66.29.141.207 Threat Intelligence and Host Information

Dec 13, 2023 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 66.29.141.207 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 35/100

Host and Network Information

Tags: agenttesla, agentteslaexe, arkeistealer, azorult, azorultexe, danabot, darkrat, dridex, dridexopendir, emotetheodo, formbook, gandcrab, gozi, hancitor, hawkeye, heodo, icedid, kpot, kpotstealer, loader, loki, luminositylink, nanocore, nemty, netwire, phorpiex, pony, qakbot, qealler, quasarrat, raccoonstealer, remcos, remcosrat, servhelper, stealer, systembc, trickbot, troldesh, zloader
JARM: 3fd3fd15d3fd3fd00042d42d000000038eaaf490bec8dc33757f165ce01762
View other sources: Spamhaus VirusTotal

Country: United States
Network: AS22612 namecheap inc.
Noticed: 1 times
Protcols Attacked: SSH
Passive DNS Results: gymzil.com bizsupportbd.com ganakokaratu-ctp.com isoloafricatanzaniasafaris.com ultimlearn.com filmibazaar.com contactcode.xyz buzzybag.info senzosoft.info mindsquard.info techinsane.info alammzaman.com ituriair.com bobahamas.com bjo99gas.com compadres.site matnuk.com angelaslibrary.online graceful-prints.com mwanzaguidesandtours.com cityspaservices.com winwinsolusi.com linkzipp.com zahmarglobalforex.com xinhuannet.org worldrankers.us pokerista.xyz guction.com bjo99a.com www.bjo99a.com akpicomelevator.com bjo99pro.com nextplanetiptv.com nextplanetjs.com technological-lab.com alnas.store alnas.site southtejasrvrentals.com thehealthconnectors.com www.thehealthconnectors.com dolphinescorts.com www.dolphinescorts.com rjabikovoleg.com fifa2023online.net www.fifa2023online.net ip-tvma.store kashalat.com knorth-roll-out.online evesjewels.shop epic-cert.net feladurotoye.net clickscredit.online e-onlinegame.com easytohome.online marketcanon.com yalaseguros.com qligence.com citidomiciliary.com tupatane.shop pinkentblog.com sohozogi.com lovsngon88risin.com golcade.com birdview360.net zionelectronics.shop rbi-hqr.com sonipatmall.shop nangme.net seowebsite.agency canbd.tech porsh.online pastimenang3.site pastimenang6.site workofartpomsandpomskies.com magickingtravel.com sebatyok.xyz khdemti.live nepawebdemo.website llcattorneys.org lasagessedelanature.com laconchamex.com redsonicsint.com altarchapel.com harnest.net in9ja.com fardarbd.net crystobiz.com littlelilybugcrafts.com destosofthub.com betrogun.com locoltrader.com opitvs.com happylindas.com soccertalkies.com amexknitting.net astoncoop.com www.astoncoop.com securitycamera.pk www.securitycamera.pk libyadreams.net avantpop.net www.avantpop.net seryaf.com indianriser.com main.alfanetworking.com www.main.alfanetworking.com lawyer.rjabikovoleg.com www.lawyer.rjabikovoleg.com expatsyellow.com www.expatsyellow.com bdfreedom.com www.bdfreedom.com www.alcuriapharma.com cityfitnessandaerobics.com grubinvest.com production-room.com mapopotu.com www.articlesoasis.com articlesoasis.com ambiolink.com happylinda.com www.akarai.club akarai.club www.repaircare.ae repaircare.ae www.tvmood.life tvmood.life kie.in9ja.com www.kie.in9ja.com midorijs.com www.midorijs.com www.theflamingsideburns.com theflamingsideburns.com www.juggernart.com juggernart.com www.parrocchie.org parrocchie.org iso.e-texsolution.com www.iso.e-texsolution.com neurylex.com www.neurylex.com www.carlo-giuliani.com carlo-giuliani.com rjfaciltemanagement.com www.rjfaciltemanagement.com www.antorfreightbd.com antorfreightbd.com www.neurylux.com neurylux.com mbunu.online akatransports.com www.oldsite.iproxidigital.com oldsite.iproxidigital.com letblogs.com qudrafine.info soldedirect.com baniloo.com masjidabuhuraira.net www.masjidabuhuraira.net www.hbc.trailblazermedia.org hbc.trailblazermedia.org mywatersecret.com pandadora.site gospelden.com eascenders.com aurafitnessgym.com tga26.net www.tga26.net latestnewsvilla.com difcmarkets.com www.difcmarkets.com adnocipo.com fantasycricketx1.com arman-group.org get-50gb-airtel.subtitledrive.com www.get-50gb-airtel.subtitledrive.com amenurl.pro dashbord2023.click www.dashbord2023.click ictonlineschool.com www.ictonlineschool.com andries.ch vanleeuwenlab.com uhudenterprise.com www.leadtotrend.com leadtotrend.com yasinbdwork.com greenitechnologies.com jaytest.xyz billygroup.net www.billygroup.net www.m.subtitledrive.com m.subtitledrive.com geekgeniuspro.com free-vpn.shop sottysms.com cubicletech.net xrf.exchange www.xrf.exchange iptvslaks.store www.iptvslaks.store typosoftcore.org softcorehub.com onlinevideo.makevideo.click www.onlinevideo.makevideo.click topcrypto4u.com www.topcrypto4u.com videolinked.click technoride.net interiordesignerbareilly.com gitanet.org zyrobyte.biz statotech.com infojinn.com thearchives.nerevival.org www.thearchives.nerevival.org newvideosonline.click www.newvideosonline.click www.smart.souria.xyz smart.souria.xyz wizbizla.com revexu.com www.revexu.com newsofra.com demo.startbacklinks.com www.demo.startbacklinks.com www.gumsports.co.uk gumsports.co.uk prixfinder.com www.riadevs.com riadevs.com micewala.com rivernews.co.uk www.rivernews.co.uk www.twizag.com twizag.com maujanjavideos.click www.maujanjavideos.click newsnooze.co.uk www.newsnooze.co.uk leadlsu.com www.leadlsu.com www.lawinsurance.co.uk lawinsurance.co.uk souria.gives vinamudabas.click bongoudakukuvuja.click www.ehern.com ehern.com www.voxyzvidoze.xyz gehug.com www.gehug.com rbi-hqr.org mebd24.us makevideo.click bestvideo.click www.bananispa.nataiinfotech.com bananispa.nataiinfotech.com www.dhakaspa.nataiinfotech.com dhakaspa.nataiinfotech.com www.southafrica.uhondo.click southafrica.uhondo.click videoslinkconection.videoslinkedtown.click www.videoslinkconection.videoslinkedtown.click codexhub.info mterotechs.info bussigrew.info asrshopbd.com starvendo.com walimwengu2023.click mwakampya.click uhondo.click hierbasdelcielo.com www.hierbasdelcielo.com biolafine.com www.biolafine.com www.uzalofgdgfdtutdty.click uzalofgdgfdtutdty.click uthandozwrtdgfhrsa.click www.uthandozwrtdgfhrsa.click shahinadv.com exnessbusiness.click www.angel-fit.club angel-fit.club herfeh.agency sirmrm.live www.sirmrm.live www.tooskadoor.com tooskadoor.com videoslinkedtown.click www.videoslinkedtown.click www.umbeanamatukiovideos.click umbeanamatukiovideos.click voxyzvidoze.xyz videosenxy.xyz www.hackedketo.com hackedketo.com seobyrai.com www.seobyrai.com enxesmoney.xyz www.enxesmoney.xyz www.emposoft.info www.matbkhi.com matbkhi.com www.thetensteps.com thetensteps.com www.gifoj.com gifoj.com swiftglobalgroup.com www.swiftglobalgroup.com newsbtc4u.com www.kicksino.org www.technobop.org www.funkterfly.info www.geekygen.org costotechno.com bossladywrites.com www.bossladywrites.com cuqib.com www.cuqib.com www.cannabisinvestmentscolombia.com sendrostop.xyz petrosoft.info accounting.mediacreation.net www.accounting.mediacreation.net healthykisaan.com www.healthykisaan.com www.tradecellence.com silversteeak.info www.massage.nataiinfotech.com massage.nataiinfotech.com sajidmunirllc.com www.geekmetrix.com geekmetrix.com tranfocode.xyz castorsoftco.info www.nerevival.org nerevival.org bigmove.agency www.bigmove.agency rbs-intern.com www.rbs-intern.com www.ssftl.com ssftl.com colombo-portauthority.com www.uniformhub.pk uniformhub.pk sanfinawater.com www.3kaar.com 3kaar.com www.tractorpulling-simulator.com rsmteams.com www.rsmteams.com trendextra.com starspk.com technobop.org geekygen.org kicksino.org funkterfly.info www.trading.sheba247.com trading.sheba247.com www.travel.sheba247.com travel.sheba247.com properties.sheba247.com www.properties.sheba247.com healthcare.sheba247.com www.healthcare.sheba247.com www.grocery.sheba247.com grocery.sheba247.com www.electronics.sheba247.com electronics.sheba247.com www.jobs.sheba247.com jobs.sheba247.com sheba247.com www.sheba247.com jikkoball.com 78spin.com wwd.com.pk www.wwd.com.pk stag.ibizaformentera.club www.stag.ibizaformentera.club www.banglanewsmail.com banglanewsmail.com dzevadt.com www.dzevadt.com relaypound.info hectotechno.info rajvikgroup.com mega289.com topodrek.info histotechno.info sjawltd.co.uk www.sjawltd.co.uk amzally.com www.amzally.com www.9635bet.com 9635bet.com www.app.eviana.store app.eviana.store ecomlocal.shop gbb.freeindymg.site www.gbb.freeindymg.site rbi-hq.com jntent.freeindymg.site www.jntent.freeindymg.site www.gypsybackwoods.freeindymg.site gypsybackwoods.freeindymg.site indusinvesting.com www.indusinvesting.com naturallemonadellc.com sattakingguru.com www.sattakingguru.com www.makewaves.ch makewaves.ch www.softtub.info auctosoft.info largosoft.info chillen.lol www.chillen.lol faisalhdtv.xyz trishonna.com marv.marvolsoft.xyz www.ibizaformentera.club ibizaformentera.club mixins.trishonna.com automobile.technician.frederictonspeedskate.com www.automobile.technician.frederictonspeedskate.com www.luxury78.com luxury78.com www.tpl168.com tpl168.com www.allhd24.store allhd24.store myfluidbru.com lvs.myfluidbru.com www.lvs.myfluidbru.com eiremit.myfluidbru.com www.eiremit.myfluidbru.com kollywood.net www.kollywood.net www.perfect.hostinglibya.com perfect.hostinglibya.com pdp.freeindymg.site www.pdp.freeindymg.site www.rixhsurf.com rixhsurf.com softjumbo.info softjunky.info metrosoul.info medicalveter.com bizstimcare.com nigbulksms.com techinsane.xyz senzostuck.xyz hostingbet.xyz macrochaos.xyz hubclutch.xyz marvolsoft.xyz hqhdlive24.store freeindymg.site technosky.info techcrimson.info cloudbit.info globalwebo.info finoserve.info www.livenowhd4k.store livenowhd4k.store alc.freeindymg.site www.alc.freeindymg.site www.exploratroy.freeindymg.site exploratroy.freeindymg.site style.freeindymg.site www.style.freeindymg.site health.freeindymg.site www.health.freeindymg.site www.sportstvhd.store sportstvhd.store www.xn--yga-8na.com xn–yga-8na.com softhover.info www.softhover.info tetrasquard.info www.tetrasquard.info cyberwizard.info www.cyberwizard.info cloudsaga.xyz www.cloudsaga.xyz www.savyfox.xyz savyfox.xyz technobugs.info browstechno.info subtitledrive.com www.epic-cert.com epic-cert.com southiere.com www.sacredheart.cf sacredheart.cf zentosoft.co.in www.zentosoft.co.in www.astocode.info

Malware Detected on Host

Count: 1 76772145ed4ca48917df45363d450652cba0605b307d85937166c3042ea85609

Open Ports Detected

2082 2083 21 26 443 80 995

CVEs Detected

CVE-2016-10735 CVE-2018-14040 CVE-2018-14042 CVE-2018-20676 CVE-2018-20677 CVE-2019-8331 CVE-2022-31628 CVE-2022-31629 CVE-2022-37454

Map

Whois Information

NetRange: 66.29.128.0 - 66.29.159.255
CIDR: 66.29.128.0/19
NetName: NAMEC-4
NetHandle: NET-66-29-128-0-1
Parent: NET66 (NET-66-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Namecheap, Inc. (NAMEC-4)
RegDate: 2021-03-05
Updated: 2021-03-05
Ref: https://rdap.arin.net/registry/ip/66.29.128.0
OrgName: Namecheap, Inc.
OrgId: NAMEC-4
Address: 11400 W. Olympic Blvd. Suite 200
City: Los Angeles
StateProv: CA
PostalCode: 90064
Country: US
RegDate: 2011-01-28
Updated: 2017-01-28
Ref: https://rdap.arin.net/registry/entity/NAMEC-4
OrgAbuseHandle: ABUSE2885-ARIN
OrgAbuseName: Abuse team
OrgAbusePhone: +1-323-375-2822
OrgAbuseEmail: abuse@namecheaphosting.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2885-ARIN
OrgTechHandle: EFIME-ARIN
OrgTechName: Efimenko, Igor
OrgTechPhone: +1-323-375-2822
OrgTechEmail: igor.e@namecheap.com
OrgTechRef: https://rdap.arin.net/registry/entity/EFIME-ARIN
OrgTechHandle: TECHT4-ARIN
OrgTechName: Tech team
OrgTechPhone: +1-323-375-2822
OrgTechEmail: tech@namecheaphosting.com
OrgTechRef: https://rdap.arin.net/registry/entity/TECHT4-ARIN
network:Class-Name:network
network:Auth-Area:66.29.141.0/24
network:ID:NET-196947.66.29.141.207
network:IP-Network:66.29.141.207
network:IP-Network-Block:66.29.141.207
network:Org-Name:Web-hosting.com
network:Street-Address:3402 East University Drive
network:City:Phoenix
network:State:AZ
network:Postal-Code:85034
network:Country-Code:US
network:Tech-Contact:MAINT-196947.66.29.141.207
network:Created:20210802152149000
network:Updated:20210802153545000
network:Updated-By:net-admin@namecheap.com
contact:POC-Name:Network team
contact:POC-Email:net-admin@namecheap.com
contact:POC-Phone:
contact:Tech-Name:Network team
contact:Tech-Email:net-admin@namecheap.com
contact:Tech-Phone:
contact:Abuse-Name:Abuse team
contact:Abuse-Email:abuse@namecheaphosting.com

Links to attack logs

****** ****** ******

Share on: