www.phoenixdivorcegroup.com/
15.197.142.173 70 B URL www.phoenixdivorcegroup.com/
IP 15.197.142.173:0
File type HTML document, ASCII text
Hash 0dedee460a3004bcbe2eba9dcaab429d
213e44da09393638e4170bfc1be258c434859195
d532f70b17cf473d103b38e75f7f7635913c4681edfe41282c5fd91c5b03c3af
GET / HTTP/1.1
Host: www.phoenixdivorcegroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Jun 2023 06:53:52 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 70
Connection: keep-alive
Location: https://phoenixfamilylawappeals.com
Server: ip-100-74-2-161.eu-west-2.compute.internal
X-Request-Id: 81724a56-bc17-420b-9956-4563b03105d2
IP 192.124.249.23:0
Hash 351b037aa3cc6bd5ce0eb71f26512db7
e29a37fdf52e25950b021b9350e999af6a28684a
a52de66f74dc700fec0fdadbfd09656557a9b1283efb0ba179adfbe2afa35b42
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 06 Jun 2023 06:53:52 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 05 Jun 2023 21:40:47 GMT
Expires: Tue, 06 Jun 2023 21:40:47 GMT
ETag: "e29a37fdf52e25950b021b9350e999af6a28684a"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
www.phoenixdivorcegroup.com/update-your-information/18c9a70c17aa363445c3e4a800c3f208/mpp/update/websc-billing.php
3.33.152.147 125 B URL User Request GET www.phoenixdivorcegroup.com/update-your-information/18c9a70c17aa363445c3e4a800c3f208/mpp/update/websc-billing.php
IP 3.33.152.147:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 2995357b538ef792ce59b1b7cca539c4
d33d8ce38719b45d0731f075f71593351023318c
aef27e8433e35954afe1798da5bde96145b020160cc2f16b1424425253fb545b
NIDS Severity Alert suricata medium ET PHISHING Possible Websc Phishing Page 2016-02-05
suricata medium ET PHISHING Common /mpp/ Phishing URI Structure 2016-02-08
GET /update-your-information/18c9a70c17aa363445c3e4a800c3f208/mpp/update/websc-billing.php HTTP/1.1
Host: www.phoenixdivorcegroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Tue, 06 Jun 2023 06:53:52 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 125
Connection: keep-alive
Server: ip-100-74-2-196.eu-west-2.compute.internal
X-Request-Id: 5a9f1a50-b3b6-4262-ba29-e855fc87e3a1
www.phoenixdivorcegroup.com/favicon.ico
3.33.152.147404 Not Found 125 B URL GET HTTP/1.1 www.phoenixdivorcegroup.com/favicon.ico
IP 3.33.152.147:80
Requested by http://www.phoenixdivorcegroup.com/update-your-information/18c9a70c17aa363445c3e4a800c3f208/mpp/update/websc-billing.php
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 2995357b538ef792ce59b1b7cca539c4
d33d8ce38719b45d0731f075f71593351023318c
aef27e8433e35954afe1798da5bde96145b020160cc2f16b1424425253fb545b
GET /favicon.ico HTTP/1.1
Host: www.phoenixdivorcegroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.phoenixdivorcegroup.com/update-your-information/18c9a70c17aa363445c3e4a800c3f208/mpp/update/websc-billing.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Tue, 06 Jun 2023 06:53:52 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 125
Connection: keep-alive
Server: ip-100-74-2-51.eu-west-2.compute.internal
X-Request-Id: fecbcb1f-fc9f-42c5-9209-ac416fa3504c