora Samsung_3613100891_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\dialer_1959135418.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\dialer_1959135418_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\dialer_286579442.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\dialer_286579442_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\diantz_1066151409_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\diantz_826455481_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\dinotify_211368475_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Disable 3D Vision_1996685411.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Disable 3D Vision_1996685411_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Disk Cleanup_1502346248.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\AtBroker_2138046779_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\AtBroker_3449251091_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\attrib_1016379397_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\attrib_907335741_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\at_3639503960_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\at_4069124416_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\audiodg_2466046480_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\auditpol_3712182011_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\auditpol_4205067043_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\autochk_3303959042_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\autochk_69476186_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\autoconv_4032427262_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\autoconv_4186431702_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\autofmt_2101998725_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Data Sources (ODBC)_1042424984_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\dccw_1014512654.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\dccw_1014512654_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\dccw_2315408438.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\dccw_2315408438_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\dcomcnfg_1816879708_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\dcomcnfg_2297039188_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\dvdplay_4061792055.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\dvdplay_4061792055_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\dvdplay_72264527.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\dvdplay_72264527_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\dvdupgrd_2649779399_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\dvdupgrd_2770968095_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\dwm_3094282843_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\DWWIN_2545814190_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\iTunes_877372819.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\iTunes_877372819_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\iTunes_877372819_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Kaspersky Internet Security_6144299_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\klist_943815044_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ksetup_764065665_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ktmutil_245238435_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ktmutil_2864942475_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\label_2779383115_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Uninstall  _572853578_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Uninstall Browser Hijack Recover_321616507.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Uninstall Browser Hijack Recover_321616507_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Uninstall Dolby Axon_2895797475.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Uninstall Dolby Axon_2895797475_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Uninstall K-Lite Codec Pack_3365939461_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Uninstall Popcorn Time_2556490964_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Uninstall Samsung Printer Software_109215140.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Uninstall Samsung Printer Software_109215140_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Uninstall_280741018.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Uninstall_280741018_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Uninstall_314536992.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Uninstall_314536992_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\UnInstall_3498499567.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\mfpmp_2127912939_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\mfpmp_465107923_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Microsoft Excel 2010_989071739.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Microsoft Excel 2010_989071739_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Microsoft PowerPoint 2010_84755478.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Microsoft PowerPoint 2010_84755478_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Microsoft Word 2010_4007432834.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Microsoft Word 2010_4007432834_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Frequently Asked Questions_1893025696_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\fsutil_3493401644_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\fsutil_3500151204_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ftp_2810640487_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ftp_3038407023_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\fvenotify_920289915.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\fvenotify_920289915_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Media Player Classic (x64)_2069661457_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Media Player Classic_2446502081.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Media Player Classic_2446502081_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\MediaInfo_1018398392.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\MediaInfo_1018398392_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Memory Diagnostics Tool_674833901.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Memory Diagnostics Tool_674833901_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\shrpubw_1685706844.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\shrpubw_1685706844_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\shrpubw_2545204964.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\shrpubw_2545204964_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\shutdown_1771252885_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\shutdown_1855488061_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Sidebar_3253152071.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Sidebar_3253152071_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\charmap_722465449.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\charmap_722465449_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\charmap_783469425.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\charmap_783469425_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Chess_2712617442.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Chess_2712617442_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\chglogon_1829234372_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\chgport_3760926448_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\chgusr_3839465173_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\chkdsk_2622794993_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\chkdsk_2937427161_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\chkntfs_1681129674_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\chkntfs_246497938_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\choice_202448254_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\choice_2983577670_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\chrome_548837755.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\mmc_1340107606.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\mmc_1340107606_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\mmc_3319181310.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\mmc_3319181310_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Mobility Center_3655158939.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Mobility Center_3655158939_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\mobsync_1165606226.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\mobsync_1165606226_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\mobsync_695703466.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\mobsync_695703466_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\More Games from Microsoft_393328278.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\More Games from Microsoft_393328278_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Start Corsair M65 Firmware Update Application_3369041645_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Start ESEA Client_4272829529.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Start ESEA Client_4272829529_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Steam Support Center_3458472572.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Steam Support Center_3458472572_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Steam_1869352784.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Steam_1869352784_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Photo Gallery_3014091358.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Photo Gallery_3014091358_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\PING_118025541_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\PING_1358810333_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\PkgMgr_1038868697_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\PkgMgr_741830049_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\plasrv_1895394743_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\PnPUnattend_4018882814_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Verificar Atualizações_3821617999_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\verifier_3665399413.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\verifier_3665399413_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\verifier_3898246749.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\verifier_3898246749_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\View Changelog_3628478606_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\View Known Issues_329557949_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\View User's Guide_801945236.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\View User's Guide_801945236_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Visitar a Kaspersky Lab na Web_82752716_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Windows DVD Maker_3101812535_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Windows Easy Transfer Reports_1095207501.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Windows Easy Transfer Reports_1095207501_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Windows Easy Transfer_569599225.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Windows Easy Transfer_569599225_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Windows Explorer_1614412430.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Windows Explorer_1614412430_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Windows Explorer_1614412430_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Windows Fax and Scan_4001300697.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Windows Fax and Scan_4001300697_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Windows Firewall with Advanced Security_2226153591.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Windows Firewall with Advanced Security_2226153591_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Windows Journal_3306704520.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Windows Journal_3306704520_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Windows Media Player_2147596265.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Windows Media Player_2147596265_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Windows PowerShell (x86)_2021831123.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\winhlp32_2637204392.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\winhlp32_2637204392_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wininit_2359871255_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wininit_3785873967_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\winload_2574764043_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\winlogon_2441715584.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\winlogon_2441715584_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\WinRAR_502984679.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\WinRAR_502984679_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Malwarebytes Anti-Malware_830621301.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Malwarebytes Anti-Malware_830621301_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\manage-bde_1344469306_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Manual do Console RAR_2506214607_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Math Input Panel_540822829.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Math Input Panel_540822829_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\mblctr_3655158939.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Internet Spades_3883498922_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ipconfig_1837345454_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ipconfig_2226601334_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\irftp_527719084.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\irftp_527719084_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\iSCSI Initiator_655077453.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\iSCSI Initiator_655077453_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\iscsicli_1297983496.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\PresentationHost_3902570811_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\psr_2006687748_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\rdrmemptylst_952504850_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\rekeywiz_3575217145.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Remote Desktop Connection_3196649479_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\resmon_2573952349_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\RMActivate_isv_3577395992_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\RunLegacyCPLElevated_708331968.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\sdbinst_2654486592_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SearchFilterHost_685989515_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Security Configuration Management_1089198534_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\setup16_3178494621_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Snipping Tool_1432797505.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Sound Recorder_2630889316_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Start Corsair M65 Firmware Update Application_3369041645.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Sticky Notes_3919478692_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\StikyNot_3919478692.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\StikyNot_3919478692_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\subst_1273898070_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\subst_304641998_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SUPERAntiSpyware Alternate Start_53415871.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SUPERAntiSpyware Alternate Start_53415871_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SUPERAntiSpyware Free Edition_4132060959.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SUPERAntiSpyware Free Edition_4132060959_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SUPERAntiSpyware Free Edition_4132060959_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SUPERAntiSpyware Registration-Activation_4132060959.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SUPERAntiSpyware Registration-Activation_4132060959_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\sbunattend_3376731801_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\sbunattend_620981873_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\schtasks_3227862715_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\schtasks_541514643_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\sc_535063293_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\sc_612719349_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\sdbinst_2063952504_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Uninstall_3995506278.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Uninstall_3995506278_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\uninstall_590617214.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\uninstall_590617214_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\unlodctr_1143170084_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\unlodctr_1414371548_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\unregmp2_258458169.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\unregmp2_258458169_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\unregmp2_566284801.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\unregmp2_566284801_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\alg_2621981671_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Any Audio Converter na Internet_693365896_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Any Audio Converter_756267203.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Any Audio Converter_756267203_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\appidcertstorecheck_660809728_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\appidpolicyconverter_2750727369_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Apple Software Update_3246007037.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Apple Software Update_3246007037_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ARP_4127676038_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ARP_4246103294_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ASGT_1018315556_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ASUS GPU Tweak_904754744.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ASUS GPU Tweak_904754744_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Calculator_1879693864_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\calc_1879693864.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\calc_1879693864_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\calc_3535210992.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\calc_3535210992_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Camtasia Recorder 8_2766469492.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Camtasia Recorder 8_2766469492_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Camtasia Studio 8_2766469492.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Camtasia Studio 8_2766469492_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\CCleaner_4233014197.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\CCleaner_4233014197_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Centro de Carregamento do Microsoft Office 2010_2310898560.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\chrome_548837755_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\cipher_1307883320_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\cipher_3909986512_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\cleanmgr_1502346248.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\cleanmgr_1502346248_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\cleanmgr_1616223696.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\cleanmgr_1616223696_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\cliconfg_1319983248.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\cliconfg_1319983248_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\cliconfg_3187068200.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\cliconfg_3187068200_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\clip_171537267_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\clip_2801447467_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\cmdkey_1038948480_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\cmdl32_1932571226.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\cmdl32_1932571226_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\cmdl32_3392818866.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\cmdl32_3392818866_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\cmd_1674256495.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\cmd_1674256495_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\cmd_4134540375.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\cmd_4134540375_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\cmmon32_300056518.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\cmmon32_300056518_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\cmmon32_936620014.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\cmmon32_936620014_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\cmstp_1462097636.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\cmstp_1462097636_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\cmstp_1929922092.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\conhost_3134253279.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\conhost_3134253279_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\consent_921281651.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\consent_921281651_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Contrato de Licença do Usuário Final_3018822435_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Control Panel_2899281816_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\control_2071591234.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\control_2071591234_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\control_3207676410.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\control_3207676410_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\cscript_1865253689.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\cscript_1865253689_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\cscript_3600856449.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\cscript_3600856449_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\csrss_737772495_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ctfmon_236235296.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ctfmon_236235296_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ctfmon_848611016.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ctfmon_848611016_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Desinstalar Malwarebytes Anti-Malware_2214649841_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Desinstalar USB Disk Security_3057471264.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Desinstalar USB Disk Security_3057471264_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\DeviceDisplayObjectProvider_634480875_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\DeviceEject_1836752992.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\DeviceEject_1836752992_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\diskpart_1835948895_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\diskpart_3175610711_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\diskperf_3424574809_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\diskperf_3966726833_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\diskraid_1740215462_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\diskraid_2759676622_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Dism_1396373310_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Dism_3364405734_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\dispdiag_3840792888_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\displayswitch_3108479997.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\displayswitch_3108479997_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\DisplaySwitch_4294219173.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\DisplaySwitch_4294219173_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\djoin_2952424099_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\dllhost_2111132569_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\dllhost_3312589953_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\dllhst3g_2853446378_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\dllhst3g_2911006466_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\dns-sd_2919474342_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\dns-sd_3800424782_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\dnscacheugc_3989749345_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\dnscacheugc_4176841609_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Dolby Axon Help_3086469050_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Dolby Axon_3408922324.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Dolby Axon_3408922324_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\doskey_2457231034_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\doskey_3893400818_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\dpapimig_2858171978.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\dpapimig_2858171978_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\dpapimig_3966712850.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\dpapimig_3966712850_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\DpiScaling_3702224221.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\DpiScaling_3702224221_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\DpiScaling_4275821957.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\esentutl_2698581897_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\esentutl_705735825_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\eudcedit_571515958.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\eudcedit_571515958_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\eudcedit_786984910.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\eudcedit_786984910_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Event Viewer_3648288580.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Event Viewer_3648288580_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\eventcreate_2322330781_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\eventcreate_3500494165_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\eventvwr_27918970.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\eventvwr_27918970_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\eventvwr_2903304130.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\eventvwr_2903304130_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\expand_2856484155_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\expand_3983445171_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\explorer_1614412430.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\explorer_1614412430_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\explorer_3675234646.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\explorer_3675234646_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\extension.chm.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\extension.gadget.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\extension.htm.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\extension.txt.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\extension.url.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\extrac32_228350613_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Far Cry 4_3569199240_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\fc_2829676616_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\fc_469668000_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\findstr_1217082381_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\findstr_1404852341_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\find_2665437208_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\find_2850216688_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\finger_1546277420_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\finger_2139347220_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\fixmapi_2358942751_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\GraphStudioNext_1884576465.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\GraphStudioNext_1884576465_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\grpconv_1815974092.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\grpconv_1815974092_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\grpconv_2809052132.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\grpconv_2809052132_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\hdwwiz_3650995754.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\hdwwiz_3650995754_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\hdwwiz_669563810.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\hdwwiz_669563810_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Hearts_3252564858.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\DpiScaling_4275821957_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\DWWIN_509795638_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Ease of Access_2013928776_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\extrac32_3125337181_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\fixmapi_2467806583_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\fveprompt_925994012.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\GeForce Experience_3150968049_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\GraphStudioNext (x64)_792339107_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Hearts_3252564858_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Image Editor_1276851392_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Internet Spades_3883498922.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\iscsicli_1297983496_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\HelpPane_781649766.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\HelpPane_781649766_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\help_330383636_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\help_508204060_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Help_868935320_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Help_959016001_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\hh_2018088589.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\hh_2018088589_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\hh_3465581429.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\hh_3465581429_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\HOSTNAME_3801463274_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\HOSTNAME_923859554_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\InfDefaultInstall_459857342_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\InfDefaultInstall_798732406_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Instalar agora Autodesk AutoCAD Civil 3D 2016_3433596772.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Instalar agora Autodesk AutoCAD Civil 3D 2016_3433596772_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\instnm_564409894_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Internet Backgammon_2938038034.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Internet Backgammon_2938038034_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Internet Checkers_4203830107.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Internet Checkers_4203830107_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Internet Explorer (No Add-ons)_3941349720.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Internet Explorer (No Add-ons)_3941349720_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Internet Explorer_3941349720.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Internet Explorer_3941349720_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\lodctr_3496773655_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\logagent_235634936_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\logagent_3129856432_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Logitech Gaming Software 8.53_3752578483.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Logitech Gaming Software 8.53_3752578483_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\logman_3727358283_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\logman_653210387_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\mountvol_223176661_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\mountvol_3052986973_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Movie Maker_3055726313.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Movie Maker_3055726313_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\mpnotify_1813914963_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\MpSigStub_3909397237_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\MRINFO_3053608108_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\MRINFO_3358164900_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\mshta_2733958950_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\msiexec_2300588329.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\msiexec_2300588329_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\msiexec_780235441.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\msiexec_780235441_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\msinfo32_1943427172.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\msinfo32_1943427172_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\msinfo32_3097181404.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\msinfo32_3097181404_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\mspaint_1577422009.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\mspaint_1577422009_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\mspaint_2087265873.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\mspaint_2087265873_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\msra_1844867936.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\msra_4195093464.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\msra_4195093464_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\MsSpellCheckingFacility_208554758_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\mstsc_2656706191.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\mstsc_2656706191_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\mstsc_3196649479.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\mstsc_3196649479_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\NAPSTAT_3060375504.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\NAPSTAT_3060375504_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Narrator_1056430170.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Narrator_1056430170_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\nbtstat_4195675623_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ndadmin_2828458064.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ndadmin_2828458064_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ndadmin_3803981240.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ndadmin_3803981240_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\openfiles_1903719364_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\openfiles_2955227868_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\OptionalFeatures_367998052.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\OptionalFeatures_367998052_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\OptionalFeatures_996550508.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\OptionalFeatures_996550508_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Order Supplies_3283514388.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Order Supplies_3283514388_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\nslookup_2084045562_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\nslookup_338442418.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\nslookup_338442418_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ntkrnlpa_2020406501_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ntoskrnl_4063049776_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ntoskrnl_882131128_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ntprint_2419999454.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ntprint_2419999454_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ntprint_4199617798.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ntprint_4199617798_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Panda Cloud Antivirus_2815229100_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Panda Free Antivirus_3967207701_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\PATHPING_2167185616_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\PATHPING_3234771768_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\pcalua_3523235023_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\pcaui_2402470347_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\pcaui_2746560259_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\printui_2067758512.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\printui_2067758512_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\printui_946606072.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\printui_946606072_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\print_1363902556_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\print_4129245412_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Private Character Editor_786984910.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Private Character Editor_786984910_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\proquota_225660542.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\proquota_225660542_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\proquota_3598161174.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\proquota_3598161174_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\psr_2006687748.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\psr_804789196.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\psr_804789196_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Purble Place_2042417858.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Purble Place_2042417858_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\PushPrinterConnections_1127454544_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\PushPrinterConnections_3314318664_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\qappsrv_4077160570_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Razer Synapse_4178752655_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\rdpclip_3051220973_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\rdpinit_1247282641_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\rdpshell_2994923309_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\rdpsign_2661774752_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\rdrleakdiag_1392813625_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\rdrleakdiag_2821765265_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\RMActivate_isv_4246626464_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\RMActivate_ssp_2140036652_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\RMActivate_ssp_3403279668_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\RMActivate_ssp_isv_3857279127_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\RMActivate_ssp_isv_3882605151_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\RmClient_1342345787_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\RmClient_3372190307_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Robocopy_3302043816_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Robocopy_3649568880_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ROUTE_1956472756_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ROUTE_2093372060_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\RpcPing_1110914508_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\RpcPing_1346586164_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\rrinstaller_1506015123_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\rrinstaller_2681905675_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\rstrui_2202897822.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\rstrui_2202897822_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\runas_1309975566_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\runas_2461402582_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\rundll32_1191434361.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\rundll32_1191434361_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\rundll32_3475116305.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\rundll32_3475116305_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\RunLegacyCPLElevated_1473105656.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\RunLegacyCPLElevated_1473105656_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SearchIndexer_1889541338_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SearchIndexer_690077298_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SearchProtocolHost_271871205_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SearchProtocolHost_3913453645_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Search_548837755.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Search_548837755_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SecEdit_3599653684.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SecEdit_3599653684_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SecEdit_3914111548.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SecEdit_3914111548_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\secinit_278103634_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\secinit_672751738_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\services_2426237316.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\services_2426237316_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\services_4132556611_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\sethc_3119403492.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\sethc_3119403492_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\sethc_3832105932.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\sethc_3832105932_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SetIEInstalledDate_3118466095_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SetIEInstalledDate_3452816007_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\setspn_2478109546_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\setup16_3178494621.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Snipping Tool_1432797505_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SnippingTool_1432797505.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SnippingTool_1432797505_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\snmptrap_2576480706_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Sobre o iTunes_947132654_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Sobre o Java_3821617999.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Sobre o Java_3821617999_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Solitaire_4068558962.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Solitaire_4068558962_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\sort_1298307479_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\sort_2807718495_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Sound Recorder_2630889316.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Suporte técnico on-line_3902124563_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Suporte técnico on-line_3967207701_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\svchost_2237454875_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\svchost_868878627_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\sxstrace_2244246036_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\sxstrace_4253236780_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\tcmsetup_3395312864_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\tcmsetup_3849120664_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\TCPSVCS_1019482007_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\TCPSVCS_3891503055_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\TeamSpeak 3 Client_2707696468.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\TeamSpeak 3 Client_2707696468_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\TeamSpeak 3 Client_2707696468_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\timeout_31882054_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\timeout_3943630510_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\TotalUninstaller_3052028522.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\TotalUninstaller_3052028522_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\TpmInit_2795634806.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\TpmInit_2795634806_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\TpmInit_3958808718.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\TpmInit_3958808718_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Sync Center_1165606226.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Sync Center_1165606226_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SyncHost_1236006098_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SyncHost_2236628954_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\syskey_2562001939.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\syskey_2562001939_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\syskey_3479845851.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\syskey_3479845851_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\System Configuration_1811115673.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\System Configuration_1811115673_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\System Information_1943427172.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SystemPropertiesPerformance_2110993793_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SystemPropertiesPerformance_2950745753.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SystemPropertiesPerformance_2950745753_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SystemPropertiesProtection_1473104114.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SystemPropertiesProtection_1473104114_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SystemPropertiesProtection_614181450.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SystemPropertiesProtection_614181450_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SystemPropertiesRemote_189335789.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SystemPropertiesRemote_189335789_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SystemPropertiesRemote_3225586469.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SystemPropertiesRemote_3225586469_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\systray_1851057858_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\systray_2343980186_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\tabcal_3258578604.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\tabcal_3258578604_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\TabTip_3768042652.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\TabTip_3768042652_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\takeown_21063408_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\takeown_3191861848_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\TapiUnattend_2963356108_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\TapiUnattend_2982060516_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\System Information_1943427172_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SystemPropertiesPerformance_2110993793.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\TSTheme_1098941939_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\tzutil_587100751_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Uninstall  _572853578.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\UnInstall_3498499567_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\tracerpt_102021634_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\tracerpt_1322180106_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\TRACERT_1571522298_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\TRACERT_3015900466_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\tscon_1596266032_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\tsdiscon_2256125926_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\tskill_1432025184_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Uplay_3661866817.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Uplay_3661866817_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\upnpcont_1438646232_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\upnpcont_2364232368_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\USB Disk Security_2896996118.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\USB Disk Security_2896996118_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wiaacmgr_3127500688.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wiaacmgr_3127500688_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wiaacmgr_4145572952.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wiaacmgr_4145572952_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Wiainst64_3629247968_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wowreg32_3648095603_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wowreg32_4170187019_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\WPDShextAutoplay_1529542199_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\WPDShextAutoplay_2851696191_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wpnpinst_122277340_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\write_1491903320.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\write_1491903320_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\write_1564122648.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\write_1564122648_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\write_242156672.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\write_242156672_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wsqmcons_4221481100.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wsqmcons_4221481100_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wuapp_1276368478_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wuapp_938584054_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wuauclt_1019749368_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\WUDFHost_524273333_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wusa_1729521613.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wusa_1729521613_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\AxInstUI_1077506744.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\AxInstUI_1077506744_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\baaupdate_3840569894.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\baaupdate_3840569894_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Backup and Restore Center_3880156041.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Backup and Restore Center_3880156041_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\bcdboot_2751612694_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\bcdedit_295381652_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\BdeHdCfg_208788600.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\BdeHdCfg_208788600_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\BdeUISrv_2931708733_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\BdeUnlockWizard_1730751349.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\BdeUnlockWizard_1730751349_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\bfsvc_249435151_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\BitLockerWizardElev_1519411975.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\BitLockerWizardElev_1519411975_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\BitLockerWizard_1820007677.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\bitsadmin_3209554310_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\bitsadmin_3739424270_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\bootcfg_1558344905_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\bootcfg_1838583857_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\bridgeunattend_3502711679_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Browser Hijack Recover Help_3345259803_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\CertEnrollCtrl_1269730698_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\CertEnrollCtrl_3697361778_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\certreq_3284413555.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\certreq_3284413555_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\certreq_3440457435.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\certreq_3440457435_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\certutil_1007492617.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\certutil_1007492617_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\certutil_4285658977.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\certutil_4285658977_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\change_2884145899_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Character Map_783469425.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Character Map_783469425_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Codec Tweak Tool_1736986382_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\cofire_999032265_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\colorcpl_3199292959.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\colorcpl_3199292959_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\colorcpl_3220108919.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\colorcpl_3220108919_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Command Prompt_1674256495.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Command Prompt_1674256495_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\compact_3848541394_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\compact_57918858_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\CompMgmtLauncher_3397902869.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\CompMgmtLauncher_3397902869_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Component Services_2462387452.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\cttunesvr_3067571855_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\cttunesvr_3081744519_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\cttune_3432486056.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\cttune_3432486056_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\cttune_3806500688.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\cttune_3806500688_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\DAEMON Tools Pro Agent_3421652683.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\DAEMON Tools Pro Agent_3421652683_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\DAEMON Tools Pro_1574856695.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\DAEMON Tools Pro_1574856695_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ddodiag_2297677793_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Default Programs_4279677474.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Default Programs_4279677474_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Defrag_3785156310.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Defrag_3785156310_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Desinstalar  _302010323.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Desinstalar  _302010323_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Desinstalar Any Audio Converter_3869655244.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Desinstalar Any Audio Converter_3869655244_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\DevicePairingWizard_300953268_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\DevicePairingWizard_4209581244.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\DevicePairingWizard_4209581244_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\DeviceProperties_1091292076.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\DeviceProperties_1091292076_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\DeviceProperties_452874468.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\DeviceProperties_452874468_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\DFDWiz_2698566047.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\DFDWiz_2698566047_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\dfrgui_1109628454.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\dfrgui_1109628454_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\dfrgui_2349868126.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\dfrgui_2349868126_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\dplaysvr_1095280458_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\dpnsvr_1347335952_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\dpnsvr_3529655896_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\DriverInstallCACMD_3937249154_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\driverquery_11651313_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\driverquery_4247773033_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\drvinst_1741235565_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\drvinst_4123599493_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\DTGadget_358276814_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\EasyAntiCheat_3224096666.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\EasyAntiCheat_3224096666_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\efsui_1160454529_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\efsui_3146444825_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\EhStorAuthn_268454932.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\EhStorAuthn_268454932_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\EhStorAuthn_2887202044.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\EhStorAuthn_2887202044_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Enable 3D Vision_1996685411.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Enable 3D Vision_1996685411_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\dxdiag_2072722986.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\dxdiag_2072722986_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\dxdiag_4141702770.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\dxdiag_4141702770_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Dxpserver_260474348.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Dxpserver_260474348_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Eap3Host_2803190602_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Ease of Access_2013928776.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\FlashPlayerApp_1757989919.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\FlashPlayerApp_1757989919_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\fltMC_3105890581_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\fltMC_417622445_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\fontview_3962714011.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\fontview_3962714011_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\fontview_878259091.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\fontview_878259091_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\forfiles_1535666987_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\forfiles_2153246483_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\FreeCell_2518821410.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\FreeCell_2518821410_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\GeForce Experience_3150968049_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\getmac_1007908956_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\getmac_69820948_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\GettingStarted_3739341614_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Google Chrome_548837755.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Google Chrome_548837755_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Google Chrome_548837755_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\gpresult_2343088243_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\gpresult_253468747_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\gpscript_1385264693_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\gpscript_1975058573_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\gpupdate_3381005459_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\gpupdate_861521163_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\GraphStudioNext (x64)_792339107.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\label_3515032291_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\lodctr_1377276111_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\logoff_1650203022_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Magnify_2339931214.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Malwarebytes Anti-Malware Chameleon_3166000551_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\mblctr_3655158939_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Media Player Classic (x64)_2069661457.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\mshta_2733958950.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\msra_1844867936_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\mtstocom_1402007885_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\NAPSTAT_1690633464_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Netplwiz_158988170.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\NetworkProjection_4201885438_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\nslookup_2084045562.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Paint_2087265873_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Sticky Notes_3919478692.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\UserAccountControlSettings_1860935751.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\fveprompt_925994012_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\fveupdate_1381502881_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\FXSCOVER_2399880397.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\FXSCOVER_2399880397_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\FXSSVC_129948782.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\FXSSVC_129948782_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\FXSUNATD_2833791762_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\GameExplorer_3796800748_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\GeForce Experience_3150968049.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\hwrcomp_1116543545_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\hwrreg_2889764296.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\hwrreg_2889764296_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\icacls_3902290826_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\icacls_4243835106_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\icardagt_2295450986_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\icardagt_942986930_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\icon_computer_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\iscsicli_817468496.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\iscsicli_817468496_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\iscsicpl_209708833.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\iscsicpl_209708833_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\iscsicpl_2483224457.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\iscsicpl_2483224457_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\isoburn_3207702171.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\isoburn_3207702171_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\isoburn_4191834947.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\isoburn_4191834947_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\iStart_1930530189.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\iStart_1930530189_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\iStart_1930530189_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\LogonUI_2805951412_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\lol.launcher - Atalho_1918296747.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\lol.launcher - Atalho_1918296747_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\lpksetup_4079598621.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\lpksetup_4079598621_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\lpremove_993820503_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\lsass_3753247715_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\lsm_580273815_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\mcbuilder_1160024930_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\mcbuilder_2322401194_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\mctadmin_1461933464_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\MdRes_3436562480.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\MdRes_3436562480_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\MdSched_674833901.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\MdSched_674833901_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Media Center_2706282600.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Media Center_2706282600_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\MigAutoPlay_2003350541.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\MigAutoPlay_2003350541_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\MigAutoPlay_456735061.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\MigAutoPlay_456735061_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\migwiz_569599225.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\migwiz_569599225_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Minesweeper_1130624066.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Minesweeper_1130624066_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\msconfig_1811115673.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\msconfig_1811115673_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\msdtc_1811938000.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\msdtc_1811938000_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\msdt_1505979755.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\msdt_1505979755_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\msdt_3201042723.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\msdt_3201042723_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\msfeedssync_2715770125_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\msfeedssync_3627345237_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\msg_483193876_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\mshta_1679459822.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\mshta_1679459822_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\mtstocom_3708633237_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\MuiUnattend_3093495401_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\MuiUnattend_3355866865_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\MultiDigiMon_1358397531.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\MultiDigiMon_1358397531_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\MV AntiSpy 4.0_1136485155.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\MV AntiSpy 4.0_1136485155_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\NAPSTAT_1690633464.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\net1_1326240179_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\net1_446394635_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\netbtugc_4174789101_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\netbtugc_4283281381_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\netcfg_1458349984_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\netiougc_1432603869_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\netiougc_1439594309_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Netplwiz_158988170_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Netplwiz_854026194.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Netplwiz_854026194_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\NetProj_2404855861.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\NetProj_2404855861_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\netsh_2711841633_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\netsh_465222921_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\NETSTAT_1327185520_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\NETSTAT_2921739288_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\NetworkProjection_4201885438.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\nvStreaming_2494110801_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\nvvsvc_2769909965_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Obter Ajuda_3863093069_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ocsetup_2666287366_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ocsetup_762880302_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\odbcad32_1533141491.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\odbcad32_1533141491_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\odbcad32_2808457371.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\odbcad32_2808457371_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\odbcconf_1917313531_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\odbcconf_2378502275_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\On-Screen Keyboard_167023978.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\On-Screen Keyboard_167023978_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\osk_167023978.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\osk_167023978_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\osk_3826797378.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\osk_3826797378_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\OxpsConverter_4168041841.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\OxpsConverter_4168041841_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\p2phost_1172144167.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\p2phost_1172144167_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Paint_2087265873.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\pcawrk_4169722737_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\pcwrun_3919657936_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\perfhost_4164037756_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\perfmon_3689724872.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\perfmon_3689724872_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\perfmon_4170825776.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\perfmon_4170825776_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Performance Monitor_2183600081.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Performance Monitor_2183600081_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\PnPutil_3436545815_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Popcorn Time_180795361_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\poqexec_2663125320_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\poqexec_3044163584_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\powercfg_2538829288_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\powercfg_2566494512_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\PresentationHost_3044403075.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\PresentationHost_3044403075_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\PresentationHost_3902570811.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\PresentationSettings_1391042446.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\PresentationSettings_1391042446_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\prevhost_169573324_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\prevhost_2028349668_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Print Management_3902533163.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Print Management_3902533163_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\PrintBrmUi_314157477.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\PrintBrmUi_314157477_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\printfilterpipelinesvc_1649972408_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\PrintIsolationHost_3002010440_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\qprocess_1671870631_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\query_566972271_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\quser_1442965565_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\qwinsta_2397693514_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\rasautou_2218252767_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\rasautou_3368151031_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\rasdial_3136270141_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\rasdial_3795130005_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\raserver_1556719163_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\raserver_417187107_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\rasphone_2418668793_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\rasphone_3183368273_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\regini_2604836683_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\regini_90023011_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\RegisterIEPKEYs_1369343412_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\RegisterIEPKEYs_785413244_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\regsvr32_135998019_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\regsvr32_3322360283_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\reg_221658013_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\reg_3911987269_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\rekeywiz_1959836017.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\rekeywiz_1959836017_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\RDVGHelper_3612096468_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ReAgentc_3736516456_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ReAgentc_890490112_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\recdisc_776955404.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\recdisc_776955404_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\recover_2027495847_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\recover_3815254463_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\regedit_2411450513.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\regedit_2411450513_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\regedit_2957189513.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\regedit_2957189513_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\regedt32_2385602145.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\regedt32_2385602145_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\regedt32_2392470585.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\regedt32_2392470585_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\rekeywiz_3575217145_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\relog_2816376358_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\relog_2860309758_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\RelPost_460340438.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\RelPost_460340438_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Remote Assistance_4195093464.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Remote Assistance_4195093464_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Remote Desktop Connection_3196649479.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\RunLegacyCPLElevated_708331968_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\runonce_3346772099.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\runonce_3346772099_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\runonce_4213930683.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\runonce_4213930683_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Run_4039519402_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\rwinsta_1337504785_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Samsung Easy Document Creator_1162205947.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Samsung Easy Document Creator_1162205947_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Samsung Easy Printer Manager_2324492757.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Samsung Easy Printer Manager_2324492757_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\sdchange_3719476316_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\sdchange_4203045748_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\sdclt_2234099729.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\sdclt_2234099729_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\sdiagnhost_2335040891_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\sdiagnhost_830795043_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SearchFilterHost_3245925187_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\setupcl_3581897005_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\setupSNK_3688262316_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\setupugc_1749976747.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\setupugc_1749976747_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\setupugc_3644065971.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\setupugc_3644065971_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\setx_1029423911_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\setx_963626415_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\sfc_1076253011_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\sfc_909994843_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\shadow_2909904891_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ShapeCollector_3169296978.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ShapeCollector_3169296978_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\sigverif_1826582334.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\sigverif_1826582334_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Skype_1182384586.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Skype_1182384586_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Skype_683513728.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Skype_683513728_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\slui_3852315182.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\slui_3852315182_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\smss_2203665419_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SndVol_1769724441.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SndVol_1769724441_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SndVol_2638448033.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SndVol_2638448033_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Sniper Elite 3_3312415009.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Sniper Elite 3_3312415009_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Task Scheduler_3648288580.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Task Scheduler_3648288580_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\taskeng_1429860844_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\taskeng_2001389236_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\taskhost_596350064_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\taskkill_2898868922_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\taskkill_4160203250_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\tasklist_1067135554_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\tasklist_1205130986_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\taskmgr_3885513824.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\taskmgr_3885513824_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\taskmgr_396513512.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\taskmgr_396513512_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\TSTheme_2459793563_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\TsUsbRedirectionGroupPolicyControl_730201252_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\TSWbPrxy_2550077492_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\TsWpfWrp_2365872830_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\TsWpfWrp_3544894182_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\twunk_16_1780677726_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\twunk_32_2339878168.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\twunk_32_2339878168_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\typeperf_2638876300_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\typeperf_3991073892_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\tzutil_595431959_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\ucsvc_2018774853_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\UI0Detect_1004725806.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\UI0Detect_1004725806_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\unins000_572853578.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\unins000_572853578_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\unins001_302010323.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\unins001_302010323_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\UserAccountControlSettings_1860935751_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\UserAccountControlSettings_2191612127.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\UserAccountControlSettings_2191612127_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\userinit_1864980486_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\userinit_2995039822_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\user_2373725700_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Utilman_2036529971.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Utilman_437993387.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Utilman_437993387_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\uxs01ci_3324886344.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\uxs01ci_3324886344_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\VaultCmd_12588741_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\VaultSysUi_2864736410_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\vdsldr_253909454_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\vds_1647958132_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\verclsid_2118352765_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\verclsid_3155583573_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\vmicsvc_1040024994_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\vssadmin_2541758412_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\vssadmin_3637263588_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\VSSVC_3786878990_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\w32tm_3686612538_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\w32tm_839665586_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\waitfor_279903189_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\waitfor_4261159805_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wbadmin_1426043791_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wbengine_1039394094_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Web Navigation_773122775.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Web Navigation_773122775_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wecutil_1575268712_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wecutil_2526358976_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Welcome Center_1028511490.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wevtutil_3736989241_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wevtutil_4278969009_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wextract_1841910703.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wextract_1841910703_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wextract_2909858935.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wextract_2909858935_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\WFS_2525691759.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\WFS_2525691759_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\where_2053429544_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\where_662710896_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\whoami_3238512032_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\whoami_4183854424_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\winrshost_3817478628_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\winrshost_4151849276_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\winrs_1672166188_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\winrs_3865531876_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\WinSAT_1767509443_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\winver_1042674340.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\winver_1042674340_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\winver_2012454444.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\winver_2012454444_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wisptis_292603494_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wksprt_863108228.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wksprt_863108228_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wlanext_2549431312_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wlanext_3451307048_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wlrmdr_3244312207.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wlrmdr_3244312207_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Wordpad_2147895244.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Wordpad_2147895244_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wscript_2271514061.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wscript_2271514061_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wscript_3222972597.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wscript_3222972597_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\WSManHTTPConfig_1626938113_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\WSManHTTPConfig_3271729609_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wsmprovhost_1519973687_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Utilman_2036529971_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Verificar Atualizações_3821617999.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Visite Java.com_1207952055_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Welcome Center_1028511490_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wermgr_2174461925_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wiawow64_3688592815_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Windows DVD Maker_3101812535.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Windows PowerShell (x86)_2021831123_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\winresume_547501028_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wsmprovhost_3887510863_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\xwizard_4269358998.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\xwizard_4269358998_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\xwizard_956478.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\xwizard_956478_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\YAC Desktop_1472305772.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\YAC Desktop_1472305772_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\YAC Desktop_1472305772_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\YAC_1930530189.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\YAC_1930530189_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\YAC_1930530189_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\µTorrent_3921001683.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\µTorrent_3921001683_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wusa_2803183317.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wusa_2803183317_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\xcopy_3329104392_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\xcopy_4020758016_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\XPS Viewer_937229742.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\XPS Viewer_937229742_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\xpsrchvw_1264211494.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\xpsrchvw_1264211494_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\xpsrchvw_937229742.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\xpsrchvw_937229742_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\splwow64_3690764359_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\spoolsv_821756727_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\sppsvc_4287544848_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\spreview_1739402420_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SPTD Setup_690980710.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\SPTD Setup_690980710_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\srdelayed_228862440_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\srdelayed_4018656320_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wimserv_171323228_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\wimserv_3135204068_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Win7DSFilterTweaker_1736986382_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Browser Hijack Recover(BHR)_2054028876_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Browser Hijack Recover(BHR)_2054028876_48_48.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\bthudtask_1653054055.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\bthudtask_1653054055_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\bthudtask_2988481135.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\bthudtask_2988481135_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\cacls_1016831467_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\cacls_662567987_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\convert_3190338418_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\convert_3256440922_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Create Recovery Disc_776955404.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Create Recovery Disc_776955404_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\credwiz_190816049.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\credwiz_190816049_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\credwiz_3578090121.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\credwiz_3578090121_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Magnify_2339931214_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Magnify_3966871686.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Magnify_3966871686_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Mahjong_3602682306.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Mahjong_3602682306_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\makecab_2221704711_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\makecab_2702328287_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Limpa profundamente arquivos de Spam_1861551635_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\LocationNotifications_1833686942.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\LocationNotifications_1833686942_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\LocationNotifications_4224271046.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\LocationNotifications_4224271046_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Locator_690226013_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\resmon_671665669.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\resmon_671665669_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Resource Monitor_2183600081.ico, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\Resource Monitor_2183600081_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\RMActivate_1500228763_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\iDesk\icons\RMActivate_2540011443_16_16.png, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\log\iDesk.log, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\log\install.log, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\log\isafedownloader.log, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\log\iSafeStarts.log, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\log\iSafeTray.log, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\log\iStart.log, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\log\logreport.log, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\log\uninstall.log, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\startup\1269715695.startup, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\startup\2790810933.startup, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\userbk\eDelayinfo.edb, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\userbk\cfg\ors.dat, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\userbk\data\nlu.dat, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\userbk\data\sta.dat, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\userbk\log\bugreport.ini, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\userbk\log\bugreport.zip, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\userbk\log\ipcdl.log, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\userbk\log\ipcproxy.log, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\userbk\log\iSafe.LOG, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\userbk\log\iSafeBS.log, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\userbk\log\iSafeKrnlCall.log, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\userbk\log\iSafeKrnlMonCall.log, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\userbk\log\iSafeList.log, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\userbk\log\iSafeSvc.LOG, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\userbk\log\iSafeSvc2.LOG, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\userbk\log\iSafeTaskHelper.LOG, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\userbk\log\iSafeTHlp64.LOG, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\userbk\log\iSafeVirusScanner.log, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\userbk\log\clog\1450437571.txt, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\userbk\log\clog\1451183206.txt, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\userbk\log\clog\1455147795.txt, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\userbk\user\cbss.dat, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\userbk\user\co.dat, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\userbk\user\eui.dat, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\userbk\user\ruo.dat, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\userbk\user\safe.dat, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\userbk\user\sie.dat, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\userbk\user\softcache2.dat, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\userbk\user\srd.dat, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\userbk\user\svc2.dat, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    FraudTool.YAC, C:\Users\Marlon\AppData\Roaming\Elex-tech\YAC\userbk\user\svc2_com.dat, Quarentena, [df74e4948d0da5918d4596157f83c739], 
    PUP.Optional.IDSCProduct, C:\Program Files (x86)\SpaceSondPro_v53.11012\config.cfg, Quarentena, [5ff46711c8d2310523a036917f8304fc], 
    PUP.Optional.IDSCProduct, C:\Program Files (x86)\SpaceSondPro_v53.11012\ioproduct_service.bat, Quarentena, [5ff46711c8d2310523a036917f8304fc], 
    PUP.Optional.IDSCProduct, C:\Program Files (x86)\SpaceSondPro_v53.11012\ioprotect_conf.xml, Quarentena, [5ff46711c8d2310523a036917f8304fc], 
    PUP.Optional.IDSCProduct, C:\Program Files (x86)\SpaceSondPro_v53.11012\workXML.xml, Quarentena, [5ff46711c8d2310523a036917f8304fc], 
    Adware.LaSuperba, C:\uninst\uninstall.html, Quarentena, [351e94e4544679bd890fc4d7758fff01], 
    PUP.Optional.CrossAd.Gen, C:\Users\Marlon\AppData\Local\Virtual Bus\Component\config.json, Quarentena, [59faeb8d396189ad9b13cfca37cd8c74], 
    PUP.Optional.CrossAd.Gen, C:\Users\Marlon\AppData\Local\Virtual Bus\Component\hello.js, Quarentena, [59faeb8d396189ad9b13cfca37cd8c74], 
    PUP.Optional.CrossAd.Gen, C:\Users\Marlon\AppData\Local\Virtual Bus\Component\manifest.json, Quarentena, [59faeb8d396189ad9b13cfca37cd8c74], 
    PUP.Optional.CrossAd.Gen, C:\Users\Marlon\AppData\Local\Virtual Bus\Component\scriptTagContext.js, Quarentena, [59faeb8d396189ad9b13cfca37cd8c74], 
    PUP.Optional.CrossAd.Gen, C:\Users\Marlon\AppData\Local\Virtual Bus\Component\tmp_bg.js, Quarentena, [59faeb8d396189ad9b13cfca37cd8c74], 
    PUP.Optional.CrossAd.Gen, C:\Users\Marlon\AppData\Local\Virtual Bus\Component\uconfig.json, Quarentena, [59faeb8d396189ad9b13cfca37cd8c74], 
    PUP.Optional.CrossAd.Gen, C:\Users\Marlon\AppData\Local\Virtual Bus\{E7B5496B-2529-ED95-B023-558453DEA9D4}\c.dat, Quarentena, [59faeb8d396189ad9b13cfca37cd8c74], 
    PUP.Optional.CrossAd.Gen, C:\Users\Marlon\AppData\Local\Virtual Bus\{E7B5496B-2529-ED95-B023-558453DEA9D4}\f.dat, Quarentena, [59faeb8d396189ad9b13cfca37cd8c74], 

    Setores físicos: 0
    (Nenhum item malicioso detectado)


    (end)

     

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites

    @mvrodrigues

     

    Leia as instruções contidas neste link: "Como usar o ComboFix"
     
    Faça o download do ComboFix e salve em sua Área de Trabalho (Desktop).

     

    Desative temporariamente seu antivírus, antispywares e firewall, para não causar conflitos.

     

    • Clique duas vezes em ComboFix.exe salvo em sua Área de Trabalho (Desktop).
      • Atenção: Usuários Windows Vista, 7 e 8, cliquem com o botão direito do mouse e escolha: execadmin.png
    • Leia e aceite as condições, teclando ENTER.
    • Atenção: Não utilize o mouse nem o teclado enquanto a ferramenta estiver sendo executada, isso pode fazer com que o computador pare.
    • Poderá surgir o aviso que é necessário reiniciar o computador.  
    • NÃO REINICIE!!! O ComboFix reiniciará o computador automaticamente.
    • Quando a ferramenta terminar, será gerado um log (o arquivo C:\ComboFix.txt).
    • Copie e cole o conteúdo desse arquivo em sua próxima resposta.

     

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
  • Autor do tópico
  • ComboFix 16-09-28.01 - Marlon 02/10/2016   8:37.1.8 - x64
    Microsoft Windows 7 Ultimate   6.1.7601.1.1252.55.1046.18.16372.14155 [GMT -3:00]
    Executando de: c:\users\Marlon\Downloads\ComboFix.exe
    AV: Kaspersky Internet Security *Disabled/Updated* {86367591-4BE4-AE08-2FD9-7FCB8259CD98}
    FW: Kaspersky Internet Security *Disabled* {BE0DF4B4-018B-AF50-0486-D6FE7C8A8AE3}
    SP: Kaspersky Internet Security *Disabled/Updated* {3D579475-6DDE-A186-1569-44B9F9DE8725}
    SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
     * Criado um novo ponto de restauração
    .
    .
    (((((((((((((((((((((((((((((((((((((   Outras Exclusões   )))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    c:\windows\SysWow64\Config.ini
    c:\windows\SysWow64\Packet.dll
    c:\windows\SysWow64\pthreadVC.dll
    c:\windows\SysWow64\wpcap.dll
    .
    .
    (((((((((((((((((((((((((((((((((((((((   Drivers/Serviços   )))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    -------\Legacy_NPF
    -------\Service_npf
    .
    .
    ((((((((((((((((   Arquivos/Ficheiros criados de 2016-09-02 to 2016-10-02  ))))))))))))))))))))))))))))
    .
    .
    2016-10-02 12:02 . 2016-10-02 12:02    --------    d-----w-    c:\users\Default\AppData\Local\temp
    2016-09-30 16:59 . 2016-09-30 17:25    192216    ----a-w-    c:\windows\system32\drivers\MBAMSwissArmy.sys
    2016-09-30 16:59 . 2016-03-10 17:09    64896    ----a-w-    c:\windows\system32\drivers\mwac.sys
    2016-09-30 16:59 . 2016-03-10 17:08    140672    ----a-w-    c:\windows\system32\drivers\mbamchameleon.sys
    2016-09-30 16:59 . 2016-03-10 17:08    27008    ----a-w-    c:\windows\system32\drivers\mbam.sys
    2016-09-30 16:59 . 2016-09-30 16:59    --------    d-----w-    c:\program files (x86)\Malwarebytes Anti-Malware
    2016-09-23 17:06 . 2016-09-23 17:06    --------    d-----w-    C:\zoek_backup
    .
    .
    .
    (((((((((((((((((((((((((((((((((((((   Relatório Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2016-08-19 17:04 . 2015-12-03 14:10    110424    ----a-w-    c:\windows\system32\drivers\klwtp.sys
    2016-08-19 17:03 . 2016-08-06 11:42    1001304    ----a-w-    c:\windows\system32\drivers\klif.sys
    2016-08-19 17:01 . 2016-04-29 01:10    236888    ----a-w-    c:\windows\system32\drivers\klhk.sys
    2016-07-15 20:50 . 2012-07-17 17:37    24800    ----a-w-    c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
    2016-07-12 12:21 . 2016-07-17 11:30    46016    ----a-w-    c:\windows\system32\nvhdap64.dll
    2016-07-12 12:21 . 2016-07-17 11:30    214592    ----a-w-    c:\windows\system32\drivers\nvhda64v.sys
    2016-07-12 12:21 . 2016-02-11 00:44    1579976    ----a-w-    c:\windows\system32\nvhdagenco6420103.dll
    2016-07-11 02:13 . 2016-07-17 11:33    1887800    ----a-w-    c:\windows\system32\NvCamera64.dll
    2016-07-11 02:13 . 2016-07-17 11:33    1595840    ----a-w-    c:\windows\SysWow64\NvCamera32.dll
    2016-07-11 02:13 . 2016-07-17 11:30    930360    ----a-w-    c:\windows\system32\NvIFR64.dll
    2016-07-11 02:13 . 2016-07-17 11:30    909880    ----a-w-    c:\windows\SysWow64\NvFBC.dll
    2016-07-11 02:13 . 2016-07-17 11:30    9020656    ----a-w-    c:\windows\SysWow64\nvopencl.dll
    2016-07-11 02:13 . 2016-07-17 11:30    8742360    ----a-w-    c:\windows\SysWow64\nvptxJitCompiler.dll
    2016-07-11 02:13 . 2016-07-17 11:30    8615336    ----a-w-    c:\windows\SysWow64\nvcuda.dll
    2016-07-11 02:13 . 2016-07-17 11:30    852024    ----a-w-    c:\windows\SysWow64\NvIFR.dll
    2016-07-11 02:13 . 2016-07-17 11:30    694672    ----a-w-    c:\windows\system32\nvfatbinaryLoader.dll
    2016-07-11 02:13 . 2016-07-17 11:30    583736    ----a-w-    c:\windows\SysWow64\nvfatbinaryLoader.dll
    2016-07-11 02:13 . 2016-07-17 11:30    544120    ----a-w-    c:\windows\system32\nvEncodeAPI64.dll
    2016-07-11 02:13 . 2016-07-17 11:30    490744    ----a-w-    c:\windows\system32\nvumdshimx.dll
    2016-07-11 02:13 . 2016-07-17 11:30    459320    ----a-w-    c:\windows\SysWow64\nvEncodeAPI.dll
    2016-07-11 02:13 . 2016-07-17 11:30    444472    ----a-w-    c:\windows\system32\NvIFROpenGL.dll
    2016-07-11 02:13 . 2016-07-17 11:30    406064    ----a-w-    c:\windows\SysWow64\nvumdshim.dll
    2016-07-11 02:13 . 2016-07-17 11:30    39977920    ----a-w-    c:\windows\system32\nvcompiler.dll
    2016-07-11 02:13 . 2016-07-17 11:30    394808    ----a-w-    c:\windows\SysWow64\NvIFROpenGL.dll
    2016-07-11 02:13 . 2016-07-17 11:30    3542072    ----a-w-    c:\windows\system32\nvcuvid.dll
    2016-07-11 02:13 . 2016-07-17 11:30    35115968    ----a-w-    c:\windows\SysWow64\nvcompiler.dll
    2016-07-11 02:13 . 2016-07-17 11:30    31640512    ----a-w-    c:\windows\system32\nvoglv64.dll
    2016-07-11 02:13 . 2016-07-17 11:30    3099072    ----a-w-    c:\windows\SysWow64\nvcuvid.dll
    2016-07-11 02:13 . 2016-07-17 11:30    25414080    ----a-w-    c:\windows\SysWow64\nvoglv32.dll
    2016-07-11 02:13 . 2016-07-17 11:30    1939000    ----a-w-    c:\windows\system32\nvdispco6436881.dll
    2016-07-11 02:13 . 2016-07-17 11:30    177952    ----a-w-    c:\windows\system32\nvinitx.dll
    2016-07-11 02:13 . 2016-07-17 11:30    17321352    ----a-w-    c:\windows\system32\nvd3dumx.dll
    2016-07-11 02:13 . 2016-07-17 11:30    16790552    ----a-w-    c:\windows\SysWow64\nvwgf2um.dll
    2016-07-11 02:13 . 2016-07-17 11:30    1571776    ----a-w-    c:\windows\system32\nvdispgenco6436881.dll
    2016-07-11 02:13 . 2016-07-17 11:30    155768    ----a-w-    c:\windows\SysWow64\nvinit.dll
    2016-07-11 02:13 . 2016-07-17 11:30    153416    ----a-w-    c:\windows\system32\nvoglshim64.dll
    2016-07-11 02:13 . 2016-07-17 11:30    13581880    ----a-w-    c:\windows\system32\drivers\nvlddmkm.sys
    2016-07-11 02:13 . 2016-07-17 11:30    131584    ----a-w-    c:\windows\SysWow64\nvoglshim32.dll
    2016-07-11 02:13 . 2016-07-17 11:30    10691632    ----a-w-    c:\windows\system32\nvopencl.dll
    2016-07-11 02:13 . 2016-07-17 11:30    10656112    ----a-w-    c:\windows\system32\nvptxJitCompiler.dll
    2016-07-11 02:13 . 2016-07-17 11:30    10234336    ----a-w-    c:\windows\system32\nvcuda.dll
    2016-07-11 02:13 . 2016-07-17 11:30    1001016    ----a-w-    c:\windows\system32\NvFBC64.dll
    2016-07-11 02:13 . 2016-02-11 00:44    19220352    ----a-w-    c:\windows\system32\nvwgf2umx.dll
    2016-07-11 02:13 . 2016-02-11 00:44    3840096    ----a-w-    c:\windows\system32\nvapi64.dll
    2016-07-11 02:13 . 2016-02-11 00:44    3393576    ----a-w-    c:\windows\SysWow64\nvapi.dll
    2016-07-11 02:13 . 2016-02-11 00:44    14371384    ----a-w-    c:\windows\SysWow64\nvd3dum.dll
    2016-07-10 23:17 . 2016-02-11 00:46    6384064    ----a-w-    c:\windows\system32\nvcpl.dll
    2016-07-10 23:17 . 2016-02-11 00:46    2465848    ----a-w-    c:\windows\system32\nvsvc64.dll
    2016-07-10 23:17 . 2016-02-11 00:46    81856    ----a-w-    c:\windows\system32\nv3dappshextr.dll
    2016-07-10 23:17 . 2016-02-11 00:46    71224    ----a-w-    c:\windows\system32\nvshext.dll
    2016-07-10 23:17 . 2016-02-11 00:46    547896    ----a-w-    c:\windows\system32\nv3dappshext.dll
    2016-07-10 23:17 . 2016-02-11 00:46    1762752    ----a-w-    c:\windows\system32\nvsvcr.dll
    2016-07-10 23:17 . 2016-02-11 00:46    1364536    ----a-w-    c:\windows\system32\nvvsvc.exe
    2016-07-10 23:17 . 2016-02-11 00:46    392128    ----a-w-    c:\windows\system32\nvmctray.dll
    2016-07-10 22:36 . 2016-07-17 11:32    127424    ----a-w-    c:\windows\SysWow64\nvStreaming.exe
    2016-07-07 17:03 . 2016-02-11 00:46    7211925    ----a-w-    c:\windows\system32\nvcoproc.bin
    .
    .
    ((((((((((((((((((((((((((   Pontos de Carregamento do Registro   )))))))))))))))))))))))))))))))))))))))
    .
    .
    *Nota* entradas vazias e legítimas por padrão não são apresentadas. 
    REGEDIT4
    .
    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584]
    .
    [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
    "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584]
    .
    [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
    "panda4_2dn"="reg.exe delete HKCU\Software\AppDataLow\Software\panda4_2dn" [X]
    "panda"="reg.exe delete HKCU\Software\AppDataLow\Software\panda" [X]
    "panda_XP"="reg.exe delete HKCU\Software\panda" [X]
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
    "ConsentPromptBehaviorAdmin"= 5 (0x5)
    "ConsentPromptBehaviorUser"= 3 (0x3)
    "EnableUIADesktopToggle"= 0 (0x0)
    "MaxGPOScriptWait"= 600 (0x258)
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
    "LoadAppInit_DLLs"=1 (0x1)
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
    @=""
    .
    R0 GbpKm;Gbp KernelMode;c:\windows\system32\drivers\GbpKm.sys;c:\windows\SYSNATIVE\drivers\GbpKm.sys [x]
    R1 Bfilter;Baidu Antivirus Minifilter Driver;c:\windows\System32\drivers\Bfilter.sys;c:\windows\SYSNATIVE\drivers\Bfilter.sys [x]
    R1 Bfmon;Baidu FS Monitor Driver;c:\windows\System32\drivers\Bfmon.sys;c:\windows\SYSNATIVE\drivers\Bfmon.sys [x]
    R1 Bnbase;Bnbase;c:\windows\system32\drivers\bnbasex64.sys;c:\windows\SYSNATIVE\drivers\bnbasex64.sys [x]
    R1 Bndef;Baidu NetDefense;c:\windows\System32\drivers\bndef64.sys;c:\windows\SYSNATIVE\drivers\bndef64.sys [x]
    R1 Bprotect;Baidu Protect;c:\windows\System32\drivers\Bprotect.sys;c:\windows\SYSNATIVE\drivers\Bprotect.sys [x]
    R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
    R2 nulivodo;Telephone Line Equals Sign; [x]
    R3 CorsairVBusDriver;Corsair Bus;c:\windows\system32\DRIVERS\CorsairVBusDriver.sys;c:\windows\SYSNATIVE\DRIVERS\CorsairVBusDriver.sys [x]
    R3 CorsairVHidDriver;Corsair virtual device;c:\windows\system32\DRIVERS\CorsairVHidDriver.sys;c:\windows\SYSNATIVE\DRIVERS\CorsairVHidDriver.sys [x]
    R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x]
    R3 EasyAntiCheat;EasyAntiCheat;c:\windows\system32\EasyAntiCheat.exe;c:\windows\SYSNATIVE\EasyAntiCheat.exe [x]
    R3 IOMap;IOMap;c:\windows\system32\drivers\IOMap64.sys;c:\windows\SYSNATIVE\drivers\IOMap64.sys [x]
    R3 klids;klids;c:\programdata\Kaspersky Lab\AVP16.0.1\Bases\klids.sys;c:\programdata\Kaspersky Lab\AVP16.0.1\Bases\klids.sys [x]
    R3 klvssbrigde64;klvssbrigde64;c:\program files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\x64\vssbridge64.exe;c:\program files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\x64\vssbridge64.exe [x]
    R3 LADF_CaptureOnly;LADF Capture Filter Driver;c:\windows\system32\DRIVERS\ladfGSCamd64.sys;c:\windows\SYSNATIVE\DRIVERS\ladfGSCamd64.sys [x]
    R3 LADF_RenderOnly;LADF Render Filter Driver;c:\windows\system32\DRIVERS\ladfGSRamd64.sys;c:\windows\SYSNATIVE\DRIVERS\ladfGSRamd64.sys [x]
    R3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;c:\windows\system32\drivers\LGBusEnum.sys;c:\windows\SYSNATIVE\drivers\LGBusEnum.sys [x]
    R3 LGSHidFilt;Logitech Gaming KMDF HID Filter Driver;c:\windows\system32\DRIVERS\LGSHidFilt.Sys;c:\windows\SYSNATIVE\DRIVERS\LGSHidFilt.Sys [x]
    R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;c:\windows\system32\drivers\LGVirHid.sys;c:\windows\SYSNATIVE\drivers\LGVirHid.sys [x]
    R3 MFE_RR;MFE_RR;c:\users\Marlon\AppData\Local\Temp\mfe_rr.sys;c:\users\Marlon\AppData\Local\Temp\mfe_rr.sys [x]
    R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
    R3 panda_url_filteringd;panda_url_filteringd driver;c:\programdata\Panda Security URL Filtering\panda_url_filteringd.sys;c:\programdata\Panda Security URL Filtering\panda_url_filteringd.sys [x]
    R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
    R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys;c:\windows\SYSNATIVE\drivers\synth3dvsc.sys [x]
    R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys;c:\windows\SYSNATIVE\drivers\terminpt.sys [x]
    R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
    R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
    R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys;c:\windows\SYSNATIVE\drivers\tsusbhub.sys [x]
    R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
    R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys;c:\windows\SYSNATIVE\drivers\rdvgkmd.sys [x]
    R3 WatAdminSvc;Serviço de Tecnologias de Ativação do Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
    R4 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE64.EXE;c:\program files\SUPERAntiSpyware\SASCORE64.EXE [x]
    R4 Apple Mobile Device Service;Apple Mobile Device Service;c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe;c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [x]
    R4 ASGT;ASGT;c:\windows\SysWOW64\ASGT.exe;c:\windows\SysWOW64\ASGT.exe [x]
    R4 panda_url_filtering;panda_url_filtering Service;c:\programdata\Panda Security URL Filtering\Panda_URL_Filteringb.exe;c:\programdata\Panda Security URL Filtering\Panda_URL_Filteringb.exe [x]
    R4 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
    S0 cm_km;Kaspersky Lab ZAO Cryptographic Module x64 (Weak);c:\windows\system32\DRIVERS\cm_km.sys;c:\windows\SYSNATIVE\DRIVERS\cm_km.sys [x]
    S0 klbackupdisk;Kaspersky Lab klbackupdisk;c:\windows\system32\DRIVERS\klbackupdisk.sys;c:\windows\SYSNATIVE\DRIVERS\klbackupdisk.sys [x]
    S0 mv61xx;mv61xx;c:\windows\system32\DRIVERS\mv61xx.sys;c:\windows\SYSNATIVE\DRIVERS\mv61xx.sys [x]
    S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
    S1 klbackupflt;Kaspersky Lab klbackupflt;c:\windows\system32\DRIVERS\klbackupflt.sys;c:\windows\SYSNATIVE\DRIVERS\klbackupflt.sys [x]
    S1 klhk;Kaspersky Lab service driver;c:\windows\system32\DRIVERS\klhk.sys;c:\windows\SYSNATIVE\DRIVERS\klhk.sys [x]
    S1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\system32\DRIVERS\klim6.sys;c:\windows\SYSNATIVE\DRIVERS\klim6.sys [x]
    S1 klpd;Kaspersky Lab format recognizer driver;c:\windows\system32\DRIVERS\klpd.sys;c:\windows\SYSNATIVE\DRIVERS\klpd.sys [x]
    S1 kltdi;kltdi;c:\windows\system32\DRIVERS\kltdi.sys;c:\windows\SYSNATIVE\DRIVERS\kltdi.sys [x]
    S1 Klwtp;KLwtp - WFP callout traffic inspector;c:\windows\system32\DRIVERS\klwtp.sys;c:\windows\SYSNATIVE\DRIVERS\klwtp.sys [x]
    S1 kneps;kneps;c:\windows\system32\DRIVERS\kneps.sys;c:\windows\SYSNATIVE\DRIVERS\kneps.sys [x]
    S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS [x]
    S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS [x]
    S2 AVP16.0.1;Serviço do Kaspersky Anti-Virus 16.0.1;c:\program files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\avp.exe;c:\program files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\avp.exe [x]
    S2 kldisk;kldisk;c:\windows\system32\DRIVERS\kldisk.sys;c:\windows\SYSNATIVE\DRIVERS\kldisk.sys [x]
    S2 NvNetworkService;NVIDIA Network Service;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [x]
    S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [x]
    S2 Razer Chroma SDK Service;Razer Chroma SDK Service;c:\program files (x86)\Razer Chroma SDK\bin\RzSDKService.exe;c:\program files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [x]
    S2 Razer Game Scanner Service;Razer Game Scanner;c:\program files (x86)\Razer\Razer Services\GSS\GameScannerService.exe;c:\program files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [x]
    S2 rzpmgrk;rzpmgrk;c:\windows\system32\drivers\rzpmgrk.sys;c:\windows\SYSNATIVE\drivers\rzpmgrk.sys [x]
    S2 rzpnk;rzpnk;c:\windows\system32\drivers\rzpnk.sys;c:\windows\SYSNATIVE\drivers\rzpnk.sys [x]
    S2 RzSurroundVADStreamingService;RzSurroundVADStreamingService;c:\programdata\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe;c:\programdata\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe [x]
    S2 SSPORT;SSPORT;c:\windows\system32\Drivers\SSPORT.sys;c:\windows\SYSNATIVE\Drivers\SSPORT.sys [x]
    S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe [x]
    S3 e1yexpress;Driver do Intel(R) Gigabit Network Connections;c:\windows\system32\DRIVERS\e1y60x64.sys;c:\windows\SYSNATIVE\DRIVERS\e1y60x64.sys [x]
    S3 klflt;Kaspersky Lab Kernel DLL;c:\windows\system32\DRIVERS\klflt.sys;c:\windows\SYSNATIVE\DRIVERS\klflt.sys [x]
    S3 klkbdflt;Kaspersky Lab KLKBDFLT;c:\windows\system32\DRIVERS\klkbdflt.sys;c:\windows\SYSNATIVE\DRIVERS\klkbdflt.sys [x]
    S3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\DRIVERS\klmouflt.sys;c:\windows\SYSNATIVE\DRIVERS\klmouflt.sys [x]
    S3 NvStreamKms;NvStreamKms;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [x]
    S3 NvStreamNetworkSvc;NVIDIA Streamer Network Service;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [x]
    S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
    S3 rzendpt;rzendpt;c:\windows\system32\DRIVERS\rzendpt.sys;c:\windows\SYSNATIVE\DRIVERS\rzendpt.sys [x]
    S3 RZSURROUNDVADService;Razer Surround Audio Service;c:\windows\system32\drivers\RzSurroundVAD.sys;c:\windows\SYSNATIVE\drivers\RzSurroundVAD.sys [x]
    S3 rzudd;Razer Keyboard Driver;c:\windows\system32\DRIVERS\rzudd.sys;c:\windows\SYSNATIVE\DRIVERS\rzudd.sys [x]
    S3 SnakeEyes;Corsair M65 Gaming Mouse;c:\windows\system32\drivers\SnakeEyes.sys;c:\windows\SYSNATIVE\drivers\SnakeEyes.sys [x]
    .
    .
    --- =Outros Serviços/Drivers Na Memória ---
    .
    *NewlyCreated* - WS2IFSL
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
    2016-09-17 02:15    1267528    ----a-w-    c:\program files (x86)\Google\Chrome\Application\53.0.2785.116\Installer\chrmstp.exe
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{A6EADE66-0000-0000-484E-7E8A45000000}]
    2016-06-30 11:55    322232    ----a-w-    c:\program files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll
    .
    Conteúdo da pasta 'Tarefas Agendadas'
    .
    2016-10-02 c:\windows\Tasks\Adobe Flash Player Updater.job
    - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-29 20:59]
    .
    2016-10-02 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
    - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-10-29 07:47]
    .
    2016-10-02 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
    - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-10-29 07:47]
    .
    .
    --------- X64 Entries -----------
    .
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "NvBackend"="c:\program files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" [2016-06-14 2397120]
    .
    ------- Scan Suplementar -------
    .
    uLocal Page = c:\windows\system32\blank.htm
    uStart Page = hxxp://www.google.com
    mStart Page = hxxp://www.google.com
    mDefault_Page_URL = hxxp://www.google.com
    mLocal Page = c:\windows\SysWOW64\blank.htm
    uInternet Settings,ProxyOverride = <local>
    Trusted Zone: bancobrasil.com.br\www
    Trusted Zone: bancobrasil.com.br\www14
    Trusted Zone: bancobrasil.com.br\www2
    Trusted Zone: bb.com.br\www
    Trusted Zone: itau.com.br
    Trusted Zone: itau.com.br\bankline
    Trusted Zone: itau.com.br\clickbanking
    Trusted Zone: itau.com.br\guardiao
    Trusted Zone: itau.com.br\www
    TCP: DhcpNameServer = 200.175.5.139 200.175.89.139 192.168.25.1
    .
    - - - - ORFÃOS REMOVIDOS - - - -
    .
    ShellExecuteHooks-{E37CB5F0-51F5-4395-A808-5FA49E399008} - (no file)
    Notify- GbPluginBb - c:\program files (x86)\GbPlugin\gbieh.dll
    Notify- GbPluginUni - c:\program files (x86)\GbPlugin\gbiehUni.dll
    HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
    .
    .
    .
    --------------------- CHAVES DO REGISTRO BLOQUEADAS ---------------------
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
    @Denied: (A 2) (Everyone)
    @="FlashBroker"
    "LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_16_0_0_305_ActiveX.exe,-101"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
    "Enabled"=dword:00000001
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
    @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_16_0_0_305_ActiveX.exe"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
    @Denied: (A 2) (Everyone)
    @="IFlashBroker6"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
    @="{00020424-0000-0000-C000-000000000046}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    "Version"="1.0"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
    "Enabled"=dword:00000001
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_16_0_0_305_ActiveX.exe"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
    @="0"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
    @="ShockwaveFlash.ShockwaveFlash.16"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_16_0_0_305.ocx, 1"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
    @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
    @="1.0"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
    @="ShockwaveFlash.ShockwaveFlash"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
    @="FlashFactory.FlashFactory.1"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_16_0_0_305.ocx, 1"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
    @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
    @="1.0"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
    @="FlashFactory.FlashFactory"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
    @Denied: (A 2) (Everyone)
    @="IFlashBroker6"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
    @="{00020424-0000-0000-C000-000000000046}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    "Version"="1.0"
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
    @Denied: (Full) (Everyone)
    .
    ------------------------ Outros Processos em Execução ------------------------
    .
    c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
    c:\program files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\avpui.exe
    .
    **************************************************************************
    .
    Tempo para conclusão: 2016-10-02  09:17:26 - Máquina reiniciou
    ComboFix-quarantined-files.txt  2016-10-02 12:17
    .
    Pré-execução: 890.524.389.376 bytes disponíveis
    Pós execução: 889.753.239.552 bytes disponíveis
    .
    - - End Of File - - 4914B6B2ED10533979EC778C03969B44
    A36C5E4F47E84449FF07ED3517B43A31
     

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites

    Desative temporariamente seu antivírus, antispywares e firewall, para não causar conflitos.

     

    Abra o seu Bloco de Notas, copie (control + c) e cole (control + v) todo o texto que está abaixo:

     

    Citação

    Bfilter;s

    Bfmon;s

    Bnbase;s

    Bndef;s

    Bprotect;s

    c:\windows\System32\drivers\Bfilter.sys;f

    c:\windows\System32\drivers\Bfmon.sys;f

    c:\windows\system32\drivers\bnbasex64.sys;f

    c:\windows\System32\drivers\bndef64.sys;f

    c:\windows\System32\drivers\Bprotect.sys;;f

    autoclean;

     

    Salve este arquivo na sua área de trabalho com o nome zascript

    Novamente, execute o ZA-Scan.exe e aguarde.
    Copie e cole o conteúdo desse arquivo em sua próxima resposta.

    Editado por CarlosTurco
    Ajustar canned

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
  • Autor do tópico

  • ZA-Scan V1.0.0.5 Updated 19-September-2016
    Tool run by Marlon on 07/10/2016 at 16:16:21,14.
    Microsoft Windows 7 Ultimate  6.1.7601 Service Pack 1 x64
    Running in: Normal Mode Internet Access Detected
    Launched: C:\Users\Marlon\Desktop\ZA-Scan.exe [Z-Analyse Scan]

    ==== Running Processes ======================

    C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe
    C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
    C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\avp.exe
    C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
    C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
    C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
    C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\avpui.exe
    C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
    C:\Users\Marlon\Desktop\ZA-Scan.exe
    C:\Windows\SysWOW64\cmd.exe
    C:\Windows\SysWOW64\cmd.exe
    C:\Windows\SysWOW64\cmd.exe
    C:\Users\Marlon\AppData\Local\Temp\ZAScan.exe

    ==== Services(whitelist) ======================
    Powered by E Dev

    R2 - [AdobeARMservice] - Adobe Acrobat Update Service - c:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe
    R2 - [AVP16.0.1] - Serviço do Kaspersky Anti-Virus 16.0.1 - c:\program files (x86)\kaspersky lab\kaspersky internet security 16.0.1\avp.exe
    R2 - [NvNetworkService] - NVIDIA Network Service - c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe
    R2 - [NvStreamSvc] - NVIDIA Streamer Service - c:\program files\nvidia corporation\nvstreamsrv\nvstreamservice.exe
    R2 - [nvsvc] - NVIDIA Display Driver Service - c:\windows\system32\nvvsvc.exe
    R2 - [Razer Chroma SDK Service] - Razer Chroma SDK Service - c:\program files (x86)\razer chroma sdk\bin\rzsdkservice.exe
    R2 - [Razer Game Scanner Service] - Razer Game Scanner - c:\program files (x86)\razer\razer services\gss\gamescannerservice.exe
    R2 - [RzSurroundVADStreamingService] - RzSurroundVADStreamingService - c:\programdata\razer\synapse\devices\razer surround\driver\rzsurroundvadstreamingservice.exe
    R2 - [Stereo Service] - NVIDIA Stereoscopic 3D Driver Service - c:\program files (x86)\nvidia corporation\3d vision\nvscpapisvr.exe
    R2 - [wlidsvc] - Windows Live ID Sign-in Assistant - c:\program files\common files\microsoft shared\windows live\wlidsvc.exe
    R2 - [WSearch] - Windows Search - c:\windows\system32\searchindexer.exe
    R3 - [NvStreamNetworkSvc] - NVIDIA Streamer Network Service - c:\program files\nvidia corporation\nvstreamsrv\nvstreamnetworkservice.exe
    S2 - [clr_optimization_v4.0.30319_32] - Microsoft .NET Framework NGEN v4.0.30319_X86 - c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe
    S2 - [clr_optimization_v4.0.30319_64] - Microsoft .NET Framework NGEN v4.0.30319_X64 - c:\windows\microsoft.net\framework64\v4.0.30319\mscorsvw.exe
    S2 - [gupdate] - Serviço do Google Update (gupdate) - c:\program files (x86)\google\update\googleupdate.exe
    S2 - [nulivodo] - Telephone Line Equals Sign - C:\Windows\system32\sysWOW64\Drivers\nulivodo.sys [x]
    S2 - [sppsvc] - Proteção de Software - c:\windows\system32\sppsvc.exe
    S3 - [ALG] - Serviço Gateway de Camada de Aplicativo - c:\windows\system32\alg.exe
    S3 - [aspnet_state] - Serviço de estado do ASP.NET - c:\windows\microsoft.net\framework64\v4.0.30319\aspnet_state.exe
    S3 - [clr_optimization_v2.0.50727_32] - Microsoft .NET Framework NGEN v2.0.50727_X86 - c:\windows\microsoft.net\framework\v2.0.50727\mscorsvw.exe
    S3 - [clr_optimization_v2.0.50727_64] - Microsoft .NET Framework NGEN v2.0.50727_X64 - c:\windows\microsoft.net\framework64\v2.0.50727\mscorsvw.exe
    S3 - [COMSysApp] - COM+ System Application - c:\windows\system32\dllhost.exe
    S3 - [EasyAntiCheat] - EasyAntiCheat - c:\windows\system32\easyanticheat.exe [x]
    S3 - [ehRecvr] - Serviço Receptor do Windows Media Center - c:\windows\ehome\ehrecvr.exe
    S3 - [ehSched] - Serviço Agendador do Windows Media Center - c:\windows\ehome\ehsched.exe
    S3 - [Fax] - Fax - c:\windows\system32\fxssvc.exe
    S3 - [FontCache3.0.0.0] - Windows Presentation Foundation Font Cache 3.0.0.0 - c:\windows\microsoft.net\framework64\v3.0\wpf\presentationfontcache.exe
    S3 - [gupdatem] - Serviço do Google Update (gupdatem) - c:\program files (x86)\google\update\googleupdate.exe
    S3 - [klvssbrigde64] - klvssbrigde64 - c:\program files (x86)\kaspersky lab\kaspersky internet security 16.0.1\x64\vssbridge64.exe
    S3 - [Microsoft SharePoint Workspace Audit Service] - Microsoft SharePoint Workspace Audit Service - c:\program files\microsoft office\office14\groove.exe
    S3 - [MSDTC] - Coordenador de transações distribuídas - c:\windows\system32\msdtc.exe
    S3 - [msiserver] - Windows Installer - c:\windows\system32\msiexec.exe
    S3 - [ose64] - Office 64 Source Engine - c:\program files\common files\microsoft shared\source engine\ose.exe
    S3 - [osppsvc] - Office Software Protection Platform - c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\osppsvc.exe
    S3 - [PerfHost] - Host de DLL de Contador de Desempenho - c:\windows\syswow64\perfhost.exe
    S3 - [RpcLocator] - Alocador Remote Procedure Call (RPC) - c:\windows\system32\locator.exe
    S3 - [SNMPTRAP] - Interceptação SNMP - c:\windows\system32\snmptrap.exe
    S3 - [Steam Client Service] - Steam Client Service - c:\program files (x86)\common files\steam\steamservice.exe
    S3 - [TrustedInstaller] - Instalador de Módulos do Windows - c:\windows\servicing\trustedinstaller.exe
    S3 - [vds] - Disco Virtual - c:\windows\system32\vds.exe
    S3 - [VSS] - Cópia de Sombra de Volume - c:\windows\system32\vssvc.exe
    S3 - [WatAdminSvc] - Serviço de Tecnologias de Ativação do Windows - c:\windows\system32\wat\watadminsvc.exe
    S3 - [wbengine] - Serviço de Mecanismo de Backup em Nível de Bloco - c:\windows\system32\wbengine.exe
    S3 - [wmiApSrv] - WMI Performance Adapter - c:\windows\system32\wbem\wmiapsrv.exe
    S4 - [!SASCORE] - SAS Core Service - c:\program files\superantispyware\sascore64.exe
    S4 - [AdobeFlashPlayerUpdateSvc] - Adobe Flash Player Update Service - c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe
    S4 - [Apple Mobile Device Service] - Apple Mobile Device Service - c:\program files\common files\apple\mobile device support\applemobiledeviceservice.exe
    S4 - [Bonjour Service] - Serviço do Bonjour - c:\program files\bonjour\mdnsresponder.exe
    S4 - [iPod Service] - iPod Service - c:\program files\ipod\bin\ipodservice.exe
    S4 - [panda_url_filtering] - panda_url_filtering Service - c:\programdata\panda security url filtering\panda_url_filteringb.exe
    S4 - [SkypeUpdate] - Skype Updater - c:\program files (x86)\skype\updater\updater.exe
    S4 - [WMPNetworkSvc] - Serviço de Compartilhamento de Rede do Windows Media Player - c:\program files\windows media player\wmpnetwk.exe

    ==== Drivers(whitelist) ======================
    Powered by E Dev

    R0 - [FileInfo] - File Information FS MiniFilter - C:\Windows\system32\Drivers\FileInfo.sys
    R0 - [FltMgr] - FltMgr - C:\Windows\system32\Drivers\FltMgr.sys
    R0 - [Mup] - Mup - C:\Windows\system32\Drivers\Mup.sys
    R1 - [NetBIOS] - NetBIOS Interface - C:\Windows\system32\Drivers\NetBIOS.sys
    R3 - [srv] - Driver SMB 1.xxx do Servidor - C:\Windows\system32\Drivers\srv.sys
    R3 - [srv2] - Driver SMB 2.xxx do Servidor - C:\Windows\system32\Drivers\srv2.sys
    R0 - [ACPI] - Microsoft ACPI Driver - C:\Windows\system32\Drivers\ACPI.sys
    R0 - [amdxata] - amdxata - C:\Windows\system32\Drivers\amdxata.sys
    R0 - [atapi] - Canal de IDE - C:\Windows\system32\Drivers\atapi.sys
    R0 - [CLFS] - Log Comum (CLFS) - C:\Windows\system32\Drivers\CLFS.sys [x]
    R0 - [cm_km] - Kaspersky Lab ZAO Cryptographic Module x64 (Weak) - C:\Windows\system32\Drivers\cm_km.sys
    R0 - [CNG] - CNG - C:\Windows\system32\Drivers\CNG.sys
    R0 - [Disk] - Driver de disco - C:\Windows\system32\Drivers\Disk.sys
    R0 - [fvevol] - Driver de Filtro de Criptografia de Unidade de Disco BitLocker - C:\Windows\system32\Drivers\fvevol.sys
    R0 - [hwpolicy] - Hardware Policy Driver - C:\Windows\system32\Drivers\hwpolicy.sys
    R0 - [kl1] - kl1 - C:\Windows\system32\Drivers\kl1.sys
    R0 - [klbackupdisk] - Kaspersky Lab klbackupdisk - C:\Windows\system32\Drivers\klbackupdisk.sys
    R0 - [KSecDD] - KSecDD - C:\Windows\system32\Drivers\KSecDD.sys
    R0 - [KSecPkg] - KSecPkg - C:\Windows\system32\Drivers\KSecPkg.sys
    R0 - [mountmgr] - Gerenciador de Pontos de Montagem - C:\Windows\system32\Drivers\mountmgr.sys
    R0 - [msisadrv] - msisadrv - C:\Windows\system32\Drivers\msisadrv.sys
    R0 - [mv61xx] - mv61xx - C:\Windows\system32\Drivers\mv61xx.sys
    R0 - [NDIS] - Driver do Sistema NDIS - C:\Windows\system32\Drivers\NDIS.sys
    R0 - [partmgr] - Gerenciador de Partições - C:\Windows\system32\Drivers\partmgr.sys
    R0 - [pci] - PCI Bus Driver - C:\Windows\system32\Drivers\pci.sys
    R0 - [pciide] - pciide - C:\Windows\system32\Drivers\pciide.sys
    R0 - [pcw] - Performance Counters for Windows Driver - C:\Windows\system32\Drivers\pcw.sys
    R0 - [rdyboost] - ReadyBoost - C:\Windows\system32\Drivers\rdyboost.sys
    R0 - [spldr] - Security Processor Loader Driver - C:\Windows\system32\Drivers\spldr.sys
    R0 - [storflt] - Driver de Filtro de Aceleração do Barramento da Máquina Virtual do Disco - C:\Windows\system32\Drivers\storflt.sys [x]
    R0 - [Tcpip] - Driver de Protocolo TCP/IP - C:\Windows\system32\Drivers\Tcpip.sys
    R0 - [vdrvroot] - Driver de enumerador da unidade virtual Microsoft - C:\Windows\system32\Drivers\vdrvroot.sys
    R0 - [volmgr] - Volume Manager Driver - C:\Windows\system32\Drivers\volmgr.sys
    R0 - [volmgrx] - Gerenciador de Volume Dinâmico - C:\Windows\system32\Drivers\volmgrx.sys
    R0 - [volsnap] - Volumes de armazenamento - C:\Windows\system32\Drivers\volsnap.sys
    R0 - [Wdf01000] - Serviço de Estruturas de Driver em Modo Kernel - C:\Windows\system32\Drivers\Wdf01000.sys
    R1 - [AFD] - Ancillary Function Driver for Winsock - C:\Windows\system32\Drivers\AFD.sys
    R1 - [Beep] - Beep - C:\Windows\system32\Drivers\Beep.sys
    R1 - [tdx] - Driver de Suporte a TDI Herdado de NetIO - C:\Windows\system32\Drivers\tdx.sys
    R2 - [tcpipreg] - TCP/IP Registry Compatibility - C:\Windows\system32\Drivers\tcpipreg.sys
    S0 - [GbpKm] - Gbp KernelMode - C:\Windows\system32\Drivers\GbpKm.sys [x]

    ==== Startup Registry Enabled ======================

    [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
    "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"

    [HKEY_USERS\S-1-5-21-2542739096-2858238111-3407170656-1000\Software\Microsoft\Windows\CurrentVersion\Run]
    "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"

    [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run]
    "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"

    [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
    "panda4_2dn"="reg.exe delete HKCU\Software\AppDataLow\Software\panda4_2dn /f"
    "panda"="reg.exe delete HKCU\Software\AppDataLow\Software\panda /f"
    "panda_XP"="reg.exe delete HKCU\Software\panda /f"

    [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\RunOnce]
    "panda4_2dn"="reg.exe delete HKCU\Software\AppDataLow\Software\panda4_2dn /f"
    "panda"="reg.exe delete HKCU\Software\AppDataLow\Software\panda /f"
    "panda_XP"="reg.exe delete HKCU\Software\panda /f"

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"

    ==== Startup Registry Enabled x64 ======================

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "NvBackend"="C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"

    ==== Startup Registry Disabled x64 ======================

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ADSKAppManager]
    "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="ADSKAppManager"
    "hkey"="HKLM"
    "command"="\"C:\\Program Files (x86)\\Common Files\\Autodesk Shared\\AppManager\\R1\\AdAppMgr.exe\" -showminimized -checkautorun"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Akamai NetSession Interface]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="Akamai NetSession Interface"
    "hkey"="HKCU"
    "command"="\"C:\\Users\\Marlon\\AppData\\Local\\Akamai\\netsession_win.exe\""

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Autodesk Sync]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="Autodesk Sync"
    "hkey"="HKCU"
    "command"="C:\\Program Files\\Autodesk\\Autodesk Sync\\AdSync.exe"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CCleaner Monitoring]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="CCleaner Monitoring"
    "hkey"="HKCU"
    "command"="\"C:\\Program Files\\CCleaner\\CCleaner64.exe\" /MONITOR"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\DAEMON Tools Pro Agent]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="DAEMON Tools Pro Agent"
    "hkey"="HKCU"
    "command"="\"C:\\Program Files (x86)\\DAEMON Tools Pro\\DTAgent.exe\" -autorun"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Diebold - Warsaw]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="Diebold - Warsaw"
    "hkey"="HKLM"
    "command"="C:\\Program Files\\Diebold\\Warsaw\\core.exe"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Launch LCore]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="Launch LCore"
    "hkey"="HKLM"
    "command"="C:\\Program Files\\Logitech Gaming Software\\LCore.exe /minimized"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\NvBackend]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="NvBackend"
    "hkey"="HKLM"
    "command"="\"C:\\Program Files (x86)\\NVIDIA Corporation\\Update Core\\NvBackend.exe\""

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Sidebar]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="Sidebar"
    "hkey"="HKCU"
    "command"="C:\\Program Files\\Windows Sidebar\\sidebar.exe /autoRun"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SunJavaUpdateSched]
    "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="SunJavaUpdateSched"
    "hkey"="HKLM"
    "command"="\"C:\\Program Files (x86)\\Common Files\\Java\\Java Update\\jusched.exe\""

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SUPERAntiSpyware]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="SUPERAntiSpyware"
    "hkey"="HKCU"
    "command"="C:\\Program Files\\SUPERAntiSpyware\\SUPERAntiSpyware.exe"


    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\!SASCORE]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AdobeARMservice]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AdobeFlashPlayerUpdateSvc]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Apple Mobile Device]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Apple Mobile Device Service]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\ASGT]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Bonjour Service]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\gupdate]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\gupdatem]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\iPod Service]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\iSafeService]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\NvStreamSvc]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\panda_url_filtering]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\SkypeUpdate]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Stereo Service]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Update service]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Warsaw Technology]


    ==== Task Scheduler Jobs ======================

    C:\Windows\tasks\Adobe Flash Player Updater.job --a------ [Undetermined Task]
    C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [30/08/2015 04:47]
    C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [30/08/2015 04:47]

    ==== Other Scheduled Tasks ======================

    "C:\Windows\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe]
    "C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
    "C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
    "C:\Windows\SysNative\tasks\Fuibm" [C:\PROGRA~1\GROOVE~1\Giroofur.bat]
    "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
    "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
    "C:\Windows\SysNative\tasks\User_Feed_Synchronization-{4C6CC4A1-0A0D-4E99-B931-2F8486A07671}" [C:\Windows\system32\msfeedssync.exe]
    "C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

    ==== Firefox Extensions Registry ======================

    [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
    "light_plugin_ACF0E80077C511E59DED005056C00008@kaspersky.com"="C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\FFExt\light_plugin_firefox\addon.xpi" [19/08/2016 14:01]

    ==== Chromium Look ======================

    Google Chrome Version: 46.0.2490.86

    HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
    fknfdieimobmimhdkfkheeejenmdjhoe - C:\Program Files (x86)\pandasecuritytb\chrome-newtab-search.crx[]
    lpeeaghdjmhlakojjcgfdhgcejdaefmi - https://chrome.google.com/webstore/detail/lpeeaghdjmhlakojjcgfdhgcejdaefmi[]

    Google Slides - Marlon\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek
    Google Docs - Marlon\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
    Google Drive - Marlon\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
    YouTube - Marlon\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
    selector is not a valid CSS selector - Marlon\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb
    Google Search - Marlon\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
    Google Sheets - Marlon\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap
    Google Docs Offline - Marlon\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi
    Kaspersky Protection - Marlon\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpeeaghdjmhlakojjcgfdhgcejdaefmi
    Chrome Web Store Payments - Marlon\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
    Simet - Marlon\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnokjffnngdgfplfmimjioknefmkjfgc
    Gmail - Marlon\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
    Chrome Media Router - Marlon\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm
    undetermined - Marlon\AppData\Local\Google\Chrome\User Data\Default\Extensions\Config.json
    undetermined - Marlon\AppData\Local\Google\Chrome\User Data\Default\Extensions\WebNavigation.crx

    ==== IE Start and Search Settings ======================

    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
    "Start Page"="http://www.google.com"
    [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
    "Start Page"="http://www.google.com"
    "Default_Page_URL"="http://www.google.com"
    [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
    "Start Page"="http://www.google.com"
    "Default_Page_URL"="http://www.google.com"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
    "Tabs"="res://ieframe.dll/tabswelcome.htm"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]
    "Tabs"="res://ieframe.dll/tabswelcome.htm"
    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
    "DefaultScope"="{0191A6B0-1154-4C22-9182-23A95BBE92D9}"

    ==== All HKLM and HKCU SearchScopes ======================

    HKLM\SearchScopes "DefaultScope"="{0191A6B0-1154-4C22-9182-23A95BBE92D9}"
    HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
    HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0191A6B0-1154-4C22-9182-23A95BBE92D9}"
    HKLM\Wow6432Node\SearchScopes\{0191A6B0-1154-4C22-9182-23A95BBE92D9} - http://www.google.com/search?q={searchTerms}
    HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
    HKCU\SearchScopes "DefaultScope"="{0191A6B0-1154-4C22-9182-23A95BBE92D9}"
    HKCU\SearchScopes\{0191A6B0-1154-4C22-9182-23A95BBE92D9} - http://www.google.com/search?q={searchTerms}
    HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
    HKCU\SearchScopes\{cf34d395-9ff1-49a0-98a5-8db1636431b1} - No_Url_Value

    ==== HijackThis Entries ======================

    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    O2 - BHO: ScriptInjectionPluginBrowserHelperObject - {03993315-5CE9-4F00-8790-D14A94F1D91A} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\IEExt\ie_plugin.dll
    O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_73\bin\ssv.dll
    O2 - BHO: Auxiliar de Conexão de Conta da Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_73\bin\jp2ssv.dll
    O3 - Toolbar: Kaspersky Protection Toolbar - {001032CB-B0AC-4F2C-A650-AD4B2B26E5DA} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\IEExt\ie_plugin.dll
    O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
    O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
    O16 - DPF: {0D41B8C5-2599-4893-8183-00195EC8D5F9} (asusTek_sysctrl Class) - http://support.asus.com.tw/common/asusTek_sys_ctrl.cab

    ==== EOF on 07/10/2016 at 16:17:22,08 ======================
     

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
  • Autor do tópico
  • Boa tarde amigo !

     

    Eu fiz exatamente como pediu.. O que pode ter dado errado ?

    Executei o bloco de notas como adm, copiei o script e salvei no c: como zascript.txt, após isso iniciei o scan.

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
  • Autor do tópico
  • ZA-Scan V1.0.0.5 Updated 19-September-2016
    Tool run by Marlon on 08/10/2016 at 23:09:41,11.
    Microsoft Windows 7 Ultimate  6.1.7601 Service Pack 1 x64
    Running in: Normal Mode Internet Access Detected
    Launched: C:\Users\Marlon\Desktop\ZA-Scan.exe
    Script used: C:\Users\Marlon\Desktop\zascript.txt

    ==== Empty Folders Check ======================

    C:\PROGRA~2\3281C4D4-1450437068-DF11-8969-0013D4E33164 deleted successfully
    C:\PROGRA~2\Browser Hijack Recover deleted successfully
    C:\PROGRA~2\Opera deleted successfully
    C:\PROGRA~2\Ubisoft deleted successfully
    C:\PROGRA~3\Baidu Security deleted successfully
    C:\Users\Marlon\AppData\Roaming\Elex-tech deleted successfully
    C:\Users\Marlon\AppData\Roaming\MPC-HC deleted successfully
    C:\Users\Marlon\AppData\Roaming\Panda Security deleted successfully
    C:\Users\UpdatusUser\AppData\Roaming\Samsung deleted successfully
    C:\Windows\serviceprofiles\networkservice\AppData\Roaming\Samsung deleted successfully
    C:\Windows\serviceprofiles\Localservice\AppData\Roaming\Samsung deleted successfully
    C:\Users\Marlon\AppData\Local\CrashDumps deleted successfully
    C:\Users\Marlon\AppData\Local\pangu deleted successfully
    C:\Users\Marlon\AppData\Local\Skype deleted successfully
    C:\Users\Marlon\AppData\Local\Ubisoft Game Launcher deleted successfully

    ==== Deleting CLSID Registry Keys ======================

    HKEY_USERS\S-1-5-21-2542739096-2858238111-3407170656-1000\Software\Microsoft\Internet Explorer\SearchScopes\{cf34d395-9ff1-49a0-98a5-8db1636431b1} deleted successfully

    ==== Deleting CLSID Registry Values ======================


    ==== Deleting Services ======================

    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Bfilter deleted successfully
    HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Bfilter deleted successfully
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Bfmon deleted successfully
    HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Bfmon deleted successfully
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Bnbase deleted successfully
    HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Bnbase deleted successfully
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Bndef deleted successfully
    HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Bndef deleted successfully
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Bprotect deleted successfully
    HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Bprotect deleted successfully

    ==== Deleting Files \ Folders ======================

    C:\PROGRA~2\3281C4D4-1450437068-DF11-8969-0013D4E33164 not found
    C:\PROGRA~2\Browser Hijack Recover not found
    C:\PROGRA~2\Opera not found
    C:\PROGRA~2\Ubisoft not found
    "c:\windows\SysNative\drivers\Bfilter.sys" not found
    "c:\windows\SysNative\drivers\Bfmon.sys" not found
    "c:\windows\SysNative\drivers\bnbasex64.sys" not found
    "c:\windows\SysNative\drivers\bndef64.sys" not found
    "c:\windows\SysNative\drivers\Bprotect.sys" not found
    "c:\windows\SysNative\drivers\Bfilter.sys" not found
    "c:\windows\SysNative\drivers\Bfmon.sys" not found
    "c:\windows\SysNative\drivers\bnbasex64.sys" not found
    "c:\windows\SysNative\drivers\bndef64.sys" not found
    "c:\windows\SysNative\drivers\Bprotect.sys" not found
    C:\Users\Marlon\.android deleted
    C:\Users\Marlon\AppData\Roaming\WB.CFG deleted
    C:\Users\Marlon\AppData\Roaming\GPU MeterV2_Settings.ini deleted
    C:\PROGRA~3\FileSplitUpLoad.dll deleted
    C:\PROGRA~3\Package Cache deleted
    C:\Users\Marlon\AppData\Local\cache deleted
    C:\Users\Marlon\AppData\Local\Google\Chrome\User Data\Default\Extensions\WebNavigation.crx deleted
    C:\Users\Marlon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
    C:\Users\Marlon\AppData\LocalLow\Company deleted
    C:\Windows\SysNative\config\systemprofile\AppData\LocalLow\pandasecuritytb deleted
    C:\Windows\sysWoW64\config\systemprofile\AppData\LocalLow\pandasecuritytb deleted
    C:\windows\SysNative\GroupPolicy\Machine deleted
    C:\windows\SysNative\GroupPolicy\User deleted
    C:\Windows\Syswow64\GroupPolicy\Machine deleted
    C:\Windows\Syswow64\GroupPolicy\gpt.ini deleted
    C:\Windows\SysWOW64\AniGIF.ocx deleted
    C:\Users\Marlon\AppData\Roaming\unins000.exe deleted

    ==== Orphaned Tasks deleted from Registry ======================

    klcp_update deleted
    {0C4D04BF-0F72-45F0-8C00-2E122694D346} deleted
    {29C453BD-714F-498A-A5AD-150289F7F774} deleted
    {A1CFC8B5-2AE8-44F4-9119-396A7BDBCD91} deleted
    {DAAE2968-35CD-4E20-8F3C-EB14D48BE3B2} deleted

    ==== Firefox Extensions Registry ======================

    [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
    "light_plugin_ACF0E80077C511E59DED005056C00008@kaspersky.com"="C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\FFExt\light_plugin_firefox\addon.xpi" [19/08/2016 14:01]

    ==== Chromium Look ======================

    Google Chrome Version: 46.0.2490.86

    HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
    fknfdieimobmimhdkfkheeejenmdjhoe - C:\Program Files (x86)\pandasecuritytb\chrome-newtab-search.crx[]
    lpeeaghdjmhlakojjcgfdhgcejdaefmi - https://chrome.google.com/webstore/detail/lpeeaghdjmhlakojjcgfdhgcejdaefmi[]

    Simet - Marlon\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnokjffnngdgfplfmimjioknefmkjfgc
    Chrome Media Router - Marlon\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm
    undetermined - Marlon\AppData\Local\Google\Chrome\User Data\Default\Extensions\Config.json

    ==== Set IE to Default ======================

    Old Values:
    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
    "Start Page"="http://www.google.com"
    [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
    "Start Page"="http://www.google.com"
    "Default_Page_URL"="http://www.google.com"
    [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
    "Start Page"="http://www.google.com"
    "Default_Page_URL"="http://www.google.com"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
    "Tabs"="res://ieframe.dll/tabswelcome.htm"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]
    "Tabs"="res://ieframe.dll/tabswelcome.htm"

    New Values:
    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
    "Start Page"="http://www.google.com"
    [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
    "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
    "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
    [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
    "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
    "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
    "Tabs"="about:newtab"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]
    "Tabs"="about:newtab"

    ==== All HKLM and HKCU SearchScopes ======================

    HKLM\SearchScopes "DefaultScope"="{0191A6B0-1154-4C22-9182-23A95BBE92D9}"
    HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
    HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0191A6B0-1154-4C22-9182-23A95BBE92D9}"
    HKLM\Wow6432Node\SearchScopes\{0191A6B0-1154-4C22-9182-23A95BBE92D9} - http://www.google.com/search?q={searchTerms}
    HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
    HKCU\SearchScopes "DefaultScope"="{0191A6B0-1154-4C22-9182-23A95BBE92D9}"
    HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
    HKCU\SearchScopes\{0191A6B0-1154-4C22-9182-23A95BBE92D9} - http://www.google.com/search?q={searchTerms}
    HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC

    ==== Deleting Registry Keys ======================

    HKEY_LOCAL_MACHINE\Software\wow6432node\Policies\Google deleted successfully
    HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\fknfdieimobmimhdkfkheeejenmdjhoe deleted successfully
    HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ADSKAppManager deleted successfully
    HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Autodesk Sync deleted successfully
    HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Diebold - Warsaw deleted successfully
    HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Launch LCore deleted successfully

    ==== Empty IE Cache ======================

    C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
    C:\Users\Marlon\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
    C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
    C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
    C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
    C:\Users\Marlon\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\29JM1PBH will be deleted at reboot

    ==== Empty FireFox Cache ======================

    No FireFox Profiles found

    ==== Empty Chrome Cache ======================

    C:\Users\Marlon\AppData\Local\Opera Software\Opera Stable\Cache emptied successfully
    C:\Users\Marlon\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

    ==== Empty All Flash Cache ======================

    Flash Cache Emptied Successfully

    ==== Empty All Java Cache ======================

    Java Cache cleared successfully

    ==== Empty Temp Folders ======================

    C:\Users\Default\AppData\Local\temp emptied successfully
    C:\Users\Default User\AppData\Local\temp emptied successfully
    C:\Users\Marlon\AppData\Local\Temp will be emptied at reboot
    C:\Users\Public\AppData\Local\temp emptied successfully
    C:\Users\UpdatusUser\AppData\Local\temp emptied successfully
    C:\Users\USURIO~1\AppData\Local\temp emptied successfully
    C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
    C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
    C:\Windows\Temp will be emptied at reboot

    ==== After Reboot ======================

    ==== Empty Temp Folders ======================

    C:\Windows\Temp successfully emptied
    C:\Users\Marlon\AppData\Local\Temp successfully emptied

    ==== Empty Recycle Bin ======================

    C:\$RECYCLE.BIN successfully emptied

    ==== Deleting Files / Folders ======================

    "C:\Users\Marlon\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\29JM1PBH" not found

    ==== EOF on 08/10/2016 at 23:31:11,10 ======================
     

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
  • Autor do tópico

  • ZA-Scan V1.0.0.5 Updated 19-September-2016
    Tool run by Marlon on 21/10/2016 at 13:23:16,66.
    Microsoft Windows 7 Ultimate  6.1.7601 Service Pack 1 x64
    Running in: Normal Mode Internet Access Detected
    Launched: C:\Users\Marlon\Desktop\ZA-Scan.exe [Z-Analyse Scan]

    ==== Running Processes ======================

    C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe
    C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
    C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\avp.exe
    C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
    C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
    C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
    C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\avpui.exe
    C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
    C:\Users\Marlon\Desktop\ZA-Scan.exe
    C:\Windows\SysWOW64\cmd.exe
    C:\Windows\SysWOW64\cmd.exe
    C:\Windows\SysWOW64\cmd.exe
    C:\Users\Marlon\AppData\Local\Temp\ZAScan.exe

    ==== Services(whitelist) ======================
    Powered by E Dev

    R2 - [AdobeARMservice] - Adobe Acrobat Update Service - c:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe
    R2 - [AVP16.0.1] - Serviço do Kaspersky Anti-Virus 16.0.1 - c:\program files (x86)\kaspersky lab\kaspersky internet security 16.0.1\avp.exe
    R2 - [NvNetworkService] - NVIDIA Network Service - c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe
    R2 - [NvStreamSvc] - NVIDIA Streamer Service - c:\program files\nvidia corporation\nvstreamsrv\nvstreamservice.exe
    R2 - [nvsvc] - NVIDIA Display Driver Service - c:\windows\system32\nvvsvc.exe
    R2 - [Razer Chroma SDK Service] - Razer Chroma SDK Service - c:\program files (x86)\razer chroma sdk\bin\rzsdkservice.exe
    R2 - [Razer Game Scanner Service] - Razer Game Scanner - c:\program files (x86)\razer\razer services\gss\gamescannerservice.exe
    R2 - [RzSurroundVADStreamingService] - RzSurroundVADStreamingService - c:\programdata\razer\synapse\devices\razer surround\driver\rzsurroundvadstreamingservice.exe
    R2 - [Stereo Service] - NVIDIA Stereoscopic 3D Driver Service - c:\program files (x86)\nvidia corporation\3d vision\nvscpapisvr.exe
    R2 - [wlidsvc] - Windows Live ID Sign-in Assistant - c:\program files\common files\microsoft shared\windows live\wlidsvc.exe
    R2 - [WSearch] - Windows Search - c:\windows\system32\searchindexer.exe
    R3 - [NvStreamNetworkSvc] - NVIDIA Streamer Network Service - c:\program files\nvidia corporation\nvstreamsrv\nvstreamnetworkservice.exe
    S2 - [clr_optimization_v4.0.30319_32] - Microsoft .NET Framework NGEN v4.0.30319_X86 - c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe
    S2 - [clr_optimization_v4.0.30319_64] - Microsoft .NET Framework NGEN v4.0.30319_X64 - c:\windows\microsoft.net\framework64\v4.0.30319\mscorsvw.exe
    S2 - [gupdate] - Serviço do Google Update (gupdate) - c:\program files (x86)\google\update\googleupdate.exe
    S2 - [nulivodo] - Telephone Line Equals Sign - C:\Windows\system32\sysWOW64\Drivers\nulivodo.sys [x]
    S2 - [sppsvc] - Proteção de Software - c:\windows\system32\sppsvc.exe
    S3 - [ALG] - Serviço Gateway de Camada de Aplicativo - c:\windows\system32\alg.exe
    S3 - [aspnet_state] - Serviço de estado do ASP.NET - c:\windows\microsoft.net\framework64\v4.0.30319\aspnet_state.exe
    S3 - [clr_optimization_v2.0.50727_32] - Microsoft .NET Framework NGEN v2.0.50727_X86 - c:\windows\microsoft.net\framework\v2.0.50727\mscorsvw.exe
    S3 - [clr_optimization_v2.0.50727_64] - Microsoft .NET Framework NGEN v2.0.50727_X64 - c:\windows\microsoft.net\framework64\v2.0.50727\mscorsvw.exe
    S3 - [COMSysApp] - COM+ System Application - c:\windows\system32\dllhost.exe
    S3 - [EasyAntiCheat] - EasyAntiCheat - c:\windows\system32\easyanticheat.exe [x]
    S3 - [ehRecvr] - Serviço Receptor do Windows Media Center - c:\windows\ehome\ehrecvr.exe
    S3 - [ehSched] - Serviço Agendador do Windows Media Center - c:\windows\ehome\ehsched.exe
    S3 - [Fax] - Fax - c:\windows\system32\fxssvc.exe
    S3 - [FontCache3.0.0.0] - Windows Presentation Foundation Font Cache 3.0.0.0 - c:\windows\microsoft.net\framework64\v3.0\wpf\presentationfontcache.exe
    S3 - [gupdatem] - Serviço do Google Update (gupdatem) - c:\program files (x86)\google\update\googleupdate.exe
    S3 - [klvssbrigde64] - klvssbrigde64 - c:\program files (x86)\kaspersky lab\kaspersky internet security 16.0.1\x64\vssbridge64.exe
    S3 - [Microsoft SharePoint Workspace Audit Service] - Microsoft SharePoint Workspace Audit Service - c:\program files\microsoft office\office14\groove.exe
    S3 - [MSDTC] - Coordenador de transações distribuídas - c:\windows\system32\msdtc.exe
    S3 - [msiserver] - Windows Installer - c:\windows\system32\msiexec.exe
    S3 - [ose64] - Office 64 Source Engine - c:\program files\common files\microsoft shared\source engine\ose.exe
    S3 - [osppsvc] - Office Software Protection Platform - c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\osppsvc.exe
    S3 - [PerfHost] - Host de DLL de Contador de Desempenho - c:\windows\syswow64\perfhost.exe
    S3 - [RpcLocator] - Alocador Remote Procedure Call (RPC) - c:\windows\system32\locator.exe
    S3 - [SNMPTRAP] - Interceptação SNMP - c:\windows\system32\snmptrap.exe
    S3 - [Steam Client Service] - Steam Client Service - c:\program files (x86)\common files\steam\steamservice.exe
    S3 - [TrustedInstaller] - Instalador de Módulos do Windows - c:\windows\servicing\trustedinstaller.exe
    S3 - [vds] - Disco Virtual - c:\windows\system32\vds.exe
    S3 - [VSS] - Cópia de Sombra de Volume - c:\windows\system32\vssvc.exe
    S3 - [WatAdminSvc] - Serviço de Tecnologias de Ativação do Windows - c:\windows\system32\wat\watadminsvc.exe
    S3 - [wbengine] - Serviço de Mecanismo de Backup em Nível de Bloco - c:\windows\system32\wbengine.exe
    S3 - [wmiApSrv] - WMI Performance Adapter - c:\windows\system32\wbem\wmiapsrv.exe
    S4 - [!SASCORE] - SAS Core Service - c:\program files\superantispyware\sascore64.exe
    S4 - [AdobeFlashPlayerUpdateSvc] - Adobe Flash Player Update Service - c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe
    S4 - [Apple Mobile Device Service] - Apple Mobile Device Service - c:\program files\common files\apple\mobile device support\applemobiledeviceservice.exe
    S4 - [Bonjour Service] - Serviço do Bonjour - c:\program files\bonjour\mdnsresponder.exe
    S4 - [iPod Service] - iPod Service - c:\program files\ipod\bin\ipodservice.exe
    S4 - [panda_url_filtering] - panda_url_filtering Service - c:\programdata\panda security url filtering\panda_url_filteringb.exe
    S4 - [SkypeUpdate] - Skype Updater - c:\program files (x86)\skype\updater\updater.exe
    S4 - [WMPNetworkSvc] - Serviço de Compartilhamento de Rede do Windows Media Player - c:\program files\windows media player\wmpnetwk.exe

    ==== Drivers(whitelist) ======================
    Powered by E Dev

    R0 - [FileInfo] - File Information FS MiniFilter - C:\Windows\system32\Drivers\FileInfo.sys
    R0 - [FltMgr] - FltMgr - C:\Windows\system32\Drivers\FltMgr.sys
    R0 - [Mup] - Mup - C:\Windows\system32\Drivers\Mup.sys
    R1 - [NetBIOS] - NetBIOS Interface - C:\Windows\system32\Drivers\NetBIOS.sys
    R3 - [srv] - Driver SMB 1.xxx do Servidor - C:\Windows\system32\Drivers\srv.sys
    R3 - [srv2] - Driver SMB 2.xxx do Servidor - C:\Windows\system32\Drivers\srv2.sys
    R0 - [ACPI] - Microsoft ACPI Driver - C:\Windows\system32\Drivers\ACPI.sys
    R0 - [amdxata] - amdxata - C:\Windows\system32\Drivers\amdxata.sys
    R0 - [atapi] - Canal de IDE - C:\Windows\system32\Drivers\atapi.sys
    R0 - [CLFS] - Log Comum (CLFS) - C:\Windows\system32\Drivers\CLFS.sys [x]
    R0 - [cm_km] - Kaspersky Lab ZAO Cryptographic Module x64 (Weak) - C:\Windows\system32\Drivers\cm_km.sys
    R0 - [CNG] - CNG - C:\Windows\system32\Drivers\CNG.sys
    R0 - [Disk] - Driver de disco - C:\Windows\system32\Drivers\Disk.sys
    R0 - [fvevol] - Driver de Filtro de Criptografia de Unidade de Disco BitLocker - C:\Windows\system32\Drivers\fvevol.sys
    R0 - [hwpolicy] - Hardware Policy Driver - C:\Windows\system32\Drivers\hwpolicy.sys
    R0 - [kl1] - kl1 - C:\Windows\system32\Drivers\kl1.sys
    R0 - [klbackupdisk] - Kaspersky Lab klbackupdisk - C:\Windows\system32\Drivers\klbackupdisk.sys
    R0 - [KSecDD] - KSecDD - C:\Windows\system32\Drivers\KSecDD.sys
    R0 - [KSecPkg] - KSecPkg - C:\Windows\system32\Drivers\KSecPkg.sys
    R0 - [mountmgr] - Gerenciador de Pontos de Montagem - C:\Windows\system32\Drivers\mountmgr.sys
    R0 - [msisadrv] - msisadrv - C:\Windows\system32\Drivers\msisadrv.sys
    R0 - [mv61xx] - mv61xx - C:\Windows\system32\Drivers\mv61xx.sys
    R0 - [NDIS] - Driver do Sistema NDIS - C:\Windows\system32\Drivers\NDIS.sys
    R0 - [partmgr] - Gerenciador de Partições - C:\Windows\system32\Drivers\partmgr.sys
    R0 - [pci] - PCI Bus Driver - C:\Windows\system32\Drivers\pci.sys
    R0 - [pciide] - pciide - C:\Windows\system32\Drivers\pciide.sys
    R0 - [pcw] - Performance Counters for Windows Driver - C:\Windows\system32\Drivers\pcw.sys
    R0 - [rdyboost] - ReadyBoost - C:\Windows\system32\Drivers\rdyboost.sys
    R0 - [spldr] - Security Processor Loader Driver - C:\Windows\system32\Drivers\spldr.sys
    R0 - [storflt] - Driver de Filtro de Aceleração do Barramento da Máquina Virtual do Disco - C:\Windows\system32\Drivers\storflt.sys [x]
    R0 - [Tcpip] - Driver de Protocolo TCP/IP - C:\Windows\system32\Drivers\Tcpip.sys
    R0 - [vdrvroot] - Driver de enumerador da unidade virtual Microsoft - C:\Windows\system32\Drivers\vdrvroot.sys
    R0 - [volmgr] - Volume Manager Driver - C:\Windows\system32\Drivers\volmgr.sys
    R0 - [volmgrx] - Gerenciador de Volume Dinâmico - C:\Windows\system32\Drivers\volmgrx.sys
    R0 - [volsnap] - Volumes de armazenamento - C:\Windows\system32\Drivers\volsnap.sys
    R0 - [Wdf01000] - Serviço de Estruturas de Driver em Modo Kernel - C:\Windows\system32\Drivers\Wdf01000.sys
    R1 - [AFD] - Ancillary Function Driver for Winsock - C:\Windows\system32\Drivers\AFD.sys
    R1 - [Beep] - Beep - C:\Windows\system32\Drivers\Beep.sys
    R1 - [tdx] - Driver de Suporte a TDI Herdado de NetIO - C:\Windows\system32\Drivers\tdx.sys
    R2 - [tcpipreg] - TCP/IP Registry Compatibility - C:\Windows\system32\Drivers\tcpipreg.sys
    S0 - [GbpKm] - Gbp KernelMode - C:\Windows\system32\Drivers\GbpKm.sys [x]

    ==== Startup Registry Enabled ======================

    [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
    "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"

    [HKEY_USERS\S-1-5-21-2542739096-2858238111-3407170656-1000\Software\Microsoft\Windows\CurrentVersion\Run]
    "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
    "CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"

    [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run]
    "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"

    [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
    "panda4_2dn"="reg.exe delete HKCU\Software\AppDataLow\Software\panda4_2dn /f"
    "panda"="reg.exe delete HKCU\Software\AppDataLow\Software\panda /f"
    "panda_XP"="reg.exe delete HKCU\Software\panda /f"

    [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\RunOnce]
    "panda4_2dn"="reg.exe delete HKCU\Software\AppDataLow\Software\panda4_2dn /f"
    "panda"="reg.exe delete HKCU\Software\AppDataLow\Software\panda /f"
    "panda_XP"="reg.exe delete HKCU\Software\panda /f"

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
    "CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"

    ==== Startup Registry Enabled x64 ======================

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "NvBackend"="C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"

    ==== Startup Registry Disabled x64 ======================

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Akamai NetSession Interface]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="Akamai NetSession Interface"
    "hkey"="HKCU"
    "command"="\"C:\\Users\\Marlon\\AppData\\Local\\Akamai\\netsession_win.exe\""

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CCleaner Monitoring]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="CCleaner Monitoring"
    "hkey"="HKCU"
    "command"="\"C:\\Program Files\\CCleaner\\CCleaner64.exe\" /MONITOR"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\DAEMON Tools Pro Agent]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="DAEMON Tools Pro Agent"
    "hkey"="HKCU"
    "command"="\"C:\\Program Files (x86)\\DAEMON Tools Pro\\DTAgent.exe\" -autorun"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\NvBackend]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="NvBackend"
    "hkey"="HKLM"
    "command"="\"C:\\Program Files (x86)\\NVIDIA Corporation\\Update Core\\NvBackend.exe\""

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Sidebar]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="Sidebar"
    "hkey"="HKCU"
    "command"="C:\\Program Files\\Windows Sidebar\\sidebar.exe /autoRun"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SunJavaUpdateSched]
    "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="SunJavaUpdateSched"
    "hkey"="HKLM"
    "command"="\"C:\\Program Files (x86)\\Common Files\\Java\\Java Update\\jusched.exe\""

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SUPERAntiSpyware]
    "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
    "item"="SUPERAntiSpyware"
    "hkey"="HKCU"
    "command"="C:\\Program Files\\SUPERAntiSpyware\\SUPERAntiSpyware.exe"


    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\!SASCORE]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AdobeARMservice]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AdobeFlashPlayerUpdateSvc]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Apple Mobile Device]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Apple Mobile Device Service]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\ASGT]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Bonjour Service]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\gupdate]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\gupdatem]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\iPod Service]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\iSafeService]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\NvStreamSvc]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\panda_url_filtering]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\SkypeUpdate]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Stereo Service]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Update service]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Warsaw Technology]


    ==== Task Scheduler Jobs ======================

    C:\Windows\tasks\Adobe Flash Player Updater.job --a------ [Undetermined Task]
    C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [30/08/2015 05:47]
    C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [30/08/2015 05:47]

    ==== Other Scheduled Tasks ======================

    "C:\Windows\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe]
    "C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
    "C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
    "C:\Windows\SysNative\tasks\Fuibm" [C:\PROGRA~1\GROOVE~1\Giroofur.bat]
    "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
    "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
    "C:\Windows\SysNative\tasks\User_Feed_Synchronization-{4C6CC4A1-0A0D-4E99-B931-2F8486A07671}" [C:\Windows\system32\msfeedssync.exe]
    "C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

    ==== Firefox Extensions Registry ======================

    [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
    "light_plugin_ACF0E80077C511E59DED005056C00008@kaspersky.com"="C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\FFExt\light_plugin_firefox\addon.xpi" [19/08/2016 15:01]

    ==== Chromium Look ======================

    Google Chrome Version: 46.0.2490.86

    HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
    lpeeaghdjmhlakojjcgfdhgcejdaefmi - https://chrome.google.com/webstore/detail/lpeeaghdjmhlakojjcgfdhgcejdaefmi[]

    Google Slides - Marlon\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek
    Google Docs - Marlon\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
    Google Drive - Marlon\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
    YouTube - Marlon\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
    selector is not a valid CSS selector - Marlon\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb
    Google Search - Marlon\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
    Google Sheets - Marlon\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap
    Google Docs Offline - Marlon\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi
    Kaspersky Protection - Marlon\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpeeaghdjmhlakojjcgfdhgcejdaefmi
    Chrome Web Store Payments - Marlon\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
    Simet - Marlon\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnokjffnngdgfplfmimjioknefmkjfgc
    Gmail - Marlon\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
    Chrome Media Router - Marlon\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm
    undetermined - Marlon\AppData\Local\Google\Chrome\User Data\Default\Extensions\Config.json

    ==== IE Start and Search Settings ======================

    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
    "Start Page"="http://www.google.com"
    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
    "DefaultScope"="{0191A6B0-1154-4C22-9182-23A95BBE92D9}"

    ==== All HKLM and HKCU SearchScopes ======================

    HKLM\SearchScopes "DefaultScope"="{0191A6B0-1154-4C22-9182-23A95BBE92D9}"
    HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
    HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0191A6B0-1154-4C22-9182-23A95BBE92D9}"
    HKLM\Wow6432Node\SearchScopes\{0191A6B0-1154-4C22-9182-23A95BBE92D9} - http://www.google.com/search?q={searchTerms}
    HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
    HKCU\SearchScopes "DefaultScope"="{0191A6B0-1154-4C22-9182-23A95BBE92D9}"
    HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
    HKCU\SearchScopes\{0191A6B0-1154-4C22-9182-23A95BBE92D9} - http://www.google.com/search?q={searchTerms}
    HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC

    ==== HijackThis Entries ======================

    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    O2 - BHO: ScriptInjectionPluginBrowserHelperObject - {03993315-5CE9-4F00-8790-D14A94F1D91A} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\IEExt\ie_plugin.dll
    O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_73\bin\ssv.dll
    O2 - BHO: Auxiliar de Conexão de Conta da Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_73\bin\jp2ssv.dll
    O3 - Toolbar: Kaspersky Protection Toolbar - {001032CB-B0AC-4F2C-A650-AD4B2B26E5DA} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\IEExt\ie_plugin.dll
    O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
    O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
    O16 - DPF: {0D41B8C5-2599-4893-8183-00195EC8D5F9} (asusTek_sysctrl Class) - http://support.asus.com.tw/common/asusTek_sys_ctrl.cab

    ==== EOF on 21/10/2016 at 13:24:31,65 ======================
     

     

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites

    Ok,

     

    Desative temporariamente seu Antivírus

     

    • Segure o botão Ctrl e clique neste link para abrir o ESET Online Scanner em uma nova janela.
    • Clique neste botão: j9Byf.png?1
    • Para navegadores alternativos: (Caso use o Internet Explorer, pule esta etapa)esetsmartinstaller_enu.png
      • Clique em esetsmartinstaller_enu.exe para baixar o ESET Smart Intaller. Salve-o em seu desktop.
      • Duplo clique no ícone em seu desktop.
    • Marque "YES, I accept the Terms of Use."
    • Clique em Start.
    • Aceite qualquer aviso de segurança de seu browser.
    • Marque: "Enable detection of potentially unwanted applications"
    • Clique em Hide Advanced settings e marque o seguinte:
      • Remove found threats
      • Scan archives
      • Scan for potentially unsafe applications
      • Enable Anti-Stealth technology
    • Clique Change e marque também a caixa Computador.
    • Clique em Start.
    • Ele vai atualizar por conta própria, e escanear o computador. Tenha paciência, o processo pode demorar horas.
    • Quando o scan terminar, clique em List of found threats
    • Clique em Export to text file e salve o log na sua área de trabalho.
    • Clique em Back.
    • Clique em Finish.
    • Selecione, copie e cole o conteúdo deste log em sua sua próxima resposta.

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
  • Autor do tópico
  • Bom dia amigo,

     

    Já tentei por mais d 4 vezes passar esse antivírus, porém sem sucesso !!

    Ele trava e passa a não responder. Teria um outro SCAN de confiança que você queira passar ?

    Esse não seu por qual motivo, mas ele trava.

     

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites

    Ok,

     

     

    Desative temporariamente seu antivirus, antispywares e firewall, para não causar conflitos.

    Baixe o Stinger e salve em sua Área de trabalho (Desktop).
    32 bit (x86) ou 64 bit (x64)

    • Execute o arquivo Stinger.exe
      • Atenção: Usuários Windows Vista, 7 e 8, cliquem com o botão direito do mouse e escolha: execadmin.png
    • Clique no botão “I Accept”


    Stinger%20a.png

    Na nova janela clique em “Advanced” e depois “Settings”

    Stinger%20b.png

    Na janela configurações deixe conforme imagem abaixo e clique no botão “Save”

    9hnsyu.png

    Clique em “Customize my Scan”

    Stinger%20f.png

    Selecione as unidades do sistema e em seguida clique no botão “Scan”

    Stinger%20g.png

    Ao final clique em “View log”, será aberto uma janela com o log em seu navegador.
    Selecione, copie e cole o conteúdo deste log em sua sua próxima resposta.

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
  • Autor do tópico
  • McAfee® Labs Stinger™ Version 12.1.0.2150 built on Oct 28 2016 at 12:56:02 Copyright© 2015, McAfee, Inc. All Rights Reserved. AV Engine version v5800.7501 for Windows. Virus data file v1000.0 created on Oct 28, 2016 Ready to scan for 9930 viruses, trojans and variants. Custom scan initiated on domingo, outubro 30, 2016 20:57:12 Rootkit scan result : Clean. D:\marlon\MarLon\Backup\SETUPS\Camtasia Studio 8.0.4.rar\Camtasia Studio 8.0.4\Ativador\Keygen.exe is infected with Artemis!6B65213C280A D:\marlon\MarLon\Backup\SETUPS\Camtasia Studio 8.0.4.rar\Camtasia Studio 8.0.4\Ativador\Keygen.exe couldn't be repaired D:\marlon\MarLon\Backup\SETUPS\Camtasia Studio 8.0.4.rar is infected D:\marlon\MarLon\Backup\SETUPS\Keygen.exe [MD5:6b65213c280a73abec47006c8c5c0634] is infected with Artemis!6B65213C280A D:\marlon\MarLon\Backup\SETUPS\Keygen.exe has been Deleted Summary Report on C: D: E: File(s) TotalFiles:............ 617591 Clean:................. 223089 Not Scanned:........... 394499 Possibly Infected:..... 3 Time: 01:52:37 Scan completed on domingo, outubro 30, 2016 22:49:49

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites

    @mvrodrigues

     

    Baixe Security Check, by glax24 e salve em sua Área de trabalho (Desktop).

     

    Atenção: Usuários Windows Vista, 7 e 8, cliquem com o botão direito do mouse e escolha: execadmin.png 

    • Aguarde enquanto a ferramenta faz o exame.
    • Ao final abrirá um log: SecurityCheck.txt.
    • Este log é salvo em C: (Disco local) na pasta SecurityCheck que foi criada.
    • Selecione, copie e cole o conteúdo deste log em sua sua próxima resposta.

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
  • Autor do tópico
  • SecurityCheck by glax24 & Severnyj v.1.4.0.46 [22.09.16]
    WebSite: www.safezone.cc
    DateLog: 04.11.2016 13:45:03
    Path starting: C:\Users\Marlon\AppData\Local\Temp\SecurityCheck\SecurityCheck.exe
    Log directory: C:\SecurityCheck\
    IsAdmin: True
    User: Marlon
    VersionXML: 3.48is-30.10.2016
    ___________________________________________________________________________

    Windows 7(6.1.7601) Service Pack 1 (x64) Ultimate Lang: Portuguese(0416)
    Installation date OS: 29.10.2013 04:04:53
    LicenseStatus: Windows(R) 7, Ultimate edition The machine is permanently activated.
    Boot Mode: Normal
    Default Browser: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    SystemDrive: C: FS: [NTFS] Capacity: [931.4 Gb] Used: [104.4 Gb] Free: [827 Gb]
    ------------------------------- [ Windows ] -------------------------------
    Internet Explorer 10.0.9200.16736 Warning! Download Update
    Online installation. Last version available when Windows update is enabled throught the Internet.
    User Account Control enabled
    Never check for updates
    Date install updates: 2013-11-26 12:55:32
    Windows Update (wuauserv) - The service is running
    Central de Segurança (wscsvc) - The service is running
    Registro remoto (RemoteRegistry) - The service has stopped
    Descoberta SSDP (SSDPSRV) - The service is running
    Serviços de Área de Trabalho Remota (TermService) - The service has stopped
    Windows Remote Management (WS-Management) (WinRM) - The service has stopped
    ------------------------------ [ MS Office ] ------------------------------
    Microsoft Office 2010 x64 v.14.0.6029.1000
    ---------------------------- [ Antivirus_WMI ] ----------------------------
    Kaspersky Internet Security (disabled and up to date)
    ---------------------------- [ Firewall_WMI ] -----------------------------
    Kaspersky Internet Security (disabled)
    --------------------------- [ AntiSpyware_WMI ] ---------------------------
    Kaspersky Internet Security (disabled and up to date)
    Windows Defender (disabled and out of date)
    ---------------------- [ AntiVirusFirewallInstall ] -----------------------
    Kaspersky Internet Security v.16.0.1.445
    -------------------------- [ SecurityUtilities ] --------------------------
    SUPERAntiSpyware v.6.0.1168
    Malwarebytes Anti-Malware versão 2.2.1.1043 v.2.2.1.1043
    --------------------------- [ OtherUtilities ] ----------------------------
    WinRAR 4.20 (64-bit) v.4.20.0 Warning! Download Update
    Microsoft Silverlight v.5.1.30214.0 Warning! Download Update
    --------------------------------- [ IM ] ----------------------------------
    Skype™ 7.17 v.7.17.105 Warning! Download Update
    ^Optional update.^
    --------------------------------- [ P2P ] ---------------------------------
    µTorrent v.3.4.2.36615 Warning! P2P-client.
    -------------------------------- [ Java ] ---------------------------------
    Java 8 Update 111 v.8.0.1110.14 Warning! Download Update
    Uninstall old version and install new one (jre-8u112-windows-i586.exe).
    --------------------------- [ AppleProduction ] ---------------------------
    Bonjour v.3.0.0.10 Warning! Download Update
    ^Please use Apple Software Update tool.^
    iTunes v.12.1.2.27 Warning! Download Update
    ^Please use Apple Software Update tool.^
    Serviço do Bonjour (Bonjour Service) - The service has stopped
    --------------------------- [ AdobeProduction ] ---------------------------
    Adobe AIR v.3.9.0.1030 Warning! Download Update
    Adobe Flash Player 16 ActiveX v.16.0.0.305 Warning! Download Update
    Adobe Flash Player 16 NPAPI v.16.0.0.305 Warning! Download Update
    Adobe Shockwave Player 12.1 v.12.1.3.153 Warning! Download Update
    Adobe Acrobat Reader DC - Português v.15.020.20039
    ------------------------------- [ Browser ] -------------------------------
    Google Chrome v.54.0.2840.71
    --------------------------- [ RunningProcess ] ----------------------------
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe v.54.0.2840.71
    ------------------ [ AntivirusFirewallProcessServices ] -------------------
    Serviço do Kaspersky Anti-Virus 16.0.1 (AVP16.0.1) - The service is running
    C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\avp.exe v.16.0.1.445
    klvssbrigde64 (klvssbrigde64) - The service has stopped
    McAfee Validation Trust Protection Service (mfevtp) - The service is running
    C:\Windows\System32\mfevtps.exe
    SAS Core Service (!SASCORE) - The service has stopped
    Windows Defender (WinDefend) - The service has stopped
    ----------------------------- [ End of Log ] ------------------------------
     

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites

    @mvrodrigues

     

    Para finalizar:

     

    # Etapa nº 1 #

     

    Baixe o Delfix by Xplode e salve na sua área de trabalho.

     

    Clique duas vezes no delfix.exe para executá-lo. Marque as caixas conforme imagem.

     

    ** Usuários do Windows Vista ou Windows 7 clique com o direito sobre o arquivo delfix.exe, depois clique em execadmin.png.

     

    2mez6ld.png

     

    Clique no botão Executar.

     

    Ao final será gerado um log, mas não é necessário postar.
     
    # Etapa nº 2 #
     
    imageproxy.php?img=http%3A%2F%2Fi65.tiny Versões antigas de programas têm vulnerabilidades que alguns malwares podem usar para infectar o seu sistema.
     
    Por isso, é recomendável atualizar os programas que o Security Check apontou como desatualizados (os updates opcionais ficam ao seu critério).
     
    Basta clicar no Download Update de cada aviso, que irá para o site do desenvolvedor.

    <<@>> Mantenha sempre seu Windows atualizado; mantenha uma vigilância constante com o firewall e antivírus e por fim, lembre-se que, a melhor forma de prevenir começa pelas nossas atitudes!

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
    Visitante
    Este tópico está impedido de receber novos posts.





    Sobre o Clube do Hardware

    No ar desde 1996, o Clube do Hardware é uma das maiores, mais antigas e mais respeitadas publicações sobre tecnologia do Brasil. Leia mais

    Direitos autorais

    Não permitimos a cópia ou reprodução do conteúdo do nosso site, fórum, newsletters e redes sociais, mesmo citando-se a fonte. Leia mais

    ×