URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	209.145.51.44
Firstseen:	2023-07-22 03:48:03 UTC
Total malware sites :	7
Online malware sites :	1 (14%)
Offline Malware sites :	6 (86%)
Newest active malware site :	2025-08-16 21:08:13 UTC
Oldest active malware site :	2025-08-16 21:08:13 UTC (Age: 9 months, 13 days, 19 hours, 56 minutes)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2023-07-22 03:48:05	209.145.51.44	vmi1159541.contaboserver.net	Not listed	AS40021 CONTABO-40021	US	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2025-08-16 21:08:13	http://209.145.51.44/keepon.exe	Online	exe xworm	abuse_ch
2024-10-20 11:31:06	http://209.145.51.44/post3.bat	Offline	bat xworm	abus3reports
2024-10-20 11:30:08	http://209.145.51.44/chromeEngine.vbs	Offline	vbs xworm	abus3reports
2023-07-22 04:39:05	http://209.145.51.44/payload.exe	Offline	32 exe Neutrino	zbetcheckin
2023-07-22 04:34:05	http://209.145.51.44/elevator.exe	Offline	64 exe rustystealer	zbetcheckin
2023-07-22 04:34:05	http://209.145.51.44/asas.exe	Offline	64 exe xworm	zbetcheckin
2023-07-22 03:48:05	https://209.145.51.44/RobluxCoins.exe	Offline	64 exe Sliver	zbetcheckin

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2025-10-27 17:36:52	7e0c1fd38e8f84137c8b3d475c820e1bb11625f20d339a8de098ac01f9efb689	txt	XWorm
2025-08-16 21:08:13	c2214a8b8c88c91a009891f3f10bbb2d8aa18a15580bd12c82dfcf2477f0c846	exe	XWorm
2025-08-15 18:34:20	2d19663ea47eb8c17435d6fc17acc2ceaaef4975975b85f3597b48b76f20d1e2	txt	XWorm
2024-03-15 13:12:08	89f5f649250c66b9f94d6e9e129d8f566e8a09c310725b0132878e77bdd33a09	exe
2023-10-19 14:32:12	eb9218ab72b011d8d5075fedeaaed45b3e6889ee5d31b53b617ce6951752f132	exe	RustyStealer
2023-10-19 14:22:03	7bf52c3fa707ed3e151eece69d7985cf5c01735f5f84efb89b60b3e9bffdb79d	exe
2023-10-19 13:57:29	9a0d8a0fc3c799da381bc0ca4410fd0672f0a8b7c28c319db080325f4db601fe	exe	XWorm
2023-09-30 19:41:21	b84410aac704138ccc7bf9c65c90722bc284b4b0bd2a1082f6c48e7f68c12dd5	exe	Sliver
2023-09-30 19:28:59	6a716d9c9d76efbcab416a58e0c858cfc2977512c6bd5cccd500dd2e65866acd	exe
2023-09-21 15:31:29	00da51a29797136812a2a6de9aa866c077755a2e89a4c4944e6916c0f5f26001	exe
2023-08-25 22:37:48	0ab11e7747bcda8ceb0de89503018a9a9f0fa18e975fd14f20680554aa087af3	exe	XWorm
2023-08-25 20:31:47	aaa5b4f149f8aa7e8af776ec6d2de0be3bd69d17bd9263809cf40b5571fc3d04	exe	RustyStealer
2023-08-25 14:53:34	808ab94319d80b9a87f83f7ee1c11b83f225d21b41c6b7ac2ab847beb1bd6a03	exe	Sliver
2023-08-01 23:48:42	3e53b145657f33357a41f79761757404be0d8814f5c290633eced02eb60c105b	exe	RustyStealer
2023-08-01 22:52:32	22880a18038986c7de0dfdc5c9a80df755b4b674633f84e96b0822271cf744e0	exe	XWorm
2023-07-22 04:39:05	b9a1bcaaa0067b1e242d7e56024590b579143c170280d136a588f1b60e4fd02a	exe	Neutrino
2023-07-22 04:34:05	18ff5c6d7aed24f4bfe05429a1e37df23de7a4e096e2667bf387b9ed392a5121	exe	XWorm
2023-07-22 04:34:05	4348d0d550e739807bfdd89524fbeb7f4300193f4cb9aa5a62dc219640be59a2	exe	RustyStealer
2023-07-22 03:48:05	d147723c89539aa5c4cc1ffc41478111a4c058bee7c0faa73ef3c77294a997bb	exe	Sliver