66.29.132.103 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 66.29.132.103 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 35/100

Host and Network Information

• Tags: agenttesla, agentteslaexe, arkeistealer, azorult, azorultexe, danabot, darkrat, dridex, dridexopendir, emotetheodo, formbook, gandcrab, gozi, hancitor, hawkeye, heodo, icedid, kpot, kpotstealer, loader, loki, luminositylink, nanocore, nemty, netwire, phorpiex, pony, qakbot, qealler, quasarrat, raccoonstealer, remcos, remcosrat, servhelper, stealer, systembc, trickbot, troldesh, zloader

• JARM: 3fd3fd15d3fd3fd00042d42d000000038eaaf490bec8dc33757f165ce01762

• View other sources: Spamhaus VirusTotal

• Country: United States
• Network: AS22612 namecheap inc.
• Noticed: 1 times
• Protcols Attacked: SSH
• Passive DNS Results: gamewin258.click gamewin256.click theventexgh.com daloblogs.biz asryblogs.com aseblogs.com areiblogs.com aroblogs.com lokblogs.com likblogs.com oplrblogs.com opmiblogs.com evrblogs.com etyblogs.com elmblogs.com epoblogs.com ebnblogs.com nixblogs.com naeblogs.com nsqblogs.com nveblogs.com faupblogs.com fatiblogs.com faublogs.com seoonelive.com seoonegroup.com gamewin200.click dailygrindstumps.com iconbuildersusa.com rtpslotmedia.xyz zeytuajans.com monartpslot.site masuklinkamp.site linkampms.site loginampmona.site rtpslotmedia.biz linkbarumv.biz loginakunmedia.biz alfabimajans.com isupremepatios.com lisandrasierrarealty.com sedo.network sierravisiontech.com rtpslotmedia.info regularizarcnpjmeidasreceitabr.site rtpmonabet88.info seoreklam.site linkterbarukami.xyz loginklikdisini.bio rich-rh.com novely.website gamepress.wiki uyeliktotobo.click noraviral.com mindtape.xyz leshghana.com justintvcanlimac.xyz justintvyayin.xyz justintvmacyayini.xyz justintvbesiktas.xyz justintvizlepro.xyz justincanlimac.xyz justintvmacyayini.com justintvyayin.com justintvcanlimac.com justintvbesiktas.com justincanlimac.com justintvizlepro.com bajarprotidin.com uyelikgolaro.xyz carlycorcoran.com revampmastermind.com melbetlive.com elhamnematllc.us edwinllc.us desireearmendarizllc.us danielhillquistllc.us carmenwilsonllc.us carolyndewittllc.us coreycoylellc.us davidiillc.us cribkingllc.us brittanillc.us iconbuilders.website www.iconbuilders.website jkitservice.com bunnymap.xyz directsports.xyz gulftirescarolinas.com thermalprinter.site epeidi15.shop epeidi50.shop epeidi13.shop epeidi2.shop epeidi22.shop epeidi26.shop epeidi3.shop epeidi31.shop epeidi30.shop epeidi23.shop epeidi41.shop epeidi9.shop epeidi46.shop epeidi10.shop epeidi44.shop epeidi11.shop epeidi8.shop epeidi35.shop epeidi32.shop epeidi47.shop epeidi.shop epeidi25.shop epeidi1.shop epeidi19.shop epeidi7.shop epeidi49.shop epeidi43.shop epeidi4.shop epeidi17.shop epeidi21.shop epeidi37.shop epeidi5.shop epeidi27.shop epeidi20.shop epeidi45.shop epeidi16.shop epeidi48.shop epeidi36.shop epeidi14.shop epeidi12.shop epeidi29.shop epeidi39.shop epeidi40.shop epeidi33.shop epeidi38.shop epeidi18.shop epeidi28.shop epeidi42.shop epeidi24.shop epeidi6.shop epeidi34.shop mevius88a.com bharatfinancedaily.com usfinancedaily.com america365updates.com thesciencespotlight.com digitalshop99.com cristinalamz.com bunnylamz.com usdailynewzs.com wilson.ac www.wilson.ac neufirm.com www.neufirm.com www.unitedstatesbuzz.com unitedstatesbuzz.com spirit0fecstacy42.site spirit0fecstacy40.site spirit0fecstacy41.site spirit0fecstacy47.site spirit0fecstacy39.site spirit0fecstacy38.site spirit0fecstacy49.site spirit0fecstacy31.site spirit0fecstacy45.site spirit0fecstacy48.site spirit0fecstacy37.site spirit0fecstacy32.site spirit0fecstacy46.site spirit0fecstacy35.site spirit0fecstacy44.site spirit0fecstacy34.site spirit0fecstacy33.site spirit0fecstacy36.site spirit0fecstacy43.site spirit0fecstacy16.site spirit0fecstacy21.site spirit0fecstacy23.site spirit0fecstacy15.site spirit0fecstacy22.site spirit0fecstacy8.site spirit0fecstacy9.site spirit0fecstacy27.site spirit0fecstacy24.site spirit0fecstacy14.site spirit0fecstacy10.site spirit0fecstacy12.site spirit0fecstacy18.site spirit0fecstacy.site spirit0fecstacy17.site spirit0fecstacy11.site spirit0fecstacy26.site spirit0fecstacy25.site spirit0fecstacy6.site spirit0fecstacy4.site spirit0fecstacy5.site spirit0fecstacy19.site spirit0fecstacy3.site spirit0fecstacy28.site spirit0fecstacy20.site spirit0fecstacy7.site spirit0fecstacy29.site spirit0fecstacy13.site thereadyblog.com techviraltech.com viraltechslife.com sexyhotelgirl.com yourviraltech.com bestviralblog.com blogspacetech.com bestblogtechs.com blogtechtech.com galaxyblogtech.com spirit0fecstacy2.site www.spirit0fecstacy2.site spirit0fecstacy1.site www.spirit0fecstacy1.site dimaviral.com viralsearche.com handviral.com maraviral.com mapviral.com malablog.com presviral.com namviral.com foreviral.com fiftyviral.com mytekblog.com www.mytekblog.com www.famesellerscam.com uvy.diamondnotary.net www.capviral.com capviral.com domablog.com www.domablog.com famesellerscam.com www.gulftire.net gulftire.net www.primetradingsolution.com primetradingsolution.com needtire.com www.needtire.com www.buyonclicks.com buyonclicks.com newkyle012.sbs allpulsa.shop rtpbibir88.online ashtonmedtech.com samaremedios.com www.samaremedios.com teamservice-be.live www.hondatoto1.wholewomanshealthblog.com hondatoto1.wholewomanshealthblog.com monabet88.pro nyecdn.com www.classine.shop classine.shop loogarden.shop tkcompanys.com mamdanitradingllc.com torybury.com spantube.com mangacam.com polamaxwin.website daftarakunvip.site vipmonabet88.store vipmonabet88.site vipmonabet88.online hachimae.com coffeehousegh.com webmailgoldenwest.com rtpmonabet88.com www.sbpulsa.site sbpulsa.site www.tortilleriabenelux.com tortilleriabenelux.com www.tokosportsepatu.online tokosportsepatu.online liberro.xyz www.liberro.xyz tokosepatusb.store www.tokosepatusb.store www.bandartogel.ink bandartogel.ink www.bibir88slot.site bibir88slot.site vsv.diamondnotary.net 41b.diamondnotary.net yki.diamondnotary.net 8qu.diamondnotary.net 3kv.diamondnotary.net caddpcambodia.com www.slotmylife.xyz www.bittugupta.in bittugupta.in gmc.knowledgeshare.ci www.gmc.knowledgeshare.ci uaefx.xyz www.uaefx.xyz www.awtlimo.com awtlimo.com cryptomium.cc www.unitedluxurylimo.com unitedluxurylimo.com smartvision.finance www.mevius88.xyz www.sptonline.site pchus.online www.fmaxgrants.us fmaxgrants.us www.heeganhealth.com heeganhealth.com e98.diamondnotary.net kxt.diamondnotary.net ub7.diamondnotary.net 2pw.diamondnotary.net v4k.diamondnotary.net oav.diamondnotary.net vq8.diamondnotary.net isv.diamondnotary.net fbd.diamondnotary.net m6i.diamondnotary.net 51j.diamondnotary.net hok.diamondnotary.net dtj.diamondnotary.net www.unitedluxury.maftech.agency unitedluxury.maftech.agency webmail.chatgptelf.com surkhroo.com yes-pdf.com www.yes-pdf.com www.blogverse.net blogverse.net www.residencesmeublees.ci residencesmeublees.ci www.thamesshutters.co.uk thamesshutters.co.uk www.httlimoluxuryservices.com httlimoluxuryservices.com www.rilenexecutive.co.uk rilenexecutive.co.uk www.chatgptelf.com chatgptelf.com pacmototraders.com www.pacmototraders.com p21decision.com www.p21decision.com nfotechsolution.com sillyflix.com www.sillyflix.com secure-checkpoint.shop loopcoders.com awt.maftech.agency www.awt.maftech.agency movies.fnfproperty.com www.movies.fnfproperty.com www.security-step.com security-step.com www.tesla.ae.org tesla.ae.org drinfinityenterprises.com www.mrclones.vietrating.com mrclones.vietrating.com diamondluxlimo.com www.diamondluxlimo.com localtvinternetproviders.com www.localtvinternetproviders.com www.awtlimo.maftech.agency awtlimo.maftech.agency aioblogger.com goodwaytransportation.com www.chapsell.com chapsell.com momovan.com www.momovan.com www.sardasia.com sardasia.com www.genetale.com genetale.com www.secure.freedom-getaway.com secure.freedom-getaway.com www.minimusa.com minimusa.com www.diceaid.com diceaid.com cabledealsdirect.com www.kingbeng.com kingbeng.com www.cubanvr.com cubanvr.com sixcrops.com www.sixcrops.com mamandaughters.com www.mamandaughters.com comf-tpl.com celticfringe.org www.celticfringe.org www.freedom-getaway.com freedom-getaway.com rtpslotdana.net www.listing.nextlogixs.com listing.nextlogixs.com boisecabservice.com localbiznear.com www.cafconstructuniversal.com cafconstructuniversal.com www.api.nextlogixs.com api.nextlogixs.com ddnews4.com www.ddnews4.com leanagile-academy.com www.leanagile-academy.com www.london-shopfitter.co.uk london-shopfitter.co.uk trafficbutton.store www.trafficbutton.store crystalshopfitterandshutter.co.uk www.crystalshopfitterandshutter.co.uk ketohusk.com dev.loopcoders.com www.dev.loopcoders.com www.quickshutterrepair.co.uk quickshutterrepair.co.uk www.roxytoto.com roxytoto.com www.pepmalls.com pepmalls.com toto-up.com www.toto-up.com bakatube.com www.bakatube.com www.spearsac.com spearsac.com knivesnblades.com www.akwaokukotiwaraaki.com akwaokukotiwaraaki.com f-clubs.com www.fifa22.news fifa22.news www.fifa.events fifa.events irvineseomarketing.com www.irvineseomarketing.com www.publishing.supernaltechnical.com publishing.supernaltechnical.com www.bluestabs.supernaltechnical.com bluestabs.supernaltechnical.com begincrypto.supernaltechnical.com www.begincrypto.supernaltechnical.com solomario.com www.solomario.com www.nairanaira.com nairanaira.com www.yourowndir.com yourowndir.com dirgarden.com www.dirgarden.com www.chat-mega.com chat-mega.com www.onlau-oeale.xyz onlau-oeale.xyz shoesizeguru.com www.shoesizeguru.com estatespk.com www.estatespk.com hoststager.com www.hoststager.com tools.technologythrill.com www.tools.technologythrill.com apnasmile.com www.apnasmile.com soyuzbags.com www.soyuzbags.com www.pbxretiali.com pbxretiali.com www.perx1bayiortak.com perx1bayiortak.com banuwazir.com plakamanuel.com www.plakamanuel.com blue-larch.com www.effexorbuy.com effexorbuy.com www.logarkomx.com logarkomx.com www.cashadvaa.com cashadvaa.com www.dotdotrx.com dotdotrx.com www.lemo-tv.net lemo-tv.net cableninternetoffers.com www.mahshaf.com mahshaf.com blemivivkoncept.co.uk www.blemivivkoncept.co.uk bookevu.shop xoomstviptv.com situsrtpslot.net www.situsrtpslot.net

Malware Detected on Host

Count: 1 53e85f4db53e323cad84a3840d440688248e601f65c702eb5e18171104ec734e

Open Ports Detected

110 143 2082 2083 2095 26 443 53 80 995

CVEs Detected

CVE-2016-10735 CVE-2018-14040 CVE-2018-14042 CVE-2018-20676 CVE-2018-20677 CVE-2019-8331 CVE-2022-31628 CVE-2022-31629 CVE-2022-37454

Map

Whois Information

• NetRange: 66.29.128.0 - 66.29.159.255
• CIDR: 66.29.128.0/19
• NetName: NAMEC-4
• NetHandle: NET-66-29-128-0-1
• Parent: NET66 (NET-66-0-0-0-0)
• NetType: Direct Allocation
• OriginAS:
• Organization: Namecheap, Inc. (NAMEC-4)
• RegDate: 2021-03-05
• Updated: 2021-03-05
• Ref: https://rdap.arin.net/registry/ip/66.29.128.0
• OrgName: Namecheap, Inc.
• OrgId: NAMEC-4
• Address: 11400 W. Olympic Blvd. Suite 200
• City: Los Angeles
• StateProv: CA
• PostalCode: 90064
• Country: US
• RegDate: 2011-01-28
• Updated: 2017-01-28
• Ref: https://rdap.arin.net/registry/entity/NAMEC-4
• OrgAbuseHandle: ABUSE2885-ARIN
• OrgAbuseName: Abuse team
• OrgAbusePhone: +1-323-375-2822
• OrgAbuseEmail: abuse@namecheaphosting.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2885-ARIN
• OrgTechHandle: EFIME-ARIN
• OrgTechName: Efimenko, Igor
• OrgTechPhone: +1-323-375-2822
• OrgTechEmail: igor.e@namecheap.com
• OrgTechRef: https://rdap.arin.net/registry/entity/EFIME-ARIN
• OrgTechHandle: TECHT4-ARIN
• OrgTechName: Tech team
• OrgTechPhone: +1-323-375-2822
• OrgTechEmail: tech@namecheaphosting.com
• OrgTechRef: https://rdap.arin.net/registry/entity/TECHT4-ARIN
• network:Class-Name:network
• network:Auth-Area:66.29.132.0/24
• network:ID:NET-177427.66.29.132.103
• network:IP-Network:66.29.132.103
• network:IP-Network-Block:66.29.132.103
• network:Org-Name:Web-hosting.com
• network:Street-Address:3402 East University Drive
• network:City:Phoenix
• network:State:AZ
• network:Postal-Code:85034
• network:Country-Code:US
• network:Tech-Contact:MAINT-177427.66.29.132.103
• network:Created:20210420161010000
• network:Updated:20210420165323000
• network:Updated-By:net-admin@namecheap.com
• contact:POC-Name:Network team
• contact:POC-Email:net-admin@namecheap.com
• contact:POC-Phone:
• contact:Tech-Name:Network team
• contact:Tech-Email:net-admin@namecheap.com
• contact:Tech-Phone:
• contact:Abuse-Name:Abuse team
• contact:Abuse-Email:abuse@namecheaphosting.com

Links to attack logs

****** ****** ******