Web Deals Interactive LLC

Publisher Information

Web Deals Interactive LLC is a software developer located in Carlsbad, California in the United States*. The company is a primary distributor of unwanted software. Web Deals Interactive (a brand of Injekt, LLC) is an adware distributor of ad-supported bundled software. The company is/patners with various other adware publishers under the same team including Parallel Lines Development, Western Web Applications, Big Water, Mesa Roha Solutions, and Creative Island Media. The primary application that publisher distributes is web browser extesnsions that are bundled by 3rd-part download managers. There is one additional code signing certificate issued to this publisher.
Authority:
GoDaddy.com, Inc.

Valid from:
5/9/2011 2:40:57 PM

Valid to:
5/9/2012 2:40:57 PM

Subject:
CN=Web Deals Interactive LLC, O=Web Deals Interactive LLC, L=Carlsbad, S=CA, C=US

Issuer:
SERIALNUMBER=07969287, CN=Go Daddy Secure Certification Authority, OU=http://certificates.godaddy.com/repository, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US

Serial number:
07f91262cbd7e0

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.WebDealsInteractive.CC, PUP.Installer.WebDealsInteractive.F, PUP.Installer.WebDealsInteractive.j, PUP.Installer.WebDealsInteractive.c, PUP.Injekt.WebDealsInteractive.Installer (M), PUP.Injekt.WebDeals.Installer (M), PUP.Injekt (M)
100.00%

VIPRE Antivirus
Yontoo
50.00%

ESET NOD32
Win32/Adware.Yontoo, Win32/Adware.Yontoo (variant), Win32/Adware.HJPUXQ (variant)
40.63%

Comodo Security
UnclassifiedMalware, Heur.Suspicious
37.50%

Dr.Web
Adware.Plugin.8, Adware.Siggen.24249, Adware.Downware.104, Adware.Plugin.11
34.38%

Avira AntiVirus
ADWARE/Yontoo.Gen, Adware/Yontoo.N, Adware/Yontoo.C.1, Adware/GGNHGCI.A.1, Adware/CVHKKRX.A, Adware/KASRHMA.A.1
31.25%

IKARUS anti.virus
AdWare.Win32.AdWare, AdWare.Yontoo
25.00%

Agnitum Outpost
Adware.Yontoo
18.75%

Trend Micro House Call
TROJ_GEN.R47H1I5, TROJ_GEN.R47H1HA, TROJ_GEN.USG21HC, TROJ_GEN.R4FH1B5
15.63%

Fortinet FortiGate
Riskware/Yontoo, Riskware/ISEAQYF, Riskware/BQQWZYF, Riskware/IVVEDWN
15.63%

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)
dropdowndealssetup.exe (Yontoo Layers Runtime by Yontoo)  (1cceb2e64d83a524ef382e0aaa30793c)

1 / 68      (Adware)

1 / 68      (Adware)
ddddsetup.exe (DropDownDeals by Web Deals Interactive)  (4877a42198900f4eb1c2de11c6af475f)

9 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

8 / 68      (Adware)
ddddsetup.exe (Drop Down Deals by Web Deals Interactive)  (290fe2213c87334befa0eb722375ebdc)

5 / 68      (Adware)
dropdowndealssetup.exe (Yontoo Layers Runtime by Yontoo)  (7a91410a9fd6effc0e333127c73a5125)

9 / 68      (Adware)

15 / 68    (Adware)

9 / 68      (Adware)
dropdowndealssetup.exe (Yontoo Layers Runtime by Yontoo)  (f3201317f75ce235e81de283fc0fb294)

7 / 68      (Adware)

11 / 68    (Adware)

2 / 68      (Adware)

13 / 68    (Adware)

3 / 68      (Adware)

11 / 68    (Adware)

10 / 68    (Adware)

8 / 68      (Adware)

 
Latest 30 of 32 files

Downloads URLs for files signed by Web Deals Interactive LLC.

5 / 68      (Adware)
http://download.dropdowndeals.com/DropDownDealsSetup.exe  (7a91410a9fd6effc0e333127c73a5125)

The following certificate is also signed by Web Deals Interactive LLC.

2B7631E3D31FB1  (May 15, 2012 to May 15, 2013)

The following publishers (by Authenticode signature organization name) are related.

* Note, the details and description above are based on the code signing digital signature issued to Web Deals Interactive LLC by GoDaddy.com, Inc. on May 09, 2011 with the serial number '07f91262cbd7e0'.