66.29.141.33 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 66.29.141.33 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 35/100

Host and Network Information

• Tags: agenttesla, agentteslaexe, arkeistealer, azorult, azorultexe, danabot, darkrat, dridex, dridexopendir, emotetheodo, formbook, gandcrab, gozi, hancitor, hawkeye, heodo, icedid, kpot, kpotstealer, loader, loki, luminositylink, nanocore, nemty, netwire, phorpiex, pony, qakbot, qealler, quasarrat, raccoonstealer, remcos, remcosrat, servhelper, stealer, systembc, trickbot, troldesh, zloader

• JARM: 3fd3fd15d3fd3fd00042d42d000000038eaaf490bec8dc33757f165ce01762

• View other sources: Spamhaus VirusTotal

• Country: United States
• Network: AS22612 namecheap inc.
• Noticed: 1 times
• Protcols Attacked: SSH
• Passive DNS Results: aonesol.shop africancolumn.org kanyesdairygoats.com aaonesol.shop recentblog24.online aitoken.cloud nexatechng.com andrewandcolawfirm.com theswissfrancb.com metrostylemarketing.com millenniumlogs.com spacemeetings.xyz pepeclause.com ipstable.com nhz-solutions.pro verticaltransportatlon.net 2020-development.site beforetrial.com thevybe.tech shariffashionbd.shop imind.pro agsignsplus.org zirinlabs.org cormit.online westynbusinessvehicles.com timbbb.com cbcg-energie.com valdosainternational.com stakemyusdt.com skycoachingltd.com infidelinvgr.com jhdjuy.us arkwestern.com omeegapro.com playnxt.online conejovalleyappliancerepair.com x100.quest sbzone.org kamesinvestment.org lonerganset.online suntaabeachboxx.online loom.marketing jbgames.fun pacificlines.credit montjhdsda.com moizrabah.com ptdrug.com boostng.com ummesvision.com epictransglobal.com ideale-online.store spookybox.org smartretry.online thedigitalassetrecovery.com thedigitalassetsrecovery.com sanabusinesssolutions.com jadelmadel.com monextrade.ltd schoolsafety911.lat yvettejohns.com pripony.xyz aksynthetics.com elco-machinebouw.com anonymous-iptv.store wavecart.online mamiontopsatu.com payrcapital.com badxsay.com easixban.com 1stclassbrokerage.com mayoclinico.org quickbafix.com prolificequipments.com comunidadbordado.com free-web-tools.org acahealth.us wholesalemailerboxes.com cenuai.com h-mangroup.com boxerdisiniaja.com empoweredbright.com fhyanghia.com ashleyinsights.com www.ashleyinsights.com kingoftandoorpac.com gadgetoloxy.com elfthcstore.com tayview.website 0b0k.pro adnext.pro limitlessfinancial.pro dewise-foundation.org michaelbeachcoach.lat thomaszalevskiy.com crazyproxies.com ub-trading.com evergreentrap.com kingfurnitureuk.com floresercomunidad.com mfans.org cwm-web.live a1rentals.asia cubedisposable.com homearaish.com ingerconversiobot.com bexxtech.com robinnhooodd.com alertsavephonesecret.us alexforsonchambers.online xecazship.com autenticgoldfish.com dejustmanglobal.com bighunkbar.com randhmedical.com ffolky.com thedeliveryteam.online seblak-siomay.site tradesziva.com erfaafile.com seblak-rendang.site naominavarro.pro hmondemand.com thomasphoto.org wwfwbc.com luxurylashbeauty.club murarpremoldeados.com seashipperss.com handicraftsbd.com zemsaffiliate.com preciouscornergh.com glancetheluxurybeautystore.com growingreen.space droribat.online seikoukoubou.online nooness.click pinkpanther.finance valentinamitrani.com wholespace.xyz hrhubinternational.com broadcom-stellar.com elhamgolpush.com furryupdate.com seotrustly.us zenonmail.com eco-citycredit.com outcallbangkok.com odds4sale.com gwacademy.store zaibwear.com iamskales.com thelondons-mayfairclinic.com myoatv.com mapwav.com wevolt.com.au www.puppyinfo.net www.allsportlive.online kashkuli.com microprogramers.online www.microprogramers.online shanzzy.com growingmasculinity.com m-chainfinance.com muscateam.com mintymint.uk wearthewears.com www.wearthewears.com www.divinehouseconsultancy.com divinehouseconsultancy.com www.bharathfintechsolutions.com taxiapp.zeshansahi.co www.taxiapp.zeshansahi.co muscatravels.com globeleaks.com learnpets.info puppyinfo.net www.getfitgymbd.com maxcotechpro.com www.final.strengthsyndicate.org final.strengthsyndicate.org isbturkey.online metroaccesss.com www.metroaccesss.com strengthsyndicate.org bigsalt.online perfectfits.fashion cabobalancespa.com www.netrase.com netrase.com www.williamsifenkwe.com williamsifenkwe.com www.shipnsort.com shipnsort.com pinicole.com www.pinicole.com red.studio www.red.studio www.hub.uci-int.org hub.uci-int.org www.helenibe.com helenibe.com carbuzz.net www.valentinamitrani.me valentinamitrani.me safetylogistic-service.com www.madebymoran.com back.naijatopvibes.com bluapples.com www.bluapples.com officeshadow.com www.officeshadow.com exchange.gentlemen.capital testino.gentlemen.capital ieltshelpguru.com www.ieltshelpguru.com www.crextar.com crextar.com couponarea.moneflex.com www.couponarea.moneflex.com www.10mail3.shop scike.site fx-cryptoinvestment.com www.fx-cryptoinvestment.com sun-power.world kouklascloset.com trackinterdelivery.com sonicinterest.com www.project.jabez.website project.jabez.website nathof20.com niarahsocial.com www.niarahsocial.com cryptospeaks.art www.cryptospeaks.art www.alitiayertelemelisifrdokandoks.online www.bluefundassets.com bluefundassets.com intensivecheck-out.com www.intensivecheck-out.com www.realtorkaysie.com realtorkaysie.com www.scan.eventprojectlab.in scan.eventprojectlab.in nhu.edu.pk auth.banjatimid.com www.auth.banjatimid.com pentexcapital.com www.upcomingrapper.com upcomingrapper.com www.procheaplearn.com sunilhotelspvtltd.com www.eco.sign-in.eco-citycredit.com eco.sign-in.eco-citycredit.com www.homesoflagos.ng homesoflagos.ng mspatproperties.com www.mspatproperties.com test.uci-int.org www.test.uci-int.org www.claimformsa.com claimformsa.com martinbunda.tech www.martinbunda.tech halloweencostumesetc.com www.halloweencostumesetc.com pluqpower.com ark2.superstores.ng www.ark2.superstores.ng www.ark1.superstores.ng ark1.superstores.ng ym.alktab.online www.funcasinomania.com funcasinomania.com sci-stellarvvoorschrift.online ozzok.online aurorahomestays.com docteurmiracle.com mini-energyghana.com quhocera.com procheaplearn.com fitnescafe.com www.a48.10mail3.shop a48.10mail3.shop a47.10mail3.shop www.a47.10mail3.shop allengetiadventures.co.tz www.allengetiadventures.co.tz www.moh.enchanting-weddings.com moh.enchanting-weddings.com a44.10mail3.shop www.a44.10mail3.shop a42.10mail3.shop www.a42.10mail3.shop www.a40.10mail3.shop a40.10mail3.shop a39.10mail3.shop www.a39.10mail3.shop a36.10mail3.shop www.a36.10mail3.shop a34.10mail3.shop www.a34.10mail3.shop a33.10mail3.shop www.a33.10mail3.shop kjoretoy.site www.kjoretoy.site blazerslots.com www.joueurenligne.casino joueurenligne.casino www.shopnimali.com shopnimali.com www.vivo.shopnimali.com vivo.shopnimali.com idporten.vegvesen.no.godkjenn.help www.idporten.vegvesen.no.godkjenn.help godkjenn.help www.godkjenn.help app.gems-capital.com www.app.gems-capital.com www.edgetradingmarkets.com edgetradingmarkets.com gems-capital.com www.gems-capital.com www.silimtech.com silimtech.com www.htheoharyy.shop htheoharyy.shop im-tokenn.org www.im-tokenn.org www.diamondfincorp.com diamondfincorp.com donnaxenia.com www.donnaxenia.com a31.10mail3.shop www.a31.10mail3.shop a26.10mail3.shop www.a26.10mail3.shop a30.10mail3.shop www.a30.10mail3.shop a29.10mail3.shop www.a29.10mail3.shop a28.10mail3.shop www.a28.10mail3.shop www.claimform.findsaios.com claimform.findsaios.com test.icetealabs.games www.test.icetealabs.games 10mail3.shop www.a23.10mail3.shop a23.10mail3.shop www.a21.10mail3.shop a21.10mail3.shop www.a20.10mail3.shop a20.10mail3.shop www.a15.10mail3.shop a15.10mail3.shop www.a18.10mail3.shop a18.10mail3.shop sextrains.us www.a12.10mail3.shop a12.10mail3.shop a7.10mail3.shop www.a7.10mail3.shop a11.10mail3.shop www.a11.10mail3.shop a9.10mail3.shop www.a9.10mail3.shop www.a2.10mail3.shop a2.10mail3.shop a1.10mail3.shop www.a1.10mail3.shop a8.10mail3.shop www.a8.10mail3.shop www.a6.10mail3.shop a6.10mail3.shop a5.10mail3.shop www.a5.10mail3.shop www.swiftworldfreighthq.com swiftworldfreighthq.com www.icetealabs.games icetealabs.games www.seekandgrowing.com seekandgrowing.com stategovdiplomaticmission.us gemz.beauty www.gemz.beauty k1stf.com www.k1stf.com madebymoran.com fitnesshubio.com www.b2bdataquest.com beca-aztec-a-servicio.com www.beca-aztec-a-servicio.com www.royalefight.com royalefight.com shluggageindustries.com www.promptmaildelivery.com promptmaildelivery.com www.mohsin.enchanting-weddings.com mohsin.enchanting-weddings.com www.new.enchanting-weddings.com new.enchanting-weddings.com fullzer.com countryl.ink www.countryl.ink lifebeyondthestrip.com www.lifebeyondthestrip.com www.lwb.superstores.ng lwb.superstores.ng www.emslivestocklogistics.com emslivestocklogistics.com santamariaschools.com www.santamariaschools.com www.vitamincserum.health vitamincserum.health www.beestate.co beestate.co fanaticsaffiliate.com shibacore.xyz berelieved.us volport.infinacial.com www.volport.infinacial.com www.pakproperties.com.pk pakproperties.com.pk www.gologistics.infinacial.com gologistics.infinacial.com avistlogistics.infinacial.com www.avistlogistics.infinacial.com www.premoshop.store premoshop.store caprianagranjaleiteira.fujita.io www.caprianagranjaleiteira.fujita.io www.server.ashumon.io server.ashumon.io www.designs.martinbunda.xyz designs.martinbunda.xyz www.cavite.martinbunda.xyz cavite.martinbunda.xyz wavtapp.store www.wavtapp.store preferredcanadianfundraising.com www.kwaleindustrialpark.com jabez.website kwaleindustrialpark.com www.memoirsofayogi.com consciousresolution.com www.femmesplace.co.uk femmesplace.co.uk gifinu.fun seifglobalsolutions.digital serveribs.online www.serveribs.online interiorartiste.com 501marketing.net www.bimbalabum.xyz bimbalabum.xyz bimbalabem.xyz www.bimbalabem.xyz clubbev.de www.420dispensary.shop 420dispensary.shop client.fundexltd.com www.client.fundexltd.com www.megabuckssc.com megabuckssc.com www.seifglobalsolutions.com seifglobalsolutions.com www.bi-beet.io bi-beet.io writearticlesformeaffiliates.online gestione-filiale11mp.me www.gestione-filiale11mp.me www.elitesolutions.pro elitesolutions.pro fifthcodezambia.com www.fifthcodezambia.com geminiequitygroup.com www.geminiequitygroup.com semblapress.com cybercrimedetectives.com www.cybercrimedetectives.com restaurant-management.studyservice.co.uk www.restaurant-management.studyservice.co.uk www.afrashop.store www.testpanelsmm.hair verzuztvstream.com www.remotecomputerfix.net remotecomputerfix.net www.edu.taluja.com edu.taluja.com www.dash.fundexltd.com dash.fundexltd.com www.fundexltd.com fundexltd.com barnietech247.com www.fullship.ptcs.krd fullship.ptcs.krd rindevaquita.fujita.io www.rindevaquita.fujita.io www.en.elviajedeluz.com en.elviajedeluz.com www.pierdepesosindietas.elviajedeluz.com

Malware Detected on Host

Count: 1 6e409c39c35dfc8532febb0832b1df0472c01a0121efa76a48067773f0c5c253

Open Ports Detected

110 2077 2082 2083 21 443 80

CVEs Detected

CVE-2016-10735 CVE-2018-14040 CVE-2018-14042 CVE-2018-20676 CVE-2018-20677 CVE-2019-8331 CVE-2022-31628 CVE-2022-31629 CVE-2022-37454

Map

Whois Information

• NetRange: 66.29.128.0 - 66.29.159.255
• CIDR: 66.29.128.0/19
• NetName: NAMEC-4
• NetHandle: NET-66-29-128-0-1
• Parent: NET66 (NET-66-0-0-0-0)
• NetType: Direct Allocation
• OriginAS:
• Organization: Namecheap, Inc. (NAMEC-4)
• RegDate: 2021-03-05
• Updated: 2021-03-05
• Ref: https://rdap.arin.net/registry/ip/66.29.128.0
• OrgName: Namecheap, Inc.
• OrgId: NAMEC-4
• Address: 11400 W. Olympic Blvd. Suite 200
• City: Los Angeles
• StateProv: CA
• PostalCode: 90064
• Country: US
• RegDate: 2011-01-28
• Updated: 2017-01-28
• Ref: https://rdap.arin.net/registry/entity/NAMEC-4
• OrgAbuseHandle: ABUSE2885-ARIN
• OrgAbuseName: Abuse team
• OrgAbusePhone: +1-323-375-2822
• OrgAbuseEmail: abuse@namecheaphosting.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2885-ARIN
• OrgTechHandle: EFIME-ARIN
• OrgTechName: Efimenko, Igor
• OrgTechPhone: +1-323-375-2822
• OrgTechEmail: igor.e@namecheap.com
• OrgTechRef: https://rdap.arin.net/registry/entity/EFIME-ARIN
• OrgTechHandle: TECHT4-ARIN
• OrgTechName: Tech team
• OrgTechPhone: +1-323-375-2822
• OrgTechEmail: tech@namecheaphosting.com
• OrgTechRef: https://rdap.arin.net/registry/entity/TECHT4-ARIN
• network:Class-Name:network
• network:Auth-Area:66.29.141.0/24
• network:ID:NET-191989.66.29.141.33
• network:IP-Network:66.29.141.33
• network:IP-Network-Block:66.29.141.33
• network:Org-Name:Web-hosting.com
• network:Street-Address:3402 East University Drive
• network:City:Phoenix
• network:State:AZ
• network:Postal-Code:85034
• network:Country-Code:US
• network:Tech-Contact:MAINT-191989.66.29.141.33
• network:Created:20210705152929000
• network:Updated:20210705153202000
• network:Updated-By:net-admin@namecheap.com
• contact:POC-Name:Network team
• contact:POC-Email:net-admin@namecheap.com
• contact:POC-Phone:
• contact:Tech-Name:Network team
• contact:Tech-Email:net-admin@namecheap.com
• contact:Tech-Phone:
• contact:Abuse-Name:Abuse team
• contact:Abuse-Email:abuse@namecheaphosting.com

Links to attack logs

****** ****** ******