home

www.candy.twgogo.org

WEIREN HSIAO

Domain Information

Currently this domain has been known to host various forms of malware. The hosted servers are located in Taipei, T'Ai-Wan within Taiwan which resides on the Asia Pacific Network Information Centre network.
Registrar:
GoDaddy.com, LLC (R91-LROR)

Server location:
T'Ai-Wan, Taiwan (TW)

ASN:
AS3462 HINET Data Communication Business Group,TW

Root domain:
twgogo.org

Whois:
1 twgogo.org record

Scanner detections:
Malware distribution  (100% detected)

Scan engine
Details
Detections

McAfee
Artemis!50F88FDF41EC
100.00%

Trend Micro House Call
TROJ_GEN.R0C1H05E414
100.00%

avast!
Win32:Malware-gen
100.00%

Rising Antivirus
BAT:Trojan.DL.VBS.Agent.c!82622
100.00%

G Data
Win32.Trojan.Agent.91LGGB
100.00%

IKARUS anti.virus
Trojan-Downloader.VBS.Small.L
100.00%

The domain www.candy.twgogo.org has been seen to resolve to the following IP address.

1.34.117.73
1-34-117-73.HINET-IP.hinet.net
June 21, 2014

File downloads found at URLs served by www.candy.twgogo.org.

6 / 68      (Malware)
http://www.candy.twgogo.org/.../MineCandy.exe  (50f88fdf41ecb34772e1e90553e04f32)

URL:
http://www.candy.twgogo.org/

Title:
“糖果の入口網站”

Web server:
Microsoft-IIS/8.5 (ASP.NET)

Facebook:
Shares:  2

Statistics are for the previous month.

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.