Yontoo LLC
Publisher Information
Yontoo LLC is a brand of the Sambreel/Yontoo group, a web advertising company located in Carlsbad, CA. The company is a primary distributor of unwanted software. Yontoo is a publisher and distributor of adware type applications and a subsidiary of Sambreel LLC run by Arie Trouw. Most software is supported by various types of advertising, including but not limited to search, banner, inline text and transitional ads. In addition, most browser extensions will modify certain browser and search engine settings thta might lower the security of a user's PC. (http://www.yontoo.com/TermsOfService.aspx) Thre are 3 additional code signing certificates issued to this publisher.
Valid from:
12/6/2011 7:00:00 PM
Valid to:
12/6/2012 6:59:59 PM
Subject:
CN=Yontoo LLC, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Yontoo LLC, L=Carlsbad, S=California, C=US
Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US
Serial number:
4f8617352536f013088c9b5533aa4440
Scanner detections:
Detections (100% detected)
Scan engine
Details
Detections
Reason Heuristics
PUP.Installer.Yontoo.N, PUP.BHO.Yontoo.O, PUP.Yontoo.O, PUP.Installer.Yontoo.S, PUP.Installer.Yontoo.K, Threat.Yontoo.Installer, PUP.Yontoo (M), PUP.Yontoo.Installer (M)
100.00%
Comodo Security
UnclassifiedMalware, Application.Win32.Yontoo.a, Heur.Suspicious
68.42%
Dr.Web
Adware.Siggen.24249, Adware.Plugin.11
68.42%
VIPRE Antivirus
Yontoo
68.42%
NANO AntiVirus
Trojan.Win32.Siggen.bkcmvz, Trojan.Win32.Siggen.cocwct, Trojan.Html.Plugin.bopldg, Trojan.Win32.Siggen.bjpwsz
65.79%
IKARUS anti.virus
AdWare.Yontoo, not-a-virus:AdWare.Win32.WebCake, AdWare.WebCake, Win32.SuspectCrc
63.16%
Agnitum Outpost
Adware.Yontoo, Adware.WebCake
60.53%
Baidu Antivirus
AdWare.Win32.Yontoo, Adware.Win32.WebCake, Adware.Win32.Yontoo, Trojan.Win32.Adware
60.53%
Rising Antivirus
Trojan.InstallRex!562A, Trojan.Win32.Generic.137177DE, PE:Trojan.Win32.Generic.13C7F85B!331872347
57.89%
Trend Micro House Call
TROJ_FAKEAV.BMC, TROJ_GEN.R0CBH05LS13, TROJ_GEN.R0CBC0OAK14, TROJ_GEN.RC1H1DM, TROJ_GEN.RFFH1LA, TROJ_GEN.R0C1C0OAL14, TROJ_GEN.RCBH1JV, TROJ_GEN.RCBH1KJ
57.89%
Downloads URLs for files signed by Yontoo LLC.
Domains
Top-level domains owned by Yontoo LLC.
Distribution
The following websites host and distribute files published by Yontoo LLC.
The certificates below are also signed by Yontoo LLC.
The following publishers (by Authenticode signature organization name) are related.
* Note, the details and description above are based on the code signing digital signature issued to Yontoo LLC by VeriSign, Inc. on December 06, 2011 with the serial number '4f8617352536f013088c9b5533aa4440'.