Web Deals Interactive LLC

Publisher Information

Web Deals Interactive LLC is a software developer located in Carlsbad, California in the United States*. The company is a primary distributor of unwanted software. Web Deals Interactive (a brand of Injekt, LLC) is an adware distributor of ad-supported bundled software. The company is/patners with various other adware publishers under the same team including Parallel Lines Development, Western Web Applications, Big Water, Mesa Roha Solutions, and Creative Island Media. The primary application that publisher distributes is web browser extesnsions that are bundled by 3rd-part download managers. There is one additional code signing certificate issued to this publisher.
Remove Web Deals Interactive LLC Malware - Powered by Reason Core Security
Authority:
GoDaddy.com, Inc.

Valid from:
5/9/2011 2:40:57 PM

Valid to:
5/9/2012 2:40:57 PM

Subject:
CN=Web Deals Interactive LLC, O=Web Deals Interactive LLC, L=Carlsbad, S=CA, C=US

Issuer:
SERIALNUMBER=07969287, CN=Go Daddy Secure Certification Authority, OU=http://certificates.godaddy.com/repository, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US

Serial number:
07f91262cbd7e0

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.WebDealsInteractive.CC, PUP.Installer.WebDealsInteractive.F, PUP.Installer.WebDealsInteractive.j, PUP.Installer.WebDealsInteractive.c, PUP.Injekt.WebDealsInteractive.Installer (M)
100.00%

VIPRE Antivirus
Yontoo
84.21%

ESET NOD32
Win32/Adware.Yontoo, Win32/Adware.Yontoo (variant), Win32/Adware.HJPUXQ (variant)
68.42%

Comodo Security
UnclassifiedMalware, Heur.Suspicious
63.16%

Dr.Web
Adware.Plugin.8, Adware.Siggen.24249, Adware.Downware.104, Adware.Plugin.11
57.89%

Avira AntiVirus
ADWARE/Yontoo.Gen, Adware/Yontoo.N, Adware/Yontoo.C.1, Adware/GGNHGCI.A.1, Adware/CVHKKRX.A, Adware/KASRHMA.A.1
52.63%

IKARUS anti.virus
AdWare.Win32.AdWare, AdWare.Yontoo
42.11%

Agnitum Outpost
Adware.Yontoo
31.58%

Trend Micro House Call
TROJ_GEN.R47H1I5, TROJ_GEN.R47H1HA, TROJ_GEN.USG21HC, TROJ_GEN.R4FH1B5
26.32%

Fortinet FortiGate
Riskware/Yontoo, Riskware/ISEAQYF, Riskware/BQQWZYF, Riskware/IVVEDWN
26.32%

9 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

8 / 68      (Adware)
ddddsetup.exe (Drop Down Deals by Web Deals Interactive)  (290fe2213c87334befa0eb722375ebdc)

5 / 68      (Adware)
dropdowndealssetup.exe (Yontoo Layers Runtime by Yontoo)  (7a91410a9fd6effc0e333127c73a5125)

9 / 68      (Adware)

15 / 68    (Adware)

9 / 68      (Adware)
dropdowndealssetup.exe (Yontoo Layers Runtime by Yontoo)  (f3201317f75ce235e81de283fc0fb294)

7 / 68      (Adware)

11 / 68    (Adware)

2 / 68      (Adware)

13 / 68    (Adware)

3 / 68      (Adware)

11 / 68    (Adware)

10 / 68    (Adware)

8 / 68      (Adware)

10 / 68    (Adware)

10 / 68    (Adware)

The following certificate is also signed by Web Deals Interactive LLC.

2B7631E3D31FB1  (May 15, 2012 to May 15, 2013)

The following publishers (by Authenticode signature organization name) are related.

Remove Web Deals Interactive LLC Malware - Powered by Reason Core Security
* Note, the details and description above are based on the code signing digital signature issued to Web Deals Interactive LLC by GoDaddy.com, Inc. on May 09, 2011 with the serial number '07f91262cbd7e0'.