Multi-License Discount Quote

Change Region

English
Threat Database Adware Bonanza Deals

Bonanza Deals

By LoneStar in Adware

Threat Scorecard

Popularity Rank: 2,238
Threat Level: 20 % (Normal)
Infected Computers: 77,056
First Seen: September 24, 2013
Last Seen: February 6, 2026
OS(es) Affected: Windows

Bonanza Deals is an adware program that may be installed onto Google Chrome, Mozilla Firefox and Internet Explorer. Bonanza Deals may embed a browser plug-in that shows a variety of messages while the affected web user is browsing the webt. Bonanza Deals may also show a variety of irritating pop-up advertisements that carry coupons with discounts and other offers. Bonanza Deals expects Internet users to click on these pop-up ads. Bonanza Deals tries to increase traffic of advertising websites and benefit from associated links. Bonanza Deals may reroute target computer users to doubtful commercial websites and disturb the web user's work with continuous pop-up ads and messages. Bonanza Deals may also threaten the target computer user's privacy and security. Bonanza Deals may trace the affected web user's surfing activities, that is what websites he is visiting, what information he enters while surfing on the net and other details. Then, Bonanza Deals may transmit this data to remote cybercriminals.

Aliases

2 security vendors flagged this file as malicious.

Antivirus Vendor Detection
Comodo Application.Win32.Bonanza.gr
Symantec Adware.BL

SpyHunter Detects & Remove Bonanza Deals

File System Details

Bonanza Deals may create the following file(s):
Expand All | Collapse All
# File Name MD5 Detections
1. uninstall.exe b52c9369cfd0b07290aa3deba1599ab6 5,029
2. BonanzaDealsIE.dll cfe165943ae6cd3de8213856a1c66016 570
3. BonanzaDealsUpdate.exe.vir 5826462e5834594a81e0397a097b5d3e 549
4. VegasBonusSlots.exe 5455684f1d75091f5ddef8e0a97dca49 47
5. JimBakUp.bat 7dbd136597004df276d615ad71938017 29
6. UpdateTask.exe 07a480e25bb4697adc28212471115899 13
7. SlotBonanza.exe a5b7df6a53c1d440804de9483f9f7406 6
8. printgenerator.exe 8a78b12c248f64edbec6b5d9ffd4680f 3
9. BonanzaDealsUpdate.exe ef2a0de3a933d00e57e4bc417c8cd7e0 3
10. Bonanza Baby.scr f2c4e56bb5aaf4ea01ee8ea4af7a26f3 3
11. RXP430.exe 7dbac8087933b13f6a86c3fcf8fce068 2
12. BonanzaDealsLive.exe 7978c2c782368a962f684e6b65f2ee2a 1
More files

Registry Details

Bonanza Deals may create the following registry entry or registry entries:
CLSID
{118E1BF6-6279-432F-A285-373A77B90C7A}
{14CEEA2F-3D21-46ED-A7D2-89056C520E5E}
{1CC8D970-F626-4F19-815F-890032BB6606}
{29494049-211F-4F5C-8545-7DA8BF7A6CF8}
{33BAF587-9647-4281-A34F-F4830CDC1B9F}
{5B5E5D0E-7C83-4A32-ADD2-E5F488DD6783}
{6802463D-636F-41FE-9924-4CAD56906590}
{806785D0-375F-4C2C-92E3-B8EE65D28E83}
{944661E7-67B9-4DF7-BFF2-05388C166D34}
{9EA8702C-EEDB-4731-BE68-E9A167DD3597}
{A7CF66EF-4F0D-46B1-AF71-A500378D6C34}
{B71934E5-6B93-448D-9D32-CBAA5150C5D8}
{C4BEF720-313C-420A-ACF6-77DD95D8F553}
{D34F391D-4CB7-467F-A543-F583857C63B0}
{E970727E-0508-4BEB-8B72-BBA9D0D047C7}
{EBF1F869-D2F0-4D31-A877-386C853A9C3D}
{F3CF4912-CF0A-451B-AF3B-C4F216C715E4}
{F904AC50-215C-42AB-A532-77E9FDBA9B19}
{fe063412-bea4-4d76-8ed3-183be6220d17}
File name without path
BonanzaDealsLiveUpdateTaskMachineCore.job
BonanzaDealsLiveUpdateTaskMachineUA.job
Regexp file mask
%PROGRAMFILES%\BonanzaDealsLive\Update\BonanzaDealsLive.exe
%PROGRAMFILES(x86)%\BonanzaDealsLive\Update\BonanzaDealsLive.exe
HKEY..\..\..\..{RegistryKeys}
Software\BonanzaDeals
Software\BonanzaDealsLive
SOFTWARE\Classes\AppID\BonanzaDealsLive.exe
SOFTWARE\Classes\BonanzaDealsLive.OneClickCtrl.9
SOFTWARE\Classes\BonanzaDealsLive.OneClickProcessLauncherMachine
SOFTWARE\Classes\BonanzaDealsLive.OneClickProcessLauncherMachine.1.0
SOFTWARE\Classes\BonanzaDealsLive.Update3WebControl.3
SOFTWARE\Classes\BonanzaDealsLiveUpdate.CoCreateAsync
SOFTWARE\Classes\BonanzaDealsLiveUpdate.CoCreateAsync.1.0
SOFTWARE\Classes\BonanzaDealsLiveUpdate.CoreClass
SOFTWARE\Classes\BonanzaDealsLiveUpdate.CoreClass.1
SOFTWARE\Classes\BonanzaDealsLiveUpdate.CoreMachineClass
SOFTWARE\Classes\BonanzaDealsLiveUpdate.CoreMachineClass.1
SOFTWARE\Classes\BonanzaDealsLiveUpdate.CredentialDialogMachine
SOFTWARE\Classes\BonanzaDealsLiveUpdate.CredentialDialogMachine.1.0
SOFTWARE\Classes\BonanzaDealsLiveUpdate.OnDemandCOMClassMachine
SOFTWARE\Classes\BonanzaDealsLiveUpdate.OnDemandCOMClassMachine.1.0
SOFTWARE\Classes\BonanzaDealsLiveUpdate.OnDemandCOMClassMachineFallback
SOFTWARE\Classes\BonanzaDealsLiveUpdate.OnDemandCOMClassMachineFallback.1.0
SOFTWARE\Classes\BonanzaDealsLiveUpdate.OnDemandCOMClassSvc
SOFTWARE\Classes\BonanzaDealsLiveUpdate.OnDemandCOMClassSvc.1.0
SOFTWARE\Classes\BonanzaDealsLiveUpdate.ProcessLauncher
SOFTWARE\Classes\BonanzaDealsLiveUpdate.ProcessLauncher.1.0
SOFTWARE\Classes\BonanzaDealsLiveUpdate.Update3COMClassService
SOFTWARE\Classes\BonanzaDealsLiveUpdate.Update3COMClassService.1.0
SOFTWARE\Classes\BonanzaDealsLiveUpdate.Update3WebMachine
SOFTWARE\Classes\BonanzaDealsLiveUpdate.Update3WebMachine.1.0
SOFTWARE\Classes\BonanzaDealsLiveUpdate.Update3WebMachineFallback
SOFTWARE\Classes\BonanzaDealsLiveUpdate.Update3WebMachineFallback.1.0
SOFTWARE\Classes\BonanzaDealsLiveUpdate.Update3WebSvc
SOFTWARE\Classes\BonanzaDealsLiveUpdate.Update3WebSvc.1.0
SOFTWARE\Classes\MIME\Database\Content Type\application/x-vnd.bdliveupdate.oneclickctrl.9
SOFTWARE\Classes\MIME\Database\Content Type\application/x-vnd.bdliveupdate.update3webcontrol.3
SOFTWARE\Classes\Wow6432Node\AppID\BonanzaDealsLive.exe
Software\Microsoft\Internet Explorer\Approved Extensions\{fe063412-bea4-4d76-8ed3-183be6220d17}
SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{29494049-211F-4F5C-8545-7DA8BF7A6CF8}
SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{33BAF587-9647-4281-A34F-F4830CDC1B9F}
SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C4BEF720-313C-420A-ACF6-77DD95D8F553}
SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\BonanzaDealsLive.exe
SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\BonanzaDealsLiveUpdateTaskMachineCore
SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\BonanzaDealsLiveUpdateTaskMachineUA
SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\BonanzaDealsUpdate
SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{fe063412-bea4-4d76-8ed3-183be6220d17}
SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{29494049-211F-4F5C-8545-7DA8BF7A6CF8}
SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C4BEF720-313C-420A-ACF6-77DD95D8F553}
Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FE063412-BEA4-4D76-8ED3-183BE6220D17}
SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{29494049-211F-4F5C-8545-7DA8BF7A6CF8}
SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{C4BEF720-313C-420A-ACF6-77DD95D8F553}
Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FE063412-BEA4-4D76-8ED3-183BE6220D17}
SOFTWARE\MozillaPlugins\@tools.bdupdater.com/BonanzaDealsLive Update;version=3
SOFTWARE\MozillaPlugins\@tools.bdupdater.com/BonanzaDealsLive Update;version=9
SOFTWARE\Wow6432Node\BonanzaDeals
SOFTWARE\Wow6432Node\BonanzaDealsLive
SOFTWARE\Wow6432Node\Classes\AppID\BonanzaDealsLive.exe
SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{29494049-211F-4F5C-8545-7DA8BF7A6CF8}
SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{33BAF587-9647-4281-A34F-F4830CDC1B9F}
SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C4BEF720-313C-420A-ACF6-77DD95D8F553}
SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\BonanzaDealsLive.exe
SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{fe063412-bea4-4d76-8ed3-183be6220d17}
SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{29494049-211F-4F5C-8545-7DA8BF7A6CF8}
SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C4BEF720-313C-420A-ACF6-77DD95D8F553}
SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\Stats\{29494049-211F-4F5C-8545-7DA8BF7A6CF8}
SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\Stats\{C4BEF720-313C-420A-ACF6-77DD95D8F553}
SOFTWARE\Wow6432Node\MozillaPlugins\@tools.bdupdater.com/BonanzaDealsLive Update;version=3
SOFTWARE\Wow6432Node\MozillaPlugins\@tools.bdupdater.com/BonanzaDealsLive Update;version=9
SYSTEM\ControlSet001\services\bonanzadealslive
SYSTEM\ControlSet001\services\bonanzadealslivem
SYSTEM\ControlSet002\Services\bonanzadealslive
SYSTEM\ControlSet002\services\bonanzadealslivem
SYSTEM\CurrentControlSet\services\bonanzadealslive
SYSTEM\CurrentControlSet\services\bonanzadealslivem
HKEY_LOCAL_MACHINE\Software\[APPLICATION]\Microsoft\Windows\CurrentVersion\Uninstall..{Uninstaller}
Bonanza Deals

Directories

Bonanza Deals may create the following directory or directories:

%APPDATA%\UpdateBonanza
%AllUsersProfile%\Application Data\BonanzaDealsLive
%AllUsersProfile%\BonanzaDealsLive
%AppData%\Microsoft\Windows\Start Menu\Programs\BonanzaDeals
%LocalAppData%\BonanzaDealsLive
%ProgramFiles%\BonanzaDeals
%ProgramFiles%\BonanzaDealsLive
%ProgramFiles(x86)%\BonanzaDeals
%ProgramFiles(x86)%\BonanzaDealsLive
%UserProfile%\Local Settings\Application Data\BonanzaDealsLive
%UserProfile%\Start Menu\Programs\BonanzaDeals

URLs

Bonanza Deals may call the following URLs:

BonanzaDeals

Trending

Most Viewed

Loading...