babmaint.exe
By Babylon Ltd. (Signed)
MD5: | f64487396ab10165dc80bc15cf854d31 |
SHA1: | 1549cf4f9282f1b42a58b5e050e12ef0ad669798 |
SHA256: | ad93abf6dacb8cb2b4d1df732ed427a6d39d56cba21db9352ca92db348c09041 |
Warning 5 antivirus scanners has detected malware.
Overview
babmaint.exe is installed with a couple of know programs including Delta Chrome Toolbar published by Visual Tools, Babylon Chrome Toolbar from Babylon Ltd and Babylon Chrome Toolbar by Babylon Ltd. The file is digitally signed by Babylon Ltd. which was issued by the Thawte certificate authority (CA).
Details
File name: | babmaint.exe |
Typical file path: | C:\users\user\appdata\roaming\babmaint.exe |
Size: | 10.08 KB (10,320 bytes) |
Build date: | 6/6/2013 2:23 AM |
Certificate |
Issued to: | Babylon Ltd. |
Authority (CA): | Thawte |
Expiration date: | Wednesday, September 3, 2014 |
Digital DNA |
File packed: | No |
.NET CLR: | No |
More details
Programs
The following programs will install this file
Babylon Toolbar from Babylon Ltd is a web browser plugin that allows you to get language translations and definitions through an installed web browser toolbar. Typically, the Babylon Toolbar comes bundled with other software, usually freeware and shareware. Before installing the toolbar, users have to agree to end user software agreement and accept all the changes that will be made during the installation. This web browser toolbar can c...
The Delta Toolbar is a potentially unwanted web browser extension designed for Google Chrome that is bundled with various third party software. When installed, it will modify the user's home page and search settings to redirect to delta-search.com. It also sends various configuration information to its remote servers and tracks your browsing habits and uses such as URLs visited and such in order for the toolbar to provide advertising. T...
Hola Chrome Toolbar is part of the babylon toolbar system and the Hola Toolbar Platform, a potentially unwanted program. It has alos been detected as malware by a few antivirus programs. TrendMicro-HouseCall detects it as TROJ_GEN.RCBH1C6 and Norman detects it as Babylon.A.
This version of the Hola Toolbar is compatible with Google Chrome which will comprise the browser's homepage redirect, default settings modification, extensions a...
Uses the SearchGol Toolbar Platform. As part of the installation process of the Software, publisher may offer changes to your Internet Browser settings. These changes if approved by you can be reconfigured by you at any time from the options dialog available on your Internet Browser. Such changes may include the following:
- The homepage of your Internet Browser
- The default search engine in your Internet Browser's built-in search b...
Hola Chrome Toolbar is part of the babylon toolbar system and the Hola Toolbar Platform, a known adware program. It has alos been detected as malware by a few antivirus programs. TrendMicro-HouseCall detects it as TROJ_GEN.RCBH1C6 and Norman detects it as Babylon.A.
This version of the Hola Toolbar is compatible with Google Chrome which will comprise the browser's homepage redirect, default settings modification, extensions and plugi...
Doko Chrome Toolbar is a potentially unwanted web browser extension designed to take control of the user's browser in order to redirect web searches and inject advertising. In Internet Explorer the program run as a Browser Helper Object. The add-in performs a number of behaviors that will hijack advertising on non-associated web sites as well as inject its own advertising in the form of contextual link ads, banner ads, popups and pop-ov...
Bueno Chrome Toolbar is an adware web browser extension that will display various popup and banner ads as well as modify the user's web browser search and home page settings. In some cases, the program will monitor a user's behavior and will inject rival advertisements over existing one or just inject new ones all together.
From the EULA: "Toolbar provides a desktop applications platform which allows publishers to develop, maintain a...
MixiDJ chrome Toolbar is a Conduit web browser plugin for Chrome that collects and stores information about a user's web browsing habits and sends this information to Conduit in order to provide advertising. It will change the user's home page and search provider during installation (optional but enabled by default) and provides a search box and various social features. If the home page and search settings were modified by this toolbar,...
“Bringing together all kinds of awesomeness to make browsing better for you. Get to your favorite sites quickly – even if you don’t remember the URLs. Type your term into the location bar (aka the Awesome Bar) and the autocomplete function will include possible matches from your browsing history, bookmarked sites and open tabs. Browse multiple sites at once, simply and easily. Each new site appears as a new tab
(not a new window) and ca...”
SearchGol Toolbar Platform is an ad-supported (users may see additional banner, search, pop-up, pop-under, interstitial and in-text link advertisements) cross web browser plugin for Internet Explorer (BHO) and Firefox/Chrome (plugin) and distributed through various monetization platforms during installation. The browser extension includes various features that will modify the default or custom settings of the browser including the home ...
VisualBee chrome Toolbar is an ad-supported (users may see additional banner and in-text link advertisements) web browser plugin distributed through various monetization platforms during installation. The browser extension includes various features that will modify the default or custom settings of the browser including the home page and search settings.
The toolbar uses the Babylon framework and is built on and distributed by Babylo...
Behaviors
Scheduled tasks
- The task 'EPUpdater' runs weekly in the path '\EPUpdater'
- Entry path 'C:\WINXP\Tasks\EPUpdater.job'
- Entry path 'C:\WINDOWS\Tasks\EPUpdater.job'
- Entry path '\EPUpdater'
Malware detections
Based on 40+ industry antivirus scanners, 5 of them detected the following malware.
Antivirus engine | Engine version | Detection |
AhnLab V3 Internet Security |
2013.10.10 |
PUP/Win32.Babylon |
Comodo Internet Security |
17082 |
Application.Win32.Agent.~AS |
Dr.Web |
8.13.10.10 |
Adware.Babylon.12 |
ESET NOD32 |
7.8899 |
Win32/Toolbar.Babylon.I |
Malwarebytes |
1.75.0.1 |
PUP.Optional.Babylon.A |
Distribution by Windows OS
OS version | distribution |
Windows 7 Ultimate |
32.86% |
|
Windows 7 Home Premium |
20.00% |
|
Microsoft Windows XP |
18.57% |
|
Windows 8 |
7.14% |
|
Windows 7 Professional |
7.14% |
|
Windows 8 Pro |
4.29% |
|
Windows Vista Home Premium |
4.29% |
|
Windows Developer Preview |
1.43% |
|
Windows Vista Ultimate |
1.43% |
|
Windows 8 Pro N |
1.43% |
|
Windows 7 Starter |
1.43% |
|
Distribution by country
United States installs about 20.29% of babmaint.exe.
Distribution by PC manufacturer
PC Manufacturer | distribution |
Acer |
22.50% |
|
Hewlett-Packard |
21.25% |
|
Dell |
15.00% |
|
ASUS |
7.50% |
|
Toshiba |
5.00% |
|
Lenovo |
5.00% |
|
Intel |
5.00% |
|
Sony |
5.00% |
|
GIGABYTE |
3.75% |
|
Compaq |
2.50% |
|
Samsung |
2.50% |
|
American Megatrends |
2.50% |
|
Alienware |
1.25% |
|
Sahara |
1.25% |
|