babmaint.exe
By Babylon Ltd. (Signed)
MD5: | cad0b7b4960bdca0afe0e6d6b4a5ac3b |
SHA1: | 8643cd47ec247bda2902e35ea04870b94a8639c6 |
SHA256: | 6851e922d749b4f1d8b7ea13b4d043b58c24534fecd8c0649c528599a82fa3c0 |
Warning 3 antivirus scanners has detected malware.
Overview
babmaint.exe is installed with a couple of know programs including Delta Chrome Toolbar published by Visual Tools, Babylon Chrome Toolbar from Babylon Ltd and Babylon Chrome Toolbar by Babylon Ltd. The file is digitally signed by Babylon Ltd. which was issued by the Thawte certificate authority (CA).
Details
File name: | babmaint.exe |
Typical file path: | C:\users\user\appdata\roaming\babmaint.exe |
Size: | 9.58 KB (9,808 bytes) |
Certificate |
Issued to: | Babylon Ltd. |
Authority (CA): | Thawte |
Expiration date: | Wednesday, September 3, 2014 |
Digital DNA |
File packed: | No |
.NET CLR: | No |
More details
Programs
The following programs will install this file
Babylon Toolbar from Babylon Ltd is a web browser plugin that allows you to get language translations and definitions through an installed web browser toolbar. Typically, the Babylon Toolbar comes bundled with other software, usually freeware and shareware. Before installing the toolbar, users have to agree to end user software agreement and accept all the changes that will be made during the installation. This web browser toolbar can c...
Hola Chrome Toolbar is part of the babylon toolbar system and the Hola Toolbar Platform, a known adware program. It has alos been detected as malware by a few antivirus programs. TrendMicro-HouseCall detects it as TROJ_GEN.RCBH1C6 and Norman detects it as Babylon.A.
This version of the Hola Toolbar is compatible with Google Chrome which will comprise the browser's homepage redirect, default settings modification, extensions and plugi...
Delta Chrome Toolbar is part of the babylon toolbar system, a potentially unwanted program. It has alos been detected as malware by a few antivirus programs. TrendMicro-HouseCall detects it as TROJ_GEN.RCBH1C6 and Norman detects it as Babylon.A.
Behaviors
Scheduled tasks
- The task 'EPUpdater' runs weekly in the path '\EPUpdater'
- Entry path 'C:\WINXP\Tasks\EPUpdater.job'
- Entry path 'C:\WINDOWS\Tasks\EPUpdater.job'
- Entry path '\EPUpdater'
Malware detections
Based on 40+ industry antivirus scanners, 3 of them detected the following malware.
Antivirus engine | Engine version | Detection |
Comodo Internet Security |
17438 |
Application.Win32.Agent.~A |
ESET NOD32 |
8.9172 |
a variant of Win32/Toolbar.Babylon.I |
Rising Antivirus |
25.0.0.11 |
PE:Malware.XPACK/RDM!5.1 |
Distribution by Windows OS
OS version | distribution |
Windows 7 Ultimate |
32.86% |
|
Windows 7 Home Premium |
20.00% |
|
Microsoft Windows XP |
18.57% |
|
Windows 8 |
7.14% |
|
Windows 7 Professional |
7.14% |
|
Windows 8 Pro |
4.29% |
|
Windows Vista Home Premium |
4.29% |
|
Windows Developer Preview |
1.43% |
|
Windows Vista Ultimate |
1.43% |
|
Windows 8 Pro N |
1.43% |
|
Windows 7 Starter |
1.43% |
|
Distribution by country
United States installs about 20.29% of babmaint.exe.
Distribution by PC manufacturer
PC Manufacturer | distribution |
Acer |
22.50% |
|
Hewlett-Packard |
21.25% |
|
Dell |
15.00% |
|
ASUS |
7.50% |
|
Toshiba |
5.00% |
|
Lenovo |
5.00% |
|
Intel |
5.00% |
|
Sony |
5.00% |
|
GIGABYTE |
3.75% |
|
Compaq |
2.50% |
|
Samsung |
2.50% |
|
American Megatrends |
2.50% |
|
Alienware |
1.25% |
|
Sahara |
1.25% |
|