URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name). This page shows all malware URLs that are associated with the host www.rushdirect.net.

Database Entry


Host:www.rushdirect.net
Spamhaus DBL:Not listed
SURBL:Not listed
Firstseen:2018-11-26 12:28:59 UTC

IP addresses


The table below shows all IP address obsered for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones).

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2018-12-05 06:00:50198.185.159.144Not listedAS53831 SQUARESPACE - Squarespace, Inc.- USyes
2018-12-05 06:00:50198.185.159.145Not listedAS53831 SQUARESPACE - Squarespace, Inc.- USyes
2018-12-05 06:00:50198.49.23.144Not listedAS53831 SQUARESPACE - Squarespace, Inc.- USyes
2018-12-05 06:00:50198.49.23.145Not listedAS53831 SQUARESPACE - Squarespace, Inc.- USyes
2018-11-26 12:29:01166.62.108.22ip-166-62-108-22.ip.secureserver.netNot listedAS26496 AS-26496-GO-DADDY-COM-LLC - GoDaddy.com, LLC- USno

Malware URLs


The table below shows all malware URLs that are associated with this particulare host.

Dateadded (UTC)URLStatusTagsGSBReporter
2018-12-01 01:29:29http://www.rushdirect.net/sites/Scan/Rechnungsanschrift/I...Offlinedoc emotet epoch2 heodo Clean@Cryptolaemus1
2018-12-01 01:29:27http://www.rushdirect.net/400279M/PAYROLL/US/Offlinedoc emotet epoch2 heodo Clean@Cryptolaemus1
2018-11-30 11:55:27http://www.rushdirect.net/400279M/PAYROLL/USOfflineemotet epoch2 heodo Clean@Cryptolaemus1
2018-11-28 18:06:04http://www.rushdirect.net/sites/Scan/Rechnungsanschrift/I...Offlinedoc emotet heodo CleanAnonymous
2018-11-26 15:44:53http://www.rushdirect.net/0800FFF/biz/US/Offlinedoc emotet epoch2 Gozi heodo Clean@Cryptolaemus1
2018-11-26 12:29:01http://www.rushdirect.net/0800FFF/biz/USOfflinedoc emotet Gozi heodo CleanAnonymous