66.29.137.10 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 66.29.137.10 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 35/100

Host and Network Information

• Tags: anna paula, associated, currc3adculo, from email, headers, malspam email, msi file, phishing, scam, tuesday, utf8, zip archive

• JARM: 3fd3fd15d3fd3fd00042d42d000000038eaaf490bec8dc33757f165ce01762

• View other sources: Spamhaus VirusTotal

• Country: United States
• Network: AS22612 namecheap inc.
• Noticed: 1 times
• Protcols Attacked: SSH
• Passive DNS Results: teeztrend.com amp-1046e5046e44s654a.com golfsheroes.com rwandalacrosse.com www.amp-ffs.com beakidneydonor.com aathrillerbooks.com amp-j20.com zeronshop.com www.wcttllc.com wcttllc.com amp-p2m.com inforaja100.com amp-scw77.com amp-s89.com amp-scp.com amp-bns.com amp-scw88.com amp-scw.com amp-d89.com amp-rj1.com amp-mad.com amp-y20.com amp-ffs.com daftarp200m.com loginmadura88.com bounce.africa jabalee.africa fbicryptoiq.us www.fbicryptoiq.us emilybestie.com crusaders.africa budgetbuttermarket.com commerceone.quest loginy200m.com rtpraja100.fun catbreedersz.com hwyppa.com bhphguides.com hikysum.com pacificoenergygroup.com www.pdses.com pdses.com weelogs.com assu.space thinkshot.site rtpsgcwin.live linkp200m.com clinique-tunisie-esthetique.com p200m.online premiumpanjabi.zeronshop.com www.premiumpanjabi.zeronshop.com dmh.zeronshop.com www.dmh.zeronshop.com www.techquarterly.asia techquarterly.asia blockpic.store fbclip.com www.esmvpharma.mr esmvpharma.mr newadditions.site appliedneurosolutions.org arvensis3.click arvensis44.click arvensis18.click arvensis8.click arvensis13.click arvensis37.click arvensis42.click arvensis31.click arvensis43.click arvensis22.click arvensis49.click arvensis7.click arvensis21.click arvensis48.click arvensis10.click arvensis29.click arvensis2.click arvensis39.click arvensis17.click arvensis4.click arvensis33.click arvensis46.click arvensis26.click arvensis36.click arvensis12.click arvensis19.click arvensis14.click arvensis9.click arvensis45.click arvensis34.click arvensis35.click arvensis30.click arvensis24.click arvensis1.click arvensis6.click arvensis47.click arvensis23.click arvensisz.click arvensis32.click arvensis25.click arvensis27.click arvensis50.click arvensis41.click arvensis16.click arvensis11.click arvensis40.click arvensis38.click arvensis5.click arvensis20.click arvensis15.click dubai-imlaq.com rtpraja100.com www.arvensis28.click arvensis28.click rtpsgcwin.info idedicategroup.com ioirentals.com www.salessprinter.com salessprinter.com www.haippa.net haippa.net kiakiahosting.com www.distinctfamilyservices.com distinctfamilyservices.com flashymotors.com femininelevelup.com www.rtpmadura88.online rtpmadura88.online console.reni.tech www.console.reni.tech ind.yasaudi.com www.ind.yasaudi.com kiddo-quiz.single-solution.com www.kiddo-quiz.single-solution.com www.e-menu.bz emenu.bz e-menu.bz www.murjon.single-solution.com murjon.single-solution.com theteachertool.single-solution.com www.theteachertool.single-solution.com www.wordpress.single-solution.com wordpress.single-solution.com tech.single-solution.com www.tech.single-solution.com imff.e-menu.bz www.imff.e-menu.bz www.usefulcontent.org usefulcontent.org www.sync.e-menu.bz sync.e-menu.bz www.daloporhecho.cl daloporhecho.cl factualhub.online drehabs.com www.drehabs.com prediksipastijp.com www.prediksipastijp.com freespinwarung168.com www.rtpmadura88.com rtpmadura88.com www.haloglowaesthetics.com haloglowaesthetics.com www.olafbeautyafromobilehairdresser.com olafbeautyafromobilehairdresser.com rtpsgcwin.com www.rtpsgcwin.com bitsclassifieds.com www.bitsclassifieds.com fireswitch.website www.fireswitch.website paragonaltcap.com anugrahafoundation.co.in cepatwd.com sudahwd.com lagiwd.com pengenwd.com asikwd.com www.asikwd.com dev.single-solution.com www.depopulsa4d.com depopulsa4d.com www.flexybills.com flexybills.com www.crownwithhope.com crownwithhope.com rtpliveraja100.com articles.center www.cargo.joke96.com cargo.joke96.com oneboxgrooming.men www.oneboxgrooming.men abimbolaotesanya.com nwbuyback.com artveko.com renoserve.co.uk getawebsite.tech xenasbeautycompany.com alanleecompany.com tbonesstore.com thebeachportraitcompany.com silverstarconstructioncompany.com barbarycoastbooks.com greenmeadowbarncompany.com orchardhousebooksellers.com rolandparkbagelcompany.com parulenterprisesdist.com asianexpressgrantspass.com bonniesparsonage.com graciouspark.com social.joke96.com www.jmsdesignstudio.in jmsdesignstudio.in shalomlcm.com oshibroi-concept.com mcaestheticclinic.com www.dharanicbse.com geekcareservicesinc.com www.tribotz.com tribotz.com www.e-comm.ma e-comm.ma amsonimmigration.com www.amsonimmigration.com www.perfectsign.ca perfectsign.ca iphindiacrm.com sino-harvestkpg.com samoladigitals.com www.samoladigitals.com www.demo.minisoft.online demo.minisoft.online www.app.pamlending.com app.pamlending.com www.nkjtrades.com nkjtrades.com www.socialwithtola.com socialwithtola.com meetupwire.com booking.airhomes.online www.homelart.co.uk homelart.co.uk airhomes.online www.airhomes.online digivoo.com www.digivoo.com lamanai.thedecktapasbar.bz www.lamanai.thedecktapasbar.bz www.iphindia.co.in iphindia.co.in grovetsllc.com www.pseo.in pseo.in www.avd.minisoft.online avd.minisoft.online jurassicworlddominionfullmovie.com www.royalcoachbuilders.in royalcoachbuilders.in ias-coaching.in www.ias-coaching.in www.empresaswebsite.com empresaswebsite.com curers.ca www.curers.ca www.tribo.sale-premint.com tribo.sale-premint.com www.worldofwomen.sale-premint.com worldofwomen.sale-premint.com www.veefriends.sale-premint.com veefriends.sale-premint.com qql-art.sale-premint.com www.qql-art.sale-premint.com www.yu-gi-yn.sale-premint.com yu-gi-yn.sale-premint.com wolfgame.sale-premint.com www.wolfgame.sale-premint.com www.champions.sale-premint.com champions.sale-premint.com nyolings.sale-premint.com www.nyolings.sale-premint.com www.gossamer.sale-premint.com gossamer.sale-premint.com www.gangsterallstar.sale-premint.com gangsterallstar.sale-premint.com www.finiliar.sale-premint.com finiliar.sale-premint.com crazyrichyellows.sale-premint.com www.crazyrichyellows.sale-premint.com collectvox.sale-premint.com www.collectvox.sale-premint.com www.whosjilabs.sale-premint.com whosjilabs.sale-premint.com tamadoge.sale-premint.com www.tamadoge.sale-premint.com monuverse.sale-premint.com www.monuverse.sale-premint.com www.iconicmoments.sale-premint.com iconicmoments.sale-premint.com www.deadfellaz.sale-premint.com deadfellaz.sale-premint.com 8liens.sale-premint.com www.8liens.sale-premint.com sale-premint.com www.sale-premint.com gcsdomain.com www.gcsdomain.com spaceproductions.ma www.spaceproductions.ma www.bcaplay.space bcaplay.space maxpro88h.com www.maxpro88h.com alleygolf.com www.alleygolf.com maximustech.net www.maximustech.net www.iamaaustralia.org iamaaustralia.org www.qrcodelinks.io qrcodelinks.io www.torontohomeswithirene.com torontohomeswithirene.com minisoft.online pm.maximustech.net www.pm.maximustech.net swiped360.com archimedesalliance.org www.go2tricountyautogroup.com go2tricountyautogroup.com www.jacobsfinancialgroup.net jacobsfinancialgroup.net rapidcitydancefactory.com www.rapidcitydancefactory.com www.simplegiftspiano.com simplegiftspiano.com www.tailwagginggifts.com tailwagginggifts.com www.artofdev.xyz artofdev.xyz www.aidharmonisation.org aidharmonisation.org diamondprice.org www.diamondprice.org www.genaserviceapartments.com genaserviceapartments.com www.mkt.joke96.com mkt.joke96.com mikehundleyagency.com www.leadingwins.com leadingwins.com www.hrm.joke96.com hrm.joke96.com myowalls.com torontoinsight.com www.maxxowalls.com maxxowalls.com renicloud.com www.renicloud.com logistics-demo.reni.tech www.logistics-demo.reni.tech selloblanco-mineco.com coin-juice.com maxxxraw.com maxxolist.com rawxfanta.com rawxwixx.com www.maxxfexxr.com maxxfexxr.com www.vijayalakshmi.net.in vijayalakshmi.net.in www.etlengineering.com.ng etlengineering.com.ng joke96.com socproof.com www.socproof.com eastx.xyz www.eastx.xyz www.pamlending.com pamlending.com www.tasfiaschool.edubd.info tasfiaschool.edubd.info berita.bojonggebangmedia.my.id www.berita.bojonggebangmedia.my.id probowlbowl.com 276ufc.com worldwidevirtualservices.com renigo.com www.sheda.school sheda.school aspasarasota.net yeane.live bilonoton.online bilonton.online allenspaude.com tuscanasalonandspa.com theprestigiouspainters.com spalabnyc.com lenailsspamemphis.com gibzsalonandspa.com asiannailspa.com www.asiannailspa.com waxpotspa.com www.waxpotspa.com www.thepspaperie.com thepspaperie.com pepperspantry.net www.pepperspantry.net www.mirrormirrorspaminot.com mirrormirrorspaminot.com paradisespanail.com www.paradisespanail.com www.laromaspa.com laromaspa.com spartanalarm.net www.spartanalarm.net www.spartanlawfirm.com spartanlawfirm.com www.balancespaneworleans.com balancespaneworleans.com piabellabonustalep.com gototrdg.com bilonotan.com www.bilonotan.com edubd.info www.edubd.info www.lancerlution.com lancerlution.com www.ameme90ka.com ameme90ka.com itzascaribbeanflavours.e-menu.bz www.itzascaribbeanflavours.e-menu.bz hyosnug-group.com www.hyosnug-group.com www.ajitapasbar.e-menu.bz ajitapasbar.e-menu.bz kfccatering.e-menu.bz www.kfccatering.e-menu.bz www.themojitohouse.e-menu.bz themojitohouse.e-menu.bz www.elbencabanas.e-menu.bz elbencabanas.e-menu.bz jks.e-menu.bz www.jks.e-menu.bz www.yomsdirect.com www.suchmoney.co suchmoney.co www.api.renitrust.com api.renitrust.com www.api.reni.store api.reni.store ufc270s.com www.djokovicvskyrgios.co.uk djokovicvskyrgios.co.uk www.shedahouse.com shedahouse.com thorloveandthunderr.com lifestorieswithmarchoberman.com demo.e-menu.bz www.demo.e-menu.bz www.youtube.hive.builders youtube.hive.builders www.tourdefrancee.com tourdefrancee.com wwemoneyinthebankbank.com minionstheriseofgrugru.com www.ufc276ufc.com ufc276ufc.com wartaqiacademy.org www.wartaqiacademy.org wimbledonlivelive.com www.wimbledonlivelive.com meetpeople.app www.meetpeople.app hive.builders www.loan.dance loan.dance dharanicbse.com podiumconference.info www.podiumconference.info www.sitetrek.com sitetrek.com www.vanityplumbing.com moviejurassicworlddominion.com jurassicworlddominionn.com www.jurassicworlddominionn.com celticsvswarriors.com nbafinalsfinalsnba.com www.nbafinalsfinalsnba.com core.reni.tech www.core.reni.tech reniaccounts.com aewdoubleorornothing.com indyindy500indy.com bestratedcalgary.com www.bestratedcalgary.com indy500500.com www.indy500500.com frenchopenlivelive.com

Open Ports Detected

2077 2079 2080 2082 2083 21 443 53 80 993 995

CVEs Detected

CVE-2016-10735 CVE-2018-14040 CVE-2018-14042 CVE-2018-20676 CVE-2018-20677 CVE-2019-8331 CVE-2022-31628 CVE-2022-31629 CVE-2022-37454

Map

Whois Information

• NetRange: 66.29.128.0 - 66.29.159.255
• CIDR: 66.29.128.0/19
• NetName: NAMEC-4
• NetHandle: NET-66-29-128-0-1
• Parent: NET66 (NET-66-0-0-0-0)
• NetType: Direct Allocation
• OriginAS:
• Organization: Namecheap, Inc. (NAMEC-4)
• RegDate: 2021-03-05
• Updated: 2021-03-05
• Ref: https://rdap.arin.net/registry/ip/66.29.128.0
• OrgName: Namecheap, Inc.
• OrgId: NAMEC-4
• Address: 11400 W. Olympic Blvd. Suite 200
• City: Los Angeles
• StateProv: CA
• PostalCode: 90064
• Country: US
• RegDate: 2011-01-28
• Updated: 2017-01-28
• Ref: https://rdap.arin.net/registry/entity/NAMEC-4
• OrgTechHandle: EFIME-ARIN
• OrgTechName: Efimenko, Igor
• OrgTechPhone: +1-323-375-2822
• OrgTechEmail: igor.e@namecheap.com
• OrgTechRef: https://rdap.arin.net/registry/entity/EFIME-ARIN
• OrgTechHandle: TECHT4-ARIN
• OrgTechName: Tech team
• OrgTechPhone: +1-661-310-2107
• OrgTechEmail: tech@namecheaphosting.com
• OrgTechRef: https://rdap.arin.net/registry/entity/TECHT4-ARIN
• OrgAbuseHandle: ABUSE2885-ARIN
• OrgAbuseName: Abuse team
• OrgAbusePhone: +1-323-375-2822
• OrgAbuseEmail: abuse@namecheaphosting.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2885-ARIN
• network:Class-Name:network
• network:Auth-Area:66.29.137.0/24
• network:ID:NET-184448.66.29.137.10
• network:IP-Network:66.29.137.10
• network:IP-Network-Block:66.29.137.10
• network:Org-Name:Web-hosting.com
• network:Street-Address:3402 East University Drive
• network:City:Phoenix
• network:State:AZ
• network:Postal-Code:85034
• network:Country-Code:US
• network:Tech-Contact:MAINT-184448.66.29.137.10
• network:Created:20210526104506000
• network:Updated:20210528134056000
• network:Updated-By:net-admin@namecheap.com
• contact:POC-Name:Network team
• contact:POC-Email:net-admin@namecheap.com
• contact:POC-Phone:
• contact:Tech-Name:Network team
• contact:Tech-Email:net-admin@namecheap.com
• contact:Tech-Phone:
• contact:Abuse-Name:Abuse team
• contact:Abuse-Email:abuse@namecheaphosting.com

Links to attack logs

****** ****** ******