Report - verizon.qehkb.icu/pay?CXSF=ztoelU

Report Overview

Visitedpublic

2025-12-29 14:47:58

Tags

Submit Tags

URL

verizon.qehkb.icu/pay?CXSF=ztoelU

Finishing URL

verizon.qehkb.icu/pay/

IP / ASN

172.67.137.110

#13335 CLOUDFLARENET

Title

Verizon Deals: Save on Phones, Internet, Accessories | Verizon

Detections

urlquery

0

Network Intrusion Detection

3

Threat Detection Systems

1

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP	Fingerprints
verizon.qehkb.icu	unknown	2025-12-27	2025-12-29	2025-12-29	13 kB	1.6 MB	172.67.137.110
ipinfo.io	1327	2013-04-23	2013-12-16	2025-12-29	427 B	650 B	34.117.59.81

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2025-12-29 14:47:35	medium	172.18.0.9	104.21.86.229	ET INFO Suspicious Domain (*.icu) in TLS SNI
2025-12-29 14:47:39	medium	172.18.0.9	34.117.59.81	ET POLICY Possible External IP Lookup Domain Observed in SNI (ipinfo. io)
2025-12-29 14:47:41	medium	172.18.0.9	104.21.86.229	ET INFO HTTP POST Request to Suspicious *.icu domain

Threat Detection Systems

Detection System	Indicator	Verdict	Alert
Quad9 DNS	verizon.qehkb.icu	malicious	Sinkholed

JavaScript (11)

HTTP Transactions (33)

	URL	IP	Response	Size