URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
| Host: | newtop.one |
|---|---|
| Spamhaus DBL : | Not blocked |
| SURBL : | Not blocked |
| Quad9 : | Blocked |
| AdGuard : | Blocked |
| Cloudflare : | Blocked |
| ProtonDNS : | Blocked |
| OpenBLD : | Blocked |
| DNS4EU : | Not blocked |
| Control D HaGeZi : | Not blocked |
| Firstseen: | 2021-01-20 21:17:04 UTC |
| Total malware sites : | 2 |
| Online malware sites : | 0 (0%) |
| Offline Malware sites : | 2 (100%) |
| A record(s) observed : | 9 |
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2025-06-17 20:12:11 | 34.41.139.193 | 193.139.41.34.bc.googleusercontent.com | Not listed | AS396982 GOOGLE-CLOUD-PLATFORM |  US | yes |
| 2025-06-17 20:12:11 | 34.159.223.43 | 43.223.159.34.bc.googleusercontent.com | Not listed | AS396982 GOOGLE-CLOUD-PLATFORM |  DE | no |
| 2025-04-27 12:38:21 | 34.132.102.6 | 6.102.132.34.bc.googleusercontent.com | Not listed | AS396982 GOOGLE-CLOUD-PLATFORM | US | no |
| 2025-04-27 12:38:21 | 34.136.111.81 | 81.111.136.34.bc.googleusercontent.com | Not listed | AS396982 GOOGLE-CLOUD-PLATFORM | US | no |
| 2021-09-11 10:38:53 | 104.21.38.66 | Not listed | AS13335 CLOUDFLARENET | n/a | no | |
| 2021-09-11 10:38:53 | 172.67.219.184 | Not listed | AS13335 CLOUDFLARENET | n/a | no | |
| 2021-07-16 13:51:33 | 75.2.115.196 | a815a0b269b119624.awsglobalaccelerator.com | Not listed | AS16509 AMAZON-02 | US | no |
| 2021-02-24 14:54:15 | 209.99.40.222 | 209-99-40-222.fwd.datafoundry.com | Not listed | AS23005 SWITCH-LTD | US | no |
| 2021-01-20 21:17:06 | 103.214.108.66 | cpanel10.ipxcore.com | Not listed | AS63018 DEDICATED | US | no |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2021-01-21 00:22:06 | http://newtop.one/responsives/z/ | Offline | emotet  epoch1 exe heodo |  Cryptolaemus1 |
| 2021-01-20 21:17:06 | https://newtop.one/responsives/z/ | Offline | emotet epoch1 exe heodo |  waga_tw |
The table below shows recent payloads delivery by this host.
| Firstseen (UTC) | SHA256 hash | File type | Bazaar | Signature |
|---|---|---|---|---|
| 2021-01-21 00:22:06 | 06040e1406a3b99da60e639edcf14ddb1f3c812993b408a8164285f2a580caaf | dll | Heodo | |
| 2021-01-20 21:34:57 | 06040e1406a3b99da60e639edcf14ddb1f3c812993b408a8164285f2a580caaf | dll | Heodo | |
| 2021-01-20 21:26:22 | 016a09389a4b5d9b311f78215343e9cd30a689e6543d6c3cff3e8a83f7dc520d | dll | Heodo | |
| 2021-01-20 21:17:06 | 13e5f641e84c94fc8cd09f51514765c5b4bf83d1bda8b4f9f9b737561880834a | dll | Heodo |