MixiDJ chrome Toolbar

MixiDJ chrome Toolbar

Known Toolbar

by Conduit Ltd.

What is MixiDJ chrome Toolbar?

MixiDJ chrome Toolbar is software application developed by Conduit Ltd.. It is most commonly found on computers running Windows 7 with nearly 69.47% of installations running this operating system. MixiDJ chrome Toolbar's installer is typically 1.00 MB in size and installs around 9 files.

MixiDJ chrome Toolbar is most popular in the United States with 18.06% of installations residing in this country.

MixiDJ chrome Toolbar adds 1 scheduled task to the Windows Task Scheduler launching the program at randomly scheduled times.

About MixiDJ chrome Toolbar?

The MixiDJ Chrome Toolbar is a web browser plugin for Chrome designed by Conduit. It is intended to provide advertising by collecting and storing information about a user's web browsing habits and sending this data to Conduit. Upon installation, the toolbar will offer the option to change the user's home page and search provider, with these changes enabled by default. Additionally, it includes a search box and provides various social features. If the toolbar modifies the user's home page and search settings, it is important to note that these changes will need to be manually reverted back by the user if they opt to uninstall the toolbar. According to the License Agreement, the Application may also collect and store information about the user's web browsing locally on their device. This locally saved information may interact with the Application and send data to Conduit to suggest services or provide more relevant ads. It is stated that only generalized inferences are passed from the Application to Conduit's servers. It is important for users to be aware of the implications of using this toolbar and to carefully review the terms and conditions outlined in the License Agreement before installation.

Multiple virus scanners have detected malware in MixiDJ chrome Toolbar.

GUninstaller.exe (MD5: b0f6507f8666e89dd9f192313d88eb98) has been flagged by 2 scanners:
Scanner Software Result
Bkav FE HW32.Laneul.zosu
Comodo Security Application.Win32.Agent.~A
BUSolution.dll (MD5: 857125f003b7cec720f2103ba1bae6bb) has been flagged by 4 scanners:
Scanner Software Result
Comodo Security ApplicUnsaf.Win32.AdWare.cinmus.194
Dr.Web Adware.BGuard.19
TrendMicro-HouseCall TROJ_GEN.F47V0411
Bkav FE HW32.Laneul.zosu
NTRedirect.dll (MD5: 2e1d99d838a2e104186954705f467317) has been flagged by 9 scanners:
Scanner Software Result
AhnLab-V3 Trojan/Win32.Agent
AVG Skodna.Generic.AMJ
Comodo Security Application.Win32.Agent.~AB
Malwarebytes PUP.Optional.Babylon.A
ViRobot Trojan.Win32.S.Agent.127472
Bkav FE HW32.Laneul.pmuo
Dr.Web DLOADER.Trojan
ESET-NOD32 a variant of Win32/Toolbar.Babylon.W
TrendMicro-HouseCall TROJ_GEN.F47V0918
enhancedNT.dll (MD5: dd326484dcef1fee39e5ef283d220f0b) has been flagged by 5 scanners:
Scanner Software Result
Bkav FE HW32.Laneul.pmuo
Dr.Web DLOADER.Trojan
ESET-NOD32 a variant of Win32/Toolbar.Babylon.W
TrendMicro-HouseCall TROJ_GEN.F47V0918
Comodo Security ApplicUnsaf.Win32.AdWare.cinmus.194
BabMaint.exe (MD5: 754f0855b332ca5fec434d7af295be2e) has been flagged by 10 scanners:
Scanner Software Result
Dr.Web Adware.Babylon.12
ESET-NOD32 Win32/Toolbar.Babylon.I
Kingsoft AntiVirus Win32.Troj.Generic.a.(kcloud)
Malwarebytes PUP.Optional.Babylon.A
TrendMicro-HouseCall TROJ_GEN.F47V1008
AhnLab-V3 Trojan/Win32.Agent
AVG Skodna.Generic.AMJ
Comodo Security Application.Win32.Agent.~AB
ViRobot Trojan.Win32.S.Agent.127472
Bkav FE HW32.Laneul.pmuo

Software Behaviors

Scheduled tasks:
  • BabMaint.exe is scheduled as a task named 'Scheduled scanning task' (runs weekly on Fridays at 00:00).

Startup Entries

Startup tasks:
  • BabMaint.exe is automatically launched at startup through a scheduled task named SBWUpdateTask_Logon_f61fb1a7-001E101FC20F.
Registry entries:
  • enhancedNT.dll is loaded in the current user (HKCU) registry as an auto-starting executable named 'NTRedirect' and executes as C:\Windows\system32\rundll32.exe "C:\users\user\appdata\Roaming\BabSolution\Shared\enhancedNT.dll",Run.
  • NTRedirect.dll is loaded in the current user (HKCU) registry as an auto-starting executable named 'NTRedirect' and executes as C:\Windows\system32\rundll32.exe "C:\users\user\appdata\Roaming\BabSolution\Shared\NTRedirect.dll",Run.

Software Details

URL:
https://mixidjv30.ourtoolbar.com
Support:
Installation path:
C:\Documents and Settings\user\Application data\babsolution\shared
Uninstaller:
"C:\Documents and Settings\user\Application Data\BabSolution\Shared\GUninstaller.exe" -key "MixiDJ chrome Toolbar" -rmkey -ask
Size:
1.00 MB
Language:
English

MixiDJ chrome Toolbar Executable Details

Primary executable:
BabMaint.exe
Name:
MixiDJ chrome Toolbar
Path:
C:\Documents and Settings\user\Application data\babsolution\shared\BabMaint.exe
MD5:
754f0855b332ca5fec434d7af295be2e
SHA-1:
SHA-256:
Files installed by MixiDJ chrome Toolbar
File Type Filename MD5
DLL
sqlite3.dll
0f66e8e2340569fb17e774dac2010e31
DLL
lpk.dll
e2d12c87f244a95d0d655802c9ceff5c
EXE
GUninstaller.exe
Malware
b0f6507f8666e89dd9f192313d88eb98
DLL
BUSolution.dll
Malware
857125f003b7cec720f2103ba1bae6bb
EXE
BUSUninstall.exe
aa95d698b0589af875a2f7d6aa4f10b1
EXE
BAbScheduler.exe
9259ee2a6c09c58c7953beea72f4b34d
DLL
NTRedirect.dll
Malware
2e1d99d838a2e104186954705f467317
DLL
enhancedNT.dll
Adware
dd326484dcef1fee39e5ef283d220f0b
EXE
BabMaint.exe
Malware
754f0855b332ca5fec434d7af295be2e