YontooDesktop.exe
Yontoo Desktop by Yontoo LLC (Signed)
Warning 21 antivirus scanners has detected malware in various versions of YontooDesktop.exe.
Overview
yontoodesktop.exe has 5 known versions, the most recent one is 1.0.4884.27585. yontoodesktop.exe is run as a standard windows process with the logged in user's account privileges. By adding a startup entry to the run registry key, the file will be executed when the user logs into Windows. The average file size is about 42.68 KB. It is an authenticode code-signed executable issued to Yontoo LLC by the certification authority VeriSign. This is a .NET Common Language Runtime (CLR) assembly. During the process's lifecycle, the typical CPU resource utilization is less than 0.01%, the average private memory consumption is about 31.66 MB. Addionally, typically read and write I/O disk operations is about 2.93 KB per minute for reads and 1.1 KB per minute for writes.
What is yontoodesktop.exe?
Yontoo Runtime for Yontoo is a web browser toolbar and extension. Yontoo collects and stores information about your web browsing habits so they can suggest services or provide advertising. The plugin commonly displays ads and deals from affiliated merchants and clicking on such links some times ends up in installing other unwanted browser add-ons or even malware.
About yontoodesktop.exe (from Yontoo LLC)
“Yontoo is a browser add-on that horizontally crosses the internet rather than the standard vertical website archive. Yontoo LLC was founded by a small group of people that had worked together on previ”
Details |
File name: | yontoodesktop.exe |
Publisher: | Yontoo LLC |
Product name: | Yontoo Desktop |
Typical file path: | C:\users\user\appdata\roaming\yontoo\yontoodesktop.exe |
Certificate |
Issued to: | Yontoo LLC |
Authority (CA): | VeriSign |
Behaviors
(Note, the behaviors below are for all versions of yontoodesktop.exe, select a unique version for details.)
Startup files (user) run
Runs under the registry key 'HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run'
- 'Yontoo Desktop' → "C:\users\user\appdata\Roaming\Yontoo\YontooDesktop.exe"
Malware detections
Based on 40+ industry antivirus scanners, 21 of them detected the following malware.
All file variations of yontoodesktop.exe
Distribution by Windows OS
OS version | distribution |
Windows 7 Ultimate |
37.50% |
|
Windows 8 Pro |
20.83% |
|
Microsoft Windows XP |
16.67% |
|
Windows 8 |
8.33% |
|
Windows 7 Home Premium |
8.33% |
|
Windows 7 Professional |
8.33% |
|
Distribution by country
United Kingdom installs about 16.67% of Yontoo Desktop.
Distribution by PC manufacturer
PC Manufacturer | distribution |
Acer |
26.09% |
|
Hewlett-Packard |
17.39% |
|
Dell |
17.39% |
|
Lenovo |
17.39% |
|
Samsung |
8.70% |
|
GIGABYTE |
8.70% |
|
American Megatrends |
4.35% |
|