BetterSurf

Category: Adware and PUAs Protection available since:21 Nov 2013 23:17:51 (GMT)
Type: Adware Last Updated:02 Jul 2014 19:33:01 (GMT)

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Examples of BetterSurf include:

Example 1

File Information

Size
656K
SHA-1
0001aa778342f66c59e74b35124b47cd4e3372e6
MD5
896a3ad5f956a1875a7af0454a76f16a
CRC-32
9e665395
File type
application/x-ms-dos-executable
First seen
2014-04-28

Runtime Analysis

Dropped Files
  • c:\Documents and Settings\test user\Local Settings\Temp\nsl3.tmp\aminsis.dll
    Size
    568K
    SHA-1
    7e7ea1e8d181d9c748fdf3aac43370b24d1b3bfa
    MD5
    7379711a5fcffcafbdc13dd927745bd1
    CRC-32
    80869d7d
    File type
    Windows executable
    First seen
    2014-04-25

Example 2

File Information

Size
85K
SHA-1
00032d9b9dbb9698a1f8f84a4fc41b12d52cdfb9
MD5
342fd4ce0a5545346b280e8311e7a7fb
CRC-32
f0b9a706
File type
Windows executable
First seen
2014-02-27

Runtime Analysis

Registry Keys Created
  • HKCR\TypeLib\{3224D22A-C1B4-46CE-9BEE-C19210DCF193}\1.1\0\win32
    (Default)
    c:\test_item.dll
  • HKCR\CLSID\{f8ecbabf-253c-4072-8a11-2f8a5103de03}\TypeLib
    (Default)
    {3224d22a-c1b4-46ce-9bee-c19210dcf193}
  • HKCR\CLSID\{f8ecbabf-253c-4072-8a11-2f8a5103de03}\InprocServer32
    ThreadingModel
    Apartment
  • HKCR\Interface\{AAB71EBA-F04D-4AC8-A0FE-83E6C2975496}\TypeLib
    Version
    1.1
  • HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{f8ecbabf-253c-4072-8a11-2f8a5103de03}
    NoExplorer
    0x00000001
  • HKCR\Interface\{AAB71EBA-F04D-4AC8-A0FE-83E6C2975496}\ProxyStubClsid32
    (Default)
    {00020424-0000-0000-C000-000000000046}
  • HKCR\CLSID\{f8ecbabf-253c-4072-8a11-2f8a5103de03}\Version
    (Default)
    1.1
  • HKCR\TypeLib\{3224D22A-C1B4-46CE-9BEE-C19210DCF193}\1.1\FLAGS
    (Default)
  • HKCR\Interface\{AAB71EBA-F04D-4AC8-A0FE-83E6C2975496}\ProxyStubClsid
    (Default)
    {00020424-0000-0000-C000-000000000046}
  • HKCR\TypeLib\{3224D22A-C1B4-46CE-9BEE-C19210DCF193}\1.1
    (Default)
    MediaViewV1alpha3369Lib
  • HKCR\CLSID\{f8ecbabf-253c-4072-8a11-2f8a5103de03}
    (Default)
    MediaViewV1alpha3369
  • HKCR\Interface\{AAB71EBA-F04D-4AC8-A0FE-83E6C2975496}
    (Default)
    IMediaViewV1alpha3369BHO
  • HKCR\TypeLib\{3224D22A-C1B4-46CE-9BEE-C19210DCF193}\1.1\HELPDIR
    (Default)
    c:

Example 3

File Information

Size
85K
SHA-1
0004085f435d0975718e7697598dde73d5f83d95
MD5
e42c6222c9980cef133c80c07c4a4b38
CRC-32
55417ee0
File type
Windows executable
First seen
2014-02-14

Runtime Analysis

Registry Keys Created
  • HKCR\Interface\{42350962-C65D-45AD-91AF-40E0888A7E6A}\ProxyStubClsid32
    (Default)
    {00020424-0000-0000-C000-000000000046}
  • HKCR\Interface\{42350962-C65D-45AD-91AF-40E0888A7E6A}\ProxyStubClsid
    (Default)
    {00020424-0000-0000-C000-000000000046}
  • HKCR\CLSID\{0d7b3034-56b7-47d5-aae7-5f3024dfa73b}\InprocServer32
    ThreadingModel
    Apartment
  • HKCR\TypeLib\{36F3845A-2382-412F-8049-CEA88FF9C193}\1.1\FLAGS
    (Default)
  • HKCR\TypeLib\{36F3845A-2382-412F-8049-CEA88FF9C193}\1.1\HELPDIR
    (Default)
    c:
  • HKCR\CLSID\{0d7b3034-56b7-47d5-aae7-5f3024dfa73b}
    (Default)
    MediaPlayerV1alpha8629
  • HKCR\TypeLib\{36F3845A-2382-412F-8049-CEA88FF9C193}\1.1\0\win32
    (Default)
    c:\test_item.dll
  • HKCR\CLSID\{0d7b3034-56b7-47d5-aae7-5f3024dfa73b}\TypeLib
    (Default)
    {36f3845a-2382-412f-8049-cea88ff9c193}
  • HKCR\TypeLib\{36F3845A-2382-412F-8049-CEA88FF9C193}\1.1
    (Default)
    MediaPlayerV1alpha8629Lib
  • HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0d7b3034-56b7-47d5-aae7-5f3024dfa73b}
    NoExplorer
    0x00000001
  • HKCR\Interface\{42350962-C65D-45AD-91AF-40E0888A7E6A}
    (Default)
    IMediaPlayerV1alpha8629BHO
  • HKCR\CLSID\{0d7b3034-56b7-47d5-aae7-5f3024dfa73b}\Version
    (Default)
    1.1
  • HKCR\Interface\{42350962-C65D-45AD-91AF-40E0888A7E6A}\TypeLib
    Version
    1.1

download Try Sophos products for free
Download now