» www.simplydirectsoft.com
Overview
Analysis
IPs Addresses (2)
Downloads (25)
Network (94)
Website Detail
Related Domains (7)

www.simplydirectsoft.com

Yossi Marouani

Domain Information

The domain www.simplydirectsoft.com registered by Yossi Marouani was initially registered in October of 2013 through WILD WEST DOMAINS, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Petah Tikva, Hamerkaz within Israel which resides on the RIPE Network Coordination Centre network.

Registrant:

Yossi Marouani

Registrar:

WILD WEST DOMAINS, LLC

Server location:

Hamerkaz, Israel (IL)

Create date:

Thursday, October 10, 2013

Expires date:

Monday, October 10, 2016

Updated date:

Sunday, October 11, 2015

ASN:

AS8551 BEZEQ-INTERNATIONAL-AS Bezeqint Internet Backbone

Root domain:

simplydirectsoft.com

Whois:

3 simplydirectsoft.com records

Scanner detections:

Detections (100% detected)

Scan engine

Details

Detections

Reason Heuristics

PUP.Installer.SimplyTech.L, PUP.Installer.OneFloorApp.H, PUP.Installer.OneFloorApp.L, PUP.Widdit.SimplyTech.Bundler (M), PUP.Widdit.OneFloorApp.Bundler (M), PUP.Widdit.OneFloor.Bundler (M), PUP.Widdit.SimplyTe.Bundler (M), PUP.Widdit (M)

100.00%

Avira AntiVirus

ADWARE/Adware.Gen, APPL/Downloader.Gen4

76.00%

Malwarebytes

PUP.Optional.SimplyTech, PUP.Optional.SimplyTech.A, PUP.Optional.SimplyInstaller.A

68.00%

Dr.Web

Adware.Downware.2109, Adware.Downware.835, Adware.Downware.3113

68.00%

Qihoo 360 Security

Malware.QVM06.Gen

68.00%

IKARUS anti.virus

BehavesLike, PUA.Toolbar.Widdit, AdWare.Downware

64.00%

G Data

Win32.Application.SimplyTech, Win32.Application.Firstfloor

60.00%

Sophos

SimplyInstaller, Generic PUA FL, PUA 'SimplyInstaller'

56.00%

ESET NOD32

Win32/Toolbar.Widdit.A potentially unwanted application

52.00%

Clam AntiVirus

Win.Adware.Agent-6810, Win.Adware.Agent-7758

48.00%

Kaspersky

not-a-virus:WebToolbar.Win32.FirstFloor

36.00%

NANO AntiVirus

Trojan.Win32.WebToolbar.dejknp, Riskware.Win32.WebToolbar.dejknp

36.00%

McAfee

Program.PUP-FNE, Artemis!A555B070D6AA

28.00%

K7 AntiVirus

Unwanted-Program , Adware

28.00%

VIPRE Antivirus

Threat.4150696, Trojan.Win32.Generic

24.00%

The domain www.simplydirectsoft.com has been seen to resolve to the following 2 IP addresses.

82.80.196.113

September 3, 2014

212.179.38.67

bzq-179-38-67.static.bezeqint.net

May 1, 2014

File downloads found at URLs served by www.simplydirectsoft.com.

1 / 68 (PUP)

http://www.simplydirectsoft.com/.../downloadmanagerhtml.ashx?appId=281115&source=MatomyDD_1FA&programid=103241&clickid=20u9Un4FxACfHIu81oQbIH1wzaCv000.&pubid=49647&c=1&sc=1&db=true&uus=84-52-42-5C-CD-6D-8A-B2-D4-0D-53-08-8C-B5-E5-58 (pdf_creator.exe)

1 / 68 (Adware)

http://www.simplydirectsoft.com/.../downloadmanagerhtml.ashx?src=matomy_ddl&programid=94941&clickid=20ppK93z3urR2PoM0gkvPN1wFUy7000.&pubid=46543&ce_cid=20ppK93z3urR2PoM0gkvPN1wFUy7000.&c=1&sc=1&db=true&dfp=0&uus=2B-7E-8A-8C-1A-EF-E1-40-ED-72-65-37-45-EE-3F-42&appid=206789 (hometab.exe)

1 / 68 (Adware)

http://www.simplydirectsoft.com/.../downloadmanagerhtml.ashx?src=matomy_ddl&programid=94941&clickid=20ppK93z3urR2PoM0gkvPN1wFUCI000.&pubid=46543&ce_cid=20ppK93z3urR2PoM0gkvPN1wFUCI000.&c=1&sc=1&db=true&dfp=0&uus=DB-BD-7A-33-B2-1B-15-50-20-5B-96-A6-68-E8-CC-78&appid=206789 (hometab.exe)

1 / 68 (Adware)

http://www.simplydirectsoft.com/.../downloadmanagerhtml.ashx?src=matomy_ddl&programid=94941&clickid=20ppK93z3urR2PoM0gkvPN1wFUE6000.&pubid=46543&ce_cid=20ppK93z3urR2PoM0gkvPN1wFUE6000.&c=1&sc=1&db=true&dfp=0&uus=BC-E6-5E-08-8C-3F-8D-E1-29-D5-05-AF-E8-D0-C6-ED&appid=206789 (hometab.exe)

1 / 68 (PUP)

http://www.simplydirectsoft.com/.../downloadmanager.ashx?src=matomy_ddl&programid=94941&clickid=20ppK90PmyjyCJFT1xESWH1w47YU000.&pubid=46543&ce_cid=20ppK90PmyjyCJFT1xESWH1w47YU000.&c=1&sc=1&db=true&dfp=0&appid=206789 (hometab.exe)

1 / 68 (Adware)

http://www.simplydirectsoft.com/.../downloadmanagerhtml.ashx?src=matomy_ddl&programid=94941&clickid=20ppK93z3urR2PoM0gkvPN1wFUxd000.&pubid=46543&ce_cid=20ppK93z3urR2PoM0gkvPN1wFUxd000.&c=1&sc=1&db=true&dfp=0&uus=34-D3-52-69-A0-5C-EF-61-19-C8-3E-E8-D3-C1-13-C3&appid=206789 (hometab.exe)

1 / 68 (Adware)

http://www.simplydirectsoft.com/.../downloadmanagerhtml.ashx?src=matomy_ddl&programid=94941&clickid=20uCI147AOcGWW9k0M9eM11wNkMn000.&pubid=266981&ce_cid=20uCI147AOcGWW9k0M9eM11wNkMn000.&c=1&sc=1&db=true&dfp=0&uus=12-EF-E9-7D-BE-87-81-71-DA-24-55-40-5E-4A-BF-FF&appid=206789 (hometab.exe)

1 / 68 (Adware)

http://www.simplydirectsoft.com/.../downloadmanagerhtml.ashx?src=matomy_ddl&programid=94941&clickid=20uCI123aBrjdziW29ItD51wEkkx000.&pubid=266981&ce_cid=20uCI123aBrjdziW29ItD51wEkkx000.&c=1&sc=1&db=true&dfp=0&uus=B4-3E-6A-15-77-73-EF-43-74-E5-4C-EC-8C-E3-58-1E&appid=206789 (hometab.exe)

20 / 68 (Adware)

http://www.simplydirectsoft.com/.../downloadmanagerhtml.ashx?appId=281115&source=MatomyDD_1FA&programid=103241&clickid=20ycxz2zG5Jv3aE20GlVWi1xDMqZ000.&pubid=437161&c=1&sc=1&db=true&uus=D5-09-CB-6B-1C-F4-51-5B-C5-41-EC-5F-FB-CE-C3-31?EsetProtoscanCtx=71050b0 (pdf_creator.exe)

16 / 68 (PUP)

http://www.simplydirectsoft.com/.../downloadmanagerhtml.ashx?src=matomy_ddl&programid=94941&clickid=20uCI113NVBlOfQM29U.E21wt635000.&pubid=266981&ce_cid=20uCI113NVBlOfQM29U.E21wt635000.&c=1&sc=1&db=true&dfp=0&uus=35-3C-A5-73-78-8E-0D-FC-BD-9F-99-5F-C9-FA-02-C8&appid=206789 (hometab.exe)

15 / 68 (PUP)

http://www.simplydirectsoft.com/.../downloadmanagerhtml.ashx?appId=281115&source=MatomyDD_1FA&programid=103241&clickid=20u9Un3njpaPgp3Z3bPPa81wy7un000.&pubid=49647&c=1&sc=1&db=true&uus=B8-73-56-FB-EA-B7-77-95-ED-7A-6A-82-B5-C4-DF-14 (pdf_creator.exe)

12 / 68 (Adware)

http://www.simplydirectsoft.com/.../downloadmanagerhtml.ashx?src=matomy_ddl&programid=94941&clickid=20uCI12aAvEIqW7n29Kwkg1xM2MU000.&pubid=266981&ce_cid=20uCI12aAvEIqW7n29Kwkg1xM2MU000.&c=1&sc=1&db=true&dfp=0&uus=A6-BD-80-45-B6-BE-1B-B9-4A-AC-C0-F5-67-06-08-A7&appid=206789 (hometab.exe)

13 / 68 (PUP)

http://www.simplydirectsoft.com/.../downloadmanagerhtml.ashx?appId=281115&source=MatomyDD_1FA&programid=103241&clickid=20u9Un42XJRA1IEF1jtADz1wwBXS000.&pubid=49647&c=1&sc=1&db=true&uus=EC-EA-E0-64-84-36-E2-D5-E4-38-53-C1-8D-F8-DF-D2 (pdf_creator.exe)

19 / 68 (Adware)

http://www.simplydirectsoft.com/.../downloadmanagerhtml.ashx?src=matomy_ddl&programid=94941&clickid=20qVJT58TT.8Jzox2AHoG21x35QB000.&pubid=518041&ce_cid=20qVJT58TT.8Jzox2AHoG21x35QB000.&c=1&sc=1&db=true&dfp=0&uus=50-AD-7F-E5-06-A0-A8-5F-FE-C4-69-44-3B-A2-D2-8A&appid=206789?EsetProtoscanCtx=11e7f8 (hometab.exe)

14 / 68 (Adware)

http://www.simplydirectsoft.com/.../downloadmanagerhtml.ashx?appId=281115&source=MatomyDD_1FA&programid=103241&clickid=20ycxz0LsLqN4Z3p1FCBCS1xwvnV000.&pubid=437161&c=1&sc=1&db=true&uus=61-86-40-85-45-4B-9E-39-35-48-30-54-9C-86-83-27 (pdf_creator.exe)

10 / 68 (PUP)

http://www.simplydirectsoft.com/.../downloadmanagerhtml.ashx?appId=281115&source=MatomyDD_1FA&programid=103241&clickid=20u9Un2jN28TK6Dk1Y7jGS1wxqri000.&pubid=49647&c=1&sc=1&db=true&uus=01-9F-2D-69-32-19-06-39-2B-26-BF-2E-77-B7-D0-1D (pdf_creator.exe)

10 / 68 (PUP)

http://www.simplydirectsoft.com/.../downloadmanagerhtml.ashx?appId=281115&source=MatomyDD_1FA&programid=103241&clickid=20u9Un1qYajOfukJ0VlSh41wza3v000.&pubid=49647&c=1&sc=1&db=true&uus=B8-70-5A-80-EE-26-B1-D8-E6-1C-1B-F6-B5-49-7A-A8 (pdf_creator.exe)

18 / 68 (Adware)

http://www.simplydirectsoft.com/.../downloadmanagerhtml.ashx?src=matomy_ddl&programid=94941&clickid=20rjM314HuVLFH3q1kxxRR1xivgJ000.&pubid=26751&ce_cid=20rjM314HuVLFH3q1kxxRR1xivgJ000.&c=1&sc=1&db=true&dfp=0&uus=2C-CA-20-B6-52-45-25-98-82-8C-82-1B-63-6B-86-2E&appid=206789 (hometab.exe)

18 / 68 (Adware)

http://www.simplydirectsoft.com/.../downloadmanagerhtml.ashx?src=matomy_ddl&programid=94941&clickid=20rjM345xMAKdArl1kxxRR1xivdP000.&pubid=26751&ce_cid=20rjM345xMAKdArl1kxxRR1xivdP000.&c=1&sc=1&db=true&dfp=0&uus=DA-87-3A-89-BC-B2-90-DF-21-2C-63-2B-C5-97-31-E8&appid=206789 (hometab.exe)

11 / 68 (PUP)

http://www.simplydirectsoft.com/.../downloadmanagerhtml.ashx?appId=281115&source=MatomyDD_1FA&programid=103241&clickid=20u9Un2R43KNvXrd3n5dX31wyF1e000.&pubid=49647&c=1&sc=1&db=true&uus=BA-DE-6D-E7-44-21-F1-D1-F1-5D-FA-30-69-6D-CF-FF (pdf_creator.exe)

10 / 68 (PUP)

http://www.simplydirectsoft.com/.../downloadmanagerhtml.ashx?appId=281115&source=MatomyDD_1FA&programid=103241&clickid=20u9Un2XFsnz9qOP1pJGlB1wwOrY000.&pubid=49647&c=1&sc=1&db=true&uus=71-E8-A6-A8-7F-2E-2A-2A-24-7D-43-05-4C-72-DF-47 (pdf_creator.exe)

10 / 68 (PUP)

http://www.simplydirectsoft.com/.../downloadmanagerhtml.ashx?appId=281115&source=MatomyDD_1FA&programid=103241&clickid=20u9Un35mYopBxuY1Ojwn21wsVZV000.&pubid=49647&c=1&sc=1&db=true&uus=27-10-1F-5E-8F-9F-6B-73-99-75-A5-24-E6-19-F0-74 (pdf_creator.exe)

10 / 68 (PUP)

http://www.simplydirectsoft.com/.../downloadmanagerhtml.ashx?appId=281115&source=MatomyDD_1FA&programid=103241&clickid=20u9Un1vqJR7gNNa0VvHwX1wwYzX000.&pubid=49647&c=1&sc=1&db=true&uus=71-8D-1B-83-5D-02-B7-CE-DC-85-56-46-D3-C6-AE-AD (pdf_creator.exe)

10 / 68 (PUP)

http://www.simplydirectsoft.com/.../downloadmanagerhtml.ashx?appId=281115&source=MatomyDD_1FA&programid=103241&clickid=20u9Un2SreoIPcRE39mbNh1wz91h000.&pubid=49647&c=1&sc=1&db=true&uus=95-12-2B-68-4F-54-AF-00-C5-72-0E-14-7A-2F-A3-E1 (pdf_creator.exe)

10 / 68 (PUP)

http://www.simplydirectsoft.com/.../downloadmanagerhtml.ashx?appId=281115&source=MatomyDD_1FA&programid=103241&clickid=20u9Un5fCv6vmeQl39mbNh1wz91h000.&pubid=49647&c=1&sc=1&db=true&uus=55-1D-84-6B-35-D2-A1-0E-C6-49-B6-A2-61-04-B7-DC (pdf_creator.exe)

The following 94 files have been seen to comunicate with www.simplydirectsoft.com in live environments.

TCP » 82.80.196.113:80

hometab.crx

TCP » 82.80.196.113:80

downtangofttoolbar.crx

TCP » 82.80.196.113:80

hometab.crx

TCP » 82.80.196.113:80

netscouttoolbar.crx

TCP » 82.80.196.113:80

protectedtoolbar.crx

TCP » 82.80.196.113:80

certifiedtoolbar.crx

TCP » 82.80.196.113:80

downtango4stoolbar.crx

TCP » 82.80.196.113:80

certifiedtoolbar.crx

TCP » 82.80.196.113:80

hometab.crx

TCP » 82.80.196.113:80

hometab.crx

TCP » 82.80.196.113:80

certifiedtoolbar.crx

TCP » 82.80.196.113:80

hometab.crx

TCP » 82.80.196.113:80

zappaddon.crx

TCP » 82.80.196.113:80

hometab.crx

TCP » 82.80.196.113:80

hometab.crx

TCP » 82.80.196.113:80

kurulum.crx

TCP » 82.80.196.113:80

hometab.crx

TCP » 82.80.196.113:80

ddowntango6btoolbar.crx

TCP » 82.80.196.113:80

hometab.crx

TCP » 82.80.196.113:80

hometab.crx

Latest 20 of 94 files

URL:

http://www.simplydirectsoft.com/

Title:

“One Floor App - Boutique Apps”

Web server:

Microsoft-IIS/7.5 (ASP.NET) (Version: 4.0.30319)

Related Domains

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.