Elitebar
It includes High risk threats that are typically installed without user interaction through security exploits, and can severely compromise system security. Such threats may open illicit network connections, use polymorphic tactics to self-mutate,
disable security software, modify system files, and install additional malware. These threats may also collect and transmit personally identifiable information (PII) without our consent and severely degrade the performance and stability of our computer.0
General information:
| Malware Name: |
Elitebar |
| Malware Type: |
Toolbar |
| Company Name: |
EliteBar |
| Company URL: |
http://www.conspy.com/
|
| Threat Level: |
High Risk |
| Operating System: |
WIN XP |
| Installation Type: |
Installed through EXE |
| Operation: |
Time of After Installation. |
Company Description:
Elite Toolbar provides instant access to its site from any site on the web. It searches from anywhere on the Web. It blocks annoying pop-ups and also eliminated adware and spyware. It includes cookie cleaner, history cleaner, and cache cleaner and
it also provides virus scan. We can listen to online radio from the toolbar. Get updates through the built-in message box.
Spyware Description:
It includes High risk threats that are typically installed without user interaction through security exploits, and can severely compromise system security. Such threats may open illicit network connections, use polymorphic tactics to self-mutate,
disable security software, modify system files, and install additional malware. These threats may also collect and transmit personally identifiable information (PII) without our consent and severely degrade the performance and stability of our computer.0
Characteristics/Symptoms:
-> It has a search function and provides search results for paid advertisers -> Track browsing habits -> Adds a third-party utility bar to the web browser -> Changes browser -> Shows Advertisements0
Additional information might be found here:
Processes Running:
pokapoka79.exe
File information Created after Installation:
| File Location |
Size (Bytes) |
Type |
| C:\WINDOWS\etb\pokapoka79.exe |
148480 |
Application |
| C:\WINDOWS\etb\xml\default.tbr |
1437 |
TBR File |
| C:\WINDOWS\etb\xml\images\casino.bmp |
4680 |
Bitmap Image |
Folder information Created after Installation:
| Folder Location |
| C:\WINDOWS\etb\xml\categories |
| C:\WINDOWS\etb\xml\images |
Registry information Created after Installation:
| Main Registry Key |
Sub Registry Key |
Key Value Name |
| HKEY_LOCAL_MACHINE |
\SOFTWARE\Microsoft\Windows\CurrentVersion\Run |
System service79 |
