URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: lifegiva.com
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Control D HaGeZi :Not blocked
Firstseen:2020-07-30 15:22:02 UTC
Total malware sites :3
Online malware sites :0 (0%)
Offline Malware sites :3 (100%)
A record(s) observed :2

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2020-07-30 15:22:03 162.210.96.120Not listedAS14555 LIQUIDNETLTD1- USyes
2025-05-23 14:50:44 198.23.53.17hosted.by.liquidnetlimited.comNot listedAS14555 LIQUIDNETLTD1- USno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2020-08-15 01:29:08http://lifegiva.com/wp-includes/g9le465j-f072-73/Offlinedoc emotet ext epoch3 heodo ext Cryptolaemus1
2020-08-14 23:00:08http://lifegiva.com/wp-includes/common_sector/4...Offlinedoc emotet ext epoch1 heodo ext spamhaus
2020-07-30 15:22:03http://lifegiva.com/wp-content/ibrKl/Offlinedoc emotet ext epoch3 heodo ext Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2020-09-01 13:47:244b13402181491e81721d3129182c033f1ce4f14f4956c41426c51b2c92488d65docHeodo
2020-09-01 13:47:198093cf407cd8bfc0dd3e2af64e521b084b5a5cff3e98ea810c7a9d6ae4b5058bdocHeodo
2020-08-14 23:00:07aeafab31a2a1c91e818aa056fdfd007370c93babd9f42fa546a1eeff0093c0a3docHeodo
2020-07-30 15:22:0357bcd0ce642158f431bcd37dc2223f9c3186275eefa03ad35deff1fcc99de5abdoc Heodo