babmaint.exe
By Babylon Ltd. (Signed)
MD5: | 71d490c463014e4fb88b8cba700b111e |
SHA1: | e0814d0f17ee1122f6d3507dc676030f8e1cc133 |
SHA256: | 93740a9bad63eae778ec6a603320beb084638fb3582436a3c9d516d0e51feb1c |
Warning 4 antivirus scanners has detected malware.
Overview
babmaint.exe is installed with a couple of know programs including Delta Chrome Toolbar published by Visual Tools, MixiDJ chrome Toolbar from Conduit Ltd. and MixiDJ chrome Toolbar by Conduit Ltd.. The file is digitally signed by Babylon Ltd. which was issued by the Thawte certificate authority (CA).
Details
File name: | babmaint.exe |
Typical file path: | C:\users\user\appdata\roaming\babmaint.exe |
Size: | 4.5 KB (4,608 bytes) |
Build date: | 6/6/2013 11:23 AM |
Certificate |
Issued to: | Babylon Ltd. |
Authority (CA): | Thawte |
Expiration date: | Wednesday, September 3, 2014 |
Digital DNA |
File packed: | No |
.NET CLR: | No |
More details
Programs
The following programs will install this file
Babylon Toolbar from Babylon Ltd is a web browser plugin that allows you to get language translations and definitions through an installed web browser toolbar. Typically, the Babylon Toolbar comes bundled with other software, usually freeware and shareware. Before installing the toolbar, users have to agree to end user software agreement and accept all the changes that will be made during the installation. This web browser toolbar can c...
Hola Chrome Toolbar is part of the babylon toolbar system and the Hola Toolbar Platform, a potentially unwanted program. It has alos been detected as malware by a few antivirus programs. TrendMicro-HouseCall detects it as TROJ_GEN.RCBH1C6 and Norman detects it as Babylon.A.
This version of the Hola Toolbar is compatible with Google Chrome which will comprise the browser's homepage redirect, default settings modification, extensions a...
Uses the SearchGol Toolbar Platform. As part of the installation process of the Software, publisher may offer changes to your Internet Browser settings. These changes if approved by you can be reconfigured by you at any time from the options dialog available on your Internet Browser. Such changes may include the following:
- The homepage of your Internet Browser
- The default search engine in your Internet Browser's built-in search b...
Hola Chrome Toolbar is part of the babylon toolbar system and the Hola Toolbar Platform, a known adware program. It has alos been detected as malware by a few antivirus programs. TrendMicro-HouseCall detects it as TROJ_GEN.RCBH1C6 and Norman detects it as Babylon.A.
This version of the Hola Toolbar is compatible with Google Chrome which will comprise the browser's homepage redirect, default settings modification, extensions and plugi...
The Delta Toolbar is a potentially unwanted web browser extension designed for Google Chrome that is bundled with various third party software. When installed, it will modify the user's home page and search settings to redirect to delta-search.com. It also sends various configuration information to its remote servers and tracks your browsing habits and uses such as URLs visited and such in order for the toolbar to provide advertising. T...
MixiDJ chrome Toolbar is a Conduit web browser plugin for Chrome that collects and stores information about a user's web browsing habits and sends this information to Conduit in order to provide advertising. It will change the user's home page and search provider during installation (optional but enabled by default) and provides a search box and various social features. If the home page and search settings were modified by this toolbar,...
SearchGol Toolbar Platform is an ad-supported (users may see additional banner, search, pop-up, pop-under, interstitial and in-text link advertisements) cross web browser plugin for Internet Explorer (BHO) and Firefox/Chrome (plugin) and distributed through various monetization platforms during installation. The browser extension includes various features that will modify the default or custom settings of the browser including the home ...
VisualBee chrome Toolbar is an ad-supported (users may see additional banner and in-text link advertisements) web browser plugin distributed through various monetization platforms during installation. The browser extension includes various features that will modify the default or custom settings of the browser including the home page and search settings.
The toolbar uses the Babylon framework and is built on and distributed by Babylo...
Behaviors
Scheduled tasks
- The task 'EPUpdater' runs weekly in the path '\EPUpdater'
- Entry path 'C:\WINXP\Tasks\EPUpdater.job'
- Entry path 'C:\WINDOWS\Tasks\EPUpdater.job'
- Entry path '\EPUpdater'
Malware detections
Based on 40+ industry antivirus scanners, 4 of them detected the following malware.
Antivirus engine | Engine version | Detection |
Dr.Web |
8.13.9.29 |
Adware.Babylon.12 |
ESET NOD32 |
7.8856 |
Win32/Toolbar.Babylon.I |
Kingsoft |
2013.4.9.267 |
Win32.Troj.Generic.a.(kcloud) |
Malwarebytes |
1.75.0.1 |
PUP.Optional.Babylon.A |
Distribution by Windows OS
OS version | distribution |
Windows 7 Ultimate |
32.86% |
|
Windows 7 Home Premium |
20.00% |
|
Microsoft Windows XP |
18.57% |
|
Windows 8 |
7.14% |
|
Windows 7 Professional |
7.14% |
|
Windows 8 Pro |
4.29% |
|
Windows Vista Home Premium |
4.29% |
|
Windows Developer Preview |
1.43% |
|
Windows Vista Ultimate |
1.43% |
|
Windows 8 Pro N |
1.43% |
|
Windows 7 Starter |
1.43% |
|
Distribution by country
United States installs about 20.29% of babmaint.exe.
Distribution by PC manufacturer
PC Manufacturer | distribution |
Acer |
22.50% |
|
Hewlett-Packard |
21.25% |
|
Dell |
15.00% |
|
ASUS |
7.50% |
|
Toshiba |
5.00% |
|
Lenovo |
5.00% |
|
Intel |
5.00% |
|
Sony |
5.00% |
|
GIGABYTE |
3.75% |
|
Compaq |
2.50% |
|
Samsung |
2.50% |
|
American Megatrends |
2.50% |
|
Alienware |
1.25% |
|
Sahara |
1.25% |
|