RightSurf

By LoneStar in Adware

Threat Scorecard

Ranking:	6,285
Threat Level:	20 % (Normal)
Infected Computers:	4,537

First Seen:	December 18, 2013
Last Seen:	September 17, 2023
OS(es) Affected:	Windows

RightSurf is adware that may show random pop-up ads and messages carrying discounts, offers and coupons when PC users are visiting online shopping or other similar websites. RightSurf may be embedded into Internet Explorer, Mozilla Firefox and Google Chrome Web browser without a computer user's approval. RightSurf may commonly propagate packed with freeware that PC users can download from the Internet. When the PC user decides to download and install a specific free program, it may carry extra toolbars, browser plug-ins and add-ons inserted into the installation wizard. These extra tools, specifically, RightSurf may be marked as optional apps, but if the PC user does not unmark a check box to embed them, he may end up facing undesired system modifications on the computer system. RightSurf may trace the PC user's browsing activity and transfer collected information to third-parties for the purpose of targeted advertising.

Table of Contents

Aliases

6 security vendors flagged this file as malicious.

Anti-Virus Software	Detection
AhnLab-V3	Trojan/Win32.Zapchast
McAfee	Artemis!5215978785A6
Antiy-AVL	AdWare/Win32.Agent
Sophos	Generic PUA PP
Comodo	Application.Win32.Altbrowse.AK
Kaspersky	not-a-virus:AdWare.Win32.Agent.ahbx

SpyHunter Detects & Remove RightSurf

File System Details

RightSurf may create the following file(s):

Expand All | Collapse All

#	File Name	MD5	Detections Detections: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
1.	RightSurf.FirstRun.exe	945ce6325c66b1eb94391b15a1809cf2	12
Name: RightSurf.FirstRun.exe MD5: 945ce6325c66b1eb94391b15a1809cf2 Size: 1.08 MB (1088800 bytes) Detections: 12 Type: Executable File Path: %PROGRAMFILES%\RightSurf Group: Malware file Last Updated: July 15, 2020
2.	utilRightSurf.exe	07c785ba12d6d40cb76dff15daad5813	5
Name: utilRightSurf.exe MD5: 07c785ba12d6d40cb76dff15daad5813 Size: 100.28 KB (100280 bytes) Detections: 5 Type: Executable File Path: %PROGRAMFILES(x86)%\RightSurf\bin Group: Malware file Last Updated: February 5, 2014
3.	updateRightSurf.exe	1a3e1e4fe13a362822c527e26c63d726	3
Name: updateRightSurf.exe MD5: 1a3e1e4fe13a362822c527e26c63d726 Size: 102.17 KB (102176 bytes) Detections: 3 Type: Executable File Path: %PROGRAMFILES(x86)%\RightSurf Group: Malware file Last Updated: February 5, 2014
4.	utilRightSurf.exe	3455b6ced920b335b9179fdb02a60618	3
Name: utilRightSurf.exe MD5: 3455b6ced920b335b9179fdb02a60618 Size: 80.16 KB (80160 bytes) Detections: 3 Type: Executable File Path: %PROGRAMFILES%\RightSurf\bin Group: Malware file Last Updated: February 11, 2014
5.	utilRightSurf.exe	b2d5ec76af5bdcf8e292609f0edba070	2
Name: utilRightSurf.exe MD5: b2d5ec76af5bdcf8e292609f0edba070 Size: 89.21 KB (89216 bytes) Detections: 2 Type: Executable File Path: %PROGRAMFILES%\RightSurf\bin Group: Malware file Last Updated: February 5, 2014
6.	updateRightSurf.exe	0ab0b67e0ec6e6316b085d80d8a78032	2
Name: updateRightSurf.exe MD5: 0ab0b67e0ec6e6316b085d80d8a78032 Size: 103.2 KB (103200 bytes) Detections: 2 Type: Executable File Path: %PROGRAMFILES%\RightSurf Group: Malware file Last Updated: February 5, 2014
7.	utilRightSurf.exe	120e4e558913b6f7264a4bd7a475fad2	2
Name: utilRightSurf.exe MD5: 120e4e558913b6f7264a4bd7a475fad2 Size: 74.23 KB (74230 bytes) Detections: 2 Type: Executable File Path: %PROGRAMFILES%\RightSurf\bin Group: Malware file Last Updated: February 11, 2014
8.	utilRightSurf.exe	2c50a353fbe1ccb9b9d9d6185fb63096	1
Name: utilRightSurf.exe MD5: 2c50a353fbe1ccb9b9d9d6185fb63096 Size: 97.05 KB (97056 bytes) Detections: 1 Type: Executable File Path: %PROGRAMFILES%\RightSurf\bin Group: Malware file Last Updated: February 5, 2014
9.	updateRightSurf.exe	d9c22a9774afc752d04c5a7fcaf2460a	1
Name: updateRightSurf.exe MD5: d9c22a9774afc752d04c5a7fcaf2460a Size: 102.17 KB (102176 bytes) Detections: 1 Type: Executable File Path: %PROGRAMFILES%\RightSurf Group: Malware file Last Updated: February 5, 2014
10.	RightSurfbho.dll	a21837181ae19d18aba97cd81bdf3d8f	1
Name: RightSurfbho.dll MD5: a21837181ae19d18aba97cd81bdf3d8f Size: 249.63 KB (249632 bytes) Detections: 1 Type: Dynamic link library Path: %PROGRAMFILES%\RightSurf Group: Malware file Last Updated: February 5, 2014
11.	utilRightSurf.exe	c9ef89bb46da0459660fa2978cc765b0	1
Name: utilRightSurf.exe MD5: c9ef89bb46da0459660fa2978cc765b0 Size: 43.34 KB (43342 bytes) Detections: 1 Type: Executable File Path: %PROGRAMFILES%\RightSurf\bin Group: Malware file Last Updated: February 5, 2014
12.	RightSurfuninstall.exe	af8f3986ec529b59e5a1bb73d56a8a7f	1
Name: RightSurfuninstall.exe MD5: af8f3986ec529b59e5a1bb73d56a8a7f Size: 241.28 KB (241288 bytes) Detections: 1 Type: Executable File Path: %PROGRAMFILES%\RightSurf Group: Malware file Last Updated: February 11, 2014
13.	utilRightSurf.exe	40c8a3ddbe48f737f80f941add4d27e3	1
Name: utilRightSurf.exe MD5: 40c8a3ddbe48f737f80f941add4d27e3 Size: 24.68 KB (24680 bytes) Detections: 1 Type: Executable File Path: %PROGRAMFILES(x86)%\RightSurf\bin Group: Malware file Last Updated: February 11, 2014

Registry Details

RightSurf may create the following registry entry or registry entries:

CLSID

{88be1aa9-6740-461c-9e3e-f35eb8fa741c}

{A4F32137-598E-41B6-B601-9965084C8F08}

{C64BA349-1F34-4BFC-8D23-A317279D0CB9}

HKEY..\..\..\..{RegistryKeys}

Software\Microsoft\Internet Explorer\Approved Extensions\{88BE1AA9-6740-461C-9E3E-F35EB8FA741C}

SOFTWARE\Microsoft\Tracing\RightSurf_RASAPI32

SOFTWARE\Microsoft\Tracing\RightSurf_RASMANCS

SOFTWARE\Microsoft\Tracing\updateRightSurf_RASAPI32

SOFTWARE\Microsoft\Tracing\updateRightSurf_RASMANCS

SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{88be1aa9-6740-461c-9e3e-f35eb8fa741c}

Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{88BE1AA9-6740-461C-9E3E-F35EB8FA741C}

Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{88BE1AA9-6740-461C-9E3E-F35EB8FA741C}

Software\RightSurf

SOFTWARE\Wow6432Node\Microsoft\Tracing\RightSurf_RASAPI32

SOFTWARE\Wow6432Node\Microsoft\Tracing\RightSurf_RASMANCS

SOFTWARE\Wow6432Node\Microsoft\Tracing\updateRightSurf_RASAPI32

SOFTWARE\Wow6432Node\Microsoft\Tracing\updateRightSurf_RASMANCS

SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{88be1aa9-6740-461c-9e3e-f35eb8fa741c}

SOFTWARE\Wow6432Node\RightSurf

SYSTEM\ControlSet001\services\eventlog\Application\Update RightSurf

SYSTEM\ControlSet001\services\Update RightSurf

SYSTEM\ControlSet001\Services\Util RightSurf

SYSTEM\ControlSet002\Services\Util RightSurf

SYSTEM\CurrentControlSet\services\eventlog\Application\Update RightSurf

SYSTEM\CurrentControlSet\services\Update RightSurf

SYSTEM\CurrentControlSet\Services\Util RightSurf

HKEY_LOCAL_MACHINE\Software\[APPLICATION]\Microsoft\Windows\CurrentVersion\Uninstall..{Uninstaller}

RightSurf

Directories

RightSurf may create the following directory or directories:

%PROGRAMFILES%\RightSurf

%PROGRAMFILES(x86)%\RightSurf

Enigma Software Group Prevails Over Malwarebytes at the Ninth Circuit

Search

Change Region

RightSurf

Threat Scorecard

EnigmaSoft Threat Scorecard

Aliases

SpyHunter Detects & Remove RightSurf

File System Details

Registry Details

Directories

Submit Comment

Trending

Rzfu Ransomware

'YouPorn' Email Scam

Rzkd Ransomware

Most Viewed

Is Lookmovie.io Safe?

How To Fix 'Printer Driver is Unavailable' Error

Discord Shows Black Screen when Sharing Screen