Doko Chrome Toolbar
by Babylon Ltd
What is Doko Chrome Toolbar?
Doko Chrome Toolbar is software application developed by Babylon Ltd. It is most commonly found on computers running Windows 7 with nearly 65.79% of installations running this operating system. Doko Chrome Toolbar's installer is typically 1.00 MB in size and installs around 7 files.
Doko Chrome Toolbar is most popular in the United States with 25.58% of installations residing in this country.
Doko Chrome Toolbar adds 1 scheduled task to the Windows Task Scheduler launching the program at randomly scheduled times.
About Doko Chrome Toolbar?
The Doko Chrome Toolbar is a web browser extension that is known for potentially unwanted behavior, such as taking control of the user's browser and redirecting web searches. This extension is also capable of injecting advertising, including contextual link ads, banner ads, popups, and pop-overs, often hijacking known ad serving sites. In Internet Explorer, the program runs as a Browser Helper Object. It is often bundled with third-party applications and can be distributed through web browser exploits. Despite being listed in the Windows Add/Remove Programs and packaged with an uninstaller, fully removing the Doko Chrome Toolbar can be challenging, and users may require an anti-malware product to effectively eliminate it. Please note that this information is accurate as of [current date], and users should refer to the most recent sources for the latest updates and recommendations regarding the Doko Chrome Toolbar.
Multiple virus scanners have detected malware in Doko Chrome Toolbar.
Software Behaviors
- Scheduled tasks:
-
- BabMaint.exe is scheduled as a task named 'YTAUpdate' (runs daily at 8:00).
Startup Entries
- Startup tasks:
-
- BabMaint.exe is automatically launched at startup through a scheduled task named SBWUpdateTask_Logon_f61fb1a7-001E101FC20F.
- Registry entries:
-
- enhancedNT.dll is loaded in the current user (HKCU) registry as an auto-starting executable named 'NTRedirect' and executes as C:\Windows\SysWOW64\rundll32.exe "C:\users\user\appdata\Roaming\BabSolution\Shared\enhancedNT.dll",Run.
- NTRedirect.dll is loaded in the current user (HKCU) registry as an auto-starting executable named 'NTRedirect' and executes as C:\Windows\SysWOW64\rundll32.exe "C:\users\user\appdata\Roaming\BabSolution\Shared\NTRedirect.dll",Run.
Software Details
- URL:
- https://www.babylon.com
- Support:
- –
- Installation path:
- C:\users\user\appdata\roaming\babsolution\shared
- Uninstaller:
- "C:\users\user\appdata\Roaming\BabSolution\Shared\GUninstaller.exe" -key "Doko Chrome Toolbar" -rmkey -rmbus "Doko Chrome Toolbar" -ask -plgdll enhanc
- Size:
- 1.00 MB
- Language:
- English
Doko Chrome Toolbar Executable Details
- Primary executable:
- BabMaint.exe
- Name:
- Doko Chrome Toolbar
- Path:
- C:\users\user\appdata\roaming\babsolution\shared\BabMaint.exe
- MD5:
- f64487396ab10165dc80bc15cf854d31
- SHA-1:
- –
- SHA-256:
- –
File Type | Filename | MD5 |
---|---|---|
DLL
|
0f66e8e2340569fb17e774dac2010e31 | |
EXE
|
25e5512a65b55d216c58769e29c016ba | |
DLL
|
b418fcaafdc829a5b83123ea8404bab4 | |
EXE
|
81019731ec6a3b72840fff974c55efb3 | |
DLL
|
NTRedirect.dll
Toolbar
|
a934ff2a498261ba8c18a7a5ce06cb05 |
DLL
|
enhancedNT.dll
Toolbar
|
4f507a8c6afb70c6fc1627dacc9f60e2 |
EXE
|
BabMaint.exe
Malware
|
f64487396ab10165dc80bc15cf854d31 |