66.29.141.34 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 66.29.141.34 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 35/100

Host and Network Information

• Tags: agenttesla, agentteslaexe, arkeistealer, azorult, azorultexe, danabot, darkrat, dridex, dridexopendir, emotetheodo, formbook, gandcrab, gozi, hancitor, hawkeye, heodo, icedid, kpot, kpotstealer, loader, loki, luminositylink, nanocore, nemty, netwire, phorpiex, pony, qakbot, qealler, quasarrat, raccoonstealer, remcos, remcosrat, servhelper, stealer, systembc, trickbot, troldesh, zloader

• JARM: 3fd3fd15d3fd3fd00042d42d000000038eaaf490bec8dc33757f165ce01762

• View other sources: Spamhaus VirusTotal

• Country: United States
• Network: AS22612 namecheap inc.
• Noticed: 1 times
• Protcols Attacked: SSH
• Passive DNS Results: littleandlarge.online stellar-nintendo.com africcvisa.online truelyplay.com travelpartnerph.com skateboard-murahdisini.com hightechadvancedai.com pommecrypto.com jam-detik.com imfloans.us ejcapitalc.com pandaprotools.digital thaltha.sa gamesense.space streamyhd.site alqayedservicesest.com triplegemlaw.com cmgadgetplace.com bivas-bros.com newpinewood.com nmscinv.com omashoppingmart.shop ffiin.site everlast-contractors.com cameronjnelson.net prioritydayton.com miemar.site relz.info oiiuasdkfhkjasdf.fun www-in-lineaa.com webtechitsol.com africaecovoices.com city-labeg.com sapphireseashikkaduwa.com meritetagehomes.com iron-strom.com oasisnetworkwallet.com evonpuphome.com flowtecpumps.com www.mining.lunoinvestment.online altify.shop aruberuto.com revivinghumanityfoundation.org bitsquareinvestment.com lunoinvestment.online arabiancars.vip be-gsm.pro watkinset.online aruberutomakoto.online bettyset.online revelset.online buehlerset.online nagd.online popcorntime.fun shrtlink.bio twodotzero.agency ak-and.com aveasteri.com cool-glasses30.com matthias-ruppert.com loomaknit.com interiorsbycathrynchavez.com omashoppingmart.com unas.digital professionalmember.co.uk ganovital.com.au pay-emiratestaxe.xyz indonesiagameonline.site ukeyglobal.online ccsmed.lat averse.cloud awuahgideon.com createthisthat.com litelob.com ffhub.app bautistaventuresint.com freeads2u.com evergreentuktukrental.com epoxfy.online dinutours.com owoserline.info dunyanewstv.com henriettapacquement.com iserent.com jonathan-moore.com fbh-trading.com thebrandnew.pro layarkaca21.media arttrade.dev bsdex.biz mechanicadvices.com ratorrestrading.com catherinekenyon.com churchofchristrumuokwurusi.org pics.cafe dwalex.biz sssbusinessideallc.com bmconcierge.com fnpixels.com bhaktischoolexpansion.org www.bhaktischoolexpansion.org bakedcookies.xyz claimbonus.live lazzopossecured.cloud ahmedwageh.com testerdisiniaja.com currencyhubuk.com maritzanoacabrera.com pixelamcr.com greenlandsecure.com www.financenewsstation.com financenewsstation.com www.beautyphoon.com beautyphoon.com bharin.net dtox.space mayilaset.online jonesadamsconsulting.lat vondal.dev appalachianoutposttn.com completbiz.com ue-machinery.com klinaxservicingcompany.com stake.claims angelicaspawellness.com metamentorcenter.com lapaitofficial.com paulietfoundation.com pivotpride.com aethereon.org customnova.org auxjinshucontracts.online stratmanai.com johnwhitejr.com seblak-goreng.site seblak-soto.site zetsiafrica.org aparnaandbalaji.wedding aviationsexpresscourie.com thenewgenerationlandscapellc.com genesavoirs.com mriplumbser.site anttrans.org lastingpeaceonearth.org hofmanset.online danemildinca.online oracletrading.live administracion.center aleiqonse.com carmenhudson.com silverbirdcargosolutions.com inclusiveiron.com gabrielgod1.com estateviewmedia.com nulookfci.com newmomperu.com jopopop89.site webnetdirect-be.com harshimed.com mjdiamondbd.com cointokenz.store rtpjanji.site cointokens.site profitgame.pro skillance.org urlsw.info the-bull.fund dispatchbyus.com dewakoin77.com sakuiptv.com shamsquraa.com smartip.live mledx.com eveningstararmory.com snintllc.com online-holzheizung.com saritajha.com eliteexpertwritings.com jdvwya.bblackrecordz.us.com 1mu5vn.bblackrecordz.us.com treeservicessavannah.net etioneralogistics.com www.kabobai.com kabobai.com www.kybiotec.com callthecall.com shroomieworld.com eissagoldenseed.com mathcenter.link2u.us www.mathcenter.link2u.us www.fitch-finance.com webflake.xyz mcbethlogistics.com rtpmegalux138.biz www.kanzonewsgh.com kanzonewsgh.com gistfub.online bank.officialgreetandmeet.online millsprep.com www.millsprep.com urvansoorjee.com winmorestrategy.com plexusgeneraltrading.com www.grossmining.com grossmining.com gunvisorstore.com khadijahmill.com www.khadijahmill.com www.househrent.xyz househrent.xyz syberonics.com bblackrecordz.us.com citoyennetedescaraibes.com usurperium.com www.training.energypac.one training.energypac.one capitalmidlands.com plumbermen.us swyftswipe.com razeronline.store vita-virginiagov.org hmgcreative.online rehope.live chargeback.life acervofotogoboax.com moviltecrr.com f2creatives.com carikerja.app www.emergencydentalscottsdale.com atlascloud-technology.com www.atlascloud-technology.com www.iva.one iva.one www.a.link2u.us a.link2u.us go.link2u.us www.go.link2u.us masum1.link2u.us www.masum1.link2u.us focusmore.fun www.focusmore.fun www.honesthistory.idaho-history.com honesthistory.idaho-history.com www.movement.idaho-history.com movement.idaho-history.com schools.idaho-history.com www.schools.idaho-history.com www.classroom.idaho-history.com classroom.idaho-history.com www.go.idaho-history.com go.idaho-history.com offers.idaho-history.com www.offers.idaho-history.com idaho-history.com c.michaels.idaho-history.com www.c.michaels.idaho-history.com insurance4u.world www.insurance4u.world sarvicglobal.com vcs.onlyfansapp.us www.vcs.onlyfansapp.us onlyfansapp.us www.onlyfansapp.us talkstuff.social www.talkstuff.social www.quickfarmers.com quickfarmers.com onlinefrmobile.com www.random.onfansly.live random.onfansly.live www.sp-visuramodulo.com sp-visuramodulo.com www.mundoviajero.joelpizzano.com mundoviajero.joelpizzano.com chaatwalanyc.com ibm55.com chelseaupdate.online www.robofilmsinc.com robofilmsinc.com bargainbuzz.info movie.onfansly.live www.movie.onfansly.live www.docs.ddindex.trade docs.ddindex.trade livefans.info www.rbln.dev rbln.dev rtpmegalux138gacor.com www.rtpmegalux138gacor.com contiflextrade.com www.selljammer.com selljammer.com www.freakyfriday.org freakyfriday.org transfer.freakyfriday.me www.transfer.freakyfriday.me spreadloveafrica.org moersupplier.com www.moersupplier.com wealthcreek.net www.croftai.duracash.club croftai.duracash.club ouhdui.xyz ddindex.trade fifheritage.org metatimesale.online protocolfxx.online art-107.link nucleushomeschool.info duracash.club alwessam4pro.com dojostation.com davdeerealty.com mercuryways.com m-horeb.com www.m-horeb.com q8-services.com www.q8-services.com alquimistica.co www.alquimistica.co surgegold.online www.surgegold.online www.user.duracash.club user.duracash.club www.eliteexpertwriters.co.uk eliteexpertwriters.co.uk www.upatreenh.com upatreenh.com wifi-expert.live www.wifi-expert.live rapidpkg.co www.rapidpkg.co resetappdispositiva.com www.resetappdispositiva.com www.automobiles-parts.com automobiles-parts.com www.mcd-graficas.eu mcd-graficas.eu islamictongue.net brazilcigars.com royalwatchbd.com getgccjobs.com lotaacademy.com www.lotaacademy.com yeraizamorano.com www.yeraizamorano.com www.accesoriosmaryv.com accesoriosmaryv.com rtp-moge-gacor.online www.notify.jawdropping.me notify.jawdropping.me sewavillaslot.shop rtp-slotmotor.shop www.rtp-geprekgacor.site rtp-geprekgacor.site enbrightmf.com www.sewavillagacor.site sewavillagacor.site app-your.rentals sunnycar.online rivdodge.online aanpassendirecctbe.com ashopbh.com allienceb.com topupdana.com cevacoinvest.com metashitcoin.com janirlirem.com enatlb.com ratel-services.com idpro.store www.idpro.store www.riserva.app-your.rentals riserva.app-your.rentals kurvesthreadingstudio.com www.kurvesthreadingstudio.com kwd.finance www.kwd.finance lossupplies.online www.lossupplies.online serviziosicuro.info www.serviziosicuro.info res.app-your.rentals www.res.app-your.rentals reservation.app-your.rentals www.reservation.app-your.rentals connectioning.cc www.connectioning.cc www.tarimoexpeditions.com tarimoexpeditions.com com2.inspireamericatoday.com www.com2.inspireamericatoday.com www.inspireamericatoday.com inspireamericatoday.com www.priliasari.com priliasari.com qegyaritah.com www.qegyaritah.com com1.inspireamericatoday.com www.com1.inspireamericatoday.com ipendaxeny.com www.ipendaxeny.com www.oasiscargosvc.com oasiscargosvc.com trustunity.info account.ai-alphas.com www.account.ai-alphas.com www.primevisuals.co primevisuals.co pathfinder-2e.com www.pathfinder-2e.com skillshubcaribbean.com www.reportersclubnepalcanada.org reportersclubnepalcanada.org cuscotourspackages.com www.cuscotourspackages.com myaccount.myvitalz.ai www.myaccount.myvitalz.ai www.olympiadesensias.com olympiadesensias.com shortly.at tasteatlasfoods.com kidslearningcornerja.com my.arcbestshipping.com www.my.arcbestshipping.com www.br0k3r.com demo.encourage-capital.com www.demo.encourage-capital.com burkspitkennel.com www.house2rent.us house2rent.us anihub.site aretreeeat.com coupocart.com creditscoreio.com betcplay.com jehadelections.com morijaybuildingmaterials.com www.globaldentalclinic.co.in globaldentalclinic.co.in dentalhollywoodsmile.com www.saritajha.com thecounnors.xyz www.thecounnors.xyz arcbestshipping.com www.arcbestshipping.com www.davidfmaxwell.online davidfmaxwell.online www.sealinecontainersllc.com sealinecontainersllc.com www.permisonlineconduiite.com permisonlineconduiite.com www.lafondasupperclub.com lafondasupperclub.com www.brooksideconsultancy.com brooksideconsultancy.com blackziontruth.com www.blackziontruth.com www.retrocapitals.info retrocapitals.info webcomputertech.com wikipediaworld.com marketingtipsworld.com yaparla.com www.ray-mond.tech ray-mond.tech mpb.vascocastro.com www.mpb.vascocastro.com webmail.yourvendingmachines.com nitikaaroramakeovers.com ai-alphas.com www.aiconsultance.com aiconsultance.com cocogambo.com www.cocogambo.com teetest.store yourvendingmachines.com academiamoneymakers.com tester007.online parcels.world goldmansarl.online vendorxpress.com www.vendorxpress.com shopeelinetv.com fitch-finance.com energy.impgr.com www.energy.impgr.com tutorial4bloggers.com momloveskids.com impgr.com kittyfunshop.com www.v5analytics.net v5analytics.net kcangsukri.xyz www.nodebridgeapp.site nodebridgeapp.site huigovnozalupa.beauty www.huigovnozalupa.beauty www.pacificfishdepots.com pacificfishdepots.com

Open Ports Detected

2082 2083 2095 21 443 53 80

CVEs Detected

CVE-2016-10735 CVE-2018-14040 CVE-2018-14042 CVE-2018-20676 CVE-2018-20677 CVE-2019-8331 CVE-2022-31628 CVE-2022-31629 CVE-2022-37454

Map

Whois Information

• NetRange: 66.29.128.0 - 66.29.159.255
• CIDR: 66.29.128.0/19
• NetName: NAMEC-4
• NetHandle: NET-66-29-128-0-1
• Parent: NET66 (NET-66-0-0-0-0)
• NetType: Direct Allocation
• OriginAS:
• Organization: Namecheap, Inc. (NAMEC-4)
• RegDate: 2021-03-05
• Updated: 2021-03-05
• Ref: https://rdap.arin.net/registry/ip/66.29.128.0
• OrgName: Namecheap, Inc.
• OrgId: NAMEC-4
• Address: 11400 W. Olympic Blvd. Suite 200
• City: Los Angeles
• StateProv: CA
• PostalCode: 90064
• Country: US
• RegDate: 2011-01-28
• Updated: 2017-01-28
• Ref: https://rdap.arin.net/registry/entity/NAMEC-4
• OrgTechHandle: TECHT4-ARIN
• OrgTechName: Tech team
• OrgTechPhone: +1-323-375-2822
• OrgTechEmail: tech@namecheaphosting.com
• OrgTechRef: https://rdap.arin.net/registry/entity/TECHT4-ARIN
• OrgTechHandle: EFIME-ARIN
• OrgTechName: Efimenko, Igor
• OrgTechPhone: +1-323-375-2822
• OrgTechEmail: igor.e@namecheap.com
• OrgTechRef: https://rdap.arin.net/registry/entity/EFIME-ARIN
• OrgAbuseHandle: ABUSE2885-ARIN
• OrgAbuseName: Abuse team
• OrgAbusePhone: +1-323-375-2822
• OrgAbuseEmail: abuse@namecheaphosting.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2885-ARIN
• network:Class-Name:network
• network:Auth-Area:66.29.141.0/24
• network:ID:NET-191990.66.29.141.34
• network:IP-Network:66.29.141.34
• network:IP-Network-Block:66.29.141.34
• network:Org-Name:Web-hosting.com
• network:Street-Address:3402 East University Drive
• network:City:Phoenix
• network:State:AZ
• network:Postal-Code:85034
• network:Country-Code:US
• network:Tech-Contact:MAINT-191990.66.29.141.34
• network:Created:20210705152929000
• network:Updated:20210705153141000
• network:Updated-By:net-admin@namecheap.com
• contact:POC-Name:Network team
• contact:POC-Email:net-admin@namecheap.com
• contact:POC-Phone:
• contact:Tech-Name:Network team
• contact:Tech-Email:net-admin@namecheap.com
• contact:Tech-Phone:
• contact:Abuse-Name:Abuse team
• contact:Abuse-Email:abuse@namecheaphosting.com

Links to attack logs

****** ****** ******