Should I remove Doko Chrome Toolbar?
What percent of users and experts removed it?
82% remove it18% keep it
What do people think about it?
(click star to rate)
How common is it?
Global Rank #27,486
United States Rank #37,086
Reach 0.0058%
Lifespan of installation (until removal)
< 9.49 days
280.00 days >
Average installed length: 147.12 days
Other programs by Babylon Ltd
Rankings
- #27,481 Wondershare PDF Converter Pro (Build 3.2.0)
- #27,482 Timberman by Digital Melody
- #27,483 Aidfile recovery software version 3.6.3.2 by Mitusoft
- #27,484 TextCrawler 2.2 by DigitalVolcano
- #27,485 Fallen Earth by GamersFirst
- #27,486 Doko Chrome Toolbar by Babylon Ltd
- #27,487 Surfer 8 by Golden Software
- #27,488 FEAR Extraction Point by Vivendi Universal Games
- #27,489 Hornil StyleCapture
- #27,490 KODAK VERITE 50 Series Uninstaller by FUNAI ELECTRIC
- #27,491 Digital Clock-7 2.02 by Style-7
Doko Chrome Toolbar
What is Doko Chrome Toolbar?
Doko Chrome Toolbar is a potentially unwanted web browser extension designed to take control of the user's browser in order to redirect web searches and inject advertising. In Internet Explorer the program run as a Browser Helper Object. The add-in performs a number of behaviors that will hijack advertising on non-associated web sites as well as inject its own advertising in the form of contextual link ads, banner ads, popups and pop-overs including the hijacking of known ad serving sites. This malware is typically bundled with various third party unwanted applications as well as through web browser exploits. Although the program comes packaged with an uninstaller and is listed in the Windows Add/Remove Programs, fully removing this could be very difficult and an anti-malware product might be required.
Overview
Upon installation, it defines an auto-start registry entry which allows the program run on each boot for the user which installed it. A scheduled task is added to Windows Task Scheduler in order to launch the program at various scheduled times (the schedule varies depending on the version). The main program executable is BabMaint.exe. Typically most users end up uninstalling this just after a few days. The software installer includes 8 files and is usually about 1.25 MB (1,307,457 bytes).
- Possible malware installed by this program
- Automatically starts with Windows
- Loads into the web browser
- The experts agree, you should remove it!
Warning, multiple anti-virus scanners have detected possible malware in Doko Chrome Toolbar.
BabMaint.exe (f64487396ab10165dc80bc15cf854d31) has been flagged by the following 4 scanners: |
Anti-Virus software | Version | Detection |
Comodo Security |
16835 |
Application.Win32.Agent.~AS |
Dr.Web |
9.0.0.0240 |
Adware.Babylon.12 |
ESET-NOD32 |
7.8735 |
Win32/Toolbar.Babylon.I |
Malwarebytes |
v2013.08.28.01 |
PUP.Optional.Babylon.A |
NTRedirect.dll (a934ff2a498261ba8c18a7a5ce06cb05) has been flagged by the following 3 scanners: |
Anti-Virus software | Software version | Detection |
AhnLab-V3 |
2013.12.13.00 |
Trojan/Win32.Agent |
AVG |
13.0.0.3169 |
Skodna.Generic.AMJ |
Malwarebytes |
1.75.0001 |
PUP.Optional.Babylon.A |
enhancedNT.dll (4f507a8c6afb70c6fc1627dacc9f60e2) has been flagged by the following 2 scanners: |
Anti-Virus software | Software version | Detection |
Comodo Security |
17568 |
Application.Win32.Babylon.ad |
ESET-NOD32 |
9258 |
a variant of Win32/Toolbar.Babylon.W |
Bundled relationships
View all 6
Program details
Displayed publisher: Doko Toolbar
Installation folder: C:\users\user\appdata\roaming\babsolution\shared
Uninstaller: "C:\users\user\appdata\Roaming\BabSolution\Shared\GUninstaller.exe" -key "Doko Chrome Toolbar" -rmkey -rmbus "Doko Chrome Toolbar" -ask -plgdll enhanc
Estimated size: 1.25 MB
Files installed by Doko Chrome Toolbar
Program executable: | BabMaint.exe (Malware detected) |
Signed by: | Babylon Ltd. |
Path: | C:\users\user\appdata\roaming\babsolution\shared\BabMaint.exe |
MD5: | f64487396ab10165dc80bc15cf854d31 |
Additional files:
-
GUninstaller.exe - Uninstaller (Uninstaller Application)
-
BUSolution.dll - BU Dynamic Link Library
-
(Malware detected) enhancedNT.dll - enhancedNT
-
(Malware detected) BabMaint.exe
-
(Malware detected) NTRedirect.dll
-
BUSUninstall.exe
-
sqlite3.dll
Behaviors exhibited
Scheduled Task
- BabMaint.exe is scheduled as a task named 'YTAUpdate' (runs daily at 8:00).
Scheduled Task (Boot/Login)
- BabMaint.exe is automatically launched at startup through a scheduled task named SBWUpdateTask_Logon_f61fb1a7-001E101FC20F.
2 Startup Files (User Run)
- enhancedNT.dll is loaded in the current user (HKCU) registry as an auto-starting executable named 'NTRedirect' and executes as C:\Windows\SysWOW64\rundll32.exe "C:\users\user\appdata\Roaming\BabSolution\Shared\enhancedNT.dll",Run.
- NTRedirect.dll is loaded in the current user (HKCU) registry as an auto-starting executable named 'NTRedirect' and executes as C:\Windows\SysWOW64\rundll32.exe "C:\users\user\appdata\Roaming\BabSolution\Shared\NTRedirect.dll",Run.
How do I remove Doko Chrome Toolbar?
You can uninstall Doko Chrome Toolbar from your computer by using the Add/Remove Program feature in the Window's Control Panel.
- On the Start menu (for Windows 8, right-click the screen's bottom-left corner), click Control Panel, and then, under Programs, do one of the following:
- Windows Vista/7/8/10: Click Uninstall a Program.
- Windows XP: Click Add or Remove Programs.
- When you find the program Doko Chrome Toolbar, click it, and then do one of the following:
- Windows Vista/7/8/10: Click Uninstall.
- Windows XP: Click the Remove or Change/Remove tab (to the right of the program).
- Follow the prompts. A progress bar shows you how long it will take to remove Doko Chrome Toolbar.
- If for some reason uninstallation fails, please install Microsoft's uninstall fixer utility which will help fix problems with programs that can't be uninstalled at support.microsoft.com.
How do I reset my web browser?
If your web browser homepage and search settings have been modfied by Doko Chrome Toolbar you can restore them to their previous default settings.
Microsoft Internet Explorer
- Open Internet Explorer and click the Tools button, and then click Internet options.
- Click the Advanced tab, and then click Reset. Select the Delete personal settings check box if you would also like to remove search providers, Accelerators and home pages. When Internet Explorer finishes applying default settings, click Close, and then click OK.
- The changes will take effect the next time you open IE.
Mozilla Firefox
- At the top of the Firefox window, click the Firefox button, go over to the Help sub-menu and select Troubleshooting Information.
- To continue, click Reset Firefox in the confirmation window that opens. It will close and be reset.
- When it's done, a window will list the information that was imported. Click Finish and Firefox will open.
Google Chrome
- Open Chrome and click the Chrome menu on the browser toolbar.
- Select Settings. In the "Search" section, click Manage search engine. Check if (Default) is displayed next to your preferred search engine. If not, mouse over it and click Make default. Mouse over any other suspicious search engine entries that are not familiar and click X to remove them.
- When the "Show Home button" checkbox is selected, a web address appears below it. If you want the Homepage button to open up a different webpage, click Change to enter a link.
- Restart Google Chrome.
OS VERSIONS
Win 7 (SP1) 56%
Win Vista (SP1) 2%
|
|
WHEN IT STARTS
Auto-starting? Yes
(Found in the run registry)
|
|
USER ACTIONS
|
Uninstall it 82%
Keep it 18%
|
|
Windows
Which Windows OS versions does it run on?
Windows 7 |
65.79% |
|
Windows 10 |
21.05% |
|
Windows XP |
8.77% |
|
Windows Vista |
4.39% |
|
Which OS releases does it run on? |
Windows 7 Home Premium |
36.84% |
|
Windows 7 Ultimate |
12.28% |
|
Windows 7 Professional |
10.53% |
|
Microsoft Windows XP |
8.77% |
|
Windows 8 |
8.77% |
|
Windows 8.1 |
5.26% |
|
Geography
24.58% of installs come from the United States
Which countries install it?
United States |
24.58% |
Germany |
12.71% |
France |
11.02% |
United Kingdom |
5.93% |
India |
5.93% |
Poland |
5.08% |
Netherlands |
3.39% |
Finland |
2.54% |
Italy |
2.54% |
Mexico |
2.54% |
Brazil |
1.69% |
MA |
1.69% |
Norway |
1.69% |
PR |
1.69% |
PC manufacturers
What PC manufacturers (OEMs) have it installed?
Hewlett-Packard |
27.91% |
|
Acer |
19.77% |
|
Dell |
12.79% |
|
ASUS |
12.79% |
|
Samsung |
9.30% |
|
Lenovo |
9.30% |
|
Intel |
4.65% |
|
Toshiba |
2.33% |
|
GIGABYTE |
1.16% |
|
Common models |
HP Pavilion g6 Notebook P... |
3.19% |
|
Dell Inspiron 1525 |
2.13% |
|
Samsung 300E4A/300E5A/300... |
2.13% |
|
Acer Aspire 5750G |
2.13% |
|
Hewlett-Packard Presario ... |
2.13% |
|
TOSHIBA SATELLITE PRO L77... |
1.06% |
|
About Babylon Ltd
Babylon is a computer dictionary and translation program, developed by Babylon Ltd., an Israeli public company.
Publisher URL: www.babylon.com