remboursements-impots-gouv.com/
83.229.84.29200 OK 162 B URL User Request GET HTTP/2 remboursements-impots-gouv.com/
IP 83.229.84.29:443
Certificate IssuerZeroSSL
Subjectremboursements-impots-gouv.com
Fingerprint82:1D:EA:6F:1F:96:31:60:6B:9F:4B:39:43:52:C2:97:75:9D:63:01
ValiditySun, 09 Apr 2023 00:00:00 GMT - Sat, 08 Jul 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert phishtank Other
fortinet Phishing
quad9 Sinkholed
GET / HTTP/1.1
Host: remboursements-impots-gouv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 12 Apr 2023 02:32:34 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://remboursements-impots-gouv.com/
zerossl.ocsp.sectigo.com/
172.64.155.188 727 B URL zerossl.ocsp.sectigo.com/
IP 172.64.155.188:0
Hash 3a3a59f3f605a250ede24b68dd0e2d3f
f2c7bbb7e0827fe9bd4b5f68853bd2d9080ac40f
6bcf2d4aae34b56bba00f8be7054dacc29eaccff035305cfb785f014fe7579a9
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 12 Apr 2023 02:32:35 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Sun, 09 Apr 2023 09:23:02 GMT
Expires: Sun, 16 Apr 2023 09:23:01 GMT
Etag: "f2c7bbb7e0827fe9bd4b5f68853bd2d9080ac40f"
Cache-Control: max-age=369625,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7b680f421e950b45-OSL
remboursements-impots-gouv.com/favicon.ico
83.229.84.29404 Not Found 808 B URL GET HTTP/2 remboursements-impots-gouv.com/favicon.ico
IP 83.229.84.29:443
Requested by https://remboursements-impots-gouv.com/
Certificate IssuerZeroSSL
Subjectremboursements-impots-gouv.com
Fingerprint82:1D:EA:6F:1F:96:31:60:6B:9F:4B:39:43:52:C2:97:75:9D:63:01
ValiditySun, 09 Apr 2023 00:00:00 GMT - Sat, 08 Jul 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (866), with no line terminators
Hash b45bdabc5c2538b0c4e5f352bcdfb585
5a97ce87ce8d3d86a043c1a5e68e968e20a1e146
c96189c857253fcdbe13dfcbc7f919050fae21ccb7116c3078ee3c8d8d0f12c7
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: remboursements-impots-gouv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://remboursements-impots-gouv.com/
Cookie: PHPSESSID=a9rh5opo17f9dc2cek1amkjo90
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
server: nginx
date: Wed, 12 Apr 2023 02:32:35 GMT
content-type: text/html
last-modified: Sun, 09 Apr 2023 05:35:12 GMT
etag: W/"328-5f8e09f4a7f68"
strict-transport-security: max-age=15768000; includeSubDomains
content-encoding: br
X-Firefox-Spdy: h2