Report - cdek.yandex.www.pay.stage.nagoya-covid19vaccine.com/

Report Overview

Visitedpublic

2026-03-31 22:33:16

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
router.parklogic.com	346495	2007-02-28	2025-03-19	2026-03-30	570 B	8.2 kB	172.234.216.100
parking3.parklogic.com	497061	2007-02-28	2023-05-10	2026-03-30	2.8 kB	2.1 kB	172.232.7.47
cdek.yandex.www.pay.stage.nagoya-covid19vaccine.com	unknown	2025-08-23	2026-03-31	2026-03-31	1.8 kB	5.6 kB	172.237.146.38

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2026-03-31 22:32:54	medium	Client IP	172.237.146.38	ET HUNTING Suspicious TLS SNI Request for Possible COVID-19 Domain M1
2026-03-31 22:32:57	medium	Client IP	172.233.219.123	ET HUNTING Suspicious GET Request with Possible COVID-19 Domain M1
2026-03-31 22:32:57	medium	Client IP	172.237.146.38	ET HUNTING Suspicious TLS SNI Request for Possible COVID-19 Domain M1
2026-03-31 22:32:57	medium	Client IP	172.237.146.38	ET HUNTING Suspicious GET Request with Possible COVID-19 Domain M1
2026-03-31 22:32:57	medium	Client IP	172.237.146.38	ET HUNTING Suspicious GET Request with Possible COVID-19 Domain M1
2026-03-31 22:32:58	medium	Client IP	172.237.146.38	ET HUNTING Suspicious GET Request with Possible COVID-19 Domain M1
2026-03-31 22:32:58	medium	Client IP	172.237.146.38	ET HUNTING Suspicious GET Request with Possible COVID-19 Domain M1
2026-03-31 22:32:58	medium	Client IP	172.237.146.38	ET HUNTING Suspicious GET Request with Possible COVID-19 Domain M1
2026-03-31 22:32:58	medium	Client IP	172.237.146.38	ET HUNTING Suspicious GET Request with Possible COVID-19 Domain M1
2026-03-31 22:32:58	medium	Client IP	172.237.146.38	ET HUNTING Suspicious GET Request with Possible COVID-19 Domain M1
2026-03-31 22:32:59	medium	Client IP	172.237.146.8	ET HUNTING Suspicious GET Request with Possible COVID-19 Domain M1
2026-03-31 22:32:59	medium	Client IP	172.237.146.38	ET HUNTING Suspicious GET Request with Possible COVID-19 Domain M1
2026-03-31 22:32:59	medium	Client IP	172.237.146.38	ET HUNTING Suspicious GET Request with Possible COVID-19 Domain M1
2026-03-31 22:32:59	medium	Client IP	172.237.146.38	ET HUNTING Suspicious GET Request with Possible COVID-19 Domain M1
2026-03-31 22:33:00	medium	Client IP	172.237.146.38	ET HUNTING Suspicious GET Request with Possible COVID-19 Domain M1
2026-03-31 22:33:00	medium	Client IP	172.237.146.38	ET HUNTING Suspicious GET Request with Possible COVID-19 Domain M1
2026-03-31 22:33:00	medium	Client IP	172.237.146.38	ET HUNTING Suspicious GET Request with Possible COVID-19 Domain M1
2026-03-31 22:33:00	medium	Client IP	172.237.146.38	ET HUNTING Suspicious GET Request with Possible COVID-19 Domain M1
2026-03-31 22:33:00	medium	Client IP	172.237.146.38	ET HUNTING Suspicious GET Request with Possible COVID-19 Domain M1
2026-03-31 22:33:01	medium	Client IP	172.237.146.38	ET HUNTING Suspicious GET Request with Possible COVID-19 Domain M1

Threat Detection Systems

Detection System	Indicator	Verdict	Alert
DNS4EU	cdek.yandex.www.pay.stage.nagoya-covid19vaccine.com	malicious	Sinkholed

JavaScript (2)

HTTP Transactions (10)

	URL	IP	Response	Size