66.29.141.42 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 66.29.141.42 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 35/100

Host and Network Information

• Tags: agenttesla, agentteslaexe, arkeistealer, azorult, azorultexe, danabot, darkrat, dridex, dridexopendir, emotetheodo, formbook, gandcrab, gozi, hancitor, hawkeye, heodo, icedid, kpot, kpotstealer, loader, loki, luminositylink, nanocore, nemty, netwire, phorpiex, pony, qakbot, qealler, quasarrat, raccoonstealer, remcos, remcosrat, servhelper, stealer, systembc, trickbot, troldesh, zloader

• JARM: 3fd3fd15d3fd3fd00042d42d000000038eaaf490bec8dc33757f165ce01762

• View other sources: Spamhaus VirusTotal

• Country: United States
• Network: AS22612 namecheap inc.
• Noticed: 1 times
• Protcols Attacked: SSH
• Passive DNS Results: dakshika.design www.ghamesgroup.com wildfrontiersperu.com foreverinstone.net www.foreverinstone.net noshin-itltd.com www.couleerentalsandsales.com newnewsfeed.com www.newnewsfeed.com khareedofarookht.com ghamesgroup.com mt5fxtrading.com admin.quicktelex.com www.admin.quicktelex.com merchant.quicktelex.com www.merchant.quicktelex.com keep.ca www.keep.ca www.quicktelex.com quicktelex.com accuratepips.com umrahagency.com topflashcourier.com noshinitlimited.com noshinfashion.com index.descargarcursosgratis.com www.index.descargarcursosgratis.com ytrfintech.com www.dishafoundationbd.com dishafoundationbd.com www.fergusonvalleydrywall.com noshinmart.com decormartz.com www.decormartz.com flyxability.com www.flyxability.com skyviewtravelagency.com www.skyviewtravelagency.com grabdeal.us www.grabdeal.us imbz.xyz www.imbz.xyz www.avenaim.com avenaim.com newsmediag.com www.thelittlepawn.com thelittlepawn.com epicpaints.com electricxpert.com prints.postersafrica.com www.prints.postersafrica.com 8236.luenthai.beingmurshad.com verifyrecaptcha.com www.verifyrecaptcha.com 4969.chateauflooring.beingmurshad.com 7804.gazelleoil.beingmurshad.com toptechnewsbd.com www.toptechnewsbd.com fathersworkandfamilies.com www.fathersworkandfamilies.com couleerentalsandsales.com annexs.org standardfunds.net greatgearbox.com www.bracecolors.com bracecolors.com www.africaphageforum.org africaphageforum.org exchangepolygon.com www.exchangepolygon.com bdjugantornews.com www.bdjugantornews.com dehib.com 7tj.us fxbitop.com brandafactory.com www.fs6-vps.xyz fs6-vps.xyz www.fs6.shop fs6.shop www.hunterary.com hunterary.com www.online.worldpetrosol.com online.worldpetrosol.com www.mypetom.com mypetom.com www.pet.alishanmart.com pet.alishanmart.com www.test.devlena.com test.devlena.com www.devlena.com www.mp.b.drvortex.dev mp.b.drvortex.dev b.drvortex.dev www.b.drvortex.dev blankstorm.drvortex.dev www.blankstorm.drvortex.dev www.pensiamodigitale.com pensiamodigitale.com www.ideas.drvortex.dev ideas.drvortex.dev www.instagam.cc instagam.cc www.help.lnstgrem.com help.lnstgrem.com lnstgrem.com caswave.com odogwubitters.ml www.odogwubitters.ml www.tiiktok.xyz tiiktok.xyz 3tees.ng www.3tees.ng www.pronewsfeeds.com pronewsfeeds.com www.rxholdings.org rxholdings.org www.cms.alishanmart.com cms.alishanmart.com youtue2.net www.youtue2.net youtubea2.com www.youtubea2.com cyndaventuresllc.com www.zionnmix.com zionnmix.com obo0.us www.obo0.us www.remoterr.com remoterr.com ohiomarkets.com www.southidahoexcavation.com masterclassfx.com fathersworkandfamily.com www.fathersworkandfamily.com ohiomakeupgirls.com miedisplay-es.com www.gearncare.com gearncare.com cleanaryreviews.com www.cleanaryreviews.com www.proxy.drvortex.dev proxy.drvortex.dev igsoftwebstudio.store supportsecured.com 4pp.club www.4pp.club live.masterclassfx.com www.live.masterclassfx.com lovelyhappylife.com kintrolstar.com www.kintrolstar.com www.southernhills.fabriclean.biz southernhills.fabriclean.biz www.charlottesvillecustomcabinetry.com charlottesvillecustomcabinetry.com www.pacificstarflight.com pacificstarflight.com qurann.xyz www.qurann.xyz fergusonvalleydrywall.com premiumcarats.com knifeers.com www.knifeers.com www.thebestreviewers.com thebestreviewers.com tamiloneindia.net www.pay.dollarbuysold.com pay.dollarbuysold.com r0ni.xyz www.ronih07654.r0ni.xyz ronih07654.r0ni.xyz www.sub.jaepoundzdropshipping.com sub.jaepoundzdropshipping.com open.jaepoundzdropshipping.com www.open.jaepoundzdropshipping.com www.crete-x.com crete-x.com khalilteache.com advancedketo1500reviews.com magnumxtreviews.com noom-reviews.com resurge-reviews.com www.store.fs6.pw store.fs6.pw data6am.store techwtn.com www.techwtn.com daddy.uhoe.one www.daddy.uhoe.one exipurereviews.com www.exipurereviews.com www.birthplacemagazine.com birthplacemagazine.com www.uhoe.one uhoe.one www.mastarlink.yasserelabsy.me mastarlink.yasserelabsy.me gadgetlot.club www.gadgetlot.club eentv.fs6.pw www.eentv.fs6.pw www.vee.kelechinwaneri.com vee.kelechinwaneri.com victor.kelechinwaneri.com www.victor.kelechinwaneri.com new.fengshuibestbuy.com 99gamersfreebie.com southidahoexcavation.com projectiveportablebuildings.com www.projectiveportablebuildings.com www.download.quizspotng.com download.quizspotng.com future-works.com mp.annihilation.drvortex.dev www.mp.annihilation.drvortex.dev maildokan.com www.maildokan.com forex.trademate.com.ng www.forex.trademate.com.ng speechcaster.com friendlysconcretecontractors.com coinelementor.com www.coinelementor.com techfast.work www.techfast.work www.script2.quizspotng.com script2.quizspotng.com scripts.quizspotng.com www.scripts.quizspotng.com www.xxx.drvortex.dev xxx.drvortex.dev dreamsfeed.com www.dreamsfeed.com yanjoi.com www.yanjoi.com www.trademate.com.ng trademate.com.ng adfs6.fs6.pw www.adfs6.fs6.pw support.fs6.pw www.support.fs6.pw www.mailer.fs6.pw mailer.fs6.pw sustainablesharkdiving.com www.sustainablesharkdiving.com www.demo.alishanmart.com demo.alishanmart.com www.test.alishanmart.com test.alishanmart.com www.conjuntacursos.com conjuntacursos.com www.welllegend.my welllegend.my support.pacificwaysimmigration.ca www.support.pacificwaysimmigration.ca www.frame.drvortex.dev frame.drvortex.dev ct.wavter.com www.ct.wavter.com www.server.wavter.com server.wavter.com www.shop.kelechinwaneri.com shop.kelechinwaneri.com www.sdsd.supportsecured.com sdsd.supportsecured.com 1000beastmode.com www.1000beastmode.com jmeducation.com.pk www.jmeducation.com.pk devstopit.com www.devstopit.com backpacks.com.pk www.backpacks.com.pk annihilation.drvortex.dev www.annihilation.drvortex.dev a.drvortex.dev www.a.drvortex.dev www.fghdfhfd.supportsecured.com fghdfhfd.supportsecured.com findmyandroide.com www.fox.4kfilms.xyz fox.4kfilms.xyz www.braggar.com.supportsecured.com braggar.com.supportsecured.com secured.supportsecured.com www.secured.supportsecured.com visitination.com graceofroseburgflorists.com unitedrentalscharlottesvilleva.com t7f.club www.t7f.club www.descargarcursosgratis.com descargarcursosgratis.com private.drvortex.dev www.private.drvortex.dev concretecontractorco.com www.concretecontractorco.com blog.absolutedailylifestyle.com www.blog.absolutedailylifestyle.com absolutedailylifestyle.com www.absolutedailylifestyle.com www.test.fs6.pw test.fs6.pw mugoffer.com www.mugoffer.com www.hillsidelawncaremaintenance.com hillsidelawncaremaintenance.com livework.yasserelabsy.me www.livework.yasserelabsy.me onicstore.com www.onicstore.com imdbflix.xyz www.chinese-wiki.com chinese-wiki.com www.belafx.com belafx.com bearofwildfrontiers.com www.bearofwildfrontiers.com tweakslab.com onlineprofitsuite.com www.onlineprofitsuite.com www.endrag.com endrag.com www.aiyfivestartrading.com aiyfivestartrading.com al-sallem.com www.al-sallem.com www.shbrothersusainc.com shbrothersusainc.com www.ehub.alishanmart.com ehub.alishanmart.com maintaining.dollarbuysold.com www.maintaining.dollarbuysold.com isangini.biz www.isangini.biz www.rutaecommercellc.com rutaecommercellc.com www.colaecommercellc.com colaecommercellc.com www.yuniecommercellc.com yuniecommercellc.com cheaptheme.net www.cheaptheme.net www.imagesplace.ca imagesplace.ca 4kfilms.xyz www.4kfilms.xyz proshoptradingllc.com yasserelabsy.me www.yasserelabsy.me www.dpfalternativesnwa.com www.egycreators.elkoshk.shop egycreators.elkoshk.shop pay.fs6.pw www.pay.fs6.pw fmvt.cc www.fmvt.cc mckenzo.ma www.mckenzo.ma www.techriders.net dpfalternativesnwa.com www.wordpresscheese.pixelstar.space wordpresscheese.pixelstar.space www.shoppezillallc.com shoppezillallc.com techriders.net www.technohub.work technohub.work sa0.fun ahnsalesinc.com www.atoztopnews.com atoztopnews.com androidappsdownloader.com www.androidappsdownloader.com renewsitwaterdamagerepair.com www.renewsitwaterdamagerepair.com 3tees.ca www.3tees.ca rsz1.xyz 3mar.club www.3mar.club www.rsz1.xyz 3h6h.xyz www.3h6h.xyz www.ink1.xyz ink1.xyz www.creatideas.ar app.masterclassfx.com www.app.masterclassfx.com dailyrecentnews.com www.mail.fs6.pw www.zaheerabbas.org zaheerabbas.org abrushglobalstorellc.com www.yazhawnny.gq yazhawnny.gq spencenny.tk www.spencenny.tk www.spentenny.ml spentenny.ml freevideosdownloader.net www.easyswipes.com easyswipes.com www.giftupdtae.fabex.io giftupdtae.fabex.io www.mail.pacificwaysimmigration.ca www.temp.themobist.com temp.themobist.com neversysy.tk www.neversysy.tk mostlyisdis.ml www.mostlyisdis.ml www.heavanlyp.cf heavanlyp.cf popinkh.gq www.popinkh.gq www.gbombom.ga gbombom.ga www.gbombom.gq gbombom.gq www.idrak.elkoshk.shop idrak.elkoshk.shop vendor.postersafrica.com www.vendor.postersafrica.com www.test1.descargarconmega.com test1.descargarconmega.com www.themobist.com themobist.com www.drvortex.dev www.marketplace.huntingocean.games marketplace.huntingocean.games www.test.descargarconmega.com test.descargarconmega.com www.sports.coversfly.com sports.coversfly.com liitradepark.com www.liitradepark.com pacificwaysimmigration.ca www.pacificwaysimmigration.ca iss-lubumbashi.org www.devandres.com devandres.com sayarat.alabaal.com www.sayarat.alabaal.com www.mouctechy.com mazenbinmurad.xyz huntingocean.games 1000beasttoday.com api.annihilation.drvortex.dev www.api.annihilation.drvortex.dev lece.fun www.lece.fun gstmautoposterfb.descargarconmega.com www.gstmautoposterfb.descargarconmega.com www.afiricazon.com afiricazon.com snaptubeapp-apk.com www.snaptubeapp-apk.com digitalsmart.online www.beta.descargarconmega.com beta.descargarconmega.com descargarconmega.com vidmateapkdownloadoldversion.com mouctechy.com ukyoutech.com www.elkoshk.shop elkoshk.shop www.dollarbuysold.com dollarbuysold.com izpinvestment.com www.izpinvestment.com humaning.ml lumpsucker.ml dairyrich.in www.dairyrich.in coversfly.com www.coversfly.com alishanmart.com cantaveinternational.com yemeniaflights.com ri1nternational.com www.krupawastages.com krupawastages.com www.pancakswape.finance pancakswape.finance www.gosutrader.descargarconmega.com gosutrader.descargarconmega.com www.amaderpaper.com amaderpaper.com www.postersafrica.com postersafrica.com www.lumpsumer.ml lumpsumer.ml www.wunderpus.ml wunderpus.ml humanitun.ml www.humanitun.ml www.wirexltd.com wirexltd.com

Open Ports Detected

2082 2083 2095 21 443 80

CVEs Detected

CVE-2016-10735 CVE-2018-14040 CVE-2018-14042 CVE-2018-20676 CVE-2018-20677 CVE-2019-8331 CVE-2022-31628 CVE-2022-31629 CVE-2022-37454

Map

Whois Information

• NetRange: 66.29.128.0 - 66.29.159.255
• CIDR: 66.29.128.0/19
• NetName: NAMEC-4
• NetHandle: NET-66-29-128-0-1
• Parent: NET66 (NET-66-0-0-0-0)
• NetType: Direct Allocation
• OriginAS:
• Organization: Namecheap, Inc. (NAMEC-4)
• RegDate: 2021-03-05
• Updated: 2021-03-05
• Ref: https://rdap.arin.net/registry/ip/66.29.128.0
• OrgName: Namecheap, Inc.
• OrgId: NAMEC-4
• Address: 11400 W. Olympic Blvd. Suite 200
• City: Los Angeles
• StateProv: CA
• PostalCode: 90064
• Country: US
• RegDate: 2011-01-28
• Updated: 2017-01-28
• Ref: https://rdap.arin.net/registry/entity/NAMEC-4
• OrgAbuseHandle: ABUSE2885-ARIN
• OrgAbuseName: Abuse team
• OrgAbusePhone: +1-323-375-2822
• OrgAbuseEmail: abuse@namecheaphosting.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2885-ARIN
• OrgTechHandle: EFIME-ARIN
• OrgTechName: Efimenko, Igor
• OrgTechPhone: +1-323-375-2822
• OrgTechEmail: igor.e@namecheap.com
• OrgTechRef: https://rdap.arin.net/registry/entity/EFIME-ARIN
• OrgTechHandle: TECHT4-ARIN
• OrgTechName: Tech team
• OrgTechPhone: +1-323-375-2822
• OrgTechEmail: tech@namecheaphosting.com
• OrgTechRef: https://rdap.arin.net/registry/entity/TECHT4-ARIN
• network:Class-Name:network
• network:Auth-Area:66.29.141.0/24
• network:ID:NET-192174.66.29.141.42
• network:IP-Network:66.29.141.42
• network:IP-Network-Block:66.29.141.42
• network:Org-Name:Web-hosting.com
• network:Street-Address:3402 East University Drive
• network:City:Phoenix
• network:State:AZ
• network:Postal-Code:85034
• network:Country-Code:US
• network:Tech-Contact:MAINT-192174.66.29.141.42
• network:Created:20210706154544000
• network:Updated:20210706160226000
• network:Updated-By:net-admin@namecheap.com
• contact:POC-Name:Network team
• contact:POC-Email:net-admin@namecheap.com
• contact:POC-Phone:
• contact:Tech-Name:Network team
• contact:Tech-Email:net-admin@namecheap.com
• contact:Tech-Phone:
• contact:Abuse-Name:Abuse team
• contact:Abuse-Email:abuse@namecheaphosting.com

Links to attack logs

****** ****** ******