Overview

URL arktyp.ca/wp-content/upgrade/Receipt6565644.zip
IP64.98.145.30
ASNAS32491 Tucows.com Co.
Location Canada
Report completed2019-05-21 19:48:07 CEST
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2019-05-21 2 arktyp.ca/wp-content/upgrade/Receipt6565644.zip Phishing
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 64.98.145.30

Date UQ / IDS / BL URL IP
2019-06-21 17:49:55 +0200
0 - 0 - 0 www.bartells.com 64.98.145.30
2019-06-10 17:37:48 +0200
0 - 0 - 1 watchlight.net/ 64.98.145.30
2019-06-10 17:12:15 +0200
0 - 0 - 1 crimedocumentaries.net/search 64.98.145.30
2019-06-09 11:13:43 +0200
0 - 0 - 1 themeditationstorecanada.com/~mobilefr/portai (...) 64.98.145.30
2019-06-09 11:10:31 +0200
0 - 0 - 1 zafuzafucanada.com/~mobilefr/portail-information 64.98.145.30
2019-06-09 11:09:57 +0200
0 - 0 - 1 zafuzafucanada.ca/~mobilefr/portail-information 64.98.145.30
2019-06-09 08:54:50 +0200
0 - 0 - 1 process-dev.com/a 64.98.145.30
2019-06-09 08:17:40 +0200
0 - 0 - 1 process-dev.com/go/logos/index.php 64.98.145.30
2019-06-09 06:59:23 +0200
0 - 0 - 1 koreevolution.com/Message/chaseonline.chase.c (...) 64.98.145.30
2019-06-07 08:10:26 +0200
0 - 0 - 6 i-mdv.com/ilqe3md 64.98.145.30

Last 10 reports on ASN: AS32491 Tucows.com Co.

Date UQ / IDS / BL URL IP
2019-06-21 17:49:55 +0200
0 - 0 - 0 www.bartells.com 64.98.145.30
2019-06-10 17:37:48 +0200
0 - 0 - 1 watchlight.net/ 64.98.145.30
2019-06-10 17:12:15 +0200
0 - 0 - 1 crimedocumentaries.net/search 64.98.145.30
2019-06-10 15:42:15 +0200
0 - 0 - 0 64.98.42.162 64.98.42.162
2019-06-09 11:13:43 +0200
0 - 0 - 1 themeditationstorecanada.com/~mobilefr/portai (...) 64.98.145.30
2019-06-09 11:10:31 +0200
0 - 0 - 1 zafuzafucanada.com/~mobilefr/portail-information 64.98.145.30
2019-06-09 11:09:57 +0200
0 - 0 - 1 zafuzafucanada.ca/~mobilefr/portail-information 64.98.145.30
2019-06-09 08:54:50 +0200
0 - 0 - 1 process-dev.com/a 64.98.145.30
2019-06-09 08:17:40 +0200
0 - 0 - 1 process-dev.com/go/logos/index.php 64.98.145.30
2019-06-09 06:59:23 +0200
0 - 0 - 1 koreevolution.com/Message/chaseonline.chase.c (...) 64.98.145.30

Last 10 reports on domain: arktyp.ca

Date UQ / IDS / BL URL IP
2019-05-11 19:54:06 +0200
0 - 0 - 1 arktyp.ca/wp-content/upgrade/Receipt6565644.zip 64.98.145.30
2019-04-21 19:43:29 +0200
0 - 0 - 1 arktyp.ca/wp-content/upgrade/Receipt6565644.zip 69.27.103.48
2019-04-18 23:30:28 +0200
0 - 0 - 1 arktyp.ca/wp-admin/media-cp.html 69.27.103.48
2019-04-15 05:09:53 +0200
0 - 0 - 1 arktyp.ca/wp-content/upgrade/034629966465.zip 69.27.103.48
2019-04-11 19:43:09 +0200
0 - 0 - 1 arktyp.ca/wp-content/upgrade/Receipt6565644.zip 192.124.249.67
2019-04-01 19:42:56 +0200
0 - 0 - 1 arktyp.ca/wp-content/upgrade/Receipt6565644.zip 192.124.249.67
2019-03-31 19:33:16 +0200
0 - 0 - 1 arktyp.ca/wp-content/upgrade/Receipt6565644.zip 192.124.249.67
2019-03-21 18:32:42 +0100
0 - 0 - 1 arktyp.ca/wp-content/upgrade/Receipt6565644.zip 192.124.249.67
2019-03-11 19:22:01 +0100
0 - 0 - 1 arktyp.ca/wp-content/upgrade/Receipt6565644.zip 192.124.249.67
2019-03-01 18:32:04 +0100
0 - 0 - 1 arktyp.ca/wp-content/upgrade/Receipt6565644.zip 192.124.249.67


JavaScript

Executed Scripts (2)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (14)


Request Response
                                        
                                            GET /wp-content/upgrade/Receipt6565644.zip HTTP/1.1 
Host: arktyp.ca
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         64.98.145.30
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Status: 200 OK
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Etag: W/"3afe034397233040ef614ef8c1b11454"
Cache-Control: max-age=0, private, must-revalidate
X-Request-Id: 6f95f10c-e0a5-4ffd-9328-39fed5fa597c
X-Runtime: 0.010195
X-Powered-By: Phusion Passenger 4.0.53
Date: Tue, 21 May 2019 17:48:43 GMT
Server: nginx/1.6.2 + Phusion Passenger 4.0.53
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   5933
Md5:    3afe034397233040ef614ef8c1b11454
Sha1:   de26b1e5e0672e7a8b2233bd1084e18484ea4768
Sha256: 92ca0e11dffffed3121252bf6ba178eabb54b0c05e7d8bee2fe0300ce69aecd9

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 21 May 2019 17:47:35 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    212ca4c755d4f4c0c15e78a70362bbaa
Sha1:   95582a0969562b958700d7be27da19f2005aed02
Sha256: 5f5221d5674c41ca3997b741627b88d99696426442a0b957806cba4e5d8a3bed
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 21 May 2019 17:47:35 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    5be872b3fe0bb6f31385f91f811e9586
Sha1:   1192231bcb9ee73e9f619d433cdb66dddd9ae7f7
Sha256: db0ad6191770bff9043482b68acf62a4e25d4390a03274cfbe413675dd8c9cf5
                                        
                                            GET /assets/application-2f7e7f30d812d0f3950918c7562df7e68eeeebd8649bdea2bc3844eb07fc8269.css HTTP/1.1 
Host: arktyp.ca
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://arktyp.ca/wp-content/upgrade/Receipt6565644.zip

                                         
                                         64.98.145.30
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.6.2
Date: Tue, 21 May 2019 17:48:43 GMT
Content-Length: 2745
Last-Modified: Fri, 23 Sep 2016 13:49:21 GMT
Connection: keep-alive
Etag: "57e532e1-ab9"
Expires: Thu, 20 Jun 2019 17:48:43 GMT
Cache-Control: max-age=2592000
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   2745
Md5:    7f04ef862615d85e20805cc4890af8e2
Sha1:   41643f59487112768d3a18a7029f182e74bb9ea9
Sha256: 2f7e7f30d812d0f3950918c7562df7e68eeeebd8649bdea2bc3844eb07fc8269
                                        
                                            GET /css?family=Open+Sans:300,400,600,700 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://arktyp.ca/wp-content/upgrade/Receipt6565644.zip

                                         
                                         216.58.207.234
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Tue, 21 May 2019 17:47:35 GMT
Date: Tue, 21 May 2019 17:47:35 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   273
Md5:    3a2ad58ff2c4b5a2db5c4488e6bcdbdd
Sha1:   3bd31b702cd39bde650770f00c35b3a243f564d9
Sha256: d1580ef6b9bcfa948781b5124e11048d07d6ce53c1e5539d29755ed75b56e392
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 21 May 2019 17:47:35 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    060591c6e1f425192c736e9c21d3903b
Sha1:   f1da8738e6505e223766235cd5b2cfd930be529a
Sha256: 5456603daa36c44856c54ea2341efadbb36368f2d84a02ab7b649d1e0d1683fb
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://arktyp.ca/wp-content/upgrade/Receipt6565644.zip
If-Modified-Since: Fri, 03 Oct 2014 00:48:42 GMT

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Timing-Allow-Origin: *
Date: Tue, 21 May 2019 16:14:03 GMT
Expires: Tue, 21 May 2019 18:14:03 GMT
Last-Modified: Thu, 02 May 2019 01:33:03 GMT
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Golfe2
Content-Length: 17779
Cache-Control: public, max-age=7200
Age: 5612


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   17779
Md5:    348fbdd6c0fd83acfd390fa9cc127596
Sha1:   252099e50f60c46d3a16264edc93007ef333a660
Sha256: 5874a897424027f25efdc7142d4d8a4341d9a9f6362ac79bead10db6356dae2b
                                        
                                            GET /assets/hv_logo_retina-6a2ba8350907d4a17bfc7863c2f1378e38a53bd22b790c69c14143b0f9ce45ca.png HTTP/1.1 
Host: arktyp.ca
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://arktyp.ca/wp-content/upgrade/Receipt6565644.zip

                                         
                                         64.98.145.30
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx/1.6.2
Date: Tue, 21 May 2019 17:48:31 GMT
Content-Length: 14922
Last-Modified: Tue, 13 Oct 2015 20:32:00 GMT
Connection: keep-alive
Etag: "561d6a40-3a4a"
Expires: Thu, 20 Jun 2019 17:48:31 GMT
Cache-Control: max-age=2592000
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 184 x 54, 16-bit/color RGBA, non-interlaced
Size:   14922
Md5:    a9d594fd38e2923d147739abcde4a808
Sha1:   7d0cc6bed9f5adade28056745513cb4223b741ee
Sha256: 6a2ba8350907d4a17bfc7863c2f1378e38a53bd22b790c69c14143b0f9ce45ca
                                        
                                            GET /r/collect?v=1&_v=j75&a=1739531138&t=pageview&_s=1&dl=http%3A%2F%2Farktyp.ca%2Fwp-content%2Fupgrade%2FReceipt6565644.zip&ul=en-us&de=UTF-8&dt=arktyp.ca%20is%20coming%20soon&sd=24-bit&sr=1176x885&vp=1176x754&je=1&fl=10.0%20r45&_u=IEBAAEQ~&jid=512649210&gjid=1680915495&cid=594228052.1558460857&tid=UA-4171338-43&_gid=623984145.1558460857&_r=1&z=66728275 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://arktyp.ca/wp-content/upgrade/Receipt6565644.zip

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Allow-Origin: *
Date: Tue, 21 May 2019 17:47:36 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Server: Golfe2
Content-Length: 35


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            GET /s/opensans/v16/mem5YaGs126MiZpBA-UN_r8OUuhv.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Open+Sans:300,400,600,700
Origin: http://arktyp.ca

                                         
                                         216.58.207.227
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 18668
Date: Fri, 19 Apr 2019 15:15:47 GMT
Expires: Sat, 18 Apr 2020 15:15:47 GMT
Last-Modified: Mon, 25 Mar 2019 20:10:23 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Cache-Control: public, max-age=31536000
Age: 2773909
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  data
Size:   18668
Md5:    a7622f60c56ddd5301549a786b54e6e6
Sha1:   d55574524345932db3968c675e1aea08c68a456f
Sha256: 6e8a28a0638c920e5b76177e5f03ba94fcdedd3e3ecd347c333d82876b51c9c0
                                        
                                            GET /s/opensans/v16/mem5YaGs126MiZpBA-UN7rgOUuhv.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Open+Sans:300,400,600,700
Origin: http://arktyp.ca

                                         
                                         216.58.207.227
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 18900
Date: Fri, 19 Apr 2019 15:23:15 GMT
Expires: Sat, 18 Apr 2020 15:23:15 GMT
Last-Modified: Mon, 25 Mar 2019 20:12:25 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Cache-Control: public, max-age=31536000
Age: 2773461
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  data
Size:   18900
Md5:    1f85e92d8ff443980bc0f83ad7b23b60
Sha1:   ee8642c4fae325bb460ec29c0c2c9ad8a4c7817d
Sha256: ea20e5db3ba915c503173fae268445fc2745fc9a5dce2f58d47f5a355e1cdb18
                                        
                                            GET /s/opensans/v16/mem8YaGs126MiZpBA-UFVZ0d.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Open+Sans:300,400,600,700
Origin: http://arktyp.ca

                                         
                                         216.58.207.227
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 18100
Date: Fri, 19 Apr 2019 15:14:11 GMT
Expires: Sat, 18 Apr 2020 15:14:11 GMT
Last-Modified: Mon, 25 Mar 2019 20:11:28 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Cache-Control: public, max-age=31536000
Age: 2774005
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  data
Size:   18100
Md5:    de0869e324680c99efa1250515b4b41c
Sha1:   8033a128504f11145ea791e481e3cf79dcd290e2
Sha256: 81f0ec27796225ea29f9f1c7b74f083edcd7bc97a09d5fc4e8d03c0134e62445
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: arktyp.ca
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: _ga=GA1.2.594228052.1558460857; _gid=GA1.2.623984145.1558460857; _gat=1

                                         
                                         64.98.145.30
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Status: 200 OK
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Etag: W/"3afe034397233040ef614ef8c1b11454"
Cache-Control: max-age=0, private, must-revalidate
X-Request-Id: c43246b6-330e-422c-8a52-13762ec4d82d
X-Runtime: 0.008201
X-Powered-By: Phusion Passenger 4.0.53
Date: Tue, 21 May 2019 17:48:35 GMT
Server: nginx/1.6.2 + Phusion Passenger 4.0.53
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   5933
Md5:    3afe034397233040ef614ef8c1b11454
Sha1:   de26b1e5e0672e7a8b2233bd1084e18484ea4768
Sha256: 92ca0e11dffffed3121252bf6ba178eabb54b0c05e7d8bee2fe0300ce69aecd9
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: arktyp.ca
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: _ga=GA1.2.594228052.1558460857; _gid=GA1.2.623984145.1558460857; _gat=1

                                         
                                         64.98.145.30
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Status: 200 OK
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Etag: W/"3afe034397233040ef614ef8c1b11454"
Cache-Control: max-age=0, private, must-revalidate
X-Request-Id: ba9ef393-a5a4-4c2e-b252-cc2761936723
X-Runtime: 0.020780
X-Powered-By: Phusion Passenger 4.0.53
Date: Tue, 21 May 2019 17:48:44 GMT
Server: nginx/1.6.2 + Phusion Passenger 4.0.53
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"


--- Additional Info ---