FlowSurf

By GoldSparrow in Potentially Unwanted Programs

Threat Scorecard

Ranking: 4,846
Threat Level: 20 % (Normal)
Infected Computers: 28,528
First Seen: April 22, 2014
Last Seen: November 24, 2023
OS(es) Affected: Windows

FlowSurf Image

FlowSurf is a PUP (potentially unwanted program)/adware that may surreptitiously access a PC, or it may be installed on a computer as an optional application bundled with free programs. FlowSurf may interrupt with a computer user's surfing routine by showing disturbing advertisements encompassing a variety of discount coupon offers and deals or sponsored links for online shopping, among search results in any major search provider. FlowSurf may repeatedly redirect a PC user to untrustworthy websites that may be created for promotional intentions. FlowSurf may be produced with the aim to benefit from raised Internet traffic and clicks on advertisements. If a PC user clicks on the FlowSurf's advertisements, he may unknowingly install other adware or potentially unwanted programs on a computer system.
FlowSurf Image 2FlowSurf Image 2

SpyHunter Detects & Remove FlowSurf

File System Details

FlowSurf may create the following file(s):
# File Name MD5 Detections
1. flowsurf.dll 39a567e0c38542483c50c0bda30b71a3 6,019
2. upfs7235.exe.vir 400110f238f98c0366c787dedf5e1def 3,702
3. ijs.exe.vir 20cf0b2a87d2cfc94d53911d268f7414 3,682
4. flowsurf.dll 281838d65b1d5735cf71668d96a37a68 2,420
5. abengine.exe 06dd619fcd3893a68d50a6732687204c 1,222
6. uninstall.exe.vir db1df7bb1ffb860852a7fe27ae8cd2c0 673
7. upfs7214.exe 3953c60db38eafb23f71055914caa2ce 361
8. fsupd.exe 2b140f9d8cd365bf8522a5118d0b06ef 236
9. fsupd.exe 6784919e1b1c7a5a01de2f31847b7280 215
10. ijs.exe d250c2436964cafac44eb7acce1b9392 68
11. flowsurf_4435.exe 3117f416905582f23f49d25c1be8c5a6 15
12. FlowSurf.dll 00176e372b59b9664a93f5cc43d68e48 15
13. FlowSurf.dll 0d1133d5b2cc62f8e0091a4e49390dfb 1

Registry Details

FlowSurf may create the following registry entry or registry entries:
CLSID
{6CA2A4DE-483E-456B-8634-6445460D7097}
{A8018C54-B702-4D52-9ACC-8CA78911E633}
{C321541F-B22D-4593-AC1A-9634812A4E40}
{C6A846C5-D67F-48B4-8552-C22354E56966}
{E3F1CA13-EA0E-4617-8D03-3EAA6A94A7E0}
File name without path
Bundle_FlowsurfCB[1].exe
Software\Flowsurf
Software\InstallPath\Status\FlowsurfCB
SOFTWARE\Microsoft\Internet Explorer\Extensions\{6CA2A4DE-483E-456B-8634-6445460D7097}
Software\Microsoft\Internet Explorer\LowRegistry\Extensions\CmdMapping\{6CA2A4DE-483E-456B-8634-6445460D7097}
SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{E3F1CA13-EA0E-4617-8D03-3EAA6A94A7E0}
Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6CA2A4DE-483E-456B-8634-6445460D7097}
Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E3F1CA13-EA0E-4617-8D03-3EAA6A94A7E0}
Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6CA2A4DE-483E-456B-8634-6445460D7097}
Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E3F1CA13-EA0E-4617-8D03-3EAA6A94A7E0}
SOFTWARE\Mozilla\Firefox\Extensions\jid1-tofUlNEIFlkUIA@jetpack
SOFTWARE\Wow6432Node\Flowsurf
SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Extensions\{6CA2A4DE-483E-456B-8634-6445460D7097}
SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{E3F1CA13-EA0E-4617-8D03-3EAA6A94A7E0}
SOFTWARE\Wow6432Node\Mozilla\Firefox\Extensions\jid1-tofUlNEIFlkUIA@jetpack
SOFTWARE\Wow6432Node\Wow6432Node\Microsoft\Internet Explorer\Extensions\{6CA2A4DE-483E-456B-8634-6445460D7097}

Directories

FlowSurf may create the following directory or directories:

%PROGRAMFILES%\Flowsurf
%PROGRAMFILES%\Flwsrf
%PROGRAMFILES(x86)%\Flowsurf
%PROGRAMFILES(x86)%\Flwsrf

Related Posts

Trending

Most Viewed

Loading...