URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: gwinatelier.com
Domain registrar:Namecheap -
Domain registration date:2021-10-05 20:26:58 UTC
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2023-05-10 17:13:03 UTC
Total malware sites :3
Online malware sites :0 (0%)
Offline Malware sites :3 (100%)
A record(s) observed :12

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2025-04-28 13:40:00 66.29.146.74premium233-1.web-hosting.comNot listedAS22612 NAMECHEAP-NET- USyes
2025-10-17 16:11:00 172.236.126.142172-236-126-142.ip.linodeusercontent.comNot listedAS63949 AKAMAI-LINODE-AP- USno
2025-10-17 16:11:00 172.236.126.145172-236-126-145.ip.linodeusercontent.comNot listedAS63949 AKAMAI-LINODE-AP- USno
2025-10-17 16:11:00 172.236.126.225172-236-126-225.ip.linodeusercontent.comNot listedAS63949 AKAMAI-LINODE-AP- USno
2025-10-17 16:11:00 172.236.126.234172-236-126-234.ip.linodeusercontent.comNot listedAS63949 AKAMAI-LINODE-AP- USno
2025-10-06 19:54:01 13.248.148.254aba1c1ff9d2ec5376.awsglobalaccelerator.comNot listedAS16509 AMAZON-02- USno
2025-10-06 19:54:01 76.223.26.96aba1c1ff9d2ec5376.awsglobalaccelerator.comNot listedAS16509 AMAZON-02- USno
2023-07-15 02:12:33 66.29.146.75premium233-2.web-hosting.comNot listedAS22612 NAMECHEAP-NET- USno
2023-05-10 17:13:11 188.114.96.3SBL690066AS13335 CLOUDFLARENETn/ano
2023-05-10 17:13:11 188.114.97.3Not listedAS13335 CLOUDFLARENETn/ano

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2023-05-17 13:06:07https://gwinatelier.com/ii/?1OfflineBB28 geofenced js Qakbot ext Quakbot ext USA Cryptolaemus1
2023-05-11 16:31:15https://gwinatelier.com/sq/OfflineBB27 geofenced js Qakbot ext Quakbot ext USA Cryptolaemus1
2023-05-10 17:13:11https://gwinatelier.com/aueo/OfflineBB27 geofenced js Qakbot ext qbot ext Quakbot ext TR USA Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2023-05-18 19:32:39d7522ab4f64ae0950e24bb00df9157136bbcb900ace0c77bd1a46f06149bf37ajs  
2023-05-18 18:12:0351ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4js 
2023-05-18 15:11:07bbcdb87a842c5157acea98f0cedd358f764e2613b6a635e4f9f5946de8c07780js  
2023-05-18 14:08:557de0664cebacfd1e6f4d0d5c0ac89a0c7f395dd87da6f57eb69fecd8bc265610js  
2023-05-18 12:31:13f0ba5660e9ba7e62c93207a7b6fd775ee56ae1fa8dfc2ece0f169a6e96076681js Quakbot
2023-05-18 10:57:04b3455e378aa4106c5a643052bdcc324c67382149a5eb84a546fdc26f4b5f412ejs Quakbot
2023-05-18 08:31:16ccfd3d544f060b0b45133acf8df8a753724ec29a916820e53f6e7692dd785c8djs Quakbot
2023-05-18 07:13:37a2fee1f921c59d61590ed86bdd9e19a12b68d9722d228d0e5bef678bd31d461bjs Quakbot
2023-05-18 06:04:085b081d8987954ca182f1f9c83eb5c24851ef6647e29f84c5fde150d826531e53js  
2023-05-18 03:06:09215820e48ebfa9dbcba7260a2176ccbb21df119cff17a8389f165811c8e3664bjs Quakbot
2023-05-18 01:44:27584680760762a6814ff84e38f5de401a9ba356c834f6302e03634c8883180fd4js  
2023-05-18 00:14:571daf295e083f68a10f9527a63f47ad20185bc445825bbe8e6b92086996eeac2ejs Quakbot
2023-05-17 23:04:131a1943fad765d92f9e4afa5ae4df4ec80c61fe42d83f15ab13027ced2e33bbbajs Quakbot
2023-05-17 20:04:51c0a6fc4067da1b60a94f906dee1dd115392e21c209a0c86a40573a53c4a5024bjs Quakbot
2023-05-17 18:10:196003ec795de91a5d5a9a9abb15e037b5f4dcd8cbf43bac5330005fdda61c603ajs Quakbot
2023-05-17 15:43:454ec189841fea600476bff49f643d0877dcdc3e3050e54e56abc5a7c492ed00dbjs Quakbot
2023-05-17 15:28:365e580c21deb2f7d63ad49462e90d33c85c35e0b2c3f49ffeb5363cd11e8e9ea6js  
2023-05-17 13:06:07f51bc0d7dd86e4e6db698538eca1063e4e4936ee3f57c669e347f143576749d9js Quakbot
2023-05-13 19:58:39b76a71fc44ca56ab5b3c5b96e0c5210a4305fa740072a954e69d5579bd88bdd8js  
2023-05-13 19:43:4765d82a4f402d62876e952c2fb26a78e5dfe8c5da18418d9bbcbb539b0ad55ca9js Quakbot
2023-05-13 16:19:41cd3e3088584c88bd6465208e50b6e173d6fcb06e37bcfda9c4515a65975b89aejs Quakbot
2023-05-13 15:36:47a7dac5de2e3bbd978a294c5af7d78447ded3cf503e62fff348b0b867d314b17fjs Quakbot
2023-05-13 12:36:30c86498d87030bae456b011ed8582f83b015f3c5ff4df89c25f27922ada2f9106js  
2023-05-13 11:10:451af82f4cb1e4ec50d5dc435f4aeeed3446bafb0d9ebfe6b842c7d88d08aeeb77js Quakbot
2023-05-13 10:45:1655f245ed8db5a34d0ad2a619803b44337b14c94f0df9e14405a7e5f0b10347acjs Quakbot
2023-05-13 10:22:41ec4fb66f81fbd954a73b7988a7855ca3aa8bc3c697cb844132ac0f05b0dc55a6js  
2023-05-13 07:30:11c5dd0fc2041ee8f0cec0472bdad0686cbb0cbfa7ff44eee4186962b3f1366508js Quakbot
2023-05-13 05:27:393d989c200ad8c77f4f12cfaa532ed55b4f0fe0b1e4d2d331ce71cbc75b030382js Quakbot
2023-05-13 04:24:3593f15d9db4602336e5bab6e353904401bb22b098fd2b5b1f3a0fe84bee48a16ajs Quakbot
2023-05-13 01:48:58722291ff192517affcfdea0bbc9b205c1cdc295d85b44b1c93108dfcad51a212js Quakbot
2023-05-13 01:10:36e699509e6d7dd1ca5ff032871c099a82201b9f61b56e75b37e2087d063789462js Quakbot
2023-05-12 23:16:41edf6accff5735635f448d81501c3e1128de16a2b9f1ac23554dad33b47f3c06bjs Quakbot
2023-05-12 22:13:18a925f4afe26fc77bad8bfa1ac9970f507b85a94e41e9815145be2de0d6c76c12js Quakbot
2023-05-12 20:43:4824ea13a88e8a2e6128970d4ed17bb8d562eb565c2431be39cca5f352c6b9aca4js Quakbot
2023-05-12 19:35:37cc328b06c0905da12bf38fdf28a706dea5192d2a47125b497e5d8276f8d35e17js Quakbot
2023-05-12 17:45:399e850fcde440d3374a2e3dd9e7d7103d8b719f79f3f25c059feaab7113482558js Quakbot
2023-05-12 17:41:1989bbfdee11285ef56855e00d9e11e1b55d77554e57a2f6f6be6032659bd50681js Quakbot
2023-05-12 16:13:45a38bde064d3cd9fcbe1f6db09e4efbe172cd0165b36ea20ee26e6aa2c46bbcf0js Quakbot
2023-05-12 13:34:563e369260b7686fa87832fc583f27445de08fa9f04672956592fcb092c0df756bjs Quakbot
2023-05-12 11:30:01b79ed246f75a4a70ee2549efb5ad163752b1f0b9e99914214479e0ea81c8befcjs Quakbot
2023-05-12 11:12:232fdb7633f852b407895ef13585358859f9cdf8c6cacfc893ea27b855a51a98e5js Quakbot
2023-05-12 08:00:073b5067f5eaa4df4dc433492437d00ee0e5071da2f1b23845fe41a06dd59ccb9fjs Quakbot
2023-05-12 07:26:310eb8ea7d2005b86867a50e047f9da332ffd13a1dc747d9f067d70d26e3bf51f7js Quakbot
2023-05-12 05:43:106e5d58939c9b33d27084b8ff537eaa5c2c18d6b98e14bd111e261a45ab4979f7js Quakbot
2023-05-12 05:39:293ebe782ee693b90d03b87acf135429ac3ac59445aaeca5c2227ac061e8630ee1js Quakbot
2023-05-12 02:44:1420a2b92e4a58959cea4853c3ffb4cf7b2f72b86b8ed34a72c27de8a200bc35eajs Quakbot
2023-05-12 01:14:214f616e8cabc77567a3d6ea6e7937172a0dd983a8a0efd030e5433addd2f9e5eajs Quakbot
2023-05-11 23:03:48f764283ae08b0ed62c1ee95c375eedb154da84c131137dbf7c6d720f49c237a8js Quakbot
2023-05-11 21:39:13ece3b877ddc91439f9a2cc267cbe151f1b7ab3c245f3fff4bc563e6b6ebf40c0js Quakbot
2023-05-11 20:35:118b2da017f66798cdc8ec30285952905a3d0981541a422c8da738d70bc93f0325js Quakbot
2023-05-11 18:54:1786767df3f652ab81d24eb446b1a641c3e6bc9412fe72276312e3d72dde222f74js Quakbot
2023-05-11 17:42:4887b1879d18404a66b75187e182f4c4771d7a3d751cb31f37336517ffbb29c616js Quakbot
2023-05-11 16:31:15138e79681b9a85ca169139c13d41751a3cad72016a33bee6ae753c15f624669ejs Quakbot
2023-05-11 05:39:17f8b269668e1d7a0f0c65261387280d2a6152dfd0a09e2bbe0a1751e6af704982js Quakbot
2023-05-10 17:33:55d2f6ad2ae8c1260fbfab608cbd43f606d81f73cd6ecea3fb62391b8c0aeb3d8ejs Quakbot
2023-05-10 17:13:1115600180891cd3b1ea016832fcc04357184227dca42fbdda3057d9fc5bcd4262js Quakbot