home

Web Cake

Publisher Information

Web Cake is a brand of the Sambreel/Yontoo group, a web advertising company located in Carlsbad, CA. The company is a primary distributor of unwanted software. WebCake (sterkly LLC/Yontoo/Sambreel) primarily builds and distributes web browser plugins including toolbars which are bundled through numerous partners on a pay-per-install basis. The adware plugins will display ads as well as inject adverts, deals and search. www.getwebcake.com is the publisher URL.
Authority:
VeriSign, Inc.

Valid from:
4/8/2013 9:00:00 PM

Valid to:
4/9/2015 8:59:59 PM

Subject:
CN=Web Cake, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Web Cake, L=Carlsbad, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
06b9035ee5a556582d9427cc2c8dd0bc

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Yontoo.WebCake (M), PUP.Yontoo (M), PUP.Yontoo.Service
100.00%

avast!
Win32:Webcake-A [Adw]
24.00%

ESET NOD32
MSIL/WebCake.A potentially unwanted application, MSIL/Adware.Yontoo.E application, MSIL/Adware.Yontoo.A application
20.00%

Microsoft Security Essentials
Threat.Undefined
16.00%

AVG
Adware AdInject.WebCake
16.00%

Emsisoft Anti-Malware
Adware.Generic.1287764, Gen:Variant.MSILPerseus.13295
8.00%

VIPRE Antivirus
Threat.4741131
6.00%

Norman
Adware.Generic.1287764
4.00%

Dr.Web
c:\users\test\appdata\local\temp\12618b2e4ab5cbe36ebae061e813433129e8d2bb c:\users\test\appdata\loca, Adware.WebCake.1
4.00%

1 / 68      (Adware)
wbdesktop.updater.1.0.0.16.exe (by cake bake)  (8347e82f747fc1b947221eb21b20037a)

1 / 68      (Adware)
tmp0000009ca9bcbed8db7d6e04 (Bake-Cake Runtime by Bake-Cake)  (5154f1ec6336c655f1dd3d398660a7e4)

1 / 68      (Adware)
wbdesktop.updater.exe (by cake bake)  (2adff9d44dc7c527e5d25cbeb7f1c609)

1 / 68      (Adware)
Desktop.Updater.exe (by cake bake)  (b25208b49a424932702ee82995322772)

1 / 68      (Adware)
setup-d502dd2b71b5.exe (WebCake by WebCake)  (fb58ca29357d25ecd447e79f61b03b67)

1 / 68      (Adware)
nsupport.dat (Desktop.Novacore by Microsoft)  (a9c43fc73d1a2ab6caf2aca2aa572f38)

1 / 68      (Adware)
nsupport.dat (Desktop.Novacore by Microsoft)  (d895aa4521bd44af2050eddfc80e113c)

1 / 68      (Adware)
dora.dat (Desktop.Dora by Microsoft)  (03ba84960901b723051baf8d773ecba0)

1 / 68      (Adware)
Desktop.Updater.exe (by cake bake)  (821e2b39b5db3d9890890dbde1c998aa)

1 / 68      (Adware)
WebCakeDesktop.exe (WebCake Desktop by WebCake)  (12336775941d49ce6a4d6f391cb5e02f)

1 / 68      (Adware)
dibs.dat (Desktop.DIBS by Microsoft)  (2b5cee5c1b541a721fb385359bf6f111)

1 / 68      (Adware)
tmp00000002ba273a98ba91a1b9 (Desktop.Phoenix by Microsoft)  (c99806e5456d0af82f656c276e42487a)

1 / 68      (Adware)
WebCakeDesktop.exe (Desktop by Bake Cake)  (2b4500b22f7f904a38b65810df14b2d5)

1 / 68      (Adware)
Desktop.OS.dll (Desktop OS by bake cake)  (528b554b0f584a0652ae2e4a9eee4cd7)

1 / 68      (Adware)
paladin.dat (Desktop.Paladin by Microsoft)  (335dd69093375e8630d247bb92a76c18)

1 / 68      (Adware)
maintain.dat (Desktop.Maintain by Microsoft)  (1cf516fc06bf8d0dd41219369cafc1b8)

1 / 68      (Adware)
Desktop.OS.dll (Desktop OS by Tepfel)  (88dafe2c79ce520686204dd0ae871068)

1 / 68      (Adware)
tmp00000002d53b36aeb251cb24 (Desktop OS by bake cake)  (83aac6cd42d32fa4115029b7ed5c896e)

1 / 68      (Adware)
Desktop.Updater.exe (by cake bake)  (90a5ee130da71d2c4a322b340dbba835)

1 / 68      (Adware)
tmp00000003773306471906b238 (Desktop.Paladin by Microsoft)  (2bdcd410ae983cdd913ae348cdff225a)

1 / 68      (Adware)
Desktop.OS.dll (Desktop)  (52e77a615eddcc31c659a80bafed5bd1)

1 / 68      (Adware)
Desktop.Updater.exe (by cake bake)  (5ca3fd560e495069f071e49e77396bbc)

1 / 68      (Adware)
tmp00000002abd328b7b6277eb5 (Web-Cake Runtime by Let Them Eat Web-Cake)  (f80ac068a18f1d8c3af5e3549ddca042)

1 / 68      (Adware)
component_634 (WebCake by WebCake)  (5fb96dcd61196c66dee9fee0b8705702)

1 / 68      (Adware)
webcakesetup.exe (WebCake by Web Cake)  (aeddb0c9c7f3991d12090521ba40ec1a)

1 / 68      (Adware)
Desktop.Phoenix.dll (Desktop.Phoenix by Microsoft)  (3f0e104797b5c05216878b8797924e65)

1 / 68      (Adware)
tmp0000000280a3ddc7e6428522 (Desktop.Paladin by Microsoft)  (586ed005022752a06ecacedde96aa617)

1 / 68      (Adware)
Desktop.OS.dll (Desktop)  (0200b742ccac04dd5d0179eb29602c66)

1 / 68      (Adware)
tmp0000000255824d241a74680b (Desktop.Phoenix by Microsoft)  (b2cf39497b0649924da724e1f47d8f47)

1 / 68      (Adware)
tmp000000015653e583d92efd7d (Web Cake Runtime by Web Cake)  (21527ca28a2aa299855fb08467cffede)

 
Latest 30 of 296 files

Top-level domains owned by Web Cake.

getwebcake.com

The following publishers (by Authenticode signature organization name) are related.

Yontoo LLC

sterkly LLC

lucky leap

SaltarSmart

secretsauce

GreyGray

diamondata

LemurLeap

BatBrowse

Browse Fox

glindorus

Browsebeyond

outobox

Whilokii

Spring Smart

Cling Clang

kasimos

Storimbo

LinkiDoo

linkswift

DiVapton

Webfuii

WebSparkle

Kozaka

SquirrelWeb

RightSurf

SerialTrunc

EnhanceTronic

lookinglink

AdvanceMark

30 of 62 publishers

* Note, the details and description above are based on the code signing digital signature issued to Web Cake by VeriSign, Inc. on April 08, 2013 with the serial number '06b9035ee5a556582d9427cc2c8dd0bc'.
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.