URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	99.71.130.109
Firstseen:	2024-05-20 21:19:04 UTC
Total malware sites :	48
Online malware sites :	29 (60%)
Offline Malware sites :	19 (40%)
Newest active malware site :	2024-05-24 04:30:53 UTC
Oldest active malware site :	2024-05-20 21:19:20 UTC (Age: 2 years, 0 months, 17 days, 16 hours, 9 minutes)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2024-05-20 21:19:20	99.71.130.109	99-71-130-109.lightspeed.lsanca.sbcglobal.net	Not listed	AS7018 ATT-INTERNET4	US	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2024-05-24 04:30:53	http://99.71.130.109:8021//sshd	Online	backdoor sshdkit	abus3reports
2024-05-24 04:30:52	http://99.71.130.109:8041//sshd	Online	backdoor sshdkit	abus3reports
2024-05-24 04:30:22	http://99.71.130.109:8050//sshd	Online	backdoor sshdkit	abus3reports
2024-05-24 04:30:01	http://99.71.130.109:8034//sshd	Online	backdoor sshdkit	abus3reports
2024-05-24 04:29:55	http://99.71.130.109:8055//sshd	Online	backdoor sshdkit	abus3reports
2024-05-24 04:29:47	http://99.71.130.109:8039//sshd	Online	backdoor sshdkit	abus3reports
2024-05-24 04:29:44	http://99.71.130.109:8042//sshd	Online	backdoor sshdkit	abus3reports
2024-05-24 04:29:30	http://99.71.130.109:8040//sshd	Online	backdoor sshdkit	abus3reports
2024-05-24 04:29:13	http://99.71.130.109:8028//sshd	Online	backdoor sshdkit	abus3reports
2024-05-24 04:29:09	http://99.71.130.109:8048//sshd	Online	backdoor sshdkit	abus3reports
2024-05-24 04:28:58	http://99.71.130.109:8027//sshd	Online	backdoor sshdkit	abus3reports
2024-05-24 04:28:57	http://99.71.130.109:8049//sshd	Online	backdoor sshdkit	abus3reports
2024-05-24 04:28:57	http://99.71.130.109:8054//sshd	Online	backdoor sshdkit	abus3reports
2024-05-24 04:28:57	http://99.71.130.109:8035//sshd	Online	backdoor sshdkit	abus3reports
2024-05-24 04:28:40	http://99.71.130.109:8025//sshd	Offline	backdoor sshdkit	abus3reports
2024-05-24 04:28:39	http://99.71.130.109:8022//sshd	Online	backdoor sshdkit	abus3reports
2024-05-23 19:29:14	http://99.71.130.109:8042/ssh	Offline	elf	RacWatchin8872
2024-05-23 19:29:13	http://99.71.130.109:8041/ssh	Offline	elf	RacWatchin8872
2024-05-23 19:29:12	http://99.71.130.109:8035/ssh	Offline	elf	RacWatchin8872
2024-05-23 19:29:11	http://99.71.130.109:8048/ssh	Offline	elf	RacWatchin8872
2024-05-23 19:29:11	http://99.71.130.109:8049/ssh	Offline	elf	RacWatchin8872
2024-05-23 19:29:10	http://99.71.130.109:8050/ssh	Offline	elf	RacWatchin8872
2024-05-23 19:29:10	http://99.71.130.109:8027/ssh	Offline	elf	RacWatchin8872
2024-05-23 19:29:10	http://99.71.130.109:8039/ssh	Offline	elf	RacWatchin8872
2024-05-23 19:29:08	http://99.71.130.109:8028/ssh	Offline	elf	RacWatchin8872
2024-05-23 19:29:08	http://99.71.130.109:8055/ssh	Offline	elf	RacWatchin8872
2024-05-23 19:29:07	http://99.71.130.109:8022/ssh	Offline	elf	RacWatchin8872
2024-05-23 19:29:07	http://99.71.130.109:8040/ssh	Offline	elf	RacWatchin8872
2024-05-23 19:29:05	http://99.71.130.109:8025/ssh	Offline	elf	RacWatchin8872
2024-05-23 19:29:05	http://99.71.130.109:8054/ssh	Offline	elf	RacWatchin8872
2024-05-23 19:29:05	http://99.71.130.109:8034/ssh	Offline	elf	RacWatchin8872
2024-05-23 19:29:05	http://99.71.130.109:8021/ssh	Offline	elf	RacWatchin8872
2024-05-20 21:22:06	http://99.71.130.109:8049/sshd	Online	elf	abus3reports
2024-05-20 21:22:04	http://99.71.130.109:8054/sshd	Online	elf	abus3reports
2024-05-20 21:22:01	http://99.71.130.109:8040/sshd	Online	elf	abus3reports
2024-05-20 21:21:59	http://99.71.130.109:8050/sshd	Online	elf	abus3reports
2024-05-20 21:21:51	http://99.71.130.109:8041/sshd	Online	elf	abus3reports
2024-05-20 21:21:49	http://99.71.130.109:8048/sshd	Online	elf	abus3reports
2024-05-20 21:21:43	http://99.71.130.109:8035/sshd	Online	elf	abus3reports
2024-05-20 21:21:22	http://99.71.130.109:8027/sshd	Online	elf	abus3reports
2024-05-20 21:21:17	http://99.71.130.109:8025/sshd	Offline	elf	abus3reports
2024-05-20 21:21:03	http://99.71.130.109:8028/sshd	Online	elf	abus3reports
2024-05-20 21:19:55	http://99.71.130.109:8042/sshd	Online	elf	abus3reports
2024-05-20 21:19:54	http://99.71.130.109:8022/sshd	Online	elf	abus3reports
2024-05-20 21:19:44	http://99.71.130.109:8034/sshd	Offline	elf	abus3reports
2024-05-20 21:19:35	http://99.71.130.109:8021/sshd	Online	elf	abus3reports
2024-05-20 21:19:28	http://99.71.130.109:8039/sshd	Online	elf	abus3reports
2024-05-20 21:19:20	http://99.71.130.109:8055/sshd	Online	elf	abus3reports

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type
2024-09-10 02:12:27	5e38ff37058bd1bc90c33556b5c3900b8b93947f07d972c01cf6bf8ef6d69637	elf
2024-07-03 12:02:30	1147798308afcb78323ec7c61a3680aaa349bfa68c66f9daa4dcac4126fad10f	elf
2024-07-02 00:55:57	5ac5a02d93cda9b7515abb6e428f9d643fca07806d0efeba5f05cd84c5f5181e	elf
2024-05-24 04:30:53	ab69ef32017a5365ee0e7faca03e1352382865c5672e989d99d2d77ec91c33ef	elf
2024-05-24 04:30:52	ab69ef32017a5365ee0e7faca03e1352382865c5672e989d99d2d77ec91c33ef	elf
2024-05-24 04:30:21	ab69ef32017a5365ee0e7faca03e1352382865c5672e989d99d2d77ec91c33ef	elf
2024-05-24 04:30:00	ab69ef32017a5365ee0e7faca03e1352382865c5672e989d99d2d77ec91c33ef	elf
2024-05-24 04:29:55	ab69ef32017a5365ee0e7faca03e1352382865c5672e989d99d2d77ec91c33ef	elf
2024-05-24 04:29:46	ab69ef32017a5365ee0e7faca03e1352382865c5672e989d99d2d77ec91c33ef	elf
2024-05-24 04:29:44	ab69ef32017a5365ee0e7faca03e1352382865c5672e989d99d2d77ec91c33ef	elf
2024-05-24 04:29:30	ab69ef32017a5365ee0e7faca03e1352382865c5672e989d99d2d77ec91c33ef	elf
2024-05-24 04:29:13	ab69ef32017a5365ee0e7faca03e1352382865c5672e989d99d2d77ec91c33ef	elf
2024-05-24 04:29:07	ab69ef32017a5365ee0e7faca03e1352382865c5672e989d99d2d77ec91c33ef	elf
2024-05-24 04:28:58	ab69ef32017a5365ee0e7faca03e1352382865c5672e989d99d2d77ec91c33ef	elf
2024-05-24 04:28:57	ab69ef32017a5365ee0e7faca03e1352382865c5672e989d99d2d77ec91c33ef	elf
2024-05-24 04:28:57	ab69ef32017a5365ee0e7faca03e1352382865c5672e989d99d2d77ec91c33ef	elf
2024-05-24 04:28:57	ab69ef32017a5365ee0e7faca03e1352382865c5672e989d99d2d77ec91c33ef	elf
2024-05-24 04:28:39	ab69ef32017a5365ee0e7faca03e1352382865c5672e989d99d2d77ec91c33ef	elf
2024-05-24 04:28:39	ab69ef32017a5365ee0e7faca03e1352382865c5672e989d99d2d77ec91c33ef	elf
2024-05-20 21:22:05	ab69ef32017a5365ee0e7faca03e1352382865c5672e989d99d2d77ec91c33ef	elf
2024-05-20 21:22:03	ab69ef32017a5365ee0e7faca03e1352382865c5672e989d99d2d77ec91c33ef	elf
2024-05-20 21:22:01	ab69ef32017a5365ee0e7faca03e1352382865c5672e989d99d2d77ec91c33ef	elf
2024-05-20 21:21:58	ab69ef32017a5365ee0e7faca03e1352382865c5672e989d99d2d77ec91c33ef	elf
2024-05-20 21:21:50	ab69ef32017a5365ee0e7faca03e1352382865c5672e989d99d2d77ec91c33ef	elf
2024-05-20 21:21:49	ab69ef32017a5365ee0e7faca03e1352382865c5672e989d99d2d77ec91c33ef	elf
2024-05-20 21:21:42	ab69ef32017a5365ee0e7faca03e1352382865c5672e989d99d2d77ec91c33ef	elf
2024-05-20 21:21:22	ab69ef32017a5365ee0e7faca03e1352382865c5672e989d99d2d77ec91c33ef	elf
2024-05-20 21:21:16	ab69ef32017a5365ee0e7faca03e1352382865c5672e989d99d2d77ec91c33ef	elf
2024-05-20 21:21:02	ab69ef32017a5365ee0e7faca03e1352382865c5672e989d99d2d77ec91c33ef	elf
2024-05-20 21:19:55	ab69ef32017a5365ee0e7faca03e1352382865c5672e989d99d2d77ec91c33ef	elf
2024-05-20 21:19:54	ab69ef32017a5365ee0e7faca03e1352382865c5672e989d99d2d77ec91c33ef	elf
2024-05-20 21:19:43	ab69ef32017a5365ee0e7faca03e1352382865c5672e989d99d2d77ec91c33ef	elf
2024-05-20 21:19:35	ab69ef32017a5365ee0e7faca03e1352382865c5672e989d99d2d77ec91c33ef	elf
2024-05-20 21:19:28	ab69ef32017a5365ee0e7faca03e1352382865c5672e989d99d2d77ec91c33ef	elf
2024-05-20 21:19:17	ab69ef32017a5365ee0e7faca03e1352382865c5672e989d99d2d77ec91c33ef	elf