Babylon Search/Toolbar

Babylon Search/Toolbar Description

The Babylon Toolbar is a search engine and translation utility, all rolled up into a single browser-based toolbar. While this description may make Babylon Toolbar sound benign, malware researchers have had the misfortune of noting that Babylon Toolbar includes characteristics that are commonly assigned to browsers, adware and Potentially Unwanted Programs (PUPs). Babylon Toolbar may attempt to avoid deletion by normal methods, changes your search engine settings to promote its own websites and may install itself without your permission. If normal removal methods for browser plugins fail to delete all of the Babylon Toolbar's components, you may also wish to consider deleting Babylon Toolbar with an anti-malware program (along with avoiding suspicious software downloads to dodge a Babylon Toolbar attack entirely).

How Babylon Toolbar Gets Good Publicity for Bad Habits

Babylon Toolbar is promoted at babylon.com as a multipurpose translator and search utility, and you may find Babylon Toolbar included in the installers of unrelated programs – including relatively reputable ones. The most prominent source of accidental Babylon Toolbar installations is general freeware/shareware websites, although Babylon Toolbar may also be bundled in P2P torrenting clients and other software-downloading utilities. Although Babylon Toolbar ostensibly requires your consent prior to its installation, malware experts have taken note of a preponderance of Babylon Toolbar-infected victims who aren't able to recall ever installing Babylon Toolbar in the first place.

Along with its iffy installation practices, Babylon Toolbar also changes your browser's search engine to one of its own sites. SpywareRemove.com malware analysts have found that both isearch.babylon.com and search.babylon.com have been used for this purpose, and Babylon Toolbar's settings changes may prevent you from using alternative search sites. You should attempt to remove the Babylon Toolbar before you try to change these settings back for your browser – lest you experience Babylon Toolbar doing it for you.

Bringing the Babylon Toolbar Tumbling Down

While Babylon Toolbar and its home site are often rated as low-level PC threats, SpywareRemove.com malware researchers note that keeping Babylon Toolbar on your PC or having contact with babylon.com can't be considered harmful or security risks. However, since most people will look askance to being unable to control their own web browser, it's usually recommended that you try to remove Babylon Toolbar unless you're certain that you want its services.

Because Babylon Toolbar has been known to make standard deletion methods needlessly difficult, SpywareRemove.com malware research team recommends using anti-malware software to expedite Babylon Toolbar's banishment from your browser. Babylon Toolbar has been noted for its cross-browser compatibility, and users of everything from Firefox to Internet Explorer to Chrome shouldn't feel safe from an unwanted Babylon Toolbar installer just because of the brand of browser they prefer.

Unusually for adware and as a mark of its relatively professional design, Babylon Toolbar does include compatibility for Mac-based PCs as well as Windows OSes, which makes Babylon Toolbar a potential nuisance for Apple fans, as well.

Aliases


TROJ_GEN.F47V0724Packed/PECompactTROJ_GEN.F47V0209(Suspicious) - DNAScan [CAT-QuickHeal]PUP.BabylonToolbarprobably a variant of Win32/Toolbar.Babylon [NOD32]

Use SpyHunter to Detect and Remove PC Threats

If you are concerned that malware or PC threats similar to Babylon Search/Toolbar may have infected your computer, we recommend you start an in-depth system scan with SpyHunter. SpyHunter is an advanced malware protection and remediation application that offers subscribers a comprehensive method for protecting PCs from malware, in addition to providing one-on-one technical support service.

Download SpyHunter's Malware Scanner

Note: SpyHunter's free version is only for malware detection. If SpyHunter detects malware on your PC, you will need to purchase SpyHunter's malware tool to remove the malware threats. Learn more on SpyHunter. If you would like to uninstall SpyHunter for any reason, please follow these uninstall instructions. To learn more about our policies and practices, visit our EULA, Privacy Policy and Threat Assessment Criteria.

Why can't I open any program including SpyHunter? You may have a malware file running in memory that kills any programs that you try to launch on your PC. Tip: Download SpyHunter from a clean computer, copy it to a USB thumb drive, DVD or CD, then install it on the infected PC and run SpyHunter's malware scanner.

Technical Details

File System Modifications

Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.

The following files were created in the system:



E:\Babylon\Babylon.exe File name: Babylon.exe
Size: 3.27 MB (3270072 bytes)
MD5: 5c1ba00a9384b30addea45890814ed2a
Detection count: 4,637
File type: Executable File
Mime Type: unknown/exe
Path: E:\Babylon\
Group: Malware file
Last Updated: January 27, 2020
%TEMP%\047E0D8B-BAB0-7891-BAAB-048AB8463029\Setup.exe File name: Setup.exe
Size: 1.76 MB (1769072 bytes)
MD5: 3eff4d0a2dde24e5afe250ba50887f2c
Detection count: 4,553
File type: Executable File
Mime Type: unknown/exe
Path: %TEMP%\047E0D8B-BAB0-7891-BAAB-048AB8463029\
Group: Malware file
Last Updated: January 17, 2020
%PROGRAMFILES%\BabylonToolbar\BabylonToolbar\1.8.0.7\bh\BabylonToolbar.dll File name: BabylonToolbar.dll
Size: 247.8 KB (247808 bytes)
MD5: 15649e30f8fc5cf90d2469a48429ca01
Detection count: 3,930
File type: Dynamic link library
Mime Type: unknown/dll
Path: %PROGRAMFILES%\BabylonToolbar\BabylonToolbar\1.8.0.7\bh\
Group: Malware file
Last Updated: January 13, 2020
%LOCALAPPDATA%BabylonToolbar.exe File name: BabylonToolbar.exe
Size: 794.7 KB (794704 bytes)
MD5: ddee6f5527ddd4a8b3e143c1f340eace
Detection count: 1,946
File type: Executable File
Mime Type: unknown/exe
Path: %LOCALAPPDATA%
Group: Malware file
Last Updated: November 18, 2013
%APPDATA%\BabSolution\Shared\NTRedirect.dll File name: NTRedirect.dll
Size: 127.47 KB (127472 bytes)
MD5: 2e1d99d838a2e104186954705f467317
Detection count: 436
File type: Dynamic link library
Mime Type: unknown/dll
Path: %APPDATA%\BabSolution\Shared\
Group: Malware file
Last Updated: January 26, 2020
%LOCALAPPDATA%\BabSolution\AdSubawareRes.dll File name: AdSubawareRes.dll
Size: 819.2 KB (819200 bytes)
MD5: 8bc26c11d7a06032158876c5604f1296
Detection count: 94
File type: Dynamic link library
Mime Type: unknown/dll
Path: %LOCALAPPDATA%\BabSolution\
Group: Malware file
Last Updated: March 6, 2014
%LOCALAPPDATA%\BabSolution\cfgNetM.dll File name: cfgNetM.dll
Size: 19.96 KB (19968 bytes)
MD5: 42f9e833a6b2563e2846ab5dbb41a4d4
Detection count: 44
File type: Dynamic link library
Mime Type: unknown/dll
Path: %LOCALAPPDATA%\BabSolution\
Group: Malware file
Last Updated: March 6, 2014
%APPDATA%\BabSolution\AgentBabSolution.exe File name: AgentBabSolution.exe
Size: 345.08 KB (345088 bytes)
MD5: 5a60826873e342a0f9a1c24ffc2b7a39
Detection count: 14
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\BabSolution\
Group: Malware file
Last Updated: March 6, 2014
%APPDATA%\BabSolution\CtrlBabSolution.exe File name: CtrlBabSolution.exe
Size: 345.08 KB (345088 bytes)
MD5: 4664d963f2985799031db2fbfb362989
Detection count: 14
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\BabSolution\
Group: Malware file
Last Updated: March 6, 2014
%APPDATA%\BabSolution\StartBabSolution.exe File name: StartBabSolution.exe
Size: 302.25 KB (302257 bytes)
MD5: e71f3ae803ef34c7df9bc20450d8799e
Detection count: 14
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\BabSolution\
Group: Malware file
Last Updated: March 6, 2014
%LOCALAPPDATA%\BabSolution\uwauewta.dll File name: uwauewta.dll
Size: 652.28 KB (652288 bytes)
MD5: 67e32d31f9e7abe4ac7bf1e0038c53df
Detection count: 5
File type: Dynamic link library
Mime Type: unknown/dll
Path: %LOCALAPPDATA%\BabSolution\
Group: Malware file
Last Updated: August 1, 2013
%USERPROFILE%\Local Settings\Application Data\BabSolution\wutpcsyu.dll File name: wutpcsyu.dll
Size: 842.24 KB (842240 bytes)
MD5: 2b3f62cbaee826a99f115d31230383ce
Detection count: 5
File type: Dynamic link library
Mime Type: unknown/dll
Path: %USERPROFILE%\Local Settings\Application Data\BabSolution\
Group: Malware file
Last Updated: August 1, 2013
%LOCALAPPDATA%\BabSolution\frobanue.dll File name: frobanue.dll
Size: 475.13 KB (475136 bytes)
MD5: ab23bd030204e97933d4c794a312082d
Detection count: 5
File type: Dynamic link library
Mime Type: unknown/dll
Path: %LOCALAPPDATA%\BabSolution\
Group: Malware file
Last Updated: August 1, 2013

More files

Registry Modifications


The following newly produced Registry Values are:

Registry keySOFTWARE\BabSolutionSoftware\BabylonToolbarSoftware\Microsoft\Internet Explorer\DOMStorage\babylon.comSoftware\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}SOFTWARE\Microsoft\Tracing\MyBabylonTB_RASAPI32SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\EPUpdaterSoftware\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B}SOFTWARE\Wow6432Node\BabylonSOFTWARE\Wow6432Node\babylontoolbarSOFTWARE\Wow6432Node\Microsoft\Tracing\MyBabylonTB_RASAPI32SOFTWARE\Wow6432Node\Microsoft\Tracing\MyBabylonTB_RASMANCSSoftware\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B}HKEY_LOCAL_MACHINE\Software\[APPLICATION]\Microsoft\Windows\CurrentVersion\Uninstall..{Uninstaller}BabylonToolbarRun keysNTRedirectDirectory%APPDATA%\BabSolution%LOCALAPPDATA%\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb%PROGRAMFILES%\Babylon Toolbar%PROGRAMFILES%\BabylonToolbar%PROGRAMFILES(x86)%\Babylon Toolbar%PROGRAMFILES(x86)%\BabylonToolbar%TEMP%\mt_ffx\BabylonToolbar%USERPROFILE%\AppData\LocalLow\BabylonToolbar%UserProfile%\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcbRegexp file mask%APPDATA%\BabMaint.exe%PROGRAMFILES%\Mozilla Firefox\searchplugins\babylon.xml%PROGRAMFILES(x86)%\Mozilla Firefox\searchplugins\babylon.xmlCLSID{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}{2EECD738-5844-4a99-B4B6-146BF802613B}{BDB69379-802F-4eaf-B541-F8DE92DD98DB}
Posted: October 6, 2010
Threat Metric
Threat Level: 5/10
Infected PCs 440,800
Home Malware Programs Browser Hijackers Babylon Search/Toolbar

Leave a Reply

Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter. If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.