66.29.146.145 Threat Intelligence and Host Information

Mar 04, 2026 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 66.29.146.145 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Likely Malicious Host 🟠 59/100

Host and Network Information

  • Mitre ATT&CK IDs: T1027 - Obfuscated Files or Information, T1031 - Modify Existing Service, T1045 - Software Packing, T1055 - Process Injection, T1057 - Process Discovery, T1060 - Registry Run Keys / Startup Folder, T1063 - Security Software Discovery, T1069 - Permission Groups Discovery, T1071 - Application Layer Protocol, T1083 - File and Directory Discovery, T1105 - Ingress Tool Transfer, T1113 - Screen Capture, T1119 - Automated Collection, T1140 - Deobfuscate/Decode Files or Information, T1210 - Exploitation of Remote Services, T1449 - Exploit SS7 to Redirect Phone Calls/SMS, T1480 - Execution Guardrails, T1553 - Subvert Trust Controls, T1566 - Phishing, T1568 - Dynamic Resolution, T1583.005 - Botnet, T1583 - Acquire Infrastructure, T1590 - Gather Victim Network Information, TA0011 - Command and Control

  • Tags: aaaa, accept, accept encoding, acceptencoding, address, a domains, adversaries, alerts, analysis date, apache, as197540, as46606, asn as24940, asnone related, av detections, azerbaijan asn, backdoor, blog von, body, cdn.calltrk.com, certificate, chrome, ck id, ck matrix, classinfobase, click, cnlocalhost, command, cycbot, date, dclocal, ddos, default, defender, defense evasion, delete c, dennis schrder, dennis schroder, destination, directui, dns query, dns resolutions, dnssec, document, domain, domain add, dynamicloader, dyndns domain, element, emails, encrypt, entries, et smtp, explorer, filehash, files, file score, files ip, file v2, forbidden, format, for privacy, found, gecko, general, germany asn, germany unknown, getclassinfoptr, gmt cache, gmt content, gmt etag, guard, hello2malware, helloworld, high, host, hostname, hostname add, hstr, https domain, hybrid, ids detections, iemobile, iframe, informative, insert, install, ip address, ipv4 add, japan unknown, khtml, killer gecko, learn, less, level domain, local, malware, medium, message, meta, mirai, mitre att, moved, movie, msie, ms windows, mtb nov, mtb oct, named pipe, name servers, name tactics, newexternalport, newinternalport, newprotocol, newremotehost, next associated, nids, ok accept, passive dns, path, pdf library, pe32, port, pragma, present, present jun, present nov, present sep, prox, ransom, record value, redacted for, related pulses, reverse dns, script domains, script urls, servers, sgpauiclassinfo, site top, smartassembly, steals, strings, suspicious, tls sni, total, trojan, trojandropper, twitter, type indicator, united, united kingdom, unknown, url analysis, url http, url https, urls, verdict, whitelisted, win64, windows nt, write, write c, xserver, xxx adult, yara detections, yara rule

  • View other sources: Spamhaus VirusTotal

  • Country: United States
  • Network:
  • Noticed: 2 times
  • Protocols Attacked: SSH
  • Countries Attacked: Aruba, Australia, Canada, China, Finland, France, Germany, Hong Kong, Hungary, India, Italy, Japan, Poland, Switzerland, Türkiye, United Kingdom of Great Britain and Northern Ireland, United States of America
  • Passive DNS Results: ingramglobalpublishing.com www.ong39.shop ong39.shop a.excelplacementhr.com www.ingrambookspublishing.com sunshinehomesusa.com ingrambookspublishing.com mamanet-austria.at www.mamanet-austria.at ingrampublishinginc.com jesslmartinez.com rachelsaintjulien.com williammeegan.com www.lebonsommeil.fr clearcashtalk.com authorreginadoerr.com www.nibox.com voxytel.us dianafoods-eg.com www.dianafoods-eg.com www.daytradecampus.com daytradecampus.com www.earthandhuman.org www.voyagerpress.com redcolobusng.com andylindberg.co ingramselfpublishers.com tonygrundler.com daveshiwani.com beverlylatimer.com authordorrisjohasselbauer.com agentnuggets.com agentvirtuoso.com luminpeptides.com www.luminpeptides.com dialermatrix.com novaharmony.com ong39da.id www.9log.me 9log.me ong39info.id digitalandvantage.com www.digitalandvantage.com bf31-69topstreaming.top pokrstarscasino.com www.pokrstarscasino.com pokerstatscasino.eu www.pokerstatscasino.eu pokerstatscasino.com www.pokerstatscasino.com neviltorellok.com lifepathsafaris.com theinsidedrop.com made-products.com nikeshoesales.com www.burnsforiowa.com burnsforiowa.com thumbedge.com www.mejiasconsultings.com www.eandsmachine-staging.mejiasconsultings.com eandsmachine-staging.mejiasconsultings.com alzill.com visiontech-staging.mejiasconsultings.com www.visiontech-staging.mejiasconsultings.com afflinked.com theamzpublishingservices.com www.theamzpublishingservices.com bmsaglobalacademy.com lebonsommeil.fr www.test.mgrdivineplaza.com test.mgrdivineplaza.com noukriabroad.com shiningstartrims.com voztrix.com bmsaquranacademy.com hollywoodmonday.com axontechke.com www.axontechke.com bronkeforcongress.com litra.info supermariogames.biz togacor.xyz skamp3.xyz castoroilworld.com www.castoroilworld.com livepola4d.site yamunashopsyojna.com one.thepinnacleav.com www.one.thepinnacleav.com doujindesu.co.uk westridgemagic.com limitlessagrictech.com ghanayouthfederation.org readytostart.art directlink177.site navibits.com youthtvonline.com onlinemetro.shop maassluis.online latelierquinze.com biji18daftar.com farahspcashi.net liputan777.site portalkod1.agency o2oitsolution.com aklalbaithub.com thepiedmontplace.com beritaroketslot.com roketslotportal.com roketslotpedia.com roketslotblog.com roketslotbola.com roketslotnews.com adm4dportal.com adm4dnews.com thefroyorun.com adm4dpedia.com hyipinguide.com ong39portal.com ong39news.com ong39pedia.com nickdurso.com student-savior.wiki fastberoma.com moramormarketing.com sampreetibd.com alvatobras.com waheziitservices.com akilalbait.com rtp-djarum88love.com skamp2.xyz sedaweb.org axendialon.com pehose-yoripu.sbs wekoro-xicote.sbs dehera-dizuxe.sbs yuhiga-nuloba.sbs wubeso-macoro.sbs dajufi-xugexu.sbs cayeafrica.org hasibsadeqigroup.com loscalvitos.com klatencomputer.com ong39.website andrewrostov.com sonidocentral.com polesbandung.com blockchainreaders.com fxleather.com adoratraining.org freetoolkits.online thepinnacleav.com pinnacleavsolutions.com gargonea.com adoratrainingcenter.com amzpublishinghub.com settleaway.com haiticairo.org deutschweb.net shapearlconsulting.com fasrubu.com pulsenews24.online lebonsommeil.store portalkod.site iwp-brokerage.net london-eg.com yiming-chen.com oblast-fayla.com sfmappworld.store cozyzothra.com sleekvaron.com cleanquora.com swiftflara.com shinyklyfo.com mightyvora.com bravevelix.com boldlumra.com rapidvylis.com freshyvion.com fiercejyntra.com harmoni303.pro astoriasmartpropreties.com xalventuro.com xalvetrion.com ventralion.com valkronida.com streambrimavelo.com savantovia.com metranovia.com lorvendro.com zarnavalon.com quervantra.com norvalencia.com ringdoorbell.website ringdoorbell.pro flickflare.online formigueres.net areyougaming.com celevy.com buddyimmigration.com freethinku.com funnelboss.tech wabunifu.com estimpro.com tanamp3.xyz tanamp1.xyz tanamp2.xyz excelplacementhr.com jigeenihalfdieunited.org www.analisisteknikal.online mejiasconsultings.com roofrepairsdenverco.com royalhomedecorations.com thehaitianpostjournal.com lit-devices.com jax-eagle.com devfixer.com oproit.com skamp8.xyz skamp10.xyz skamp7.xyz skamp9.xyz zagoda.store growthpacks.online tartunni.com cancolter.com seaslack.com ibiklop.com bontulipo.com bazertof.com gambolicks.com kadstars.com redazino.com fatamuno.com tigaragh.com swanghana.org green2king.site alimamtrust.com canipt.com webdev-craft.com raboshini.com exahs.com aotbs.com bridgeclock.org www.traveltaxing.com traveltaxing.com sanajiya.com driversafeinspections.com rpsatumbig.online lpamp.xyz games-rupiah.com kare4uhealthcare.com prestigerealestateagency.com tvimate.com tyfawt.com chakirweb.com hawa1pureperfection.com www.bayanescort.shop bayanescort.shop dockbuilderstpetersburg.com capital5.website sherifghali.org www.sherifghali.org delacey.biz molybiu.com kimspj.site ifsaturk.net boslotbetkecil2024.com discounteddealsllc.com www.discounteddealsllc.com supremeplus.online seotoolery.com atlantischain.org perfumecavern.com rioranching.com ccghpg.com merckhb.site aoashi-manga.online ambarazul.com primebookspublishing.com ecolenahda.com alexaslot138ina.com penicalpro.website afrieuro.org aktifqq.store xxislot88.wiki xx1bet.org affefa.com mydigicountry.com sobhapropertise.com syedatraders.com thinqersbridge.com ayresdrywallcompany.com ibileclothiers.com global-grants.com ayo188ac.com ayo188as.com ayo188qq.com alexaslot138ac.com teifiriverstrust.com reviwag.com xxislot88a.com mripononline.com mripontech.com mriponjobs.com digiproduit.com taxi.jocmss.com www.taxi.jocmss.com showmaxads.site mabar88a.com www.mashlemanga.online mriponbd.com mashlemanga.online read-made-in-abyss.online read-sololeveling-manga.online read-bluelock-manga.online www.wasleni2.tawassy.com wasleni2.tawassy.com theannmag.com humerftr.online aestheticinteriorbd.com tiemuonline.store opulentrich.site langdifarms.com skamp3.xn–6frz82g swoolranch.com groupcompany24.xyz skamp3.store skamp2.online skamp5.click skamp4.club thetradingone.online mlmalpha.vip alexaslot138.name alexaslot138.dev alexaslot138.app skamp1.xyz okumaraboujaamah.org criptogoldtrading.online xxdeadpixels.com ayo188on.com dmvfurniturestore.com digigenhub.com ayo188.tech ayo188.cloud doctoralo.org ayo188.asia ayo188liga.org beautytips21.xyz teethtips.xyz looking21.xyz cosmetic21.xyz organic21.xyz bbm.biosolutionketo.org upl.biosolutionketo.org spbu.biosolutionketo.org pt.biosolutionketo.org ltd.biosolutionketo.org msc.biosolutionketo.org tambangpapua.com slot-ayo-188.com lubangbuaya.com yadika10.com ayo188.us maniakjp.drakealgar.com maniakslot.drakealgar.com kingbet188.drakealgar.com ugwin288.drakealgar.com worldtravel24.xyz touristworld24.xyz travelworld24.xyz visitworld24.xyz amp-amazon.store rajaslot-ayo188.com ekram24.xyz www.alaobeidat.com alaobeidat.com duniaguru.com pellepelleleatherclub.com www.test.syedatraders.com test.syedatraders.com jor.tawassy.com www.jor.tawassy.com brainsandbutter.com www.brainsandbutter.com www.iistanbultravesti.com iistanbultravesti.com alexaslot-138indonesia.com alexaslot138-indonesia.com alexaslot138indonesia.com busntruckchicago.site www.busntruckchicago.site xxislot88b.com www.xxislot88b.com cobadulubang.org www.xxislot88.store xxislot88.store www.motoservicepiaggio.site motoservicepiaggio.site tecnogaz.site rtpcancertoto.online rtpcancertoto.com evergoodinc.site groupebourass.site www.groupebourass.site mediterraneanmp.cam ayo188edu.com www.ayo188edu.com crystalphysiotherapy.com viakon.site colokdv.charity www.primebookspublishing.com www.similesworld.com similesworld.com khalidkharafi.site funlandsocialcasino.com mtecorp.cam www.thinqersbridge.com www.cavour-groupe.com acnezone.site kwswsayerco.site bandarsakong.wtf saifjohan.xyz chindylee.org aktifqq.life bandarsakong.lat marcolin.site baesuzy.xyz seoyeji.xyz kimjiwon.xyz nabertherm.site aktifqq.world memek4d.org mangafrieren.online omniscientreadermanga.online readspyxfamily.online anggunsbo.com toket69.com crot69xx.com memekslot.com memek88.com ngewe138.com ngewe69.com ngewebet.com ngentotslot.com ngentot4d.com kontolslotxx.com kontol88.com kontol138.com kontol69.com www.wisconsinfootball.net wisconsinfootball.net byu-football.org www.byu-football.org floridafootball.net www.floridafootball.net aktakisu.xyz wattswater.site groveresortorlando.site mkt.nucleodigital.org www.mkt.nucleodigital.org www.ss4.techdoctorhere.com ss4.techdoctorhere.com ss3.techdoctorhere.com www.ss3.techdoctorhere.com ssl.techdoctorhere.com www.ssl.techdoctorhere.com swengen.com www.swengen.com hosengli.store poolsafeinc.cam aktifpkv.com www.jujutsukaisenread.online jujutsukaisenread.online tyfwt-vision.website sololeveling-mangas.online proxima.international ayo288.com ayo298.com ayo198.com ayo187.com ayo178.com topslot87.com gracemadestore.com infopola88.com maternalia.org setan68.net aqua187.com memoir168.com lupin169.com pandawa169.com protogel167edu.com paradewa168.com petir169edu.com pagoda169.com badut68.com kuil68.com kalkun169.com kijangwin188.com kakap68.com

Malware Detected on Host

Count: 1 2acbc02142d0fa26823bd6b01c459eb05c4b0d9a41d563cf3d78707f3b07c98d

Open Ports Detected

21 443 80

CVEs Detected

CVE-2016-10735 CVE-2018-14040 CVE-2018-14042 CVE-2018-20676 CVE-2018-20677 CVE-2019-8331

Map

Whois Information

  • NetRange: 66.29.128.0 - 66.29.159.255
  • CIDR: 66.29.128.0/19
  • NetName: NAMEC-4
  • NetHandle: NET-66-29-128-0-1
  • Parent: NET66 (NET-66-0-0-0-0)
  • NetType: Direct Allocation
  • OriginAS:
  • Organization: Namecheap, Inc. (NAMEC-4)
  • RegDate: 2021-03-05
  • Updated: 2021-03-05
  • Ref: https://rdap.arin.net/registry/ip/66.29.128.0
  • OrgName: Namecheap, Inc.
  • OrgId: NAMEC-4
  • Address: 11400 W. Olympic Blvd. Suite 200
  • City: Los Angeles
  • StateProv: CA
  • PostalCode: 90064
  • Country: US
  • RegDate: 2011-01-28
  • Updated: 2024-11-25
  • Ref: https://rdap.arin.net/registry/entity/NAMEC-4
  • OrgAbuseHandle: ABUSE2885-ARIN
  • OrgAbuseName: Abuse team
  • OrgAbusePhone: +1-323-375-2822
  • OrgAbuseEmail: abuse@namecheaphosting.com
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2885-ARIN
  • OrgTechHandle: EFIME-ARIN
  • OrgTechName: Efimenko, Igor
  • OrgTechPhone: +1-323-375-2822
  • OrgTechEmail: igor.e@namecheap.com
  • OrgTechRef: https://rdap.arin.net/registry/entity/EFIME-ARIN
  • OrgTechHandle: TECHT4-ARIN
  • OrgTechName: Tech team
  • OrgTechPhone: +1-661-310-2107
  • OrgTechEmail: tech@namecheaphosting.com
  • OrgTechRef: https://rdap.arin.net/registry/entity/TECHT4-ARIN
  • network:Class-Name:network
  • network:Auth-Area:66.29.146.0/24
  • network:ID:NET-208276.66.29.146.145
  • network:IP-Network:66.29.146.145
  • network:IP-Network-Block:66.29.146.145
  • network:Org-Name:Web-hosting.com
  • network:Street-Address:3402 East University Drive
  • network:City:Phoenix
  • network:State:AZ
  • network:Postal-Code:85034
  • network:Country-Code:US
  • network:Tech-Contact:MAINT-208276.66.29.146.145
  • network:Created:20211006103042000
  • network:Updated:20211006103113000
  • network:Updated-By:net-admin@namecheap.com
  • contact:POC-Name:Network team
  • contact:POC-Email:net-admin@namecheap.com
  • contact:POC-Phone:
  • contact:Tech-Name:Network team
  • contact:Tech-Email:net-admin@namecheap.com
  • contact:Tech-Phone:
  • contact:Abuse-Name:Abuse team
  • contact:Abuse-Email:abuse@namecheaphosting.com
Share on: