66.29.141.6 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 66.29.141.6 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 35/100

Host and Network Information

• Tags: adesa vancouver, agenttesla, agentteslaexe, arkeistealer, azorult, azorultexe, bonus, connections, connections ip, danabot, darkrat, dridex, dridexopendir, dropped, emotetheodo, formbook, gandcrab, gift card, gozi, hancitor, hawkeye, heodo, httphttps, icedid, invoice, kpot, kpotstealer, loader, loki, luminositylink, main, nanocore, nemty, netwire, phishing, phorpiex, pony, qakbot, qealler, quasarrat, raccoonstealer, remcos, remcosrat, servhelper, stealer, systembc, trickbot, troldesh, united, zloader

• JARM: 3fd3fd15d3fd3fd00042d42d000000038eaaf490bec8dc33757f165ce01762

• View other sources: Spamhaus VirusTotal

• Country: United States
• Network: AS22612 namecheap inc.
• Noticed: 1 times
• Protcols Attacked: SSH
• Passive DNS Results: jitubos.xyz tasmakeup-minimalis.com smahad.com sobatjpindo.com supportingyou.site winwithdin.com alurcy.com chrislanconsulting.com icowave.com rsrasoi.com rentzmcguirecornmaze.com tavll.com starkburner.com zvijerlab.com salankara.store ch4h.org skiponpon.online llebannam.online rst.bio altcoinascent.com stellar-audi.com shoafcorp.com ms247help.com putnamcountyrec.com rish-equipment.com ourrealreviews.com citlalminacacao.com bioiuris.site digitalashwini.xyz metronome.wtf digitalvanitha.tech kuchiki.store digitalbasavaraj.digital onlinejobs.center thetastytruth.com shubniwesh.com blrgifts.com dashboard.optima-apex.co www.suntrust.pierreschutte.com adorablelittleones.com vediclifecarehospital.com melontoolbox.app smelterawards.com permafrostpreparedness.com youhodier.site 320.rip g6-callcentre.pro anaton.online grupnalakalu.info marrakechwholesalehandmade.boutique alwayslivinghealthier.com thegoodbonuslist.com veesavings.com hounddogcrypto.com hellfrozenhub.com breelarue.com bestinslots.com jabalalriad.com nelmarc.com iptvstremax.com nitrousoxideforsale.com realkingsandqueens.com northdentalecuador.com nilssonsflytt.com vmagenci.com schegroup.com plansee-powertech.com planseepowertech2.com enpropertymngmt.com liga788.net jbdesigns.site capitalholdings.pro justsplash.app digitalwinshub.com aga-abs.com convergepay-mobile.com cs2loadouts.com syswikinfotech.com pitishops.com micemicemicemicemice.fun fe-dex.online thunderbayafricanrestaurant.ca wealthbuildingstrategies.club app-config-json.xyz watchbox.store deutschflmfb.com protechlover.com caisson2launch.com quantum—ai.online chintpurni.net hodld.tel dmwithkoushika.com groupsinsured.com olyveenempire.com kubermarketing.com fumbweherbalclinic.com nextlevelinnovationllc.com xn–mgbar5gfc9a.online clearbug-connect.net eden-futures.org airmypet.com autos-berrocal.com delta-kwt.com earnlite.online ineedhelpwith.org azshehri.com primebeanbags.com danskcorp.com lucidpeach.org frice.tech orgrevcan.org biblionevada.pro fcaesma.org shopspot.center thevertical.art travelsbusinessclass.com pageappguide.com orienchic.com reviewbelal.com rhythmicmode.com devxcel.tech queuee.systems cafe-lago.com surgeserum.com influex.pro nelmarcgroup.com restcrackies.com discoveringsrilanka.com contentcrash.org quantumvpnpro.com devilstore.vip compsoft.org tdfexim.com dailyfreightspartners.com millionblocktaker.xyz charityislovegh.org exchangeweb.org myharba.online profile-ircc.online svlliecityelec.com quickbooksfree.com brecool.com embsyslearn.com universalfinancialmerchants.com karissquad.com www.karissquad.com techorchards.com www.techorchards.com exejajobs.com www.shivahwebtech.com shivahwebtech.com speedtrakcl.online www.speedtrakcl.online files.legacyroleplay.net www.files.legacyroleplay.net junobeachalanya.com awais5.sayahsafaid.com www.awais5.sayahsafaid.com legacyroleplay.net my.proximabrokers.com www.my.proximabrokers.com alleventhdlive.site reftinvocpmnt.site officiallivelink.online efctivo.online asports1.live ofabrwanda.info atlrentalllc.com androidpatrol.com allinonesolutionsindiana.com dbnrcollective.com redpillcipher.com georgestrait.online sales24.deals office-southpost.africa akdriversandtravels.com hotelhaciendadoabajo.com lacaktotoslot.com lutonexshipping.com proximabrokers.com jvcinternationaltrading.com ekbraidzz.com officialwyldgummies.com raelynshaye.com www.wp.dndfnd.com wp.dndfnd.com lekeleki.us cashcowstrategies.com www.cashcowstrategies.com smartdapcoininu.xyz www.smartdapcoininu.xyz greetandmeet.georgestrait.online www.greetandmeet.georgestrait.online firekimpagico.com wajeehwholesaleinc.org flyboxex.com www.join.universal-earners.com join.universal-earners.com lucasmails.com www.infofor.net qstarcorp.net securechain.store ubatapissu.fun siliconsavage.com inscrypted.com proinvestengine.com octai.ai www.octai.ai ghblabs.online www.ghblabs.online allbrandpros.com mkgfsj.com thetruckersnetworkradioshow.com dogfoodhealth.com caothuchotsovip.com saveinvestsltd.com lunaamarluz.com societegenfrn.com www.smartearn.co smartearn.co www.rongbachkim8386.com rongbachkim8386.com unicoinvalidator.site www.unicoinvalidator.site unicornventure-capital.com www.unicornventure-capital.com gce-academy.com dndfnd.com illumi-natibrotherhood.com 99portfolio.com maltipoosandpaws.us goldenranks.com www.goldenranks.com lucasmail.info worldiptvforus.com aiautodb.com auprompts.com coachbimpe.com global-peak.com www.securelegacyfinancial.org securelegacyfinancial.org pst-sa.net www.pst-sa.net svicdc.org www.svicdc.org welovelife.com.co www.welovelife.com.co unitednations.customgov.org www.unitednations.customgov.org profitmediahacks.com goselo.com elegantpergolasystem.com abcrepairllc.com alalmi-conditioners.online placeholderdomain.live scroll-seedifa.fund dexcheck-seedifa.fund wamarosystems.com musicglock.com nelsonassociatesfirm.com 52epic.com tfortree-cameroon.cm www.tfortree-cameroon.cm www.zeta-seedifa.fund zeta-seedifa.fund www.tradesgpt5.com tradesgpt5.com reliancepb.com olokodanaadesire.com hvm.designsmonkey.com www.hvm.designsmonkey.com www.logistic.directcouriers-services.com logistic.directcouriers-services.com thearksoft.com www.thearksoft.com www.petvoucher.shop petvoucher.shop healthyfixing.com www.healthyfixing.com 1095.bhmatic.com meil.unitedcommunitycredit.com www.meil.unitedcommunitycredit.com 1267.bhmatic.com miproyectodiamante.com www.tubox.shop tubox.shop drabdelhaq.com onerepublicmngt.com www.portal.alphaequiti.com portal.alphaequiti.com www.trustmkbk.com trustmkbk.com www.test.unitedcommunitycredit.com test.unitedcommunitycredit.com staking.babysharbi.live www.staking.babysharbi.live www.spartialbank.com xaiape.us www.babysharbi.net babysharbi.net www.bslg.babysharbi.live bslg.babysharbi.live getitdone-io.website heistad.blog weeattoday.us shersomconsultinginc.com myivts.com efxchamp.com www.starvity.com starvity.com marketingprofitmedia.com www.marketingprofitmedia.com ceremonialcacao.earth www.ceremonialcacao.earth api3.fund youssefkaram.com www.youssefkaram.com www.enamza.com enamza.com www.babysharbi.live babysharbi.live www.pierreschutte.com pierreschutte.com lcfciv.org www.lcfciv.org www.marketingprofitsmedia.com marketingprofitsmedia.com notestine.org www.notestine.org www.starnbergdrill.com starnbergdrill.com www.gdev.center gdev.center ranazain.com www.mathpascal.com mathpascal.com pamexpresscourserv.com www.pamexpresscourserv.com eacademynumberone.com www.eacademynumberone.com www.rwgruop.com rwgruop.com directcouriers-services.com www.directcouriers-services.com rabofbnz.com www.rabofbnz.com ourbeautifulhouse.com www.pastirejeki.site pastirejeki.site ckretoart.com www.ckretoart.com www.tradywp.trady.pk tradywp.trady.pk heavenlyfi.com www.heavenlyfi.com thecryptotime.de www.thecryptotime.de aim-hyeconcepts.com httpsxn–72c5aha7btl5aua7srb2g.com indohygienicexports.com tech247solution.com truckaro.com dasongbet.com exoticanimalshome.com neilfl.com globalanimalltransport.us julshippingcontainer.shop mybprassistenza.tips www.mybprassistenza.tips www.smartcoirinu.website smartcoirinu.website www.poemicontrol.com poemicontrol.com eliminacollegamento-relax.com www.eliminacollegamento-relax.com ocasiooptimalfitness.com www.ocasiooptimalfitness.com globalcloud.shop www.globalcloud.shop truemassagetan.store www.truemassagetan.store www.mgmconsult.online mgmconsult.online www.generictadalafil.info generictadalafil.info alm-eth.bescbridge.network www.alm-eth.bescbridge.network www.login.firstdanske.com login.firstdanske.com www.globalresource.co globalresource.co www.reed.royalopencollege.org.uk reed.royalopencollege.org.uk genteelenergy.com www.kubota.ssv75.marketvehicle23.shop kubota.ssv75.marketvehicle23.shop rabosavingsnz.com giovannalorenzini.com www.giovannalorenzini.com chevy07.marketvehicle23.shop www.chevy07.marketvehicle23.shop wavace.com www.wavace.com www.test.ejumina.com.py barbarella.ejumina.com.py peach.ejumina.com.py static.ejumina.com.py test.ejumina.com.py ejumina.com.py www.ejumina.com.py test.therealagustin.com hahtc.com www.app.customgov.org app.customgov.org adrianehatfield.org blogverse.digital thepuppyslover.com kidskicking.com fagoinvestment.com mughalinterior.com boticadz.com www.mixermvland.me mixermvland.me firstcryptoinvestment.com awansolution.com platinworldpass.co.in www.platinworldpass.co.in iptvpr.store www.iptvpr.store rabosavings-nz.com www.rabosavings-nz.com track.newmontexpress.com www.track.newmontexpress.com www.online-pbs.com glorenzinievents.com www.glorenzinievents.com www.muvitrade.live muvitrade.live generalauctionbank.com www.generalauctionbank.com www.kindbudget.com kindbudget.com www.fixtrade.us fixtrade.us www.activegummys.com activegummys.com www.rockpaperscissors.gg rockpaperscissors.gg orlandometalroofer.com www.orlandometalroofer.com tecnicosautorizados.net registeringmdjsccxz-jkfcdr.xseil.com www.registeringmdjsccxz-jkfcdr.xseil.com peeyouskateboarding.com www.hartibizaconcierge.com www.breetgen.com breetgen.com www.centroautorizadoccs.net centroautorizadoccs.net slnlhag9vlmnvbs8htyjhsqtyce.xseil.com www.slnlhag9vlmnvbs8htyjhsqtyce.xseil.com sentinelsassestscapitals.com www.sentinelsassestscapitals.com polando8.info hyperstar1.com breakingpiggybank.com excello-limited.com infonguide4u.com www.bestwholesalesllc.com bestwholesalesllc.com www.kursonijuan.com kursonijuan.com www.miniexcavator15.marketvehicle23.shop miniexcavator15.marketvehicle23.shop ignmarketingagencysakocpwpeceryeyfreui.xseil.com www.ignmarketingagencysakocpwpeceryeyfreui.xseil.com prbkazangirissayfasi.com www.newmontexpress.com newmontexpress.com checkturtlerace.com www.checkturtlerace.com greatjeep.shop www.alphaequiti.com alphaequiti.com www.cat308e2.marketvehicle23.shop cat308e2.marketvehicle23.shop range15autobiography.marketvehicle23.shop www.range15autobiography.marketvehicle23.shop soccertvapp.online www.soccertvapp.online moolo.online dubio.agency www.dubio.agency www.levodecoration.com levodecoration.com idrc.visualcode.agency www.blog.enterintorest.co.ke blog.enterintorest.co.ke api.customgov.org www.api.customgov.org

Malware Detected on Host

Count: 1 618a1d0e1e1f6d0a34a5ab6c08acf058ffe46938f53b3357f388df1c7909fc45

Open Ports Detected

2079 2082 2083 2095 21 443 80

CVEs Detected

CVE-2016-10735 CVE-2018-14040 CVE-2018-14042 CVE-2018-20676 CVE-2018-20677 CVE-2019-8331 CVE-2022-31628 CVE-2022-31629 CVE-2022-37454

Map

Whois Information

• NetRange: 66.29.128.0 - 66.29.159.255
• CIDR: 66.29.128.0/19
• NetName: NAMEC-4
• NetHandle: NET-66-29-128-0-1
• Parent: NET66 (NET-66-0-0-0-0)
• NetType: Direct Allocation
• OriginAS:
• Organization: Namecheap, Inc. (NAMEC-4)
• RegDate: 2021-03-05
• Updated: 2021-03-05
• Ref: https://rdap.arin.net/registry/ip/66.29.128.0
• OrgName: Namecheap, Inc.
• OrgId: NAMEC-4
• Address: 11400 W. Olympic Blvd. Suite 200
• City: Los Angeles
• StateProv: CA
• PostalCode: 90064
• Country: US
• RegDate: 2011-01-28
• Updated: 2017-01-28
• Ref: https://rdap.arin.net/registry/entity/NAMEC-4
• OrgTechHandle: EFIME-ARIN
• OrgTechName: Efimenko, Igor
• OrgTechPhone: +1-323-375-2822
• OrgTechEmail: igor.e@namecheap.com
• OrgTechRef: https://rdap.arin.net/registry/entity/EFIME-ARIN
• OrgTechHandle: TECHT4-ARIN
• OrgTechName: Tech team
• OrgTechPhone: +1-323-375-2822
• OrgTechEmail: tech@namecheaphosting.com
• OrgTechRef: https://rdap.arin.net/registry/entity/TECHT4-ARIN
• OrgAbuseHandle: ABUSE2885-ARIN
• OrgAbuseName: Abuse team
• OrgAbusePhone: +1-323-375-2822
• OrgAbuseEmail: abuse@namecheaphosting.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2885-ARIN

Links to attack logs

****** ****** ******