CreateRestorePoint:
() C:\Program Files\Updater By Smilebox\ExtensionUpdaterService.exe
() C:\Program Files\daugava\Ejemidvlf64.exe
HKLM\...\Run: [daugava64] => C:\Program Files\daugava\Ejemidvlf64.exe [463520 2015-07-22] ()
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-3926269040-4061506150-889370240-1001\...\MountPoints2: {afa1bb3c-e8c7-11df-97e8-e0cb4e7d5b48} - F:\LaunchU3.exe -a
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.smilebox.com/?src=10&st=12&crg=3.5000006.10040&barid={AECE8725-DB8A-11E2-9C76-E0CB4E7D5B48}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {EEE6C360-6118-11DC-9C72-001320C79847} URL = hxxp://start.smilebox.com/?src=6&q={searchTerms}&st=12&crg=3.5000006.10040&barid={AECE8725-DB8A-11E2-9C76-E0CB4E7D5B48}
SearchScopes: HKU\S-1-5-21-3926269040-4061506150-889370240-1001 -> {EEE6C360-6118-11DC-9C72-001320C79847} URL = hxxp://start.smilebox.com/?src=6&q={searchTerms}&st=12&crg=3.5000006.10040&barid={AECE8725-DB8A-11E2-9C76-E0CB4E7D5B48}
BHO: Updater By Smilebox -> {7D4F1959-3F72-49d5-8E59-F02F8AA6815D} -> C:\Program Files\Updater By Smilebox\Extension64.dll [2013-07-01] ()
Toolbar: HKU\S-1-5-21-3926269040-4061506150-889370240-1001 -> No Name - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} -  No File
Toolbar: HKU\S-1-5-21-3926269040-4061506150-889370240-1001 -> No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} -  No File
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw.dll [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF HKLM\...\Firefox\Extensions: [{7D4F1959-3F72-49d5-8E59-F02F8AA6815D}] - C:\Program Files\Updater By Smilebox\Firefox
FF Extension: Updater By Smilebox - C:\Program Files\Updater By Smilebox\Firefox [2013-06-22]
FF HKLM\...\Firefox\Extensions: [{8E9E3331-D360-4f87-8803-52DE43566502}] - C:\Program Files\Updater By Smilebox\Firefox
FF HKLM-x32\...\Firefox\Extensions: [{7D4F1959-3F72-49d5-8E59-F02F8AA6815D}] - C:\Program Files\Updater By Smilebox\Firefox
FF HKLM-x32\...\Firefox\Extensions: [{8E9E3331-D360-4f87-8803-52DE43566502}] - C:\Program Files\Updater By Smilebox\Firefox
R2 Updater By Smilebox; C:\Program Files\Updater By Smilebox\ExtensionUpdaterService.exe [188760 2013-07-01] () [File not signed]
R1 cherimoya; C:\Windows\System32\drivers\cherimoya.sys [61336 2015-06-18] (Cherimoya Ltd)
2015-09-26 23:52 - 2015-09-26 23:52 - 00000000 ____D C:\Windows\system32\pums
2015-09-26 23:52 - 2015-09-26 23:52 - 00000000 ____D C:\Windows\TEMPfolder
Task: {35520BE7-D3F3-41AF-A2DB-362EC2CBD8B3} - System32\Tasks\Cawlez => C:\Program Files\daugava\Irosioe.bat [2015-07-22] ()
C:\Program Files\Updater By Smilebox
C:\Program Files\daugava
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: ipconfig /flushdns
CMD: netsh winsock reset catalog
CMD: netsh int ip reset c:\resetlog.txt
CMD: ipconfig /release
CMD: ipconfig /renew
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
Hosts: