66.29.141.149 Threat Intelligence and Host Information

Dec 13, 2023 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 66.29.141.149 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 33/100

Host and Network Information

Tags: agenttesla, agentteslaexe, arkeistealer, azorult, azorultexe, danabot, darkrat, dridex, dridexopendir, emotetheodo, formbook, gandcrab, gozi, hancitor, hawkeye, heodo, icedid, kpot, kpotstealer, loader, loki, luminositylink, nanocore, nemty, netwire, phorpiex, pony, qakbot, qealler, quasarrat, raccoonstealer, remcos, remcosrat, servhelper, stealer, systembc, trickbot, troldesh, zloader
JARM: 3fd3fd15d3fd3fd00042d42d000000038eaaf490bec8dc33757f165ce01762
View other sources: Spamhaus VirusTotal

Country: United States
Network: AS22612 namecheap inc.
Noticed: 1 times
Protcols Attacked: SSH
Passive DNS Results: rtphb88a.xyz rtphb88a.top rtphb88a.site rtphb88a.online rtphb88a.fun rtphb88a.click andizgroup.com rtpindo123.store rtpdeltaslot88.store join123rtp.site newslot88rtp.site cambomovies.online gameguy.club texaaps.com camboviews.com savvx.com handsty.com portsnic.com rockbulder.com askchihuahua.com indo123rtp.site deltaslot88rtp.site juaraslot88rtp.site pastigacorr.xyz assiamessaoudi.icu rtpberry777.com newslot88rtp.homes bitcloudmine.com prediksimwr4d.com deltaslot88rtp.xyz akuntop88.xyz lolpad.finance g-ignatiou.autos allcodehub.com deltaslot88rtp.homes lenderlocator.cc raja97b.com evie-is.art 1rtpraja97.xyz 1rtpraja97.top files.gift tasheellawfirm.com celebritygyms.com selfemploymenttraining.com pecah303.tools xn–72cf0c9a3c9f2bd.xyz xn–42c7crc3hucyc.xyz pasukankilat.com highpointprox.com ilovehomemart.com restrictedvideo.com ratecomparehq.com nullphpscript.com shutyomouth.store sportsshoesinc.com gift-anyone.com educavet.online willowlaserclinic.com linkagen166.cfd scrabblejamclassic.com londonbluebus.cfd scbetbola.com akuselalu88.xyz ikutaku88.xyz amli.bio acabenefits.live gamesdroids.com babysittercolumbusga.com covenantrealtydr.com protradesai.com buatlamanweb.online www.shroomtech.com shroomtech.com sekawanbet.site baratbetgacor.store diva4dpro.live agen166gacor.lat addee.xyz plsca.xyz diva4dslot.xyz poldi.xyz anggurberkah.site www.breezetrvl.com breezetrvl.com sekawanbetgacor.xyz lgllfter.com physiciansnotes.com agendatucita.lat tucitamxsre.lat byebugs.tech techneadiauniversity.com pafikota.org evie.ink dashdriversstopcheck.info tgssteelgroup.com wfhnote.com rottgear.com polabaratbet.com rtphaba88.fun azyl.us web-wrap.com thepinkvistatours.com zonour.com wpdevportofolio.online daraejung.com inboxtesters.com autocolorrepair.repair autorepairfalcon.com esportsepic.com caricommarket.net prediksimwr.com baratbet88.store polabaratbet2.pro plumbercolumbusga.com dermelect.store tglon77.xyz glass-pipes-water-bongs.com yc-hometown.org thequestingcat.com slavkapaulikova.com craftymonks.com ssp.talkchart.net www.ssp.talkchart.net sifuwaigua.com travisbsd.org www.dolibarr.gladit.works dolibarr.gladit.works saadetaksoy.com reqviagra.com www.reqviagra.com snayan84-host4.website quickbookscustomerservice.com zooconcept.in www.zooconcept.in onvoyp.cloud fort-c.com deals51.com food.lewindev.com www.food.lewindev.com www.carlosjaen.com carlosjaen.com livedrawsdy.store apksquared.xyz wardrobesensation.com auttosolutions.com www.sonseniormedicare.com sonseniormedicare.com www.wears.earlyagekids.com wears.earlyagekids.com alphatech.solar alinnmedia.com www.alinnmedia.com www.lawfirm.ka.lelmillion.xyz lawfirm.ka.lelmillion.xyz www.rtpmawar4d.com rtpmawar4d.com steelmanracking.com starnetspaceframingsystem.com starnetframingsystem.com starnetframing.com steelmaninternationalracking.com steelmanrackingsystem.com soonthinks.com alphaphoner.com agen166.site www.rtpdolly4d.com rtpdolly4d.com agen166.store rtpandara138.online agen166.club agen166.online agen166.bio cofoye.com rtpagen166.com www.motorxplore.com www.livescoragen166.com livescoragen166.com apkbuddies.xyz apkdistrict.xyz togelbet168.live calefonespremium.com myarchivesonline.com kibrispolice.online www.kibrispolice.online patenbos.xyz senggolbos.bio www.patenbos.bio patenbos.bio gabungbro.monster www.gabungbro.monster drarifulhaque.com www.drarifulhaque.com www.chintaprabhakar.com www.skorsekawanbet.com skorsekawanbet.com talkchart.net gabungbos.xyz www.gabungbos.xyz www.serbubos.xyz serbubos.xyz www.premanbos.xyz premanbos.xyz vistatoto.biz www.cableguytv.uk cableguytv.uk theessaygeek.com jaminbayar.online www.jaminbayar.online jaminbayar.site www.jaminbayar.site lefthandedguitars.net www.lefthandedguitars.net diva4d.beauty gacorbos.pro www.gacorbos.pro estbg.com e-storelab.com diva4d.shop www.diva4d.shop greattechmotion.com www.greattechmotion.com www.bestusefulsoftware.com lisabain.net diva4d.club www.diva4d.club baratbet.live www.baratbet.live www.bcbpma.com bcbpma.com hantecchain.rolxtonline.com bestusefulsoftware.com apps.akwadouche.com www.apps.akwadouche.com vistatoto.bio www.jaminbayar.com jaminbayar.net www.jaminbayar.net jaminbayar.com jaminbayar.info www.jaminbayar.info perfectknockoutonlinegadgetsplus.com perfectknockoutdiscountedelectronics.com buyperfectknockoutkidstoystoretoday.com getperfectknockoutgadgetsuperstore.com redcircleperfectelectronicsonline.com redcircleextremegadgetsonline.com www.diva4d.site diva4d.site solocollabs.com ricerafoods.com residencedutemple.com right2freedom.com bridecosmetic.ma www.bridecosmetic.ma agnicoinvestment.org karyagacor.store wesupportyoursuccess.com pearlscorporation.com pearlsjournal.com periodcorporation.com rtpmeranti88.com www.blejexpress24.com blejexpress24.com www.mesokodim.com mesokodim.com validiusfx-trade.rolxtonline.com www.validiusfx-trade.rolxtonline.com wallpaperkeren.online sabuntheolive.site houserouter.store www.houserouter.store bellanapolibrockley.co.uk www.bellanapolibrockley.co.uk www.calculatordoc.com calculatordoc.com juragandiane.store ecustomercare.site www.register.gampangmenang.store register.gampangmenang.store hartamhustlen.net strings-netzwerk.com leocravings.com www.page.jaysinmotion.com page.jaysinmotion.com zeus500x.store www.zeus500x.store www.glamourising.com glamourising.com www.jayalathtransport.com swaaed.com www.fallprotectionkit.com fallprotectionkit.com www.justburgers.co.uk www.book.gabarnews.xyz book.gabarnews.xyz www.bandartogel77.band dataorgz.com thedirtyblondesalon.com ka.lelmillion.xyz www.ka.lelmillion.xyz alternatiftb168.com www.it.broadwaypropertysolution.com it.broadwaypropertysolution.com www.mail.tasnovaconcreteblock.ltd unimelpj.com www.unimelpj.com vodjournal.com www.vodjournal.com topfoodprocessors.com toptoasters.com www.brielisedesigns.com brielisedesigns.com topmicrowaveovens.com www.topmicrowaveovens.com www.godestiny.info godestiny.info originalhost.store www.originalhost.store lewinmuz.com onlineimageresizer.com www.onlineimageresizer.com www.akwadouche.com akwadouche.com paman303jp.xyz welcometothejoke.com bitfundsfinance.rolxtonline.com www.bitfundsfinance.rolxtonline.com testevent.essaybros.com www.testevent.essaybros.com www.erp.tasnovaconcreteblock.ltd erp.tasnovaconcreteblock.ltd akseslink.xyz www.akseslink.xyz www.americaindependentcharts.com www.sport.gabarnews.xyz sport.gabarnews.xyz papyreed.com www.papyreed.com www.studyabroadplan.com studyabroadplan.com www.arysmikro.id arysmikro.id www.seniintcoworking.com seniintcoworking.com www.smsapp.in smsapp.in www.frmd.in frmd.in moulichakrabarti.com www.moulichakrabarti.com vineet.de www.fxskyviewnet.rolxtonline.com fxskyviewnet.rolxtonline.com www.lolajacobsassignments.com lolajacobsassignments.com gbsunionplc.online highflyersinstitute.com paman303.xyz archfordmining.icu seotoolskeywords.com wardrobesensation.online reviewtoday.xyz bitsfundfinancial.rolxtonline.com www.bitsfundfinancial.rolxtonline.com www.reviewshare.xyz reviewshare.xyz rtpserdadu88.com www.rtpserdadu88.com hqertc.com starnetscaffolding.com www.starnetscaffolding.com www.steelmandesigns.com steelmandesigns.com steelmanshelving.com www.steelmanshelving.com bandartogel77.band www.snapvideosave.com gbsunionmain.online icustomercare.website www.icustomercare.website www.acustomercare.com acustomercare.com steelmanglobal.com www.steelmanglobal.com snapvideosave.com bravusscooters.com acustomercare.site www.acustomercare.site www.proxxcolotinpoo.tk proxxcolotinpoo.tk protacoooly.ml www.protacoooly.ml www.tsismisan.com tsismisan.com steelmanintl.com www.steelmanintl.com jean-iovino.com www.jean-iovino.com www.mygbsunion.online mygbsunion.online www.ciionbase-pro.com ciionbase-pro.com invoice.perfitcom.ma www.invoice.perfitcom.ma www.seniintmedia.com seniintmedia.com www.diva4dtogel.xyz diva4dtogel.xyz www.baratbet.xyz baratbet.xyz www.yabezinternational.com yabezinternational.com alamosfinancialgoldmine.rolxtonline.com www.alamosfinancialgoldmine.rolxtonline.com lewindev.com kitaabi.store www.mysite.place mysite.place industriasmetalicascq.com www.industriasmetalicascq.com pisgom.com www.pisgom.com vicles.com www.pakbestsmm.com pakbestsmm.com www.prixsmm.com prixsmm.com ezasmm.store www.ezasmm.store www.uploca.com uploca.com wariorreview.com www.passiontocareservices.co.uk passiontocareservices.co.uk marketerside.com canterburybusinesscenter.org www.canterburybusinesscenter.org beatifiedtrading.rolxtonline.com www.beatifiedtrading.rolxtonline.com www.robertascialla.com robertascialla.com carmineservices.co.uk www.carmineservices.co.uk www.glencoremutualwealth.rolxtonline.com glencoremutualwealth.rolxtonline.com bohikor.com www.bohikor.com stonexxpress.rolxtonline.com www.stonexxpress.rolxtonline.com jaysinmotion.com www.jaysinmotion.com training.solocollabs.com www.training.solocollabs.com washopilot.site aminind.com www.sangsangtk.com sangsangtk.com zimbabwehealthcare.org manmoi84.com mangon23.com manlyty.com matmy69.com kitchentoolsfinder.com www.kitchentoolsfinder.com test.visitnbuy.com www.test.visitnbuy.com www.uniqueyorkies.shop mangcaha.com www.mangcaha.com www.mualanrung.com mualanrung.com miennam84.com www.miennam84.com www.monkaka.com monkaka.com menlyly.com www.menlyly.com bdinbd.host www.bdinbd.host www.phamha8386.com phamha8386.com vaccinations.zimbabwehealthcare.org www.vaccinations.zimbabwehealthcare.org www.zipzip.store zipzip.store myrslot.net www.myrslot.net myrslot.com www.myrslot.com uniqueyorkies.shop www.glencoreinvestmentcompany.rolxtonline.com glencoreinvestmentcompany.rolxtonline.com www.app.perfitcom.ma app.perfitcom.ma cheapkeys.xyz datuknagasaon.com www.datuknagasaon.com downloadiso.xyz woolwichunion.com syarihk.us

Malware Detected on Host

Count: 2 2ccba299c6fbd229ffef98836949856ab0ed9e06f564916907d1906fe887d527 f6ef3e58813125018e32f84cc5d176716308c74e73472d0afef3e8d9ecd34060

Open Ports Detected

2082 2083 2096 21 443 80

CVEs Detected

CVE-2022-31628 CVE-2022-31629 CVE-2022-37454

Map

Whois Information

NetRange: 66.29.128.0 - 66.29.159.255
CIDR: 66.29.128.0/19
NetName: NAMEC-4
NetHandle: NET-66-29-128-0-1
Parent: NET66 (NET-66-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Namecheap, Inc. (NAMEC-4)
RegDate: 2021-03-05
Updated: 2021-03-05
Ref: https://rdap.arin.net/registry/ip/66.29.128.0
OrgName: Namecheap, Inc.
OrgId: NAMEC-4
Address: 11400 W. Olympic Blvd. Suite 200
City: Los Angeles
StateProv: CA
PostalCode: 90064
Country: US
RegDate: 2011-01-28
Updated: 2017-01-28
Ref: https://rdap.arin.net/registry/entity/NAMEC-4
OrgAbuseHandle: ABUSE2885-ARIN
OrgAbuseName: Abuse team
OrgAbusePhone: +1-323-375-2822
OrgAbuseEmail: abuse@namecheaphosting.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2885-ARIN
OrgTechHandle: TECHT4-ARIN
OrgTechName: Tech team
OrgTechPhone: +1-323-375-2822
OrgTechEmail: tech@namecheaphosting.com
OrgTechRef: https://rdap.arin.net/registry/entity/TECHT4-ARIN
OrgTechHandle: EFIME-ARIN
OrgTechName: Efimenko, Igor
OrgTechPhone: +1-323-375-2822
OrgTechEmail: igor.e@namecheap.com
OrgTechRef: https://rdap.arin.net/registry/entity/EFIME-ARIN
network:Class-Name:network
network:Auth-Area:66.29.141.0/24
network:ID:NET-194727.66.29.141.149
network:IP-Network:66.29.141.149
network:IP-Network-Block:66.29.141.149
network:Org-Name:Web-hosting.com
network:Street-Address:3402 East University Drive
network:City:Phoenix
network:State:AZ
network:Postal-Code:85034
network:Country-Code:US
network:Tech-Contact:MAINT-194727.66.29.141.149
network:Created:20210721092314000
network:Updated:20210721094325000
network:Updated-By:net-admin@namecheap.com
contact:POC-Name:Network team
contact:POC-Email:net-admin@namecheap.com
contact:POC-Phone:
contact:Tech-Name:Network team
contact:Tech-Email:net-admin@namecheap.com
contact:Tech-Phone:
contact:Abuse-Name:Abuse team
contact:Abuse-Email:abuse@namecheaphosting.com

Links to attack logs

****** ****** ******

Share on: