AliBaBar

It includes Elevated threats that are typically installed without adequate notice and consent, and may make unwanted changes to our system, such as reconfiguring our browser’s homepage and search settings. These threats may install advertising-related add-ons, including toolbars and search bars, or insert advertising-related components into the Winsock Layered Service Provider chain. These new add-ons and components may block or redirect our preferred network connections, and can negatively impact our computer’s performance and stability. Elevated threats may also collect, transmit, and share potentially sensitive data without adequate notice and consent.0

General information:

Malware Name:AliBaBar
Malware Type:Browser Helper Object
Company Name:ALF
Company URL:http://alf-li.pcdiscuss.com/
Threat Level:Elevated Risk
Operating System:WIN XP
Installation Type:Installed through EXE
Operation:Time of After Installation.

Company Description:

ALF is committed to provide the finest software’s to the web community. All products listed below are freewares for personal use. All Software’s of ALF are free for single home user. These software’s are provided 'AS-IS' and may contain bugs. It provides following software: ConvertZ v8.02, ALiBaBar v5.10, Uni2Me v1.0, ShowDaPic v0.9, ConCmd v1.5, GetMeThere v1.2, Fireworks Saver v1.2 and WinAmp's Fireworks plugin v2.21.

Spyware Description:

It includes Elevated threats that are typically installed without adequate notice and consent, and may make unwanted changes to our system, such as reconfiguring our browser’s homepage and search settings. These threats may install advertising-related add-ons, including toolbars and search bars, or insert advertising-related components into the Winsock Layered Service Provider chain. These new add-ons and components may block or redirect our preferred network connections, and can negatively impact our computer’s performance and stability. Elevated threats may also collect, transmit, and share potentially sensitive data without adequate notice and consent.0

Characteristics/Symptoms:

    -> Adds a third-party utility bar to the web browser -> Changes browser -> It has a search function and provides search results for paid advertisers -> Track browsing habits0

Additional information might be found here:

googleSearch at Google for AliBaBar
bingSearch at Bing for AliBaBar
yahooSearch at Yahoo for AliBaBar

Processes Running:

File information Created after Installation:

File LocationSize (Bytes)Type
C:\Program Files\ALiBaBar\ALiBaBar.dll970240Application Extension
C:\Program Files\ALiBaBar\AliBaBar.iniunknownConfiguration Settings
C:\Program Files\ALiBaBar\Readme-Big5.txt8408Text Document

Folder information Created after Installation:

Folder Location

Registry information Created after Installation:

Main Registry KeySub Registry KeyKey Value Name
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ALiBaBarURLUpdateInfo
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ALiBaBarVersionMajor
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ALiBaBarVersionMinor