BlockAndSurf

BlockAndSurf

Known Adware

by Revizer Technologies

What is BlockAndSurf?

BlockAndSurf is software application developed by Revizer Technologies. It is most commonly found on computers running Windows 7 with nearly 60.76% of installations running this operating system. BlockAndSurf's installer is typically 1.00 MB in size and installs around 12 files.

BlockAndSurf is most popular in the United States with 35.06% of installations residing in this country.

BlockAndSurf adds 2 scheduled tasks to the Windows Task Scheduler launching the program at randomly scheduled times.

About BlockAndSurf?

This adware utilizes Virtue Interactive’s Advertising Modules to insert advertisements into the user's web browser. The Toolbar acts by displaying advertisements, including inserting into web pages, displaying banners, or coupons that would not otherwise appear, converting words on pages into hyperlinked advertisements, and communicating with servers to check for new offers and updates. Additionally, it monitors and records the domain names of pages viewed, the advertisements displayed, and the advertisements clicked on by the user.

Multiple virus scanners have detected malware in BlockAndSurf.

171.dll (MD5: ca9883c9c8f5902811abca021f784937) has been flagged by 2 scanners:
Scanner Software Result
Baidu-International Adware.Win32.BlockAndSurf.108
TrendMicro-HouseCall TROJ_GEN.F47V0528
BlockNSurf.exe (MD5: db0c3035b9913c941c364dddf17e2309) has been flagged by 25 scanners:
Scanner Software Result
Lavasoft Ad-Aware Adware.BlockAndSurf.B
AhnLab-V3 Adware/Win32.BlockNSurf
Avira AntiVir Adware/BlockAndSurf.B.2
avast! Win32:Adware-gen [Adw]
AVG Generic5.ARIH
Baidu-International Adware.Win32.AddLyrics.AJ
Bitdefender Adware.BlockAndSurf.B
Comodo Security ApplicUnwnt
Emsisoft Anti-Malware Adware.BlockAndSurf.B (B)
ESET-NOD32 a variant of Win32/AdWare.AddLyrics.AJ
Fortinet FortiGate Riskware/AddLyrics
F-Secure Adware.BlockAndSurf.B
G Data Adware.BlockAndSurf.B
IKARUS anti.virus AdWare.BlockAndSurf
K7 AntiVirus Adware ( 00498b741 )
K7GW Adware ( 00498b741 )
McAfee Artemis!DB0C3035B991
McAfee-GW-Edition Artemis!DB0C3035B991
MicroWorld-eScan Adware.BlockAndSurf.B
NANO AntiVirus Riskware.Win32.BlockAndSurf.cxqulg
Symantec Trojan.Gen.2
Tencent Win32.Risk.Adware.Wqmu
Trend Micro TROJ_GEN.R0CBC0OEJ14
TrendMicro-HouseCall TROJ_GEN.R0CBC0OEJ14
VIPRE Antivirus Trojan.Win32.Generic!BT
BlockAndSurfC.exe (MD5: 115316316f9fa854f13ead413c974191) has been flagged by 32 scanners:
Scanner Software Result
Lavasoft Ad-Aware Gen:Variant.Adware.Graftor.141159
Avira AntiVir Adware/Graftor.141159.39
Antiy-AVL GrayWare[AdWare:not-a-virus]/Win32.Agent
avast! Win32:Adware-gen [Adw]
AVG Generic5
Baidu-International Adware.Win32.Agent.aT
Bitdefender Gen:Variant.Adware.Graftor.141159
Comodo Security ApplicUnwnt
Emsisoft Anti-Malware Gen:Variant.Adware.Graftor.141159
ESET-NOD32 a variant of Win32/AdWare.AddLyrics.AJ
Fortinet FortiGate Adware/Agent
F-Secure Gen:Variant.Adware.Graftor.141159
G Data Gen:Variant.Adware.Graftor.141159
IKARUS anti.virus Win32.SuspectCrc
K7 AntiVirus Adware
K7GW Adware ( 00498b741 )
Kaspersky not-a-virus:AdWare.Win32.Agent
Kingsoft AntiVirus Win32.Troj.Agent.ak.(kcloud)
McAfee Artemis!115316316F9F
McAfee-GW-Edition Artemis!115316316F9F
MicroWorld-eScan Gen:Variant.Adware.Graftor.141159
NANO AntiVirus Riskware.Win32.Agent.cxqfzv
Panda Antivirus Trj/Genetic.gen
Qihoo-360 HEUR/Malware.QVM10.Gen
Sophos Generic PUA DM
Symantec Trojan.Gen
Tencent Win32.Risk.Adware.Dvfv
TrendMicro-HouseCall TROJ_GEN.R0C1H07ED14
Vba32 AntiVirus AdWare.Agent
VIPRE Antivirus Trojan.Win32.Generic!BT
AhnLab-V3 Adware/Win32.BlockNSurf
Trend Micro TROJ_GEN.R0CBC0OEJ14
BlockAndSurf.exe (MD5: e5a07ddd80271329fd9c81c9ae15edc7) has been flagged by 2 scanners:
Scanner Software Result
Baidu-International Adware.Win32.Browsefox.108
TrendMicro-HouseCall TROJ_GEN.F47V0606
BnSup.exe (MD5: 6a8820ed2846aefa0a48def9806bf080) has been flagged by 12 scanners:
Scanner Software Result
Lavasoft Ad-Aware Application.Generic.608196
Baidu-International Adware.Win32.AddLyrics.AI
Bitdefender Application.Generic.608196
ESET-NOD32 a variant of Win32/AdWare.AddLyrics.AI
G Data Application.Generic.608196
K7 AntiVirus Adware ( 004976211 )
K7GW Adware ( 004976211 )
Kaspersky not-a-virus:HEUR:AdWare.Win32.Agent.gen
MicroWorld-eScan Application.Generic.608196
Sophos Generic PUA KP
TrendMicro-HouseCall TROJ_GEN.F47V0325
AVG Generic5.ARIH

Software Behaviors

Scheduled tasks:
  • BnSup.exe is scheduled as a task named 'BlockAndSurf Update' (runs daily at 12:22 PM).
  • BlockAndSurf_wd.exe is scheduled as a task named 'BlockAndSurf_wd' (runs daily at 21:20).

Startup Entries

Startup tasks:
  • BnSup.exe is automatically launched at startup through a scheduled task named BlockAndSurf Update.
  • BlockAndSurf_wd.exe is automatically launched at startup through a scheduled task named BlockAndSurf_wd.
Registry entries:
  • BlockNSurf.exe is loaded in the current user (HKCU) registry as an auto-starting executable named 'BlockNSurf' and executes as C:\Program Files\BlockAndSurf-soft\BlockNSurf.exe.

Software Details

URL:
Support:
Installation path:
C:\Program Files\blockandsurf-soft
Uninstaller:
C:\Program Files\BlockAndSurf-soft\Uninstall.exe
Size:
1.00 MB
Language:
English

BlockAndSurf Executable Details

Primary executable:
BlockAndSurf_wd.exe
Name:
BlockAndSurf
Path:
C:\Program Files\blockandsurf-soft\BlockAndSurf_wd.exe
MD5:
1b291c123ac97c444bf98619fc460dc6
SHA-1:
SHA-256:
Files installed by BlockAndSurf
File Type Filename MD5
EXE
BnSup.exe
Malware
6a8820ed2846aefa0a48def9806bf080
EXE
BlockAndSurf_wd.exe
Malware
1b291c123ac97c444bf98619fc460dc6