68.65.122.74 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 68.65.122.74 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 41/100

Host and Network Information

• Tags: agenttesla, agentteslaexe, arkeistealer, azorult, azorultexe, danabot, darkrat, dridex, dridexopendir, emotetheodo, formbook, gandcrab, gozi, hancitor, hawkeye, heodo, icedid, kpot, kpotstealer, loader, loki, luminositylink, nanocore, nemty, netwire, phishing, phorpiex, pony, qakbot, qealler, quasarrat, raccoonstealer, remcos, remcosrat, servhelper, stealer, systembc, trickbot, troldesh, zloader

• JARM: 3fd3fd15d3fd3fd00042d42d000000038eaaf490bec8dc33757f165ce01762

• View other sources: Spamhaus VirusTotal

• Country: United States
• Network:
• Noticed: 2 times
• Protocols Attacked: SSH
• Passive DNS Results: ggii.pro eztrucking.us 4streamsacademy.org anideal.info localkarachi.xyz sindi.site almasafinance.com ac-magnatic.com dofuspouriesnoobs.com hajomarservice.com ofertasjetsmart.com exchangexmarket.com www.nasuba.africa nasuba.africa www.shadowroulette.online shadowroulette.online roxydognola.com www.roxydognola.com www.roulettetools.online roulettetools.online www.butlersrangers.org butlersrangers.org www.parcbisbee.com www.monark-cat-parts.com www.pandagemoy.store bububtc.site fitmanuals.com www.keris777.gacorx1000.com keris777.gacorx1000.com www.ohyesfun.com myemanoninstitutespace.org breakingnewsbar.online stacted.com bonaceeng.com gacorx1000.com royham-pasta.com slot99bet.gacorx1000.com www.slot99bet.gacorx1000.com newhilltrust.com www.jeviermiloi2027.xyz suiinu.com seolao.com infjinsight.com maaclotheshouse.co.uk www.maaclotheshouse.co.uk www.1867immigration.ca 1867immigration.ca evjo.net misteriboxgcor1945.pro millysol.life masterbrave.fun zcbci.us correctcanvassing.com meowfractal.site chabengstore.com buildmaster-srl.com nesmaelsharq.com rezrxtion.com memelove.xyz gbwhatap.com tipsonlywin.com essenceleaflycannabis.shop ara-cs.org tiendaguatemalteca.com notimara.com homelikheaven.com lostigergroup.com toptiertextures.com ekkolisten.com mpwepoxy.com chantaburi.com smartesservices.com estilo80radio.com rtpamd303.com dylkeessolutions.com bh33group.com bodymindsoulcruise.com kittysbouncehouses.com learnersinnedu.com www.att.genesisminning.com wondertrailslanka.com forgottenamericans.club parrotstarsofficial.com complejoladorotea.com clearwaisolutionsltd.com haltonhf.com ohyesfun.com evostripes.com hallow-grafix.store blogalchemist.live triotechltd.co.uk digitalduniya.store alexisuniqueweddings.com sheallovatheplace.com swordledaily.com hanleylawoffices.com hotbargainspot.com elitebuildersnc.com telecomcorp.cloud wirewallex.com tangemapp.com secretmaria.com induplasal.com parcbisbee.com ephodcloud.com redpalmproject.com mariamhaidar.com www.mariamhaidar.com resalas.com www.resalas.com bodydatang.com.ng www.bodydatang.com.ng xn–xg3b62spkg.com www.xn--xg3b62spkg.com papazsports.info www.nettikasinos.info nettikasinos.info www.analyticsquare.co.in analyticsquare.co.in highbcu.com rainbow.arkeaconsult.com www.rainbow.arkeaconsult.com moorehaircarellc.com disiniterbaikz.site pandagemoy.store sukax500x250x1000.shop bnh-software.online sureoddprediction.com seeouroffer1.com monark-cat-parts.com luxursint.com 1flock1shepherd.com rtpamd303gacor.com marymatining.design ajonbydesign.com gigks.com www.a.rtpamd303gacor.com a.rtpamd303gacor.com www.timeshareexitrelief.com pipspro.org www.uwecns.loopsol.com uwecns.loopsol.com dinofaucet.xyz dscvrymag.com i3det.com genesisminning.com standforisrael.today pipsfx.org allbeehealth.com www.allbeehealth.com cryptonook.net www.cryptonook.net statesbusinesssolutions.com hoardofunicorns.com zeebahsignature.com femode.co.uk reddyfood-v2.site essencecannabisdelivery.com vaulters.tech www.vaulters.tech www.148286gl.com 148286gl.com schottjewelrymart.com www.schottjewelrymart.com forbiddenorgasm.com www.forbiddenorgasm.com www.coropzoinsdigltal.online coropzoinsdigltal.online dwyerindustrial.com covenlearn.com sonnetiq.com interstandardsreport.com crissoncaribbeanmarine.com www.crissoncaribbeanmarine.com oaad.org kang138.cloud moviemate.pro capycoin.lol lookatmyoffer.us wisdomtreestellar.com azuraglow.com simpseeker.com shopier-elektroevim.com www.gacorken.dev www.alamodotcompliance.com timeshareexitrelief.com raxxoon.xyz fubr.lol nasuba.info fubr.bot atclayshop.com dominionstocktrade.com ordr-vntdl.com brett2.xyz worylesmannaa.site vrijlenen.online locationlabtech.biz artzymindshiftacademy.com arkeaconsult.com alsyedthreads.com texpertdeals.com visionfrontdigital.com lumistoneafrica.com lertecoassetaccount.com paygatepay.com bousherlights.com rsmbatix.com newshour.website paragon-invest.center trusted5wings.com timeshareexitcenter.com dignispace.com vacinacaogoverno.com primetransitsolution.com golto-support.com olomillionairetrucking.com rmeldau.com pepesolcoin.xyz ainnalsqr.com codebtechnologies.com sierranomada.com miniangles.com zenlifeharmony.com layingdownmiles.com glimermaids.com juulfitness.com kraputik.com circuitrynft.xyz panda-shop.vip tranquilityonline.store mbo.shopping nobility-association.org ventacruzazul.online bestwealthub.online ohanabesti.live gacorken.dev mashquark.com www.mashquark.com alamodotcompliance.com tskitsolutionltd.com trinoggin.com dreampupol.com ccandmasonry.com shaksikh.com lateye.com lynettenicolebrown.com big-tool-store.com oasiscrest.com usmanaffiliate.com emmsphotography.com electronics-special.com firesidevintagecollectors.com msgfs.xyz jeviermiloi2027.xyz matlive.website digitalginius.store goffygroffe.site hhresi.org haulsafe.org hyipgator.online td-ameritrade.ltd aalriyadh.info confirmtransitoiremonnaie.info accidentclaimrepair.com themagazineblog.com tarautorecovery.com chefruddy.com valdor1.com myleafycave.com ziggysquatch.com infolemons.com pupesol.com babygoldencoin.com goyangamp.com getapaystub.com evilgnep.com nficu.com regionallens.com floridaneil.com fashion-express-pro.com tab66th.com www.tab66th.com awvconstructions.com deskdecors.store www.tannislouise.com www.zbukurimi.com zbukurimi.com foresttenure.org refinedtalentmgmt.com www.donsha.net donsha.net elpandorapub.com lujocontracting.com akhooni.com www.einsteinsaloon.com einsteinsaloon.com lakeviewmerchant.com quaysidexpress.com predik99ndm.org expressmovements.com mybookdate.com jordanwoods.education biclassimport.com www.demo.knowledgetoolbox.co.uk demo.knowledgetoolbox.co.uk www.powersign.uk powersign.uk www.kickstart-bnb.club dragon1curtains.com www.geminienggroupy.com www.superbusdigital.com bookmyroof.com territorybbq.com dare-wings.com thechannelz.com cloudassociation.me naqvi.dentiment.com refinedtalentmanagement.com www.arabianstar.net robinpatronik.com eclecticcreative.work golatam.online www.golatam.online www.elearning.zeklani.ma elearning.zeklani.ma www.barbarayoungsinger.com luciahealthcare.com firstinstantdelivery.com vedaantpatel.me www.vedaantpatel.me 3stepmedia.com fergands.com f2i-cp28bis-mt.fr www.f2i-cp28bis-mt.fr test.landmarket.ng www.test.landmarket.ng www.craxtich.co.uk craxtich.co.uk techyrooh.com www.techyrooh.com www.landmarket.ng landmarket.ng mediagency.ma www.mediagency.ma www.f2i-cp22-il.fr f2i-cp22-il.fr www.sanguchoncampesino.pe sanguchoncampesino.pe apcun.org www.apcun.org www.rent.zeklani.ma rent.zeklani.ma www.fortuneapp.xyz fortuneapp.xyz myespace.xyz www.sharkscheckout.com sharkscheckout.com grant.priorityparceltransit.com www.grant.priorityparceltransit.com priorityparceltransit.com www.priorityparceltransit.com sailingloc.zeklani.ma www.sailingloc.zeklani.ma wifigroub.com www.iptvsharks.com iptvsharks.com sfdjobs.com www.emergencykenya.com emergencykenya.com www.blog.faisalfoods.com blog.faisalfoods.com bitideal.online suns-research.org www.suns-research.org citytocitymarket.biz www.citytocitymarket.biz www.jewelsforyou.zeklani.ma jewelsforyou.zeklani.ma binancifyfxpro.net moviesfreedownload.xyz aimqr.com quantumsimuletter.com www.test.hablogger.com test.hablogger.com imempowered.online www.imempowered.online verifiedescortsandmore.com bitoptionstrading.com demos.shabakaat.com kstarafrica.com shermanekr.com yujikas.researchscl.com www.yujikas.researchscl.com www.yertos.researchscl.com yertos.researchscl.com quikas.researchscl.com www.quikas.researchscl.com www.drewas.researchscl.com drewas.researchscl.com clikup.researchscl.com www.clikup.researchscl.com mijuhay.researchscl.com www.mijuhay.researchscl.com nikulos.researchscl.com www.nikulos.researchscl.com geyust.researchscl.com www.geyust.researchscl.com bluespringfinancials.com piximod.com fountier.researchscl.com www.fountier.researchscl.com www.brantas.researchscl.com brantas.researchscl.com pengkolan.researchscl.com www.pengkolan.researchscl.com noughty.researchscl.com www.noughty.researchscl.com www.dapuroka.researchscl.com dapuroka.researchscl.com paweria.researchscl.com www.paweria.researchscl.com www.kalempongs.researchscl.com kalempongs.researchscl.com www.sekarung.researchscl.com sekarung.researchscl.com sepurane.researchscl.com www.sepurane.researchscl.com komplosan.researchscl.com www.komplosan.researchscl.com www.muaramasa.researchscl.com muaramasa.researchscl.com raupanmuka.researchscl.com www.raupanmuka.researchscl.com manjakala.researchscl.com www.manjakala.researchscl.com restarea.researchscl.com www.restarea.researchscl.com palokore.researchscl.com www.palokore.researchscl.com www.sapujagat.researchscl.com sapujagat.researchscl.com molakata.researchscl.com www.molakata.researchscl.com prediksilengkapnadim8899.com www.prediksilengkapnadim8899.com abacusinvests.net foodbea.org foodbia.org www.ibank.statcu.com ibank.statcu.com www.digitallitecapital.ltd digitallitecapital.ltd gecui1.us www.gecui1.us www.statcu.com statcu.com www.foodporion.org foodporion.org www.so252.com so252.com www.foodlytical.org foodlytical.org www.yourtexglobal.com yourtexglobal.com foodyounth.org www.foodyounth.org www.maxifiton.com maxifiton.com xzadeals.xyz rcuz.site www.rcuz.site belfiu-be.profieldirectwijzigenweb.com www.belfiu-be.profieldirectwijzigenweb.com www.connectnurse.uk connectnurse.uk www.kb-touc-be.profieldirectwijzigenweb.com kb-touc-be.profieldirectwijzigenweb.com www.thelemonagency.co thelemonagency.co www.illuminattt.com illuminattt.com www.courier.untdexpress.com courier.untdexpress.com www.farmsteaddining.net www.track.untdexpress.com track.untdexpress.com inmoot.com www.inmoot.com mastedo.com www.mastedo.com www.bluspringfinancials.com bluspringfinancials.com robiux.cam chess-boards-store.com untdexpress.com aimenu.in www.aimenu.in www.unolisting.com unolisting.com www.art-base.io

Malware Detected on Host

Count: 2 2e6dc6d58f8a8f2f16b4b6e1929b8ffd9c1ec79fe654c3614b195b82088eb88d 8bf73abfbd10b2bf21fad61d90e2154d7e2ad8828f7c8c890ec7b707a48e4c6a

Open Ports Detected

110 2082 2083 2096 21 26 443 465 53 80 993 995

CVEs Detected

CVE-2007-3205 CVE-2013-2220 CVE-2016-10735 CVE-2018-14040 CVE-2018-14042 CVE-2018-20676 CVE-2018-20677 CVE-2019-8331 CVE-2024-5458

Map

Whois Information

• NetRange: 68.65.120.0 - 68.65.123.255
• CIDR: 68.65.120.0/22
• NetName: NCNET-7
• NetHandle: NET-68-65-120-0-1
• Parent: NET68 (NET-68-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS16626, AS11855, AS174, AS4323, AS3356, AS22612, AS20454, AS32421
• Organization: Namecheap, Inc. (NAMEC-4)
• RegDate: 2015-03-06
• Updated: 2015-03-06
• Comment: http://namecheap.com
• Comment: for any abuse please use: abuse@namecheap.com
• Ref: https://rdap.arin.net/registry/ip/68.65.120.0
• OrgName: Namecheap, Inc.
• OrgId: NAMEC-4
• Address: 11400 W. Olympic Blvd. Suite 200
• City: Los Angeles
• StateProv: CA
• PostalCode: 90064
• Country: US
• RegDate: 2011-01-28
• Updated: 2024-11-25
• Ref: https://rdap.arin.net/registry/entity/NAMEC-4
• OrgAbuseHandle: ABUSE2885-ARIN
• OrgAbuseName: Abuse team
• OrgAbusePhone: +1-323-375-2822
• OrgAbuseEmail: abuse@namecheaphosting.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2885-ARIN
• OrgTechHandle: TECHT4-ARIN
• OrgTechName: Tech team
• OrgTechPhone: +1-323-375-2822
• OrgTechEmail: tech@namecheaphosting.com
• OrgTechRef: https://rdap.arin.net/registry/entity/TECHT4-ARIN
• OrgTechHandle: EFIME-ARIN
• OrgTechName: Efimenko, Igor
• OrgTechPhone: +1-323-375-2822
• OrgTechEmail: igor.e@namecheap.com
• OrgTechRef: https://rdap.arin.net/registry/entity/EFIME-ARIN

Links to attack logs

****** ****** ******