IOC Radar
IPMediumSignal 79/100

66.29.154.219

Location
United StatesUnited States
Los Angeles, California
ASN
AS22612
Namecheap, Inc.
First Seen
May 11, 2026
Last Seen
Jun 2, 2026
May 11
First Seen
35d ago
Jun 2
Last Seen
12d ago
13
Reports
source reports
79%
Confidence
medium
8/91
VirusTotal
detections
Found in 13 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
79%
Signal Score
79 / 100
IDS Rule
No
Threat Context
Tags

Network Information

CountryUSUnited States
RegionLos Angeles, California
ASNAS22612
OrganizationNamecheap, Inc.

Feed Intelligence Summary

13 reports79% confidence
13
Source reports
79%
Confidence score
Category tags
abuseactive scanaptbad reputationbrute forcebrute-forcebruteforcecowrieddosddos attackdionaeaexploitation activityfatthackingimapimap attackindicatornetworknorth americap0fphishingresearchedscannersensor-taggedsmtpsmtp attackerspamsshtannerthreat actortpotunited statesusweb spam

Activity Timeline

1 total obs
Jun 2Jun 2

Threat Activity Heatmap

· Peak: 2026-06-02
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Intelligence SummaryAI Generated

This Indicator of Compromise (IOC), an IPv4 address, is of significant concern due to its high threat score of 78.78 and extensive listing across multiple reputable threat intelligence feeds, including AbuseIPDB, Blocklist.de, AlienVault OTX, and SOCRadar. This consistently high reporting strongly suggests that the IP address 66.29.154.219 is either actively engaged in malicious activities or functions as a critical component of adversary infrastructure. Potential impacts if this IOC is encounte…

Threat ScoreHigh Risk
79
SIGNAL
Signal Score
79%
Confidence
13
Reports
First seenMay 11, 2026
Last seenJun 2, 2026
GeolocationUS
CountryUnited States
LocationLos Angeles, California
ASNAS22612
OrgNamecheap, Inc.
Coords37.7510, -97.8220

VirusTotal

8/ 91vendors flagged
9% detection rateJun 3, 2026

WHOIS

description
Observed on T-Pot within last 24h; sensors=honeytrap, p0f; threshold?1; private IPs excluded. geo=US; ports=2087 Location=Sydney, Australia.
raw
NetRange: 66.29.128.0 - 66.29.159.255 CIDR: 66.29.128.0/19 NetName: NAMEC-4 NetHandle: NET-66-29-128-0-1 Parent: NET66 (NET-66-0-0-0-0) NetType: Direct Allocation OriginAS: Organization: Namecheap, Inc. (NAMEC-4) RegDate: 2021-03-05 Updated: 2021-03-05 Ref: https://rdap.arin.net/registry/ip/66.29.128.0 OrgName: Namecheap, Inc. OrgId: NAMEC-4 Address: 11400 W. Olympic Blvd. Suite 200 City: Los Angeles StateProv: CA PostalCode: 90064 Country: US RegDate: 2011-01-28 Updated: 2024-11-25 Ref: https://rdap.arin.net/registry/entity/NAMEC-4 ReferralServer: rwhois://whois.namecheaphosting.com:4321 OrgTechHandle: EFIME-ARIN OrgTechName: Efimenko, Igor OrgTechPhone: +1-323-375-2822 OrgTechEmail: [email protected] OrgTechRef: https://rdap.arin.net/registry/entity/EFIME-ARIN OrgAbuseHandle: ABUSE2885-ARIN OrgAbuseName: Abuse team OrgAbusePhone: +1-323-375-2822 OrgAbuseEmail: [email protected] OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2885-ARIN OrgTechHandle: TECHT4-ARIN OrgTechName: Tech team OrgTechPhone: +1-661-310-2107 OrgTechEmail: [email protected] OrgTechRef: https://rdap.arin.net/registry/entity/TECHT4-ARIN
references
https://malware-filter.gitlab.io/malware-filter/botnet-filter.txt

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 month ago · Last seen 12 days ago
Appeared in 13 threat reports