Adware.BetterSurf Description

BetterSurf is adware that modifies Web pages as they’re loaded to display additional advertising content. Since BetterSurf’s advertisements don’t provide any tangible benefit, malware researchers would recommend deleting BetterSurf to better the safety and performance of whatever Web browser is being affected at the time. Most casual PC users have experienced difficulties in deleting BetterSurf, which attempts to ignore normal software uninstallation methods, and using anti-malware tools for BetterSurf’s removal is likely to save you significant time and trouble.

When ‘Better’ Means More Advertisements

BetterSurf is a browser add-on that has been confirmed to affect Chrome, Internet Explorer and Firefox (although not necessarily at the same time) by displaying additional advertisements. These advertisements are loaded into Web pages that are modified for their display, which may cause performance issues, security problems (related to exposure to unwanted third party advertisements) and, in some cases, problems with accessing the interface or content of the original site. BetterSurf may refuse to uninstall itself or disable its advertisements on request, making BetterSurf a non-consensual program that could be considered a threat, although most types of adware more usually are classified as PUPs.

BetterSurf’s stubbornness in the face of prospective deletion isn’t the only thing BetterSurf has in common with unsafe software; BetterSurf also has been seen being distributed through compromised software updates.

» Learn more about SpyHunter's Spyware Detection Tool
and steps to uninstall SpyHunter.

Recent modified updates for the Firefox browser have been seeded with BetterSurf and distributed through third party advertisement networks. As malware experts always would recommend, taking the simple route of avoiding update links that aren’t from the original company will provide the most obvious protection against this means of installing BetterSurf, which save you the trouble of needing to figure out how to be rid of BetterSurf.

The Best Way to Surf the Web: without BetterSurf

Even though BetterSurf includes more than enough negative traits, all by itself, malware researchers also have been unhappy to confirm that BetterSurf sometimes is related to the presence of high-level PC threats. Tesch.B is one of the recent PC threats to be seen included in the latest BetterSurf-related attacks, which are compatible with modern versions of Windows. Other operating systems are awaiting confirmation, but, nonetheless, are just as vulnerable to attacks by similar adware programs, even if they are lucky enough to be unaffected by BetterSurf.

One minor point in the victim’s favor is that BetterSurf’s advertising modifications are persistent and easy to detect, with clear labeling that will let you notice BetterSurf’s presence immediately. Once you do see these symptoms, the use of anti-malware products to restore your browser and get rid of BetterSurf simply is a common sense reaction that all PC users should have whenever their online security is at stake.


Trojan.Generic [Qihoo-360]Adware.Win32.BHO.80 [Baidu-International]Riskware/BetterSurf [Fortinet]AdWare.Win32.BetterSurf [Ikarus]Adware.Win32.Bettersurf.b [Tencent]Adware/Win32.BetterSurf [AhnLab-V3]Trojan.Win32.S.BHO.86016.F[h] [ViRobot]Adware.AD8C0BCD [Arcabit]GrayWare[AdWare:not-a-virus]/Win32.BetterSurf [Antiy-AVL]BetterSurf [Sophos]

More aliases (46)

Adware.BetterSurf Automatic Detection Tool (Recommended)

Is your PC infected with Adware.BetterSurf? To safely & quickly detect Adware.BetterSurf we highly recommend you run the malware scanner listed below.

Technical Details

File System Modifications

Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.
  • The following files were created in the system:
    # File Name Detection Count
    1 %PROGRAMFILES%\ BetterSurf\ ie\ BetterSurf.dll 4,804
    2 %LOCALAPPDATA%\Google\Chrome\User Data\Default\Extensions\mmifolfpllfdhilecpdpmemhelmanajl 294
    3 %UserProfile%\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\mmifolfpllfdhilecpdpmemhelmanajl 290
    4 %UserProfile%\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\dedmngkbaffkenlfdcbganndoghblmap 265
    5 %LocalAppData%\Google\Chrome\User Data\Default\Extensions\dedmngkbaffkenlfdcbganndoghblmap 262
    6 %ProgramFiles%\BetterSurf 259
    7 %ProgramFiles(x86)%\BetterSurf 256
    8 %ProgramFiles%\Better-Surf 103
    9 %ProgramFiles(x86)%\Better-Surf 100
    10 %TEMP%\ Better-Surf.exe 26

    More files

Registry Modifications

Tutorial: To edit and delete registry entries manually, read the tutorial on how to remove malicious registry entries.

Tip & Warning: Editing and removing the wrong registry keys can severely damage your PC, so remember to backup your Windows Registry! To optimize your Windows Registry and speed up your PC, download RegHunter's registry cleaner.
  • The following newly produced Registry Values are:
    HKEY..\..\..\..{RegistryKeys}SOFTWARE\Better Surf PlusSoftware\Microsoft\Internet Explorer\Approved Extensions, value: {6E3C6B04-08FE-43BC-8E50-F90285024DEA}Software\Microsoft\Internet Explorer\Approved Extensions, value: {1824FF90-C98E-48A6-838F-E3B6572B0C77}SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{1824FF90-C98E-48A6-838F-E3B6572B0C77}SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{6E3C6B04-08FE-43BC-8E50-F90285024DEA}Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1824FF90-C98E-48A6-838F-E3B6572B0C77}SOFTWARE\Mozilla\Firefox\Extensions, value: xz123@ya456.comSOFTWARE\Mozilla\Firefox\Extensions, value: ext@bettersurfplus.comSOFTWARE\Wow6432Node\Better Surf PlusSOFTWARE\Wow6432Node\BetterSurfSOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{1824FF90-C98E-48A6-838F-E3B6572B0C77}SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{6E3C6B04-08FE-43BC-8E50-F90285024DEA}SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Better Surf PlusSOFTWARE\Wow6432Node\Mozilla\Firefox\Extensions, value: xz123@ya456.comSOFTWARE\Wow6432Node\Mozilla\Firefox\Extensions, value: ext@bettersurfplus.comHKEY_LOCAL_MACHINE\Software\[APPLICATION]\Microsoft\Windows\CurrentVersion\Uninstall..{Uninstaller}Better Surf Plus
  • The following CLSID's were detected:
    HKEY..\..\{CLSID Path} {1824FF90-C98E-48A6-838F-E3B6572B0C77}{DD3A66B9-8A7C-4C3C-8D60-DB225A60D69C}{881E49A1-8325-4B19-AE6F-B889A40D073A}{462862BE-9A5C-49A5-9CBD-A649EAC63645}{0113A098-06EA-4776-A011-D75590778F1E}{6E3C6B04-08FE-43BC-8E50-F90285024DEA}

Additional Information

  • The following cookies were detected:
Posted: November 18, 2013 | By
Rate this article:
1 Star2 Stars3 Stars4 Stars5 Stars (No Ratings Yet)
Loading ... Loading ...
Threat Metric
Threat Level: 2/10
Detection Count: 72,296
Home Malware ProgramsAdware Adware.BetterSurf

Leave a Reply

What is 5 + 9 ?
Please leave these two fields as-is:
IMPORTANT! To be able to proceed, you need to solve the following simple math (so we know that you are a human) :-)