Author Topic: Babylon search toolbar virus  (Read 35012 times)

Offline Pondus

  • avast! Überevangelist
  • Maybe Bot
  • *****
  • Posts: 21644
  • Gender: Male
    • Personal Message (Offline)
Re: Babylon search toolbar virus
« Reply #15 on: December 24, 2011, 12:17:48 AM »
In the meantime could I use the various other features (which I don't understand)of Old Timer to backup other attempts to "fix" the problem?  Or is it better to use it purely to scan and generate a "passive" log?


Essexboy will use OTL to kill the malware.....if he see any in the Log, and depending on malware type
but you need to be trained in this to create the OTL fix......if not you may create paper weight
Chief Wiggum: Uh, no, you got the wrong number. This is 9-1…2.


Offline essexboy

  • avast! Überevangelist
  • Maybe Bot
  • *****
  • Posts: 28899
  • Gender: Male
  • Dragons by Sasha
    • Malware fixes
    • Personal Message (Offline)
Re: Babylon search toolbar virus
« Reply #16 on: December 24, 2011, 09:42:11 AM »
If you do not know what you are removing with OTL it could mess up your day

Offline Telegraph_Sam

  • Jr. Member
  • **
  • Posts: 94
  • Gender: Male
    • Personal Message (Offline)
Re: Babylon search toolbar virus
« Reply #17 on: December 24, 2011, 11:56:06 AM »
I don't know what I am removing - other than that it goes by the name of Babylon - so I will do nothing and await the results of the log scan.  Tks.
"There are 10 kinds of people in the world, those that understand binary and those that don't"

Offline essexboy

  • avast! Überevangelist
  • Maybe Bot
  • *****
  • Posts: 28899
  • Gender: Male
  • Dragons by Sasha
    • Malware fixes
    • Personal Message (Offline)
Re: Babylon search toolbar virus
« Reply #18 on: December 24, 2011, 12:06:28 PM »
Sorry about that I missed that you posted the logs


Warning This fix is only relevant for this system and no other, using on another computer may cause problems

Be advised that when the fix commences it will shut down all running processes and you may lose the desktop and icons, they will return on reboot

Run OTL
  • Under the Custom Scans/Fixes box at the bottom, paste in the following
    Quote
    :OTL
    [2011/12/10 23:43:51 | 000,002,310 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml
    [2010/10/08 16:38:59 | 000,008,156 | ---- | C] () -- C:\WINDOWS\_000007_.tmp.dll
    [2010/10/08 16:38:56 | 000,007,860 | ---- | C] () -- C:\WINDOWS\_000005_.tmp.dll
    [2010/10/08 16:37:07 | 000,007,170 | ---- | C] () -- C:\WINDOWS\_000006_.tmp.dll

    :Files
    ipconfig /flushdns /c

    :Commands
    [purity]
    [resethosts]
    [emptytemp]
    [CREATERESTOREPOINT]
    [Reboot]
  • Then click the Run Fix button at the top
  • Let the program run unhindered, reboot the PC when it is done
  • Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.

Offline Telegraph_Sam

  • Jr. Member
  • **
  • Posts: 94
  • Gender: Male
    • Personal Message (Offline)
Re: Babylon search toolbar virus
« Reply #19 on: December 24, 2011, 01:28:51 PM »
Tks, will do as soon as Christmas commitments permit.  Assume that it would be wise to create a restore point for safety before starting?
"There are 10 kinds of people in the world, those that understand binary and those that don't"

Offline essexboy

  • avast! Überevangelist
  • Maybe Bot
  • *****
  • Posts: 28899
  • Gender: Male
  • Dragons by Sasha
    • Malware fixes
    • Personal Message (Offline)
Re: Babylon search toolbar virus
« Reply #20 on: December 24, 2011, 03:20:24 PM »
OTL will set a restore point for you

Offline Telegraph_Sam

  • Jr. Member
  • **
  • Posts: 94
  • Gender: Male
    • Personal Message (Offline)
Re: Babylon search toolbar virus
« Reply #21 on: December 24, 2011, 03:55:39 PM »
I should have seen that in the text. 
I also noticed that it seems that OTE is being instructed to search Mozilla Firefox files.  Previously following a tip I got from another forum (before coming here!) I was able to stop Babylon appearing when running Firefox.  Since then it has only been apparent when opening a new tab in IE 8.  I will run your fix and report back but I wonder if it will also sus the thing out if it is hiding in IE 8?
"There are 10 kinds of people in the world, those that understand binary and those that don't"

Offline essexboy

  • avast! Überevangelist
  • Maybe Bot
  • *****
  • Posts: 28899
  • Gender: Male
  • Dragons by Sasha
    • Malware fixes
    • Personal Message (Offline)
Re: Babylon search toolbar virus
« Reply #22 on: December 24, 2011, 05:16:21 PM »
Nothing was showing within the IE area

Offline Telegraph_Sam

  • Jr. Member
  • **
  • Posts: 94
  • Gender: Male
    • Personal Message (Offline)
Re: Babylon search toolbar virus
« Reply #23 on: December 31, 2011, 11:45:01 PM »
Not there yet I fear.  I re-ran OTE with your new text pasted in. Pop-up screen appeared "Cannot create file C:\Documents and Settings\Iain\Desktop\cmd.bat".  Program seemed to abort at this point
I tried again.  Screen popped up entitled 01012012_002757.log-Notepad.
"Files\Folders moved on Reboot ..
Registry entries deleted on Reboot ..."
Again the program seemed to abort.

I tried again.  Same result as first attempt.

So far there has been no reboot but I am about to switch the PC off since the task has stretched into the New Year! Happy New Year to anyone reading.
"There are 10 kinds of people in the world, those that understand binary and those that don't"

Offline dantheman72

  • Newbie
  • *
  • Posts: 12
    • Personal Message (Offline)
Re: Babylon search toolbar virus
« Reply #24 on: April 05, 2012, 05:07:16 PM »
recently lost files for the 4th time  this time..babylon toolbar  avast and malware bytes failed to remove it or detect  and would hang up /crash if it did detect  it....hmmm   why ?  i use the sandbox like good kitteh and no pron sites  so  how/why  this  my  worry?

Offline Dimex

  • Newbie
  • *
  • Posts: 2
    • Personal Message (Offline)
Re: Babylon search toolbar virus
« Reply #25 on: April 23, 2012, 12:26:59 PM »
Can anybody tell me why Avast does not detect Babylon Search (we have a paid Avast subscription for at least 7 systems) and I cannot get in touch with technical support -because we don't have a  password....

Offline mikaelrask

  • avast! Evangelist
  • Super Poster
  • ***
  • Posts: 1299
  • Gender: Male
    • Personal Message (Offline)
Re: Babylon search toolbar virus
« Reply #26 on: April 23, 2012, 01:39:27 PM »
Can anybody tell me why Avast does not detect Babylon Search (we have a paid Avast subscription for at least 7 systems) and I cannot get in touch with technical support -because we don't have a  password....

no solution today has 100% detection of all malware out there. hopfully someone send in a sample of that to avast lab so they could add it.

to your problem its better you start your own thred in the future but i suggest to send an email to the support team im not sure there email hope someone will give you a hand on that.
new computer
windows 8 Intel core I-3 64 bit
6 gb ram 500 gb hardrive. avast 9 MBAM

Offline Gargamel360

  • avast! Evangelist
  • Super Poster
  • ***
  • Posts: 2357
  • Gender: Male
  • Memento Mori
    • Personal Message (Offline)
Re: Babylon search toolbar virus
« Reply #27 on: April 23, 2012, 02:33:49 PM »
Can anybody tell me why Avast does not detect Babylon Search
It might detect it....if you enable scanning for PuP (Potentially Unwanted Programs), because that is what such toolbars are, not malicious infections.   PuP scanning is off by default, since the average user does not understand what PuP means, they want everything to be VIRUS or NOT VIRUS.
Signature?  But I gots no pen....

Offline Dimex

  • Newbie
  • *
  • Posts: 2
    • Personal Message (Offline)
Re: Babylon search toolbar virus
« Reply #28 on: April 23, 2012, 02:39:24 PM »
Thanks, Evangelist. Ok, during loading not maybe but after it has installed itself a sort of repairsuggestion? I now had to use Spybot S&D which worked well but I try to avoid ''too many virus utilities''', especially the shareware ones, they make me feel guilty, -Andre-

 

Google Chrome

AVAST recommends using the FREE Google Chrome™ browser.

Download Google Chrome Now