Home Malware Programs Adware Adware.Laflurla

Adware.Laflurla

Posted: March 14, 2014

Threat Metric

Ranking: 17,029
Threat Level: 2/10
Infected PCs: 1,801
First Seen: March 14, 2014
Last Seen: August 22, 2023
OS(es) Affected: Windows


Laflurla Screenshot 1Adware.Laflurla is adware that may be used to show a variety of random pop-up ads and banners on the computer system every time the PC user is browsing the Internet. Adware.Laflurla may install itself into the Web browsers such as Internet Explorer, Mozilla Firefox or Google Chrome and other popular Web browsers. Adware.Laflurla may aim at making the PC user click on unwanted pop-up ads, messages and banners, which means that the computer user may get diverted to questionable websites against his will and, thus, increase traffic of the website. Adware.Laflurla may also make a profit from clicks on advertisements, banners and messages. Adware.Laflurla may trace the PC user's surfing activity and transfer and use this information for the aim of delivering targeted advertisements.

Technical Details

File System Modifications

Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.

The following files were created in the system:



system32\drivers\{6b320d34-648f-46d8-8353-a4300db1c49c}t64.sys File name: {6b320d34-648f-46d8-8353-a4300db1c49c}t64.sys
Size: 60.08 KB (60088 bytes)
MD5: 5848bd94ee75680bd72340267fa61cfb
Detection count: 96
File type: System file
Mime Type: unknown/sys
Path: system32\drivers
Group: Malware file
Last Updated: July 11, 2014
system32\drivers\{6b320d34-648f-46d8-8353-a4300db1c49c}Gt64.sys File name: {6b320d34-648f-46d8-8353-a4300db1c49c}Gt64.sys
Size: 60.08 KB (60088 bytes)
MD5: b2902cd39e025892caaa1797c6d24c5c
Detection count: 95
File type: System file
Mime Type: unknown/sys
Path: system32\drivers
Group: Malware file
Last Updated: July 11, 2014
%PROGRAMFILES(x86)%\Laflurla\Laflurla.FirstRun.exe File name: Laflurla.FirstRun.exe
Size: 1.75 MB (1757472 bytes)
MD5: 9b7e440b4c69b03b2b6710104d7f9398
Detection count: 26
File type: Executable File
Mime Type: unknown/exe
Path: %PROGRAMFILES(x86)%\Laflurla
Group: Malware file
Last Updated: March 14, 2014
%PROGRAMFILES(x86)%\Laflurla\Laflurla.FirstRun.exe File name: Laflurla.FirstRun.exe
Size: 1.75 MB (1756960 bytes)
MD5: 2a5f80fe274aebcc80e9d5b2ac8e71d5
Detection count: 12
File type: Executable File
Mime Type: unknown/exe
Path: %PROGRAMFILES(x86)%\Laflurla
Group: Malware file
Last Updated: March 14, 2014
system32\drivers\{6b320d34-648f-46d8-8353-a4300db1c49c}t64.sys File name: {6b320d34-648f-46d8-8353-a4300db1c49c}t64.sys
Size: 60.08 KB (60088 bytes)
MD5: acb58364223bc981df6b83d3b7478075
Detection count: 5
File type: System file
Mime Type: unknown/sys
Path: system32\drivers
Group: Malware file
Last Updated: July 11, 2014

Registry Modifications

The following newly produced Registry Values are:

CLSID{50A6B23F-0055-41B7-AF2D-6689B24022A0}{b4a89cd3-c5f5-49c4-abcf-5f26d636476f}{F1EC172A-3FEC-4FEF-A218-13F15E1B8C8D}HKEY..\..\..\..{RegistryKeys}Software\LaflurlaSoftware\Microsoft\Internet Explorer\Approved Extensions\{B4A89CD3-C5F5-49C4-ABCF-5F26D636476F}SOFTWARE\Microsoft\Tracing\Laflurla_RASAPI32SOFTWARE\Microsoft\Tracing\Laflurla_RASMANCSSOFTWARE\Microsoft\Tracing\updateLaflurla_RASAPI32SOFTWARE\Microsoft\Tracing\updateLaflurla_RASMANCSSOFTWARE\Microsoft\Tracing\utilLaflurla_RASAPI32SOFTWARE\Microsoft\Tracing\utilLaflurla_RASMANCSSoftware\Microsoft\Windows\CurrentVersion\Ext\Settings\{B4A89CD3-C5F5-49C4-ABCF-5F26D636476F}Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B4A89CD3-C5F5-49C4-ABCF-5F26D636476F}SOFTWARE\Wow6432Node\LaflurlaSOFTWARE\Wow6432Node\Microsoft\Tracing\Laflurla_RASAPI32SOFTWARE\Wow6432Node\Microsoft\Tracing\Laflurla_RASMANCSSOFTWARE\Wow6432Node\Microsoft\Tracing\updateLaflurla_RASAPI32SOFTWARE\Wow6432Node\Microsoft\Tracing\updateLaflurla_RASMANCSSOFTWARE\Wow6432Node\Microsoft\Tracing\utilLaflurla_RASAPI32SOFTWARE\Wow6432Node\Microsoft\Tracing\utilLaflurla_RASMANCSSOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{b4a89cd3-c5f5-49c4-abcf-5f26d636476f}SYSTEM\ControlSet001\services\eventlog\Application\Update LaflurlaSYSTEM\ControlSet001\services\eventlog\Application\Util LaflurlaSYSTEM\ControlSet001\services\Update LaflurlaSYSTEM\ControlSet001\services\Util LaflurlaSYSTEM\ControlSet002\services\eventlog\Application\Update LaflurlaSYSTEM\ControlSet002\services\eventlog\Application\Util LaflurlaSYSTEM\ControlSet002\services\Update LaflurlaSYSTEM\ControlSet002\services\Util LaflurlaSYSTEM\CurrentControlSet\services\eventlog\Application\Update LaflurlaSYSTEM\CurrentControlSet\services\eventlog\Application\Util LaflurlaSYSTEM\CurrentControlSet\services\Update LaflurlaSYSTEM\CurrentControlSet\services\Util LaflurlaHKEY_LOCAL_MACHINE\Software\[APPLICATION]\Microsoft\Windows\CurrentVersion\Uninstall..{Uninstaller}Laflurla

Additional Information

The following directories were created:
%PROGRAMFILES%\Laflurla%PROGRAMFILES(x86)%\Laflurla
The following URL's were detected:
http://laflurla.com
Loading...