66.29.141.142 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 66.29.141.142 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 31/100

Host and Network Information

• Tags: agenttesla, agentteslaexe, arkeistealer, azorult, azorultexe, danabot, darkrat, dridex, dridexopendir, emotetheodo, formbook, gandcrab, gozi, hancitor, hawkeye, heodo, icedid, kpot, kpotstealer, loader, loki, luminositylink, nanocore, nemty, netwire, phishing, phorpiex, pony, qakbot, qealler, quasarrat, raccoonstealer, remcos, remcosrat, scam, servhelper, stealer, systembc, trickbot, troldesh, zloader

• JARM: 3fd3fd15d3fd3fd00042d42d000000038eaaf490bec8dc33757f165ce01762

• View other sources: Spamhaus VirusTotal

• Country: United States
• Network: AS22612 namecheap inc.
• Noticed: 1 times
• Protcols Attacked: SSH
• Passive DNS Results: oceanfrontbxb.com zamikaze.com cyberware.co.za securprobe.com gknqm.com puremarketsignal.com purehydrosphere.com rndgh.com goodfamilyguide.com bambou.eco vmonline.tech kakebe.tech mauboussin.store fourier.live gohighgolow.com gamesadded.com sernod.com eduaidscholarship.com drefchikatifoundation.org sterfrost.com oldeasts.net alrostamaniinvestmentgroups-ae.com alretaj.sa lewisclave.com exceptionalgiftwatch.com srenergle.com ehsasupdate.site iriantoto.pro g-mails.online prontonmail.online charkoltech.com wellgiantpharma.com animephobia.com sisusoft.com tempmailings.com moolahmastermind.com energyhub-my.com webagencypk.site aiartonly.com bourew.site ocmnit.site casinodiary.online selalugacor77.online casinoindia.live vtradetitan.com ainewsonly.com nawatij.sa morepositiveyou.com napaps.com playbiggywinbiggy.com jasminesweep.com yangterbaikk.xyz pastinyamann.xyz pastiamann.xyz orangkerass.xyz manusiakerass.xyz jaminbayarr.xyz orangsuperr.xyz 33muse.com bentusky.com nancykennedy777.com natesnyder777.com ashleyphillips777.com vegasgaming777.com heavenstars777.com monstersweeps777.com ardalhikma.com julioaparicio.com shopholidaygiftset.us apcphll.com setforsurvival.com alesnaan.com dealella.com idesanti.com checkmysweep.com srilankaactive.com tethekar.store sremexico.site cornhole.business apksamkok.com daftarsamkoktoto.com loginsamkoktoto.com prediksisamkoktoto.com bananzasweeps.com bonanzasweep.com bancontigopersl.website algotrade.markets riyadhcement-sa.com asdasdasdq13125321243.shop ebikealsace.com balkania.us maruffi.blog jeffchef.com opportunitytotal.com squishyunicorns.com adayurt.com global1africa.com omansankofa.com smartceutics.com rasaf1.com iqtest.expert alretaj2.com nagitabet99.com alabamatech.net laundy.xyz aseelstore.com genfeedback.com kounterintuitivetechnologies.com stylishdecortips.com aviatornew.com siamexpressmart.com likestourism.com bogsmash.com daisypixie.fun pushingmiles.com jantamarketing.store apzle.live watch4wealth.com manutcompany.com pulseblaze.com botanicjoy.com eleganceoud.shop chicdecorinteriors.com bluebird333.com harvayer.com day-brlght.com toollers.com lucky777spin.org waszebonusy.info spinbonus.info spinslots777.info spinspin.info polandspin.info naszebonusy.info slotpolska.com polskislot.com megagranie.org luckyslots777.org happysevens.com lepiejnizlotto.com www.enextech.ae enextech.ae zymp.link graphitestrading.com msmts.ae www.msmts.ae upper-egypt.net charkolbd.com lnfinity-et.com faoo.org psmglobalimpax.com drahmedhassn.com harapanerat-my.com qatelum.com poscotc.com nbainseasontournament.com cornholetapemeasure.com www.polakpotrafi.live polakpotrafi.live www.luckyfruits777.com luckyfruits777.com www.hotspin777.com hotspin777.com dymstac.com cctgraphites.com www.dr-elbadawi.com dr-elbadawi.com thienducphet.com chinamall.digital www.demo.hiran.tech demo.hiran.tech prime-billing-renewalpayment.dressfashion.live yasseraesthetic.com epiccornholeshots.com www.searchsagar.com ducgiangchem.net danex-pl.com myisavie.com unlcoh.com www.packagingcustombox.com packagingcustombox.com 1africa.praghana.com www.1africa.praghana.com iriantotogacor.com arrestmenot.com www.arrestmenot.com femiajose.com www.femiajose.com flauz.me www.orangghebat.xyz orangghebat.xyz www.oranggenak.xyz oranggenak.xyz www.oranggkaya.xyz oranggkaya.xyz www.oranggsawah.xyz www.oranggsukses.xyz oranggsawah.xyz oranggsukses.xyz oranggsuper.xyz www.oranggsuper.xyz www.kebunstrawberry.xyz oranggbaik.xyz www.oranggbaik.xyz oranggjelas.xyz www.oranggjelas.xyz gigabonus.info www.gigabonus.info www.mail.plfghana.com abduljawad.us holzarnfurniture.com mimestack.com skjqhm.com qawctf.com maicrosavings.com cn250.com www.samahateen.com samahateen.com club388.xyz club388.info www.tuinmaak-nl.com tuinmaak-nl.com ppmcmedia.com www.ppmcmedia.com ibc10.com www.tachnolux.net tachnolux.net olayenfood.com www.olayenfood.com 1kate.com www.1kate.com www.ibydeit.com ibydeit.com edc-ca.com www.edc-ca.com whataburgermenus.com kazu-t.com scs-india.in gdchemlcal.com www.gdchemlcal.com www.wdrus.com wdrus.com ebc-usa.com www.ebc-usa.com dawenet.com www.dawenet.com ensadesigns.com www.rigelresources.com rigelresources.com stamp-maker.us naijamelo.com crixvance.com stamp-maker1.com www.stamp-maker1.com www.giuert.online giuert.online landoffer365.com www.landoffer365.com horus-kw.com kenglek.com www.kenglek.com cialisyt.com www.cialisyt.com www.a-omiya.com a-omiya.com www.adzclassy.com adzclassy.com cupkeando.com www.cupkeando.com www.ifquranicinstitute.com ifquranicinstitute.com lovefrancy.com www.lovefrancy.com bank.praghana.com www.bank.praghana.com sexy-woman.themodelmust.com geoservax.com www.prantomollick.com prantomollick.com carestraem.com www.businessideastrend.com businessideastrend.com www.spfact.com spfact.com www.wysokawygrana.live www.danny.praghana.com danny.praghana.com nigeriacommex.com oranggsukses.xyz.kakekgacor88.com www.oranggsukses.xyz.kakekgacor88.com oranggsuper.xyz.kakekgacor88.com www.oranggsuper.xyz.kakekgacor88.com oranggkeras.xyz.kakekgacor88.com www.oranggkeras.xyz.kakekgacor88.com www.oranggbaik.xyz.kakekgacor88.com oranggbaik.xyz.kakekgacor88.com whitefeatherdress.com www.hme-parts.com hme-parts.com shellyleerobinson.com www.cornhole.basketball cornhole.basketball www.solarypto.com solarypto.com wdaluminium.com www.dannyagerup.com dannyagerup.com invlctamalta.com metaonedata.com www.metaonedata.com 3grasins.com www.3grasins.com gnfact.com www.myisavie.com www.stageisyours.org stageisyours.org allienzglobalservices.com adrian.starnetcomputers.us www.adrian.starnetcomputers.us www.webcodersolution.com webcodersolution.com acadian-invest.com grupopbm.com novagroupae.com cybversesecurity.com www.cybversesecurity.com darmahmoud.com www.gss-yuasa.com gss-yuasa.com indianlove.site luchin.site www.socialdaily.org socialdaily.org docotgist.store www.childum.online childum.online www.poansix.site poansix.site hoipits.click www.hoipits.click restonis.site www.restonis.site www.soudiox.online soudiox.online www.onlycation.homes onlycation.homes muradparvezbd.com lovebirdfilm.com odlifestyle.com www.casino-ranker.com casino-ranker.com powelectronic.shop www.powelectronic.shop mullaa3len.cam shanipost.com rioloan.online xn–mgbb9fya.com www.xn--mgbb9fya.com www.kwtalmulla.cam kwtalmulla.cam www.cashoffercorpus.com cashoffercorpus.com www.wysokiapremia.live wysokiapremia.live www.bpdmagz.com bpdmagz.com everest-ke.com oxses.com fexya.com app.jsimmigrations.com www.app.jsimmigrations.com lonexchange.co.in www.lonexchange.co.in wdalu.com www.wdalu.com tradervimal.com softechcoding.com couponseekr.com www.rngbd.com rngbd.com deltamatrixclub.online candleciaceylon.com www.candleciaceylon.com bazarpoint24.com www.dashboard.fbtradingmarkets.online dashboard.fbtradingmarkets.online kebundurian.xyz kebunkiwi.xyz kebunjerukk.xyz kebunstrawberry.xyz kebunsalak.xyz kebunlengkeng.xyz kebunaplokat.xyz kebunmangga.xyz www.kebunmangga.xyz www.kebuncoklat.xyz kebuncoklat.xyz kebunangur.xyz www.kebunangur.xyz greenvilleglobes.com www.greenvilleglobes.com pandaexpressmenus.com alhudatower.com old.bestaxca.com www.old.bestaxca.com app.migrateadvisor.com www.app.migrateadvisor.com flytradehub.com migrateadvisor.com kratomranker.com www.kratomranker.com imran.hiran.tech jobspakhub.com www.jobspakhub.com bluechaintraders.com www.shanipost.com u47whs.reviewll.com www.u47whs.reviewll.com digicodetech.com www.digicodetech.com www.wideripples.com wideripples.com www.goabroad.newsblits.com goabroad.newsblits.com cryptobaecafe.com telegramsgroups.com norozashrafprintingservices.com www.norozashrafprintingservices.com www.best-deal-finder.com best-deal-finder.com optaviainvest.com www.optaviainvest.com newprovmetals.cf www.newprovmetals.cf myisavie.com.cryptobaecafe.com www.myisavie.com.cryptobaecafe.com www.shutterartphotography.lk shutterartphotography.lk elitebusiness.in www.elitebusiness.in atripon.com www.couponeroo.com couponeroo.com vansamship.ga www.vansamship.ga www.seafortnavi.cf seafortnavi.cf edscovn.tk www.edscovn.tk usekwanza.com www.guidex.lk guidex.lk nfrontv.live abokimusik.com www.abokimusik.com www.technocracyeduhub.com technocracyeduhub.com spgja.com www.spgja.com bokhla.me www.bokhla.me www.courpus.nmushdfddbbsgr.shop courpus.nmushdfddbbsgr.shop cashoffer.nmushdfddbbsgr.shop www.cashoffer.nmushdfddbbsgr.shop www.houseoffer365.nmushdfddbbsgr.shop houseoffer365.nmushdfddbbsgr.shop www.nmushdfddbbsgr.shop nmushdfddbbsgr.shop www.dressfashion.live dressfashion.live galaxyfinance.info www.galaxyfinance.info www.gracenetworkgroup.info gracenetworkgroup.info protiumgroup.co www.protiumgroup.co apikridas.com www.apikridas.com trustchaintrades.com www.trustchaintrades.com www.malwki.me malwki.me lwlin.me www.lwlin.me www.energycrosshair.com noorezia.com noor-al-shams.com dodom.me www.dodom.me ruknward.com www.ruknward.com krito.me www.krito.me laceymeta.com www.laceymeta.com sconi.me www.sconi.me test.usekwanza.com www.test.usekwanza.com

Malware Detected on Host

Count: 1 cb0bbd56c3e862c9aff168293ae9882bc5e724acb9db23bb4ce62461b2c86c5c

Open Ports Detected

110 143 2082 2083 21 443 53 80 995

CVEs Detected

CVE-2022-31628 CVE-2022-31629 CVE-2022-37454

Map

Whois Information

• NetRange: 66.29.128.0 - 66.29.159.255
• CIDR: 66.29.128.0/19
• NetName: NAMEC-4
• NetHandle: NET-66-29-128-0-1
• Parent: NET66 (NET-66-0-0-0-0)
• NetType: Direct Allocation
• OriginAS:
• Organization: Namecheap, Inc. (NAMEC-4)
• RegDate: 2021-03-05
• Updated: 2021-03-05
• Ref: https://rdap.arin.net/registry/ip/66.29.128.0
• OrgName: Namecheap, Inc.
• OrgId: NAMEC-4
• Address: 11400 W. Olympic Blvd. Suite 200
• City: Los Angeles
• StateProv: CA
• PostalCode: 90064
• Country: US
• RegDate: 2011-01-28
• Updated: 2017-01-28
• Ref: https://rdap.arin.net/registry/entity/NAMEC-4
• OrgAbuseHandle: ABUSE2885-ARIN
• OrgAbuseName: Abuse team
• OrgAbusePhone: +1-323-375-2822
• OrgAbuseEmail: abuse@namecheaphosting.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2885-ARIN
• OrgTechHandle: EFIME-ARIN
• OrgTechName: Efimenko, Igor
• OrgTechPhone: +1-323-375-2822
• OrgTechEmail: igor.e@namecheap.com
• OrgTechRef: https://rdap.arin.net/registry/entity/EFIME-ARIN
• OrgTechHandle: TECHT4-ARIN
• OrgTechName: Tech team
• OrgTechPhone: +1-661-310-2107
• OrgTechEmail: tech@namecheaphosting.com
• OrgTechRef: https://rdap.arin.net/registry/entity/TECHT4-ARIN
• network:Class-Name:network
• network:Auth-Area:66.29.141.0/24
• network:ID:NET-194720.66.29.141.142
• network:IP-Network:66.29.141.142
• network:IP-Network-Block:66.29.141.142
• network:Org-Name:Web-hosting.com
• network:Street-Address:3402 East University Drive
• network:City:Phoenix
• network:State:AZ
• network:Postal-Code:85034
• network:Country-Code:US
• network:Tech-Contact:MAINT-194720.66.29.141.142
• network:Created:20210721092206000
• network:Updated:20210721094228000
• network:Updated-By:net-admin@namecheap.com
• contact:POC-Name:Network team
• contact:POC-Email:net-admin@namecheap.com
• contact:POC-Phone:
• contact:Tech-Name:Network team
• contact:Tech-Email:net-admin@namecheap.com
• contact:Tech-Phone:
• contact:Abuse-Name:Abuse team
• contact:Abuse-Email:abuse@namecheaphosting.com

Links to attack logs

****** ****** ******