Web Cake

Publisher Information

Web Cake is a brand of the Sambreel/Yontoo group, a web advertising company located in Carlsbad, CA. The company is a primary distributor of unwanted software. WebCake (sterkly LLC/Yontoo/Sambreel) primarily builds and distributes web browser plugins including toolbars which are bundled through numerous partners on a pay-per-install basis. The adware plugins will display ads as well as inject adverts, deals and search. www.getwebcake.com is the publisher URL.
Remove Web Cake Malware - Powered by Reason Core Security
Authority:
VeriSign, Inc.

Valid from:
4/8/2013 8:00:00 PM

Valid to:
4/9/2015 7:59:59 PM

Subject:
CN=Web Cake, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Web Cake, L=Carlsbad, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
06b9035ee5a556582d9427cc2c8dd0bc

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.WebCake.H, PUP.WebCake.J, PUP.WebCake.L, PUP.WebCake.P, PUP.WebCake.K, PUP.WebCake.Q, PUP.WebCake.M, PUP.Yontoo, Threat.Yontoo.WebCake, PUP.Yontoo.WebCake (M), PUP.Yontoo.WebCake.Installer (M)
100.00%

VIPRE Antivirus
Yontoo, Threat.4741131
90.00%

avast!
Win32:Webcake-A [Adw]
88.00%

AVG
AdInject.WebCake, Adware AdInject.WebCake, Win.Threat.Medium
88.00%

Emsisoft Anti-Malware
Adware.WebCake, Gen:Variant.Adware.Symmi.37915
86.00%

MicroWorld eScan
Adware.WebCake.C, Adware.WebCake.A
84.00%

nProtect
Adware.WebCake.C, Adware.WebCake.A
84.00%

Bitdefender
Adware.WebCake.C, Adware.WebCake.A
84.00%

G Data
Adware.WebCake
84.00%

Panda Antivirus
Trj/OCJ.D, Generic Malware, Suspicious file, Adware/WebCake, Trj/CI.A
80.00%

1 / 68      (Adware)
programmonitor.dat.96288.gzquar (Desktop.ProgramMonitor)  (a3912af66951199eb78bb8ff35698f16)

1 / 68      (Adware)

30 / 68    (Adware)
Desktop.OS.dll (Desktop OS by Tepfel)  (b827b6614aa50fb979701a721de0cf53)

30 / 68    (Adware)
Desktop.OS.dll (Desktop OS by Tepfel)  (120bfbd4c33d6b63f270ce329dacab4a)

28 / 68    (Adware)
maintain.dat (Desktop.Maintain by Microsoft)  (c5bbefe1899627bda85f59a42cdb500a)

28 / 68    (Adware)
maintain.dat (Desktop.Maintain by Microsoft)  (2f50e004b65c4da261bc0e278fce5317)

30 / 68    (Adware)
Desktop.OS.dll (Desktop OS by Tepfel)  (30c91ecfd739361977e4489b2d4ef13d)

17 / 68    (Adware)
dibs.dat (Desktop.DIBS by Microsoft)  (f32fb1822fddf39761a936af0cd976c4)

30 / 68    (Adware)
phoenix.dat (Desktop.Phoenix by Microsoft)  (8204eb127d4adc457fdb73edb736fc21)

28 / 68    (Adware)
maintain.dat (Desktop.Maintain by Microsoft)  (86aa26ef40aef741a9b3d5fb959febca)

6 / 68      (Adware)
tmp00000001d34a21d3c32250ec (Desktop)  (e9c90ed4111a3251e0a7c3b4e6bab49e)

1 / 68      (Adware)
dibs.dat  (7116c2b2302d4770e5851176c0091e8c)

33 / 68    (Adware)
webcakesetup.exe (WebCake by WebCake)  (16341b19ceb79c06eafb85740ea94f09)

32 / 68    (Adware)
dora.dat (Desktop.Dora by Microsoft)  (7090b832b0769b97a44af53aae26c1f4)

1 / 68      (Adware)
webcakesetup.exe (WebCake by WebCake)  (48f7e402df6defa5659d219473337775)

1 / 68      (Adware)
Desktop.OS.dll (Desktop)  (18c71c2160f6d3cbad306097ef2e3577)

29 / 68    (Adware)
WebCakeIEClient.dll (WebCake Runtime by WebCake)  (e867aeb1040b79cc824069bd8140df23)

32 / 68    (Adware)
dora.dat (Desktop.Dora by Microsoft)  (868c63a380493cec1f99fd5a3fbfbb66)

30 / 68    (Adware)
Desktop.OS.dll (Desktop OS by Tepfel)  (cf8b2103f3190a1bf4c0ed6551973fb2)

20 / 68    (Adware)
WebCakeDesktop.exe (WebCake Desktop by WebCake)  (be70d6d77417ee5fbb135fde47ca2c11)

17 / 68    (Adware)
dibs.dat (Desktop.DIBS by Microsoft)  (0d168fa3ccefb783ac700b174265339e)

30 / 68    (Adware)
paladin.dat (Desktop.Paladin by Microsoft)  (25668636dc270ebebf4da56569b744ae)

28 / 68    (Adware)
maintain.dat (Desktop.Maintain by Microsoft)  (fcddac20a780cadcf413655fa211561c)

28 / 68    (Adware)
paladin.dat (Desktop.Paladin by Microsoft)  (4f0ede6fba4c21787a21edd74512b909)

28 / 68    (Adware)
maintain.dat (Desktop.Maintain by Microsoft)  (eb4a23b03a83cc77cf8678958b80adf2)

30 / 68    (Adware)
Desktop.OS.dll (Desktop OS by Tepfel)  (de99d2442c469a08c237c5cd8db873a6)

28 / 68    (Adware)
paladin.dat (Desktop.Paladin by Microsoft)  (fdff91722300c06fc5f1849516ff7a1f)

30 / 68    (Adware)
Desktop.OS.dll (Desktop OS by Tepfel)  (aaaa6c9a234a7e526a1c021d521198c5)

19 / 68    (Adware)
dibs.dat (Desktop.DIBS by Microsoft)  (fcbf4114114d3341c978c0cb33500429)

19 / 68    (Adware)
dibs.dat (Desktop.DIBS by Microsoft)  (cf75f16611cf116eae933dfdcbf317d6)

 
Latest 30 of 178 files

Downloads URLs for files signed by Web Cake.

33 / 68    (Adware)
http://dl-cdn.getwebcake.com/install/.../WebCakesetup.exe  (16341b19ceb79c06eafb85740ea94f09)

Top-level domains owned by Web Cake.

The following publishers (by Authenticode signature organization name) are related.

30 of 62 publishers

Remove Web Cake Malware - Powered by Reason Core Security
* Note, the details and description above are based on the code signing digital signature issued to Web Cake by VeriSign, Inc. on April 08, 2013 with the serial number '06b9035ee5a556582d9427cc2c8dd0bc'.