!!! Aktualizované skripty 20:05 !!!
----

Vyčisti CCleanerom PC (hlavne registre - treba zopakovať viac krát až nič nenájde). Ak ho nepoužívaš, tak si ho stiahni - http://www.piriform.com/ccleaner, odporúčam používať aspoň 2x za týždeň.
----

• Spusť SystemLook,
• Do okna vlož skript:

:filefind
*guard*
*bing*
*sweet*
*ask*
*babylon*

:folderfind
*guard*
*bing*
*sweet*
*ask*
*babylon*

:regfind
guard
bing
sweet
ask
babylon

:reg
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

• Klikni na Look a skopíruj sem výsledok.
----

• Presuň ComboFix na plochu,
• Otvor si poznámkový blok a skopíruj doňho:

KillAll::

File::
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3314771282-3977894261-815355269-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3314771282-3977894261-815355269-1000UA.job
c:\users\uzivatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 2.0.lnk

Folder::
C:\Program Files\Guard-ICQ
C:\Program Files\Microsoft\BingBar
C:\Users\uzivatel\AppData\Roaming\Autodesk
C:\Users\uzivatel\AppData\Roaming\Hive Cluster
C:\Users\uzivatel\AppData\Roaming\ICQ
C:\Users\uzivatel\AppData\Roaming\ICQ Search
C:\Users\uzivatel\AppData\Roaming\LolClient
C:\Users\uzivatel\AppData\Roaming\LucasArts
C:\Users\uzivatel\AppData\Roaming\MAXON
C:\Users\uzivatel\AppData\Roaming\QipGuard

Registry::
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{687578b9-7132-4a7a-80e4-30ee31099e03}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CA4520F3-AE13-4FB1-A513-58E23991C86D}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AlcoholAutomount"=-
"DAEMON Tools Lite"=-
"WMPNSCFG"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"=-
"PWRISOVM.EXE"=-
"SunJavaUpdateSched"=-

DDS::
uURLSearchHooks: <No Name>:  - LocalServer32 - <no file>
mURLSearchHooks: <No Name>:  - LocalServer32 - <no file>
TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} - 

Firefox::
FF - prefs.js: browser.search.defaulturl - 
FF - ExtSQL: 2013-01-11 16:48; toolbar@ask.com; c:\users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\ovv1ht79.default\extensions\toolbar@ask.com

RegNull::
[HKEY_USERS\S-1-5-21-3314771282-3977894261-815355269-1000\Software\SecuROM\License information*]

• Ulož na plochu ako CFScript.txt,
• Potiahni CFScript nad ikonu ComboFixu,
• ComboFix vykoná príkazy zo skriptu, a pravdepodobne reštartuje PC,
• Následne vyskočí log, jeho obsah sem skopíruj.