RightSurf

RightSurf

Known Toolbar

by Yontoo Technology, Inc.

What is RightSurf?

RightSurf is software application developed by Yontoo Technology, Inc.. It is most commonly found on computers running Windows 7 with nearly 61.03% of installations running this operating system. RightSurf's installer is typically 1.00 MB in size and installs around 11 files. The most common release is 2014.02.01.021226 with 18.60% of all installations currently using this version.

RightSurf is most popular in the United States with 30.17% of installations residing in this country.

About RightSurf?

RightSurf is a web browser extension designed to serve various types of advertisements, including popups and banners, and modify the user's browser settings. These ads aim to promote the installation of additional software in order to generate pay-per-click revenue for the publisher. Potential symptoms of infection with RightSurf may include hyperlinks appearing in random web page text, pop-up ads with red "click here" buttons, and the installation of unwanted adware programs without the user's knowledge. Browser popups recommending fake updates or other software may also appear, and web pages may become slow to download due to the presence of multiple ads. Please note that RightSurf may have evolved since this description was last updated, and it is important to stay informed about the latest developments in adware and malware.

Multiple virus scanners have detected malware in RightSurf.

updateRightSurf.exe (MD5: 9f1ef46545971a4d9abab76cbe2c9dda) has been flagged by 35 scanners:
Scanner Software Result
Lavasoft Ad-Aware Adware.SwiftBrowse.V
AhnLab-V3 Win-PUP/BrowseFox.Gen
ALYac Adware.SwiftBrowse.V
Antiy-AVL Trojan/Win32.TSGeneric
avast! Win32:BrowseFox-DQ [PUP]
AVG Generic.5CD
Avira ADWARE/BrowseFox.apk
AVware Yontoo (fs)
Baidu-International Adware.MSIL.BrowseFox.H
Bitdefender Adware.SwiftBrowse.V
Bkav FE W32.HfsAdware.6B89
Comodo Security UnclassifiedMalware
Cyren W32/S-7b6eb46a!Eldorado
Dr.Web Trojan.Yontoo.1741
Emsisoft Anti-Malware Adware.SwiftBrowse.V (B)
ESET-NOD32 a variant of MSIL/BrowseFox.H potentially unwanted
F-Prot W32/S-7b6eb46a!Eldorado
F-Secure Adware.SwiftBrowse.V
G Data Adware.SwiftBrowse.V
IKARUS anti.virus PUA.MSIL.BrowseFox
K7 AntiVirus Unwanted-Program ( 0040f96c1 )
K7GW Unwanted-Program ( 0040f96c1 )
Malwarebytes PUP.Optional.RightSurf.A
McAfee BrowseFox-FSL
McAfee-GW-Edition BrowseFox-FSL
MicroWorld-eScan Adware.SwiftBrowse.V
NANO AntiVirus Riskware.Win32.BPlug.djpkri
nProtect Adware.SwiftBrowse.V
Panda Antivirus Generic Suspicious
Sophos RightSurf
Symantec Trojan.Gen.2
Tencent Trojan.Win32.Qudamah.Gen.18
Trend Micro TROJ_GEN.R0C1C0EL114
TrendMicro-HouseCall TROJ_GEN.R0C1C0EL114
VIPRE Antivirus Yontoo (fs)
RightSurfBHO.dll (MD5: 526da03eed21c16f38fd35320a9b99ce) has been flagged by 37 scanners:
Scanner Software Result
Antiy-AVL AdWare/Win32.Agent
Comodo Security Application.Win32.Altbrowse.AK
ESET-NOD32 a variant of Win32/BrowseFox.F
Kaspersky not-a-virus:AdWare.Win32.Agent
Kingsoft AntiVirus Win32.Troj.Agent.ah.(kcloud)
Malwarebytes PUP.Optional.RightSurf.A
NANO AntiVirus Riskware.Win32.Agent.crkvek
Sophos Generic PUA PP
TrendMicro-HouseCall TROJ_GEN.F47V0123
Lavasoft Ad-Aware Adware.SwiftBrowse.V
AhnLab-V3 Win-PUP/BrowseFox.Gen
ALYac Adware.SwiftBrowse.V
avast! Win32:BrowseFox-DQ [PUP]
AVG Generic.5CD
Avira ADWARE/BrowseFox.apk
AVware Yontoo (fs)
Baidu-International Adware.MSIL.BrowseFox.H
Bitdefender Adware.SwiftBrowse.V
Bkav FE W32.HfsAdware.6B89
Cyren W32/S-7b6eb46a!Eldorado
Dr.Web Trojan.Yontoo.1741
Emsisoft Anti-Malware Adware.SwiftBrowse.V (B)
F-Prot W32/S-7b6eb46a!Eldorado
F-Secure Adware.SwiftBrowse.V
G Data Adware.SwiftBrowse.V
IKARUS anti.virus PUA.MSIL.BrowseFox
K7 AntiVirus Unwanted-Program ( 0040f96c1 )
K7GW Unwanted-Program ( 0040f96c1 )
McAfee BrowseFox-FSL
McAfee-GW-Edition BrowseFox-FSL
MicroWorld-eScan Adware.SwiftBrowse.V
nProtect Adware.SwiftBrowse.V
Panda Antivirus Generic Suspicious
Symantec Trojan.Gen.2
Tencent Trojan.Win32.Qudamah.Gen.18
Trend Micro TROJ_GEN.R0C1C0EL114
VIPRE Antivirus Yontoo (fs)

Software Behaviors

Services:
  • updateRightSurf.exe runs as a service named 'Update RightSurf' (Update RightSurf).

Software Details

URL:
https://rightsurf.info/support
Support:
https://mailto:
Installation path:
C:\Program Files\RightSurf
Uninstaller:
C:\Program Files\RightSurf\RightSurfuninstall.exe
Size:
1.00 MB
Language:
English

RightSurf Executable Details

Primary executable:
RightSurfBHO.dll
Name:
RightSurf
Path:
C:\Program Files\RightSurf\RightSurfBHO.dll
MD5:
526da03eed21c16f38fd35320a9b99ce
SHA-1:
–
SHA-256:
–
Files installed by RightSurf
File Type Filename MD5
EXE
7za.exe
c3b44da13a8e972809780c2f64c6683a
EXE
sqlite3.exe
0b86536bba2a922f5f32ad1792d8a03b
EXE
updateRightSurf.exe
Malware
9f1ef46545971a4d9abab76cbe2c9dda
DLL
RightSurfBHO.dll
Malware
526da03eed21c16f38fd35320a9b99ce
EXE
RightSurfUninstall.exe
0a675632ae68f54c25c3d5b5b7af4b8d
EXE
RightSurf.FirstRun.exe
50d1b7300fba7522f4a6a202401e327d
DLL
RightSurf.BrowserFilter.Helper.dll
8cf18ff2070b57a2cf0f7efd9a1f3303
EXE
RightSurfBrowserFilter.exe
1b27ba116b519bb3bac1cf09c63823f8
EXE
RightSurfUn.exe
3334119ccdc37f2f1a897bb0862547d5
CRX
ajjpgnlpolfpnebjjaciccmmjnmjfjkl.crx
785852859122a08d1c4e3d9fa37ec252