www.babylon.com

Domains By Proxy, LLC  (Proxy Registrant)

Domain Information

The domain www.babylon.com is registered by proxy through GODADDY.COM, LLC and was originally registered in August of 1998. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Chicago, Illinois within the United States which resides on the SingleHop, Inc. network.
Registrar:
GODADDY.COM, LLC

Server location:
Illinois, United States (US)

Create date:
Saturday, August 01, 1998

Expires date:
Tuesday, July 31, 2018

Updated date:
Monday, January 21, 2013

ASN:
AS32475 SINGLEHOP-INC - SingleHop

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.Babylon.P, PUP.Installer.Babylon.V, PUP.Installer.Babylon.S, PUP.Babylon.Installer, PUP.Babylon.BabylonSoftware.Installer (M), PUP.Babylon.Installer (M), PUP.Babylon.BabylonS.Installer (M), PUP.Babylon.Optional (M), PUP.Babylon (M), Threat.Win.Reputation.IMP
100.00%

Dr.Web
Adware.Babylon.10, Adware.Downware.1733, Adware.Babylon.8, Adware.Babylon.25, Adware.Searcher.2766, Adware.Babylon.36
80.00%

ESET NOD32
Win32/Toolbar.Babylon (variant), Win32/Toolbar.Babylon.AD (variant)
76.67%

Trend Micro House Call
TROJ_GEN.F47V0801, TROJ_GEN.F47V1103, TROJ_GEN.F47V1215, TROJ_GEN.F47V0207, TROJ_GEN.F47V0403, TROJ_GEN.F47V0413, TROJ_GEN.F47V0508, TROJ_GEN.F47V0205
70.00%

Agnitum Outpost
Trojan.Agent, PUA.Toolbar.Babylon
70.00%

Baidu Antivirus
Adware.Win32.Bbylon, Trojan.Win32.Toolbar
70.00%

NANO AntiVirus
Trojan.Win32.Babylon.csuksh, Riskware.Win32.Babylon.craswq, Trojan.Win32.Downware.ctimdd, Riskware.Win32.Searcher.dotdbm
63.33%

McAfee
Artemis!5880209E62DF, Artemis!77445EC53390, Artemis!630D92816E04, Artemis!E569050C46CA, Artemis!B88B3030AB5C, Artemis!52C88A3FDD9C, Artemis!8B06BEF7E43A, Artemis!8EE88F4F4FE2, Artemis!FE50457FD6E3
60.00%

McAfee Web Gateway
Artemis!5880209E62DF, Artemis!77445EC53390, Artemis!630D92816E04, Artemis!E569050C46CA, Artemis!B88B3030AB5C, Artemis!52C88A3FDD9C
60.00%

VIPRE Antivirus
Babylon, Trojan.Win32.Generic
56.67%

Fortinet FortiGate
Riskware/Toolbar_Babylon, Riskware/FirseriaInstaller
56.67%

K7 Gateway Antivirus
Unwanted-File , Trojan , DoS-Trojan
53.33%

Malwarebytes
PUP.Optional.Babylon.A, PUP.Optional.ToolBarInstaller.A
46.67%

Vba32 AntiVirus
suspected of Trojan.Downloader.gen
36.67%

Bkav FE
W32.Clodcfc.Trojan, W32.Clod95a.Trojan
36.67%

The domain www.babylon.com has been seen to resolve to the following 9 IP addresses.

LB2200.babylon.com
April 18, 2016

ba-sh-nl-dc1-.005.com
April 18, 2016

ba-sh-us-dc4-010.babylon.com
October 24, 2014

ba-sh-nl-dc-006.babylon.com
April 3, 2014

ba-sh-nl-dc1-.003.com
March 28, 2014

ba-sh-us-dc1-020.babylon.com
March 28, 2014

singhop0002.babylon.com
December 22, 2013

eul2400033-pip3.eu.verio.net
December 22, 2013

eul3300035-sip3.eu.verio.net
December 22, 2013

File downloads found at URLs served by www.babylon.com.

22 / 68    (Adware)

21 / 68    (Adware)

1 / 68      (Adware)

35 / 68    (Adware)

8 / 68      (Adware)

 
Latest 30 of 1,014 download URLs

The following 78 files have been seen to comunicate with www.babylon.com in live environments.

 
Latest 20 of 172 files

URL:
http://www.babylon.com/

Google Analytics:
UA-71137434

Title:
“Babylon - Investments, Monetization”

Description:
“Babylon translator and dictionary for PC and Mac is the world's leading translation software, providing instant translation in over 77 languages”

Web server:
server/01006d

Facebook:
Likes:  4,694
Shares:  6,184
Comments:  1,005

Statistics are for the previous month.