Babylon Search/Toolbar Removal Report

Table of Contents

Aliases

2 security vendors flagged this file as malicious.

Antivirus Vendor	Detection
CAT-QuickHeal	(Suspicious) - DNAScan
NOD32	probably a variant of Win32/Toolbar.Babylon

SpyHunter Detects & Remove Babylon Search/Toolbar

File System Details

Babylon Search/Toolbar may create the following file(s):

Expand All | Collapse All

#	File Name	MD5	Detections Detections: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
1.	~BabylonToolbarsrv.exe	daa8044dbeb1ed22add5b849b325c41b	2,266
Name: ~BabylonToolbarsrv.exe MD5: daa8044dbeb1ed22add5b849b325c41b Size: 374.78 KB (374784 bytes) Detections: 2,266 Type: Executable File Path: C:\Program Files (x86)\~BabylonToolbar\~BabylonToolbar\~1.8.3.8\~BabylonToolbarsrv.exe Group: Malware file Last Updated: September 4, 2025
2.	Babylon.exe	5c1ba00a9384b30addea45890814ed2a	2,206
Name: Babylon.exe MD5: 5c1ba00a9384b30addea45890814ed2a Size: 3.27 MB (3270072 bytes) Detections: 2,206 Type: Executable File Path: G:\DISCO G\Babylon 9 full + crack\Babylon 9 crack\Babylon.exe Group: Malware file Last Updated: August 25, 2024
3.	Setup.exe	66b95612ec087ab7840b3c3b707210b6	2,164
Name: Setup.exe MD5: 66b95612ec087ab7840b3c3b707210b6 Size: 1.69 MB (1694832 bytes) Detections: 2,164 Type: Executable File Path: F:\Users\<username>\AppData\Local\Babylon\Setup\Setup.exe Group: Malware file Last Updated: August 8, 2024
4.	A0028596.exe	000a83380536df86efe77d020d812f96	2,047
Name: A0028596.exe MD5: 000a83380536df86efe77d020d812f96 Size: 286.72 KB (286720 bytes) Detections: 2,047 Type: Executable File Path: E:\System Volume Information\_restore{991F3952-AC9B-4ECC-BB98-CAB55920F24E}\RP126\A0028596.exe Group: Malware file Last Updated: October 1, 2025
5.	A0005709.exe	fd168568d2e6237d9518c1f7c6ba54b5	2,030
Name: A0005709.exe MD5: fd168568d2e6237d9518c1f7c6ba54b5 Size: 369.66 KB (369664 bytes) Detections: 2,030 Type: Executable File Path: D:\System Volume Information\_restore{1517891E-9F8A-45ED-BAA8-DAF6BC57C630}\RP22\A0005709.exe Group: Malware file Last Updated: December 2, 2025
6.	A0005705.dll	6fa16e1d6e2bd1dcd1186f38fe47cdac	2,025
Name: A0005705.dll MD5: 6fa16e1d6e2bd1dcd1186f38fe47cdac Size: 264.19 KB (264192 bytes) Detections: 2,025 Type: Dynamic link library Path: D:\System Volume Information\_restore{1517891E-9F8A-45ED-BAA8-DAF6BC57C630}\RP22\A0005705.dll Group: Malware file Last Updated: December 2, 2025
7.	~BabylonToolbar.dll	ddfa1fc5db7adc0c8fa137047e1432eb	1,941
Name: ~BabylonToolbar.dll MD5: ddfa1fc5db7adc0c8fa137047e1432eb Size: 240.64 KB (240640 bytes) Detections: 1,941 Type: Dynamic link library Path: C:\Program Files (x86)\~BabylonToolbar\~BabylonToolbar\~1.5.29.1\~bh\~BabylonToolbar.dll Group: Malware file Last Updated: November 6, 2023
8.	BabylonToolbar.dll.vir	15649e30f8fc5cf90d2469a48429ca01	1,780
Name: BabylonToolbar.dll.vir MD5: 15649e30f8fc5cf90d2469a48429ca01 Size: 247.8 KB (247808 bytes) Detections: 1,780 Path: %SYSTEMDRIVE%\AdwCleaner\Quarantine\C\Program Files\BabylonToolbar\BabylonToolbar\1.8.0.7\bh\BabylonToolbar.dll.vir Group: Malware file Last Updated: January 22, 2026
9.	MyBabylonTB.exe	ac3129819faa20a776239f48e57d2b35	1,454
Name: MyBabylonTB.exe MD5: ac3129819faa20a776239f48e57d2b35 Size: 786.58 KB (786584 bytes) Detections: 1,454 Type: Executable File Path: F:\BRAZ BACKUP 2013\Braz\AppData\Local\Temp\is701137889\MyBabylonTB.exe Group: Malware file Last Updated: November 2, 2025
10.	NTRedirect.dll	a934ff2a498261ba8c18a7a5ce06cb05	952
Name: NTRedirect.dll MD5: a934ff2a498261ba8c18a7a5ce06cb05 Size: 121.85 KB (121856 bytes) Detections: 952 Type: Dynamic link library Path: C:\Users\<username>\AppData\Local\Temp\CDCD85F1-BAB0-7891-85DC-7936863F7C0D\Latest\NTRedirect.dll Group: Malware file Last Updated: June 18, 2024
11.	BabylonToolbar.exe	ddee6f5527ddd4a8b3e143c1f340eace	838
Name: BabylonToolbar.exe MD5: ddee6f5527ddd4a8b3e143c1f340eace Size: 794.7 KB (794704 bytes) Detections: 838 Type: Executable File Path: C:\Users\<username>\AppData\Local\BabylonToolbar.exe Group: Malware file Last Updated: March 13, 2023
12.	BabMaint.exe.vir	e7831e33c81eb10a8f7ba3b608383724	556
Name: BabMaint.exe.vir MD5: e7831e33c81eb10a8f7ba3b608383724 Size: 11.12 KB (11120 bytes) Detections: 556 Path: %SYSTEMDRIVE%\AdwCleaner\Quarantine\C\Users\<username>\AppData\Roaming\BabSolution\Shared\BabMaint.exe.vir Group: Malware file Last Updated: December 26, 2025
13.	enhancedNT.dll	bb829f5bf7b2ac3bb9d21eca9ebf730a	502
Name: enhancedNT.dll MD5: bb829f5bf7b2ac3bb9d21eca9ebf730a Size: 187.98 KB (187984 bytes) Detections: 502 Type: Dynamic link library Path: C:\Users\<username>\AppData\Roaming\BabSolution\Shared\enhancedNT.dll Group: Malware file Last Updated: January 5, 2026
14.	Updater.exe	dea3132c462938caddc91d1fc5857b30	454
Name: Updater.exe MD5: dea3132c462938caddc91d1fc5857b30 Size: 9.21 KB (9216 bytes) Detections: 454 Type: Executable File Path: C:\Program Files (x86)\Internet Explorer\Updater.exe Group: Malware file Last Updated: February 1, 2022
15.	BabMaint.x	7500b7cdf541616d2d64e83b7f8ec896	189
Name: BabMaint.x MD5: 7500b7cdf541616d2d64e83b7f8ec896 Size: 4.09 KB (4096 bytes) Detections: 189 Path: %SYSTEMDRIVE%\Documents and Settings\Administrator\Local Settings\Application Data\Torch\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.2_0\BabMaint.x Group: Malware file Last Updated: October 1, 2025
16.	enhancedNT.dll.vir	e015a11d6002c3498cd92b2cdff64433	137
Name: enhancedNT.dll.vir MD5: e015a11d6002c3498cd92b2cdff64433 Size: 187.98 KB (187984 bytes) Detections: 137 Path: F:\AdwCleaner\Quarantine\C\Documents and Settings\Plácido Guardiola\Datos de programa\BabSolution\Shared\enhancedNT.dll.vir Group: Malware file Last Updated: February 25, 2024
17.	MSGRRU32.dll	6ca07b1d5b99da831d1a44319734fd7c	85
Name: MSGRRU32.dll MD5: 6ca07b1d5b99da831d1a44319734fd7c Size: 790.52 KB (790528 bytes) Detections: 85 Type: Dynamic link library Path: %LOCALAPPDATA%\BabSolution Group: Malware file Last Updated: March 6, 2014
18.	AdSubawareRes.dll	8bc26c11d7a06032158876c5604f1296	40
Name: AdSubawareRes.dll MD5: 8bc26c11d7a06032158876c5604f1296 Size: 819.2 KB (819200 bytes) Detections: 40 Type: Dynamic link library Path: %LOCALAPPDATA%\BabSolution Group: Malware file Last Updated: March 6, 2014
19.	BabMaint.exe	8a036a0c87533284e1a53a54f8a6204e	22
Name: BabMaint.exe MD5: 8a036a0c87533284e1a53a54f8a6204e Size: 10.24 KB (10240 bytes) Detections: 22 Type: Executable File Path: %APPDATA%\BabSolution\Shared Group: Malware file Last Updated: March 6, 2014
20.	cfgNetM.dll	42f9e833a6b2563e2846ab5dbb41a4d4	19
Name: cfgNetM.dll MD5: 42f9e833a6b2563e2846ab5dbb41a4d4 Size: 19.96 KB (19968 bytes) Detections: 19 Type: Dynamic link library Path: %LOCALAPPDATA%\BabSolution Group: Malware file Last Updated: March 6, 2014
21.	AgentBabSolution.exe	5a60826873e342a0f9a1c24ffc2b7a39	6
Name: AgentBabSolution.exe MD5: 5a60826873e342a0f9a1c24ffc2b7a39 Size: 345.08 KB (345088 bytes) Detections: 6 Type: Executable File Path: %APPDATA%\BabSolution Group: Malware file Last Updated: March 6, 2014
22.	CtrlBabSolution.exe	4664d963f2985799031db2fbfb362989	6
Name: CtrlBabSolution.exe MD5: 4664d963f2985799031db2fbfb362989 Size: 345.08 KB (345088 bytes) Detections: 6 Type: Executable File Path: %APPDATA%\BabSolution Group: Malware file Last Updated: March 6, 2014
23.	StartBabSolution.exe	e71f3ae803ef34c7df9bc20450d8799e	6
Name: StartBabSolution.exe MD5: e71f3ae803ef34c7df9bc20450d8799e Size: 302.25 KB (302257 bytes) Detections: 6 Type: Executable File Path: %APPDATA%\BabSolution Group: Malware file Last Updated: March 6, 2014
24.	uwauewta.dll	67e32d31f9e7abe4ac7bf1e0038c53df	2
Name: uwauewta.dll MD5: 67e32d31f9e7abe4ac7bf1e0038c53df Size: 652.28 KB (652288 bytes) Detections: 2 Type: Dynamic link library Path: %LOCALAPPDATA%\BabSolution Group: Malware file Last Updated: August 1, 2013
25.	wutpcsyu.dll	2b3f62cbaee826a99f115d31230383ce	2
Name: wutpcsyu.dll MD5: 2b3f62cbaee826a99f115d31230383ce Size: 842.24 KB (842240 bytes) Detections: 2 Type: Dynamic link library Path: %USERPROFILE%\Local Settings\Application Data\BabSolution Group: Malware file Last Updated: August 1, 2013
26.	frobanue.dll	ab23bd030204e97933d4c794a312082d	2
Name: frobanue.dll MD5: ab23bd030204e97933d4c794a312082d Size: 475.13 KB (475136 bytes) Detections: 2 Type: Dynamic link library Path: %LOCALAPPDATA%\BabSolution Group: Malware file Last Updated: August 1, 2013

More files

Registry Details

Babylon Search/Toolbar may create the following registry entry or registry entries:

CLSID

{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}

{2EECD738-5844-4a99-B4B6-146BF802613B}

{BDB69379-802F-4eaf-B541-F8DE92DD98DB}

Regexp file mask

%APPDATA%\BabMaint.exe

%PROGRAMFILES%\Mozilla Firefox\searchplugins\babylon.xml

%PROGRAMFILES(x86)%\Mozilla Firefox\searchplugins\babylon.xml

HKEY..\..\..\..{RegistryKeys}

SOFTWARE\BabSolution

Software\BabylonToolbar

Software\Microsoft\Internet Explorer\DOMStorage\babylon.com

Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}

SOFTWARE\Microsoft\Tracing\MyBabylonTB_RASAPI32

SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\EPUpdater

Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B}

SOFTWARE\Wow6432Node\Babylon

SOFTWARE\Wow6432Node\babylontoolbar

SOFTWARE\Wow6432Node\Microsoft\Tracing\MyBabylonTB_RASAPI32

SOFTWARE\Wow6432Node\Microsoft\Tracing\MyBabylonTB_RASMANCS

Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B}

Run keys

NTRedirect

HKEY_LOCAL_MACHINE\Software\[APPLICATION]\Microsoft\Windows\CurrentVersion\Uninstall..{Uninstaller}

BabylonToolbar

Directories

Babylon Search/Toolbar may create the following directory or directories:

%APPDATA%\BabSolution

%PROGRAMFILES%\Babylon Toolbar

%PROGRAMFILES%\BabylonToolbar

%PROGRAMFILES(x86)%\Babylon Toolbar

%PROGRAMFILES(x86)%\BabylonToolbar

%TEMP%\mt_ffx\BabylonToolbar

%USERPROFILE%\AppData\LocalLow\BabylonToolbar

URLs

Babylon Search/Toolbar may call the following URLs:

BabylonToolbar

isearch.babylon.com

Popularity Rank:	965
Threat Level:	50 % (Medium)
Infected Computers:	282,511

First Seen:	October 6, 2010
Last Seen:	February 6, 2026
OS(es) Affected:	Windows

EnigmaSoft’s Payment Processor Digital River GmbH Filing for Bankruptcy Does Not Impact SpyHunter Customers’ Anti-Malware Protection

Search

Change Region

Babylon Search/Toolbar

Threat Scorecard

EnigmaSoft Threat Scorecard

Aliases

SpyHunter Detects & Remove Babylon Search/Toolbar

File System Details

Registry Details

Directories

URLs

Submit Comment

Trending

Trojan.Win32.Autoit.aks

Traffic-media.co

Hacktool.MSIL.TelegramHack.S

Most Viewed

How To Fix 'Printer Driver is Unavailable' Error

Discord Shows Black Screen when Sharing Screen

How to Fix 'macOS cannot verify that this app is...