Script ZHPFix
ShortcutFix

[MD5.C9CD3CC75CAACE4A529E68B9EC8FEA47] - (.Bandoo Media Inc. - Datamngr Coordinator.) -- C:\Program Files (x86)\Movies Toolbar\Datamngr\DatamngrCoordinator.exe   [3447808] [PID.1836]  =>Adware.Bandoo
[MD5.7BB83B26669C11459C39F83F0BBE577D] - (.Bandoo Media Inc. - Data Manager.) -- C:\Program Files (x86)\Movies Toolbar\Datamngr\DatamngrUI.exe   [3606528] [PID.3232]  =>Adware.Bandoo
M2 - MFEP: prefs.js [admin - d8i3cuoc.default\{22DA3B04-FD20-3544-DA68-52829EE1CE45}] [] New tab v5.0.0.10781 (..)    => Toolbar.Babylon
M2 - MFEP: prefs.js [admin - d8i3cuoc.default\{3d86a75b-cb6b-4764-885d-ca6336f04ba2}] [] Movies Toolbar (Dist. by Bandoo Media, Inc.) v1.6.2.0 (..) =>Adware.Bandoo
M2 - MFEP: prefs.js [admin - d8i3cuoc.default\{E71FFEC1-38E5-F081-1FAD-97475B240B80}] [] New tab v5.0.0.10654 (..)    => Toolbar.Babylon
O2 - BHO: Babylon toolbar helper [64Bits] - {2EECD738-5844-4a99-B4B6-146BF802613B} . (.Babylon BHO - No Comment.) -- C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\bh\BabylonToolbar.dll =>PUP.Babylon
O2 - BHO: Movies Toolbar (Dist. by Bandoo Media, Inc.) [64Bits] - {3d86a75b-cb6b-4764-885d-ca6336f04ba2} . (.No owner - dtx Dynamic Link Library.) -- C:\Program Files (x86)\Movies Toolbar\Datamngr\SRToolBar\IE\searchresultsDx.dll =>Adware.Bandoo
O2 - BHO: BonanzaDeals [64Bits] - {fe063412-bea4-4d76-8ed3-183be6220d17} . (.BonanzaDeals - BonanzaDeals for IE.) -- C:\Program Files (x86)\BonanzaDeals\BonanzaDealsIE.dll =>Adware.BonanzaDeals
O4 - GS\QuickLaunch [patricia]: iLivid.lnk . (.Bandoo Media Inc. - iLivid Download Manager.)  -- C:\Users\patricia\AppData\Local\iLivid\iLivid.exe =>Adware.Bandoo
O4 - GS\Program [patricia]: iLivid.lnk . (...)  -- C:\Users\admin\AppData\Local\iLivid\iLivid.exe (.not file.) =>Adware.Bandoo
O4 - GS\Desktop [patricia]: iLivid.lnk . (...)  -- C:\Users\admin\AppData\Local\iLivid\iLivid.exe (.not file.) =>Adware.Bandoo
O4 - GS\Program [admin]: iLivid.lnk . (.Bandoo Media Inc. - iLivid Download Manager.)  -- C:\Users\patricia\AppData\Local\iLivid\iLivid.exe =>Adware.Bandoo
O4 - GS\Desktop [admin]: iLivid.lnk . (.Bandoo Media Inc. - iLivid Download Manager.)  -- C:\Users\patricia\AppData\Local\iLivid\iLivid.exe =>Adware.Bandoo
O4 - HKLM\..\Wow6432Node\Run: [mobilegeni daemon] C:\Program Files (x86)\Mobogenie\DaemonProcess.exe (.not file.)    => PUP.Mobogenie
O23 - Service: BonanzaDealsLive Service (bonanzadealslive) (bonanzadealslive) . (.BonanzaDeals - BonanzaDealsLive Update.) - C:\Program Files (x86)\BonanzaDealsLive\Update\BonanzaDealsLive.exe =>Adware.BonanzaDeals
O23 - Service: Datamngr Coordinator (DatamngrCoordinator) . (.Bandoo Media Inc. - Datamngr Coordinator.) - C:\Program Files (x86)\Movies Toolbar\Datamngr\DatamngrCoordinator.exe =>Adware.Bandoo
O36 - AppCertDlls: (x86) . (...) -- C:\Program Files (x86)\Movies Toolbar\Datamngr\apcrtldr.dll =>PUP.Datamngr
O36 - AppCertDlls: (x64) . (...) -- C:\Program Files (x86)\Movies Toolbar\Datamngr\x64\apcrtldr.dll =>PUP.Datamngr
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\BonanzaDealsLiveUpdateTaskMachineCore.job   [920] =>Adware.BonanzaDeals
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\BonanzaDealsLiveUpdateTaskMachineUA.job   [924] =>Adware.BonanzaDeals
[MD5.9F2041F1EC121713D0BD9996CE97D03E] [APT] [BonanzaDealsLiveUpdateTaskMachineCore] (.BonanzaDeals.) -- C:\Program Files (x86)\BonanzaDealsLive\Update\BonanzaDealsLive.exe   [148976]  =>Adware.BonanzaDeals
[MD5.9F2041F1EC121713D0BD9996CE97D03E] [APT] [BonanzaDealsLiveUpdateTaskMachineUA] (.BonanzaDeals.) -- C:\Program Files (x86)\BonanzaDealsLive\Update\BonanzaDealsLive.exe   [148976]  =>Adware.BonanzaDeals
[MD5.5826462E5834594A81E0397A097B5D3E] [APT] [BonanzaDealsUpdate] (.BonanzaDealsUpdate.) -- C:\Program Files (x86)\BonanzaDeals\BonanzaDealsUpdate.exe   [78384]  =>Adware.BonanzaDeals
O42 - Logiciel: Babylon toolbar on IE - (...) [HKLM][64Bits] -- BabylonToolbar =>PUP.Babylon
O42 - Logiciel: Bonanza Deals (remove only) - (.Bonanza Deals.) [HKLM][64Bits] -- Bonanza Deals =>Adware.BonanzaDeals
O42 - Logiciel: Movies Toolbar for Firefox (Dist. by Bandoo Media, Inc.) - (.APN LLC.) [HKLM][64Bits] -- ilividmoviestoolbarhaFF =>Adware.Bandoo
O42 - Logiciel: Update_for_BonanzaDeals - (.Update_for_BonanzaDeals.) [HKCU][64Bits] -- Bonanza =>Adware.BonanzaDeals
O42 - Logiciel: iLivid - (.Bandoo Media Inc.) [HKLM][64Bits] -- iLivid =>Adware.Bandoo
[HKCU\Software\BabylonToolbar] =>PUP.Babylon
[HKCU\Software\BonanzaDealsLive] =>Adware.BonanzaDeals
[HKCU\Software\BonanzaDeals] =>Adware.BonanzaDeals
[HKCU\Software\Datamngr] =>PUP.Datamngr
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKCU\Software\iWin.com Games]    => Adware.iWinArcade
[HKCU\Software\ilivid] =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Babylon] =>PUP.Babylon
[HKLM\Software\Wow6432Node\BonanzaDealsLive] =>Adware.BonanzaDeals
[HKLM\Software\Wow6432Node\BonanzaDeals] =>Adware.BonanzaDeals
[HKLM\Software\Wow6432Node\Datamngr] =>PUP.Datamngr
O43 - CFD: 6/5/2012 - 3:18:03 PM - [1.772] ----D C:\Program Files (x86)\BabylonToolbar =>PUP.Babylon
O43 - CFD: 12/4/2013 - 1:28:34 AM - [1.165] ----D C:\Program Files (x86)\BonanzaDeals =>Adware.BonanzaDeals
O43 - CFD: 12/4/2013 - 1:28:50 AM - [3.750] ----D C:\Program Files (x86)\BonanzaDealsLive =>Adware.BonanzaDeals
O43 - CFD: 10/13/2013 - 7:06:00 PM - [0.196] ----D C:\Program Files (x86)\iWin Games =>Adware.FunWebProducts)
O43 - CFD: 10/13/2013 - 7:09:59 PM - [0] ----D C:\Program Files (x86)\iWin.com    => Adware.iWinArcade
O43 - CFD: 10/13/2013 - 7:10:24 PM - [0] ----D C:\Program Files (x86)\iWin.com Games    => Adware.iWinArcade
O43 - CFD: 1/1/2014 - 2:49:07 PM - [24.026] ----D C:\Program Files (x86)\Movies Toolbar =>PUP.MoviesToolbar
O43 - CFD: 6/5/2012 - 3:12:34 PM - [0] ----D C:\ProgramData\Babylon =>PUP.Babylon
O43 - CFD: 11/2/2013 - 5:31:32 PM - [0] ----D C:\ProgramData\BitGuard =>PUP.BitGuard
O43 - CFD: 12/4/2013 - 1:28:50 AM - [6.354] ----D C:\ProgramData\BonanzaDealsLive =>Adware.BonanzaDeals
O43 - CFD: 11/2/2013 - 5:31:21 PM - [0] ----D C:\ProgramData\Browser Manager    => PUP.Babylon*
O43 - CFD: 11/2/2013 - 5:31:48 PM - [0] ----D C:\ProgramData\BrowserProtect =>Hijacker.Eazel
O43 - CFD: 1/25/2014 - 4:26:41 PM - [0.024] ----D C:\ProgramData\Datamngr =>PUP.Datamngr
O43 - CFD: 10/13/2013 - 5:28:34 PM - [0] ----D C:\ProgramData\iWin Games =>Adware.FunWebProducts)
O43 - CFD: 6/5/2012 - 3:18:39 PM - [0.006] ----D C:\Users\patricia\AppData\Roaming\Babylon =>PUP.Babylon
O43 - CFD: 6/5/2012 - 3:12:35 PM - [4.227] ----D C:\Users\patricia\AppData\Local\Babylon =>PUP.Babylon
O43 - CFD: 12/4/2013 - 1:28:50 AM - [0] ----D C:\Users\patricia\AppData\Local\BonanzaDealsLive =>Adware.BonanzaDeals
O43 - CFD: 1/1/2014 - 3:23:42 PM - [153.986] ----D C:\Users\patricia\AppData\Local\iLivid =>Adware.Bandoo
O43 - CFD: 12/4/2013 - 1:28:38 AM - [0.001] ----D C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BonanzaDeals =>Adware.BonanzaDeals
O69 - SBI: prefs.js [admin - d8i3cuoc.default] user_pref("extensions.mywebsearch.prevKwdEnabled", true); =>Adware.MyWebSearch
O69 - SBI: prefs.js [admin - d8i3cuoc.default] user_pref("extensions.mywebsearch.prevKwdURL", "http://dts.search.ask.com/sr?src=ffb&gct=ds&appid=210&systemid=406&v=n9854-154&apn[...] =>Adware.MyWebSearch
O69 - SBI: prefs.js [admin - d8i3cuoc.default] user_pref("extensions.toolbar.mindspark._gcMembers_.browser.search.defaultenginename.tb", "Ask Web Search");    => Infection PUP (Adware.Bandoo)
O69 - SBI: prefs.js [admin - d8i3cuoc.default] user_pref("extensions.toolbar.mindspark._gcMembers_.browser.search.selectedEngine.tb", "Ask Web Search");    => Infection PUP (Adware.Bandoo)
O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - (Search the web (Babylon)) - http://search.babylon.com =>Adware.IMBooster
O69 - SBI: SearchScopes [HKCU] {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} - (Ask.com) - http://dts.search.ask.com    => Infection PUP (Adware.Bandoo)
O69 - SBI: SearchScopes [HKCU] {DECA3892-BA8F-44b8-A993-A466AD694AE4} - (Yahoo!) - http://search.yahoo.com    => Infection PUP (Adware.Bandoo)
[MD5.D41D8CD98F00B204E9800998ECF8427E] [SPRF][1/2/1601] (...) -- C:\Users\admin\AppData\Local\Temp\BundleSweetIMSetup.exe   [9]  =>PUP.SweetIM
[MD5.1314274E5B41DEAE9D4D5A4D7EE3ACFE] [SPRF][10/13/2013] (...) -- C:\Users\admin\AppData\Local\Temp\iWinArcadeAutocleanup.bat   [132]  =>Adware.iWinArcade
[MD5.D41D8CD98F00B204E9800998ECF8427E] [SPRF][1/2/1601] (...) -- C:\Users\admin\AppData\Local\Temp\MybabylonTB.exe   [11]  =>PUP.Babylon
O87 - FAEL: "{4558C98E-771C-4830-ABEE-D3FD17AA83C7}" | In - Public - P6 - TRUE | .(.APN LLC - DtUser.) -- C:\Program Files (x86)\ilividmoviestoolbarha\IE\dtUser.exe =>Adware.Bandoo
O87 - FAEL: "{B0E702A8-9E2C-49B7-B30F-1800D1FB64D2}" | In - Public - P17 - TRUE | .(.APN LLC - DtUser.) -- C:\Program Files (x86)\ilividmoviestoolbarha\IE\dtUser.exe =>Adware.Bandoo
O87 - FAEL: "{CF366A5D-2634-4E53-8D92-74FFFDAE54F3}" | In - Public - P6 - TRUE | .(.APN LLC - DtUser.) -- C:\Program Files (x86)\Movies Toolbar\Datamngr\SRToolBar\IE\dtUser.exe =>PUP.Datamngr
O87 - FAEL: "{747DC101-2F61-4E56-9B0C-CC525011747C}" | In - Public - P17 - TRUE | .(.APN LLC - DtUser.) -- C:\Program Files (x86)\Movies Toolbar\Datamngr\SRToolBar\IE\dtUser.exe =>PUP.Datamngr
O87 - FAEL: "{C0805FFA-AD59-4E2E-918A-D362EF4C9268}" | In - None - P6 - TRUE | .(.Bandoo Media Inc. - iLivid Download Manager.) -- C:\Users\patricia\AppData\Local\iLivid\iLivid.exe =>Adware.Bandoo
O87 - FAEL: "{EDE66C8F-F9C6-4277-86A6-989ED6A453F2}" | In - None - P17 - TRUE | .(.Bandoo Media Inc. - iLivid Download Manager.) -- C:\Users\patricia\AppData\Local\iLivid\iLivid.exe =>Adware.Bandoo
SS - | Auto 12/4/2013 148976 |  (bonanzadealslive) . (.BonanzaDeals.) - C:\Program Files (x86)\BonanzaDealsLive\Update\BonanzaDealsLive.exe =>Adware.BonanzaDeals
SS - | Demand 12/4/2013 148976 |  (bonanzadealslivem) . (.BonanzaDeals.) - C:\Program Files (x86)\BonanzaDealsLive\Update\BonanzaDealsLive.exe =>Adware.BonanzaDeals
SR - | Auto 12/23/2013 3447808 |  (DatamngrCoordinator) . (.Bandoo Media Inc..) - C:\Program Files (x86)\Movies Toolbar\Datamngr\DatamngrCoordinator.exe =>Adware.Bandoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4A99-B4B6-146BF802613B}]   =>PUP.Babylon^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3D86A75B-CB6B-4764-885D-CA6336F04BA2}]   =>Adware.Bandoo^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FE063412-BEA4-4D76-8ED3-183BE6220D17}]   =>Adware.BonanzaDeals^
[HKLM\SYSTEM\CurrentControlSet\Services\bonanzadealslive) (bonanzadealslive]   =>Adware.BonanzaDeals^
[HKLM\SYSTEM\CurrentControlSet\Services\DatamngrCoordinator]   =>Adware.Bandoo^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\BabylonToolbar]   =>PUP.Babylon^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Bonanza Deals]   =>Adware.BonanzaDeals^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\ilividmoviestoolbarhaFF]   =>Adware.Bandoo^
[HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Bonanza]   =>Adware.BonanzaDeals^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\iLivid]   =>Adware.Bandoo^
[HKLM\Software\Classes\Interface\{E3ED53C5-7AD5-4DF5-9734-AFB6E7E5D9DB}]   =>Adware.iWinArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{E3ED53C5-7AD5-4DF5-9734-AFB6E7E5D9DB}]   =>Adware.iWinArcade
[HKLM\Software\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}]   =>PUP.Babylon
[HKLM\Software\Wow6432Node\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}]   =>PUP.Babylon
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}]   =>PUP.Babylon
[HKLM\Software\Classes\AppID\{35C1605E-438B-4D64-AAB1-8885F097A9B1}]   =>PUP.Babylon
[HKLM\Software\Classes\TypeLib\{35C1605E-438B-4D64-AAB1-8885F097A9B1}]   =>PUP.Babylon
[HKLM\Software\Wow6432Node\Classes\AppID\{35C1605E-438B-4D64-AAB1-8885F097A9B1}]   =>PUP.Babylon
[HKLM\Software\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}]   =>PUP.Babylon
[HKLM\Software\Wow6432Node\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}]   =>PUP.Babylon
[HKLM\Software\Classes\TypeLib\{495874fe-4a82-4ad1-9476-0b957e0b95eb}]   =>Adware.AdMedia
[HKLM\Software\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}]   =>PUP.Babylon
[HKLM\Software\Wow6432Node\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}]   =>PUP.Babylon
[HKLM\Software\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}]   =>PUP.Babylon
[HKLM\Software\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}]   =>PUP.Babylon
[HKLM\Software\Wow6432Node\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}]   =>PUP.Babylon
[HKLM\Software\Classes\TypeLib\{6E8BF012-2C85-4834-B10A-1B31AF173D70}]   =>PUP.Babylon
[HKLM\Software\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}]   =>PUP.Babylon
[HKLM\Software\Wow6432Node\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}]   =>PUP.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8375D9C8-634F-4ECB-8CF5-C7416BA5D542}]   =>PUP.Babylon
[HKLM\Software\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}]   =>PUP.Babylon
[HKLM\Software\Wow6432Node\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}]   =>PUP.Babylon
[HKLM\Software\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}]   =>PUP.Babylon
[HKLM\Software\Wow6432Node\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}]   =>PUP.Babylon
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}]   =>Adware.Bandoo
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}]   =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}]   =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A40DC6C5-79D0-4ca8-A185-8FF989AF1115}]   =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}]   =>PUP.Babylon
[HKLM\Software\Wow6432Node\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}]   =>PUP.Babylon
[HKLM\Software\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}]   =>PUP.Babylon
[HKLM\Software\Wow6432Node\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}]   =>PUP.Babylon
[HKLM\Software\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}]   =>PUP.Babylon
[HKLM\Software\Wow6432Node\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}]   =>PUP.Babylon
[HKLM\Software\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}]   =>PUP.Babylon
[HKLM\Software\Wow6432Node\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}]   =>PUP.Babylon
[HKLM\Software\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}]   =>Adware.CDNHelper
[HKLM\Software\Wow6432Node\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}]   =>Adware.CDNHelper
[HKLM\Software\Classes\Interface\{BFE569F7-646C-4512-969B-9BE3E580D393}]   =>PUP.Babylon
[HKLM\Software\Wow6432Node\Classes\Interface\{BFE569F7-646C-4512-969B-9BE3E580D393}]   =>PUP.Babylon
[HKLM\Software\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}]   =>PUP.Babylon
[HKLM\Software\Wow6432Node\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}]   =>PUP.Babylon
[HKLM\Software\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}]   =>PUP.Babylon
[HKLM\Software\Wow6432Node\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}]   =>PUP.Babylon
[HKLM\Software\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}]   =>PUP.Babylon
[HKLM\Software\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}]   =>PUP.Babylon
[HKLM\Software\Wow6432Node\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}]   =>PUP.Babylon
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{DECA3892-BA8F-44b8-A993-A466AD694AE4}]   =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}]   =>PUP.Babylon
[HKLM\Software\Wow6432Node\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}]   =>PUP.Babylon
[HKLM\Software\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}]   =>PUP.Babylon
[HKLM\Software\Wow6432Node\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}]   =>PUP.Babylon
[HKLM\Software\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}]   =>PUP.Babylon
[HKLM\Software\Wow6432Node\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}]   =>PUP.Babylon
[HKLM\Software\Classes\AppID\escort.dll]   =>PUP.Babylon
[HKLM\Software\Classes\AppID\escortapp.dll]   =>PUP.Babylon
[HKLM\Software\Classes\AppID\escorteng.dll]   =>PUP.Babylon
[HKLM\Software\Classes\AppID\esrv.EXE]   =>PUP.Babylon
[HKLM\Software\Classes\b]   =>PUP.Babylon
[HKLM\Software\Classes\Babylon.dskBnd]   =>PUP.Babylon
[HKLM\Software\Classes\Babylon.dskBnd.1]   =>PUP.Babylon
[HKLM\Software\Classes\bbylnApp.appCore]   =>PUP.Babylon
[HKLM\Software\Classes\bbylnApp.appCore.1]   =>PUP.Babylon
[HKLM\Software\Classes\escort.escortIEPane]   =>PUP.Funmoods
[HKLM\Software\Classes\escort.escortIEPane.1]   =>PUP.Funmoods
[HKLM\Software\Classes\escort.escrtBtn.1]   =>PUP.Babylon
[HKLM\Software\Classes\esrv.BabylonESrvc]   =>PUP.Babylon
[HKLM\Software\Classes\esrv.BabylonESrvc.1]   =>PUP.Babylon
[HKCU\Software\BabylonToolbar]   =>PUP.Babylon
[HKLM\Software\Wow6432Node\BabylonToolbar]   =>PUP.Babylon
[HKCU\Software\DataMngr]   =>Adware.Bandoo
[HKLM\Software\Wow6432Node\DataMngr]   =>Adware.Bandoo
[HKCU\Software\ilivid]   =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Microsoft\Tracing\MyBabylontb_RASAPI32]   =>PUP.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Tracing\MyBabylontb_RASMANCS]   =>PUP.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\BabylonToolbar]   =>PUP.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\iLivid]   =>Adware.Bandoo
[HKLM\Software\Classes\Prod.cap]   =>PUP.Babylon
[HKCU\Software\InstallCore]   =>Adware.InstallCore
[HKCU\Software\iWin.com Games]   =>Adware.iWinArcade
[HKCU\Software\iWinArcade]   =>Adware.iWinArcade
[HKLM\Software\Wow6432Node\iWinArcade]   =>Adware.iWinArcade
[HKLM\Software\Classes\SpeedUpMyPC]   =>Rogue.SpeedUpMyPC
[HKLM\Software\Classes\protector_dll.protectorbho]   =>PUP.BProtector
[HKLM\Software\Classes\protector_dll.protectorbho.1]   =>PUP.BProtector
[HKLM\Software\Classes\AppID\escorTlbr.DLL]   =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\escort.escortIEPane]   =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\escort.escortIEPane.1]   =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\escort.escrtBtn.1]   =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\AppID\escort.DLL]   =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\AppID\escortApp.DLL]   =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\AppID\escortEng.DLL]   =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\AppID\escorTlbr.DLL]   =>PUP.Funmoods
C:\Users\patricia\AppData\Roaming\Mozilla\Firefox\Profiles\d8i3cuoc.default\extensions\{3d86a75b-cb6b-4764-885d-ca6336f04ba2}   =>Adware.Bandoo^
C:\Program Files (x86)\BabylonToolbar   =>PUP.Babylon^
C:\Program Files (x86)\BonanzaDeals   =>Adware.BonanzaDeals^
C:\Program Files (x86)\BonanzaDealsLive   =>Adware.BonanzaDeals^
C:\Program Files (x86)\iWin Games   =>Adware.FunWebProducts)^
C:\Program Files (x86)\Movies Toolbar   =>PUP.MoviesToolbar^
C:\ProgramData\Babylon   =>PUP.Babylon^
C:\ProgramData\BitGuard   =>PUP.BitGuard^
C:\ProgramData\BonanzaDealsLive   =>Adware.BonanzaDeals^
C:\ProgramData\BrowserProtect   =>Hijacker.Eazel^
C:\ProgramData\Datamngr   =>PUP.Datamngr^
C:\ProgramData\iWin Games   =>Adware.FunWebProducts)^
C:\Users\patricia\AppData\Roaming\Babylon   =>PUP.Babylon^
C:\Users\patricia\AppData\Local\Babylon   =>PUP.Babylon^
C:\Users\patricia\AppData\Local\BonanzaDealsLive   =>Adware.BonanzaDeals^
C:\Users\patricia\AppData\Local\iLivid   =>Adware.Bandoo^
C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BonanzaDeals   =>Adware.BonanzaDeals^
C:\Program Files (x86)\iWin.com   =>Adware.iWinArcade
C:\Program Files (x86)\iWin.com Games   =>Adware.iWinArcade
C:\ProgramData\Browser Manager   =>PUP.Babylon
C:\Program Files (x86)\Movies Toolbar\Datamngr\DatamngrCoordinator.exe   =>Adware.Bandoo^
C:\Program Files (x86)\Movies Toolbar\Datamngr\DatamngrUI.exe   =>Adware.Bandoo^
C:\Windows\Tasks\BonanzaDealsLiveUpdateTaskMachineCore.job   =>Adware.BonanzaDeals^
C:\Windows\Tasks\BonanzaDealsLiveUpdateTaskMachineUA.job   =>Adware.BonanzaDeals^
C:\Program Files (x86)\BonanzaDealsLive\Update\BonanzaDealsLive.exe   =>Adware.BonanzaDeals^
C:\Program Files (x86)\BonanzaDeals\BonanzaDealsUpdate.exe   =>Adware.BonanzaDeals^
[HKCU\Software\BonanzaDealsLive]   =>Adware.BonanzaDeals^
[HKCU\Software\BonanzaDeals]   =>Adware.BonanzaDeals^
[HKCU\Software\Datamngr]   =>PUP.Datamngr^
[HKLM\Software\Wow6432Node\Babylon]   =>PUP.Babylon^
[HKLM\Software\Wow6432Node\BonanzaDealsLive]   =>Adware.BonanzaDeals^
[HKLM\Software\Wow6432Node\BonanzaDeals]   =>Adware.BonanzaDeals^
[HKLM\Software\Wow6432Node\Datamngr]   =>PUP.Datamngr^
C:\Users\admin\AppData\Local\Temp\BundleSweetIMSetup.exe   =>PUP.SweetIM^
C:\Users\admin\AppData\Local\Temp\iWinArcadeAutocleanup.bat   =>Adware.iWinArcade^
C:\Users\admin\AppData\Local\Temp\MybabylonTB.exe   =>PUP.Babylon^
M3 - MFPP: Plugins - [admin] -- C:\Users\patricia\AppData\Roaming\Mozilla\Firefox\Profiles\d8i3cuoc.default\searchplugins\ask-web-search.xml    => Toolbar.Ask
M0 - MFSP: prefs.js [admin - d8i3cuoc.default] http://home.tb.ask.com    => Toolbar.Ask
O3 - Toolbar: Google Toolbar - [HKLM]{2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll =>Toolbar.Google
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} Orphan key    => Toolbar.Google
O42 - Logiciel: Yahoo! Toolbar - (.Yahoo! Inc..) [HKLM][64Bits] -- Yahoo! Companion    => Toolbar.Yahoo
[HKCU\Software\APN DTX]    => Toolbar.Ask
[HKCU\Software\Softonic] =>Toolbar.Conduit
O69 - SBI: SearchScopes [HKCU] {597b1823-7ff0-4cd3-8095-9d8cba514992} - (Ask Web Search) - http://search.tb.ask.com    => Toolbar.Ask
O69 - SBI: SearchScopes [HKCU] {96bd48dd-741b-41ae-ac4a-aff96ba00f7e} [DefaultScope] - (MyPlayCity) - http://my.myplaycity.com    => Toolbar.CheatEngine
[MD5.D41D8CD98F00B204E9800998ECF8427E] [SPRF][1/2/1601] (...) -- C:\Users\admin\AppData\Local\Temp\DeltaTB.exe   [9]  =>Toolbar.DeltaSearch
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e}]   =>Toolbar.Agent
[HKCU\Software\APN DTX]   =>Toolbar.Ask
[HKCU\Software\Softonic]   =>Toolbar.Conduit
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]   =>Toolbar.Yahoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]   =>Toolbar.Yahoo
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]   =>Toolbar.Yahoo
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]   =>Toolbar.Yahoo
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Yahoo! Companion]   =>Toolbar.Yahoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF99BD32-C1FB-11D2-892F-0090271D4F88}]   =>Toolbar.Yahoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EF99BD32-C1FB-11D2-892F-0090271D4F88}]   =>Toolbar.Yahoo
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}]   =>Toolbar.Yahoo
[HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{2318C2B1-4965-11d4-9B18-009027A5CD4F}   =>Toolbar.Google^
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar]:{EF99BD32-C1FB-11D2-892F-0090271D4F88}   =>Toolbar.Yahoo
C:\Users\admin\AppData\LocalLow\searchresultstb   =>Toolbar.Agent
C:\Users\admin\AppData\Local\Temp\DeltaTB.exe   =>Toolbar.DeltaSearch^
McAfee Security Scan Plus v3.8.130.10    => McAfee, Inc
[MD5.8CB97AB9EDC3DB4E6723577E1D790353] - (.PC Tools - StartMan Application.) -- C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe   [793048] [PID.1232]
O4 - GS\Desktop [Public]: McAfee Security Scan Plus.lnk . (.McAfee, Inc. - McAfee.)  -- C:\Program Files\McAfee Security Scan\3.8.130\McUICnt.exe    => McAfee, Inc
O4 - GS\Startup [Public]: McAfee Security Scan Plus.lnk . (.McAfee, Inc. - McAfee Security Scanner Scheduler.)  -- C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe    => McAfee, Inc
O4 - GS\Startup [admin]: Registration .LNK . (...)  -- C:\Program Files (x86)\Ubisoft\Telltale Games\Les Experts - Las Vegas - Crimes en série\Registration\RegistrationReminder.exe (.not file.)    => Fichier absent
O4 - HKLM\..\Wow6432Node\Run: [SSDMonitor] . (.PC Tools - SSDMonit Application.) -- C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe
O23 - Service: PC Tools Startup and Shutdown Monitor service (PCToolsSSDMonitorSvc) . (.PC Tools - StartMan Application.) - C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe
[MD5.00000000000000000000000000000000] [APT] [{0FB8309C-3057-47ED-AE2D-0FCC08C55DFF}] (...) -- C:\Program Files\windows\Infernal\Uninstall.exe (.not file.)   [0]    => Fichier absent
[MD5.00000000000000000000000000000000] [APT] [{218C3A14-6C8A-4768-92E4-BCAF28CFE438}] (...) -- C:\Users\admin\Downloads\thegoldenyears_setup.exe (.not file.)   [0]    => Fichier absent
[MD5.00000000000000000000000000000000] [APT] [{32C97CD7-5596-42D7-8F47-8968F18C54A2}] (...) -- C:\Program Files\windows\Les Sims Histoires de vie\TSBin\PackageInstaller.exe (.not file.)   [0]    => Fichier absent
[MD5.00000000000000000000000000000000] [APT] [{3D314821-BB90-494E-B2D2-C39CCEDDC4A0}] (...) -- C:\Program Files\windows\Les Sims Histoires de vie\eauninstall.exe (.not file.)   [0]    => Fichier absent
[MD5.00000000000000000000000000000000] [APT] [{4D6B7809-A704-4870-8EFE-87B057DB62DC}] (...) -- C:\Users\admin\Downloads\hideandsecret_setup.exe (.not file.)   [0]    => Fichier absent
[MD5.00000000000000000000000000000000] [APT] [{6076FA47-32A7-4CED-B574-9CEC6F936FE5}] (...) -- C:\Program Files\windows\Les Sims Histoires de vie\SimsLS_Uninst.exe (.not file.)   [0]    => Fichier absent
[MD5.00000000000000000000000000000000] [APT] [{6CDB1D73-C1D3-4832-8256-C8939160E56F}] (...) -- C:\Users\admin\Downloads\alice_setup.exe (.not file.)   [0]    => Fichier absent
[MD5.00000000000000000000000000000000] [APT] [{948BBA8A-55DC-450D-93A9-64015B173E5C}] (...) -- E:\BWASetup.exe (.not file.)   [0]    => Fichier absent
[MD5.00000000000000000000000000000000] [APT] [{D901F91F-71BE-4788-B1EE-F78E297924B1}] (...) -- D:\Application\PHOTOFUN\_data14\OTHER\PIC_installer\setup.exe (.not file.)   [0]    => Fichier absent
O42 - Logiciel: Akamai NetSession Interface - (...) [HKLM][64Bits] -- Akamai    => Akamai
[HKCU\Software\PCTools]    => PCTools
[HKLM\Software\PCTools]    => PCTools
[HKLM\Software\Wow6432Node\PCTools]    => PCTools
O43 - CFD: 12/27/2013 - 2:04:37 PM - [0] ----D C:\Users\patricia\AppData\Local\IAC    => Empty Folder not necessary
O44 - LFC:[MD5.2A5EA6AF26192FA53C53BC1F73233193] - 1/24/2014 - 8:33:46 PM ---A- . (...) -- C:\Windows\IE11_main.log   [47059]    => Fichiers de rapport (Log)
[MD5.7D447FD33B799A5D1E2AD8EEAF58E24C] [SPRF][7/3/2007] (...) -- C:\Users\admin\AppData\Local\Temp\1.bat.exe   [45056]    => Temporary file not necessary
[MD5.320AC8764731933C85959CB3B029E85C] [SPRF][1/1/2014] (...) -- C:\Users\admin\AppData\Local\Temp\apnuserid.dat   [16]    => Temporary file not necessary
[MD5.AA68C75C4A77C87F97FB686B2F068676] [SPRF][1/1/2014] (...) -- C:\Users\admin\AppData\Local\Temp\appid.dat   [4]    => Temporary file not necessary
[MD5.1E609EC9A87E24005C272D00DC122C6B] [SPRF][10/27/2006] (...) -- C:\Users\admin\AppData\Local\Temp\CNFNOT32.EXE_0004.exe   [140560]    => Temporary file not necessary
[MD5.E57787E28A227F122857DC4F7B6A026C] [SPRF][12/2/2013] (...) -- C:\Users\admin\AppData\Local\Temp\defaultCache.reg   [1469404]    => Temporary file not necessary
[MD5.B8B374A526AE92B19447B89496E3F932] [SPRF][1/15/2007] (...) -- C:\Users\admin\AppData\Local\Temp\GameuxInstallHelper.dll   [577536]    => Temporary file not necessary
[MD5.8F47EA9F75F3D4266074C5BCA90059D3] [SPRF][11/27/2013] (...) -- C:\Users\admin\AppData\Local\Temp\ICReinstall_Skype-6-9-73-106_softpom.exe   [709232]    => Temporary file not necessary
[MD5.20DCBDE6356EAD474B3C90AC71A12847] [SPRF][1/25/2013] (.No owner - AVG Installer.) -- C:\Users\admin\AppData\Local\Temp\safeguard.exe   [2940496]    => Temporary file not necessary
[MD5.5937A47D1E7F099A8B03EB8F9127989D] [SPRF][1/21/2011] (...) -- C:\Users\admin\AppData\Local\Temp\srtspse.dat   [284]    => Temporary file not necessary
[MD5.BC0A83ECB35691D40CCDE169E52A87B6] [SPRF][12/3/2013] (...) -- C:\Users\admin\AppData\Local\Temp\srtspso.dat   [3468]    => Temporary file not necessary
[MD5.C8EDF1984EA14BB342592191B70E1BAB] [SPRF][1/21/2011] (...) -- C:\Users\admin\AppData\Local\Temp\srtspsp.dat   [524]    => Temporary file not necessary
[MD5.8CB22BDD0B7BA1AB13D742E22EED8DA2] [SPRF][1/1/2014] (...) -- C:\Users\admin\AppData\Local\Temp\sysid.dat   [3]    => Temporary file not necessary
[MD5.BDEE9D936EFB7C76DF778F45F1CF130D] [SPRF][1/1/2014] (...) -- C:\Users\admin\AppData\Local\Temp\trackid.dat   [6]    => Temporary file not necessary
SS - | Demand 9/6/2013 288776 |  (McComponentHostService) . (.McAfee, Inc..) - C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe    => McAfee, Inc
SR - | Auto 1/4/2012 793048 |  (PCToolsSSDMonitorSvc) . (.PC Tools.) - C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe