Report - www.amtproductions.net/

Report Overview

Visited public
2024-08-03 23:54:49
Tags
URL
www.amtproductions.net/
Finishing URL
www.amtproductions.net/
IP / ASN
76.76.21.98
#16509 AMAZON-02
Title
Washington Photography

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Sent	Received	IP
r10.o.lencr.org	unknown	3.3 kB	8.9 kB	23.36.77.32
www.amtproductions.net	unknown	13 kB	2.3 MB	76.76.21.98
o.pki.goog	unknown	325 B	699 B	142.250.74.131
assets.univer.se	unknown	9.7 kB	5.9 MB	76.76.21.61
www.googletagmanager.com	75	446 B	315 kB	142.250.74.168

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-08-03	medium	univer.se	Sinkholed
2024-08-03	medium	univer.se	Sinkholed
2024-08-03	medium	univer.se	Sinkholed
2024-08-03	medium	univer.se	Sinkholed
2024-08-03	medium	univer.se	Sinkholed
2024-08-03	medium	univer.se	Sinkholed
2024-08-03	medium	univer.se	Sinkholed
2024-08-03	medium	univer.se	Sinkholed
2024-08-03	medium	univer.se	Sinkholed
2024-08-03	medium	univer.se	Sinkholed
2024-08-03	medium	univer.se	Sinkholed
2024-08-03	medium	univer.se	Sinkholed
2024-08-03	medium	univer.se	Sinkholed
2024-08-03	medium	univer.se	Sinkholed
2024-08-03	medium	univer.se	Sinkholed
2024-08-03	medium	univer.se	Sinkholed
2024-08-03	medium	univer.se	Sinkholed
2024-08-03	medium	univer.se	Sinkholed
2024-08-03	medium	univer.se	Sinkholed

ThreatFox

No alerts detected

JavaScript (13)

	URL	From	Size	First Seen	Last Seen
	www.amtproductions.net/_next/static/chunks/main-57efdfc15ccfc2e3.js	ScriptElement	124 kB	2024-07-04	2024-09-20
Pretty URL www.amtproductions.net/_next/static/chunks/main-57efdfc15ccfc2e3.js IP 76.76.21.98 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-07-04 05:40 Last Seen2024-09-20 20:06 Times Seen30 Hash 01b658a6ce78c5dae5b9ecd66115af27 6e0dc1af23ffb0a74e39bc7f3e0af4dca8d27533 999fc9bbe4e2998d116e32a22ca874472250b060f06b8b069543023119d53c31 Loading...

	www.amtproductions.net/_next/static/chunks/pages/_sites/%5BsiteId%5D/%5BcacheTag%5D/%5B%5B...slug%5D%5D-21299e5a0db911a4.js	ScriptElement	4.3 kB	2024-07-31	2024-08-19
Pretty URL www.amtproductions.net/_next/static/chunks/pages/_sites/%5BsiteId%5D/%5BcacheTag%5D/%5B%5B...slug%5D%5D-21299e5a0db911a4.js IP 76.76.21.98 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-07-31 23:41 Last Seen2024-08-19 15:07 Times Seen4 Hash 13fb4309c049f8c17dcc4d426523ebf1 ef0d970f7bef3b249993087918fa6921e0b3560c dec0e5edc19110f5ebfc6bbeef523dcb7797952f7eca39b7fd4804934c36b16a Loading...

	www.amtproductions.net/_next/static/chunks/17.b56927c9e818cee7.js	ScriptElement	36 kB	2023-12-28	2024-08-20
Pretty URL www.amtproductions.net/_next/static/chunks/17.b56927c9e818cee7.js IP 76.76.21.98 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-28 19:55 Last Seen2024-08-20 14:43 Times Seen5 Hash 5f411908f7ca982b2c58813c56b0930c 8c6632d8f8b1358160d693c0c0443a60d4f7844d 02cc4ecceeaeb751dd0a43ff1eb13826bd46383f2dfc0d137cb13e41389c4453 Loading...

	www.amtproductions.net/_next/static/chunks/875-f5eac0213d72bb7b.js	ScriptElement	242 kB	2024-07-31	2024-08-19
Pretty URL www.amtproductions.net/_next/static/chunks/875-f5eac0213d72bb7b.js IP 76.76.21.98 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-07-31 23:41 Last Seen2024-08-19 15:07 Times Seen4 Hash 24a3ea0fd29d7cf8ad438a05cf79e76f b2b6b3405ea002017f1f9da0ba5ef6dd71f5eaf9 503158c62719cb66926ccfa40d3323d4cdf1050df1bc888f1151e06e780686fa Loading...

	www.amtproductions.net/_next/static/UfXXmxF00YFNZsOdxF2KY/_buildManifest.js	ScriptElement	1.6 kB	2024-07-31	2024-08-19
Pretty URL www.amtproductions.net/_next/static/UfXXmxF00YFNZsOdxF2KY/_buildManifest.js IP 76.76.21.98 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-07-31 23:41 Last Seen2024-08-19 15:07 Times Seen4 Hash 2e940b120eda6f45e8d035830a19a062 a4c91f9c26f0f7a1df7438cf8c1ad679c2e27a37 73dcbc9ab79a33c586d3067d1b31d3eaf95e63328e7abdc7b3e84473a40669e9 Loading...

	www.amtproductions.net/_next/static/UfXXmxF00YFNZsOdxF2KY/_ssgManifest.js	ScriptElement	80 B	2023-04-05	2025-06-18
Pretty URL www.amtproductions.net/_next/static/UfXXmxF00YFNZsOdxF2KY/_ssgManifest.js IP 76.76.21.98 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 01:40 Last Seen2025-06-18 06:00 Times Seen1824 Hash b404e23d62d95bafd03ad7747cc0e88b 011268d6627898dc2caac8b9678086cd9b9a7dfe 678f6ce2cb80b1fe72fc67e7412be6e2ab6ada083111b64f7c40d35e3cba5e00 Loading...

	www.googletagmanager.com/gtag/js?id=G-CX6QWFXGS9&l=ga4DataLayer	ScriptElement	314 kB	2024-08-19	2024-08-19
Pretty URL www.googletagmanager.com/gtag/js?id=G-CX6QWFXGS9&l=ga4DataLayer IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 14:44 Last Seen2024-08-19 14:44 Times Seen1 Hash 1e60433d6a514fbb4df09ef762267de1 bc937dc47ec562634f87870eef5912e92754aadb d5f0d14d68287d89d19d51dea953ed412d2338fb95f4f4e1bd8a1d56a53360d8 Loading...

	www.amtproductions.net/_next/static/chunks/framework-9e03599dad7746cc.js	ScriptElement	141 kB	2023-10-14	2025-06-17
Pretty URL www.amtproductions.net/_next/static/chunks/framework-9e03599dad7746cc.js IP 76.76.21.98 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-14 06:21 Last Seen2025-06-17 08:26 Times Seen133 Hash a287e128aae49c7e52b137576fe83655 056dbc2956be28e897dcc4a6589c9e0041e1ee67 365722b88937784a58b6f5bb017c82aaf62b3f145b498232722efa17ecb7bb23 Loading...

	www.amtproductions.net/_next/static/chunks/pages/_app-2b05b2048ebfb7e1.js	ScriptElement	19 kB	2023-12-28	2024-09-28
Pretty URL www.amtproductions.net/_next/static/chunks/pages/_app-2b05b2048ebfb7e1.js IP 76.76.21.98 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-28 19:55 Last Seen2024-09-28 08:46 Times Seen65 Hash 9b255d8629a0fdb4e57d72b3e67008cc b7c6e70c20fcd8e4e2b728b28be0c93fd01dfd65 d148febbedebffccd13e59bed8d24becfd660114e85d320e058c833919422b63 Loading...

	www.amtproductions.net/_next/static/chunks/877-3fbb024cd5610308.js	ScriptElement	189 kB	2024-04-25	2024-09-28
Pretty URL www.amtproductions.net/_next/static/chunks/877-3fbb024cd5610308.js IP 76.76.21.98 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 18:05 Last Seen2024-09-28 08:46 Times Seen61 Hash c5975eb302f9d955c8836d032c4fc1a5 4e1acb5acc0066f4d67cb6be2dd330b13a449d4e 4b033f6abb71ee6a2f7417183772c00c5adc8592b7d9eb63ac1c3e751131b03e Loading...

	www.amtproductions.net/_next/static/chunks/ac1c44fc.a475a8485a46df18.js	ScriptElement	96 kB	2023-12-28	2025-02-04
Pretty URL www.amtproductions.net/_next/static/chunks/ac1c44fc.a475a8485a46df18.js IP 76.76.21.98 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-28 19:55 Last Seen2025-02-04 20:38 Times Seen7 Hash d9a5d1ecc0c4e50b17a8c9e21e20d764 0293ddc1695c52d4c09f08b311484e6862cc5ab9 3ba5856e40493d7b850d69e9718dc2178a0e18d4e46c435e17d6cd56d8a2cd0c Loading...

	www.amtproductions.net/_next/static/chunks/webpack-517b4bbb3d3bdce9.js	ScriptElement	5.3 kB	2024-07-31	2024-08-19
Pretty URL www.amtproductions.net/_next/static/chunks/webpack-517b4bbb3d3bdce9.js IP 76.76.21.98 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-07-31 23:41 Last Seen2024-08-19 15:07 Times Seen4 Hash 14fcb8d82c7376623baa5cbc4e409a82 2be929441f03cebe5b7744b42a3ebd5bc61f28a3 3f94415b0d33e9587c0bad1f25648cd8a38bddec47008720a2287765c50c2cf8 Loading...

	www.amtproductions.net/_next/static/chunks/628.3520dbc0b43dbd0c.js	ScriptElement	10 kB	2024-05-09	2024-08-19
Pretty URL www.amtproductions.net/_next/static/chunks/628.3520dbc0b43dbd0c.js IP 76.76.21.98 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-09 11:17 Last Seen2024-08-19 23:39 Times Seen4 Hash 9394172f1451e2b43f741b0ce5f10989 204d948148f6221ca2f921b7230d5aab669b5233 9a8d2982330b7bdef77b3a913dbfb001db9b023199f9ca80b72e73d15e69d7df Loading...

HTTP Transactions (57)

URL IP Response Size

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
aadf4023fd478bb51576a5f2358b225e
a9d7b5d1e6a9d4f3fd800815a784607563dae142
cc1e53796ec8c93a6a4cf66399a32249a405bd6ec1bd7399d5926c11657868a9

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "CC1E53796EC8C93A6A4CF66399A32249A405BD6EC1BD7399D5926C11657868A9"
Last-Modified: Sat, 03 Aug 2024 18:56:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21414
Expires: Sun, 04 Aug 2024 05:51:14 GMT
Date: Sat, 03 Aug 2024 23:54:20 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
fbcbba6bdbe62bf043a449052e96c537
78ba577fb46d8f5471d6b956b571a64840d68762
af55de43044220deca1e257adc161f81a25c20dd9e7208ee4efec19b1a194f2a

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "AF55DE43044220DECA1E257ADC161F81A25C20DD9E7208EE4EFEC19B1A194F2A"
Last-Modified: Sat, 03 Aug 2024 18:58:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3985
Expires: Sun, 04 Aug 2024 01:00:45 GMT
Date: Sat, 03 Aug 2024 23:54:20 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
8bd7201be8d12c4b511d2c5643b45dbc
f2ecb2ebafbf4f8d92f92007753001befcedc634
25cb2e6ad29d4503f32121fbe37e2b0f4ce64a7f6cb57233ebf16df5d6b78d53

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "25CB2E6AD29D4503F32121FBE37E2B0F4CE64A7F6CB57233EBF16DF5D6B78D53"
Last-Modified: Sat, 03 Aug 2024 18:58:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5153
Expires: Sun, 04 Aug 2024 01:20:14 GMT
Date: Sat, 03 Aug 2024 23:54:21 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
3653abf0951eea060f104ae59d60cf7c
75790e8c59cb78c77ab522e7dc7140b62a046bb9
d059eeda67b64dd02259f5a9352df39cc808e3f9e03068a434e0f6486814893d

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "D059EEDA67B64DD02259F5A9352DF39CC808E3F9E03068A434E0F6486814893D"
Last-Modified: Sat, 03 Aug 2024 18:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8027
Expires: Sun, 04 Aug 2024 02:08:08 GMT
Date: Sat, 03 Aug 2024 23:54:21 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
59b201435fea5b5ec83d6048402b1099
446584a510725d3a3d60d0600876b18f9a234bf5
524c3ec453e43f5dba30a7b743466645c2d63d4c568cdb298c01d5899c90520f

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "524C3EC453E43F5DBA30A7B743466645C2D63D4C568CDB298C01D5899C90520F"
Last-Modified: Fri, 02 Aug 2024 21:01:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21537
Expires: Sun, 04 Aug 2024 05:53:18 GMT
Date: Sat, 03 Aug 2024 23:54:21 GMT
Connection: keep-alive

www.amtproductions.net/_next/static/UfXXmxF00YFNZsOdxF2KY/_ssgManifest.js

76.76.21.98

200 OK

80 B

URL GET HTTP/2
www.amtproductions.net/_next/static/UfXXmxF00YFNZsOdxF2KY/_ssgManifest.js
IP
76.76.21.98:443
ASN
#16509 AMAZON-02

Requested by
https://www.amtproductions.net/
Certificate
IssuerLet's Encrypt
Subjectwww.amtproductions.net
Fingerprint3B:18:58:F2:AE:C8:A8:A2:97:BE:69:D8:E2:8C:0D:34:54:41:79:93
ValidityFri, 05 Jul 2024 23:11:26 GMT - Thu, 03 Oct 2024 23:11:25 GMT

File type
ASCII text, with no line terminators
Size
80 B (80 bytes)
Hash
b404e23d62d95bafd03ad7747cc0e88b
011268d6627898dc2caac8b9678086cd9b9a7dfe
678f6ce2cb80b1fe72fc67e7412be6e2ab6ada083111b64f7c40d35e3cba5e00

HTTP Headers

GET /_next/static/UfXXmxF00YFNZsOdxF2KY/_ssgManifest.js HTTP/1.1
Host: www.amtproductions.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amtproductions.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 237729
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="_ssgManifest.js"
content-security-policy: frame-ancestors https://tools.univer.se
content-type: application/javascript; charset=utf-8
date: Sat, 03 Aug 2024 23:54:22 GMT
etag: "b404e23d62d95bafd03ad7747cc0e88b"
server: Vercel
strict-transport-security: max-age=63072000
universe-request-id: e8253d84
x-matched-path: /_next/static/UfXXmxF00YFNZsOdxF2KY/_ssgManifest.js
x-vercel-cache: HIT
x-vercel-id: arn1::fbmtd-1722729262065-06827444fd75
content-length: 80
X-Firefox-Spdy: h2

www.amtproductions.net/_next/static/chunks/main-57efdfc15ccfc2e3.js

76.76.21.98

200 OK

38 kB

URL GET HTTP/2
www.amtproductions.net/_next/static/chunks/main-57efdfc15ccfc2e3.js
IP
76.76.21.98:443
ASN
#16509 AMAZON-02

Requested by
https://www.amtproductions.net/
Certificate
IssuerLet's Encrypt
Subjectwww.amtproductions.net
Fingerprint3B:18:58:F2:AE:C8:A8:A2:97:BE:69:D8:E2:8C:0D:34:54:41:79:93
ValidityFri, 05 Jul 2024 23:11:26 GMT - Thu, 03 Oct 2024 23:11:25 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
38 kB (38220 bytes)
Hash
01b658a6ce78c5dae5b9ecd66115af27
6e0dc1af23ffb0a74e39bc7f3e0af4dca8d27533
999fc9bbe4e2998d116e32a22ca874472250b060f06b8b069543023119d53c31

HTTP Headers

GET /_next/static/chunks/main-57efdfc15ccfc2e3.js HTTP/1.1
Host: www.amtproductions.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amtproductions.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
age: 273894
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="main-57efdfc15ccfc2e3.js"
content-encoding: br
content-security-policy: frame-ancestors https://tools.univer.se
content-type: application/javascript; charset=utf-8
date: Sat, 03 Aug 2024 23:54:22 GMT
etag: W/"01b658a6ce78c5dae5b9ecd66115af27"
server: Vercel
strict-transport-security: max-age=63072000
universe-request-id: ca968442
x-matched-path: /_next/static/chunks/main-57efdfc15ccfc2e3.js
x-vercel-cache: HIT
x-vercel-id: arn1::774lj-1722729262056-ee7f61a73d1a
X-Firefox-Spdy: h2

www.amtproductions.net/_next/static/chunks/webpack-517b4bbb3d3bdce9.js

76.76.21.98

200 OK

15 kB

URL GET HTTP/2
www.amtproductions.net/_next/static/chunks/webpack-517b4bbb3d3bdce9.js
IP
76.76.21.98:443
ASN
#16509 AMAZON-02

Requested by
https://www.amtproductions.net/
Certificate
IssuerLet's Encrypt
Subjectwww.amtproductions.net
Fingerprint3B:18:58:F2:AE:C8:A8:A2:97:BE:69:D8:E2:8C:0D:34:54:41:79:93
ValidityFri, 05 Jul 2024 23:11:26 GMT - Thu, 03 Oct 2024 23:11:25 GMT

File type
JavaScript source, ASCII text, with very long lines (5312), with no line terminators
Size
15 kB (14917 bytes)
Hash
14fcb8d82c7376623baa5cbc4e409a82
2be929441f03cebe5b7744b42a3ebd5bc61f28a3
3f94415b0d33e9587c0bad1f25648cd8a38bddec47008720a2287765c50c2cf8

HTTP Headers

GET /_next/static/chunks/webpack-517b4bbb3d3bdce9.js HTTP/1.1
Host: www.amtproductions.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amtproductions.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
age: 282760
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="webpack-517b4bbb3d3bdce9.js"
content-encoding: br
content-security-policy: frame-ancestors https://tools.univer.se
content-type: application/javascript; charset=utf-8
date: Sat, 03 Aug 2024 23:54:22 GMT
etag: W/"14fcb8d82c7376623baa5cbc4e409a82"
server: Vercel
strict-transport-security: max-age=63072000
universe-request-id: 68092c6a
x-matched-path: /_next/static/chunks/webpack-517b4bbb3d3bdce9.js
x-vercel-cache: HIT
x-vercel-id: arn1::rjj4b-1722729262051-909f270cfd23
X-Firefox-Spdy: h2

www.amtproductions.net/

76.76.21.98

200 OK

40 kB

URL User Request GET HTTP/2
www.amtproductions.net/
IP
76.76.21.98:443
ASN
#16509 AMAZON-02

Certificate
IssuerLet's Encrypt
Subjectwww.amtproductions.net
Fingerprint3B:18:58:F2:AE:C8:A8:A2:97:BE:69:D8:E2:8C:0D:34:54:41:79:93
ValidityFri, 05 Jul 2024 23:11:26 GMT - Thu, 03 Oct 2024 23:11:25 GMT

File type
HTML document, ASCII text, with very long lines (32863), with no line terminators
Size
40 kB (40240 bytes)
Hash
c6fb7d52a596f2d064d15fdebc668a56
93b190dbd2defb6a6cab87ebf3511d28d2a4b8d1
cd4326569b875a1562f8296f76382ed2cbd3ad5019d318a2370983153f70b3c9

HTTP Headers

GET / HTTP/1.1
Host: www.amtproductions.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
age: 0
cache-control: max-age=10
content-encoding: br
content-security-policy: frame-ancestors https://tools.univer.se
content-type: text/html; charset=utf-8
date: Sat, 03 Aug 2024 23:54:21 GMT
etag: W/"cjsexa3z26pcv"
server: Vercel
strict-transport-security: max-age=63072000
universe-request-id: d6665488
x-matched-path: /_sites/[siteId]/[cacheTag]/[[...slug]]
x-powered-by: Next.js
x-vercel-cache: MISS
x-vercel-id: arn1::iad1::bs94g-1722729261487-0a81d54a22e3
X-Firefox-Spdy: h2

www.amtproductions.net/static/fonts/RoslindaleDisplayCondensed-Bold.woff2

76.76.21.98

200 OK

33 kB

URL GET HTTP/2
www.amtproductions.net/static/fonts/RoslindaleDisplayCondensed-Bold.woff2
IP
76.76.21.98:443
ASN
#16509 AMAZON-02

Requested by
https://www.amtproductions.net/
Certificate
IssuerLet's Encrypt
Subjectwww.amtproductions.net
Fingerprint3B:18:58:F2:AE:C8:A8:A2:97:BE:69:D8:E2:8C:0D:34:54:41:79:93
ValidityFri, 05 Jul 2024 23:11:26 GMT - Thu, 03 Oct 2024 23:11:25 GMT

File type
Web Open Font Format (Version 2), CFF, length 33240, version 1.0
Size
33 kB (33240 bytes)
Hash
38c5dcaa9559fef2ebd5d309cefe077e
b4d962efd12ef67c55d6a384eab8f88b185de0b5
ea7225f21dd64b665ccaacef11b82fd42e46867e33546754105c7dc67e21cedc

HTTP Headers

GET /static/fonts/RoslindaleDisplayCondensed-Bold.woff2 HTTP/1.1
Host: www.amtproductions.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.amtproductions.net/_next/static/css/3df0ddd732814165.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 293050
cache-control: max-age=604800
content-disposition: inline; filename="RoslindaleDisplayCondensed-Bold.woff2"
content-security-policy: frame-ancestors https://tools.univer.se
content-type: font/woff2
date: Sat, 03 Aug 2024 23:54:22 GMT
etag: "38c5dcaa9559fef2ebd5d309cefe077e"
server: Vercel
strict-transport-security: max-age=63072000
universe-request-id: e4ba0584
x-matched-path: /static/fonts/RoslindaleDisplayCondensed-Bold.woff2
x-vercel-cache: HIT
x-vercel-id: arn1::v87bc-1722729262358-4dc2270ac777
content-length: 33240
X-Firefox-Spdy: h2

www.amtproductions.net/static/fonts/Universe---HelveticaNeueLTStd-Roman.woff2

76.76.21.98

200 OK

16 kB

URL GET HTTP/2
www.amtproductions.net/static/fonts/Universe---HelveticaNeueLTStd-Roman.woff2
IP
76.76.21.98:443
ASN
#16509 AMAZON-02

Requested by
https://www.amtproductions.net/
Certificate
IssuerLet's Encrypt
Subjectwww.amtproductions.net
Fingerprint3B:18:58:F2:AE:C8:A8:A2:97:BE:69:D8:E2:8C:0D:34:54:41:79:93
ValidityFri, 05 Jul 2024 23:11:26 GMT - Thu, 03 Oct 2024 23:11:25 GMT

File type
Web Open Font Format (Version 2), CFF, length 15764, version 1.0
Size
16 kB (15764 bytes)
Hash
e6d3f7f3806b45ef0849ef1ed3c30c20
692763c1bf9cc8107ec8ceb664a6a205a1817784
4cbd16522fa0b8362338b5bf7a5c1c90099af315006779030aa4bbe8254b074a

HTTP Headers

GET /static/fonts/Universe---HelveticaNeueLTStd-Roman.woff2 HTTP/1.1
Host: www.amtproductions.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.amtproductions.net/_next/static/css/3df0ddd732814165.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 254889
cache-control: max-age=604800
content-disposition: inline; filename="Universe---HelveticaNeueLTStd-Roman.woff2"
content-security-policy: frame-ancestors https://tools.univer.se
content-type: font/woff2
date: Sat, 03 Aug 2024 23:54:22 GMT
etag: "e6d3f7f3806b45ef0849ef1ed3c30c20"
server: Vercel
strict-transport-security: max-age=63072000
universe-request-id: 6b0da8cf
x-matched-path: /static/fonts/Universe---HelveticaNeueLTStd-Roman.woff2
x-vercel-cache: HIT
x-vercel-id: arn1::fbmtd-1722729262369-a11944fd8621
content-length: 15764
X-Firefox-Spdy: h2

www.amtproductions.net/static/icons/email.svg

76.76.21.98

200 OK

386 B

URL GET HTTP/2
www.amtproductions.net/static/icons/email.svg
IP
76.76.21.98:443
ASN
#16509 AMAZON-02

Requested by
https://www.amtproductions.net/
Certificate
IssuerLet's Encrypt
Subjectwww.amtproductions.net
Fingerprint3B:18:58:F2:AE:C8:A8:A2:97:BE:69:D8:E2:8C:0D:34:54:41:79:93
ValidityFri, 05 Jul 2024 23:11:26 GMT - Thu, 03 Oct 2024 23:11:25 GMT

File type
SVG Scalable Vector Graphics image
Size
386 B (386 bytes)
Hash
961b30e89e3b9a812d548eed58c5c297
5f218bb0bcfb448c03120fe244929a074a3c9639
ddd94f1c2f2da2deb8e0c80da9f3ddaa7108164fae8022fe3d92fc0b5c487f86

HTTP Headers

GET /static/icons/email.svg HTTP/1.1
Host: www.amtproductions.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amtproductions.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 292041
cache-control: max-age=604800
content-disposition: inline; filename="email.svg"
content-security-policy: frame-ancestors https://tools.univer.se
content-type: image/svg+xml
date: Sat, 03 Aug 2024 23:54:22 GMT
etag: "961b30e89e3b9a812d548eed58c5c297"
server: Vercel
strict-transport-security: max-age=63072000
universe-request-id: 6aae79a0
x-matched-path: /static/icons/email.svg
x-vercel-cache: HIT
x-vercel-id: arn1::bs94g-1722729262389-1b334e645290
content-length: 386
X-Firefox-Spdy: h2

www.amtproductions.net/_next/static/css/3df0ddd732814165.css

76.76.21.98

200 OK

112 kB

URL GET HTTP/2
www.amtproductions.net/_next/static/css/3df0ddd732814165.css
IP
76.76.21.98:443
ASN
#16509 AMAZON-02

Requested by
https://www.amtproductions.net/
Certificate
IssuerLet's Encrypt
Subjectwww.amtproductions.net
Fingerprint3B:18:58:F2:AE:C8:A8:A2:97:BE:69:D8:E2:8C:0D:34:54:41:79:93
ValidityFri, 05 Jul 2024 23:11:26 GMT - Thu, 03 Oct 2024 23:11:25 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
112 kB (112000 bytes)
Hash
c71ff21aaf25c6fd8b34c6bd2535dbaf
f7de03370487cc75abe6c7df448eed4dc2c5ab2c
f57eedac8f172a22c5eb84560cc1cec19e8641fcaf57a8140e0c4070c339f710

HTTP Headers

GET /_next/static/css/3df0ddd732814165.css HTTP/1.1
Host: www.amtproductions.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amtproductions.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
age: 256342
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="3df0ddd732814165.css"
content-encoding: br
content-security-policy: frame-ancestors https://tools.univer.se
content-type: text/css; charset=utf-8
date: Sat, 03 Aug 2024 23:54:22 GMT
etag: W/"c71ff21aaf25c6fd8b34c6bd2535dbaf"
server: Vercel
strict-transport-security: max-age=63072000
universe-request-id: 48553083
x-matched-path: /_next/static/css/3df0ddd732814165.css
x-vercel-cache: HIT
x-vercel-id: arn1::bs94g-1722729262049-11437c63b90e
X-Firefox-Spdy: h2

o.pki.goog/wr2

142.250.74.131

471 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
81a79c4b857dbae03350ec16019194a2
a8ec0d561c980e63a14eae3a37d55810cf5cb28d
a1a5e840420d4fe1c5c697d6d66e051889f881eb9b2cc381d7e37ee3ff329248

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Aug 2024 23:54:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
c350bdea34be0056bcbf94491fba7533
f5924cf49bcc6dd310024b824003661ab02b68a7
ed2ee90d287f8197865a711dccfa26dd2be9d5ee12f8ea8170de7def17b82ff4

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "ED2EE90D287F8197865A711DCCFA26DD2BE9D5EE12F8EA8170DE7DEF17B82FF4"
Last-Modified: Sat, 03 Aug 2024 18:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2225
Expires: Sun, 04 Aug 2024 00:31:27 GMT
Date: Sat, 03 Aug 2024 23:54:22 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
c350bdea34be0056bcbf94491fba7533
f5924cf49bcc6dd310024b824003661ab02b68a7
ed2ee90d287f8197865a711dccfa26dd2be9d5ee12f8ea8170de7def17b82ff4

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "ED2EE90D287F8197865A711DCCFA26DD2BE9D5EE12F8EA8170DE7DEF17B82FF4"
Last-Modified: Sat, 03 Aug 2024 18:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2165
Expires: Sun, 04 Aug 2024 00:30:27 GMT
Date: Sat, 03 Aug 2024 23:54:22 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
c350bdea34be0056bcbf94491fba7533
f5924cf49bcc6dd310024b824003661ab02b68a7
ed2ee90d287f8197865a711dccfa26dd2be9d5ee12f8ea8170de7def17b82ff4

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "ED2EE90D287F8197865A711DCCFA26DD2BE9D5EE12F8EA8170DE7DEF17B82FF4"
Last-Modified: Sat, 03 Aug 2024 18:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2225
Expires: Sun, 04 Aug 2024 00:31:27 GMT
Date: Sat, 03 Aug 2024 23:54:22 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
c350bdea34be0056bcbf94491fba7533
f5924cf49bcc6dd310024b824003661ab02b68a7
ed2ee90d287f8197865a711dccfa26dd2be9d5ee12f8ea8170de7def17b82ff4

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "ED2EE90D287F8197865A711DCCFA26DD2BE9D5EE12F8EA8170DE7DEF17B82FF4"
Last-Modified: Sat, 03 Aug 2024 18:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2165
Expires: Sun, 04 Aug 2024 00:30:27 GMT
Date: Sat, 03 Aug 2024 23:54:22 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
c350bdea34be0056bcbf94491fba7533
f5924cf49bcc6dd310024b824003661ab02b68a7
ed2ee90d287f8197865a711dccfa26dd2be9d5ee12f8ea8170de7def17b82ff4

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "ED2EE90D287F8197865A711DCCFA26DD2BE9D5EE12F8EA8170DE7DEF17B82FF4"
Last-Modified: Sat, 03 Aug 2024 18:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2165
Expires: Sun, 04 Aug 2024 00:30:27 GMT
Date: Sat, 03 Aug 2024 23:54:22 GMT
Connection: keep-alive

www.amtproductions.net/_next/data/UfXXmxF00YFNZsOdxF2KY/index.json

76.76.21.98

200 OK

5.6 kB

URL GET HTTP/2
www.amtproductions.net/_next/data/UfXXmxF00YFNZsOdxF2KY/index.json
IP
76.76.21.98:443
ASN
#16509 AMAZON-02

Requested by
https://www.amtproductions.net/
Certificate
IssuerLet's Encrypt
Subjectwww.amtproductions.net
Fingerprint3B:18:58:F2:AE:C8:A8:A2:97:BE:69:D8:E2:8C:0D:34:54:41:79:93
ValidityFri, 05 Jul 2024 23:11:26 GMT - Thu, 03 Oct 2024 23:11:25 GMT

File type
data
Size
5.6 kB (5598 bytes)
Hash
db2d23cb16078345a21c8969f82064dc
75495be4b13efd647c09cd55d01e2ecb5694d21e
665eeed666a9bf0248c9ac7b03f41ac2b70bb250c04abfc7d5f566b02967a7a6

HTTP Headers

GET /_next/data/UfXXmxF00YFNZsOdxF2KY/index.json HTTP/1.1
Host: www.amtproductions.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.amtproductions.net/
purpose: prefetch
x-middleware-prefetch: 1
x-nextjs-data: 1
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: private, no-cache, no-store, max-age=0, must-revalidate
content-security-policy: frame-ancestors https://tools.univer.se
date: Sat, 03 Aug 2024 23:54:22 GMT
server: Vercel
strict-transport-security: max-age=63072000
universe-request-id: 6d4556eb
x-matched-path: /_sites/[siteId]/[cacheTag]/[[...slug]]
x-middleware-skip: 1
x-nextjs-rewrite: /_sites/2126149/2024-07-08T17:19:40.018Z/
x-vercel-id: arn1::bs94g-1722729262628-a4e5d130f5a8
X-Firefox-Spdy: h2

www.amtproductions.net/_next/static/css/6dc030aab07ab578.css

76.76.21.98

200 OK

32 kB

URL GET HTTP/2
www.amtproductions.net/_next/static/css/6dc030aab07ab578.css
IP
76.76.21.98:443
ASN
#16509 AMAZON-02

Requested by
https://www.amtproductions.net/
Certificate
IssuerLet's Encrypt
Subjectwww.amtproductions.net
Fingerprint3B:18:58:F2:AE:C8:A8:A2:97:BE:69:D8:E2:8C:0D:34:54:41:79:93
ValidityFri, 05 Jul 2024 23:11:26 GMT - Thu, 03 Oct 2024 23:11:25 GMT

File type
ASCII text, with very long lines (9334), with no line terminators
Size
32 kB (31651 bytes)
Hash
ebe1d54d72360b7f751d615144b72c5f
1e0669bd751ea852ae7a6613479ad5ea5f785a28
2da829933d646f4ae246f2c55037c5f4e9c671a9837c94b81f7d163617106926

HTTP Headers

GET /_next/static/css/6dc030aab07ab578.css HTTP/1.1
Host: www.amtproductions.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amtproductions.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
age: 252551
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="6dc030aab07ab578.css"
content-encoding: br
content-security-policy: frame-ancestors https://tools.univer.se
content-type: text/css; charset=utf-8
date: Sat, 03 Aug 2024 23:54:22 GMT
etag: W/"ebe1d54d72360b7f751d615144b72c5f"
server: Vercel
strict-transport-security: max-age=63072000
universe-request-id: fdf39df9
x-matched-path: /_next/static/css/6dc030aab07ab578.css
x-vercel-cache: HIT
x-vercel-id: arn1::5lbzk-1722729262050-b31efe2a9058
X-Firefox-Spdy: h2

www.amtproductions.net/_next/data/UfXXmxF00YFNZsOdxF2KY/bio.json?slug=bio

76.76.21.98

200 OK

7.6 kB

URL GET HTTP/2
www.amtproductions.net/_next/data/UfXXmxF00YFNZsOdxF2KY/bio.json?slug=bio
IP
76.76.21.98:443
ASN
#16509 AMAZON-02

Requested by
https://www.amtproductions.net/
Certificate
IssuerLet's Encrypt
Subjectwww.amtproductions.net
Fingerprint3B:18:58:F2:AE:C8:A8:A2:97:BE:69:D8:E2:8C:0D:34:54:41:79:93
ValidityFri, 05 Jul 2024 23:11:26 GMT - Thu, 03 Oct 2024 23:11:25 GMT

File type
data
Size
7.6 kB (7590 bytes)
Hash
a132d317394a1ebd0012d5b5949651bf
6b724a6bb1d3a9f2b987765759324e149cbdce97
00205b5fa3aefaabab8ed7c50897f455b2afcde8dd52cfe3b03abc6c271d600e

HTTP Headers

GET /_next/data/UfXXmxF00YFNZsOdxF2KY/bio.json?slug=bio HTTP/1.1
Host: www.amtproductions.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.amtproductions.net/
purpose: prefetch
x-middleware-prefetch: 1
x-nextjs-data: 1
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: private, no-cache, no-store, max-age=0, must-revalidate
content-security-policy: frame-ancestors https://tools.univer.se
date: Sat, 03 Aug 2024 23:54:22 GMT
server: Vercel
strict-transport-security: max-age=63072000
universe-request-id: 00001c8e
x-matched-path: /_sites/[siteId]/[cacheTag]/[[...slug]]
x-middleware-skip: 1
x-nextjs-rewrite: /_sites/2126149/2024-07-08T17:19:40.018Z/bio
x-vercel-id: arn1::fbmtd-1722729262631-e725e8aa4974
X-Firefox-Spdy: h2

assets.univer.se/54eb04a9-3896-4983-8df4-b0dc131dd646?fit=crop&q=60&w=1500&auto=compress,format&h=1878

76.76.21.61

200 OK

671 kB

URL GET HTTP/2
assets.univer.se/54eb04a9-3896-4983-8df4-b0dc131dd646?fit=crop&q=60&w=1500&auto=compress,format&h=1878
IP
76.76.21.61:443
ASN
#16509 AMAZON-02

Requested by
https://www.amtproductions.net/
Certificate
IssuerLet's Encrypt
Subject*.univer.se
Fingerprint53:73:DB:ED:C6:23:81:64:FB:34:D3:B3:2F:00:4A:65:27:89:B0:86
ValidityFri, 05 Jul 2024 10:08:17 GMT - Thu, 03 Oct 2024 10:08:16 GMT

File type
ISO Media, AVIF Image
Size
671 kB (671281 bytes)
Hash
5a3d754e3ccee244212546bfdfd12968
b921bb09cd83a3a72800519d2fb1493b63828269
952f8ef933ea55d4007516b651fbf2c50519188c3d1c26e73d6d5344d188c338

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /54eb04a9-3896-4983-8df4-b0dc131dd646?fit=crop&q=60&w=1500&auto=compress,format&h=1878 HTTP/1.1
Host: assets.univer.se
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amtproductions.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 350390
cache-control: public, max-age=31536000
content-type: image/avif
cross-origin-resource-policy: cross-origin
date: Sat, 03 Aug 2024 23:54:23 GMT
last-modified: Tue, 30 Jul 2024 22:34:32 GMT
server: Vercel
strict-transport-security: max-age=63072000
timing-allow-origin: *
vary: Accept, User-Agent
x-cache: HIT, MISS, MISS
x-content-type-options: nosniff
x-imgix-id: 0e46bdb7c674fa7311c217e193482abeecac2281
x-served-by: cache-sjc10058-SJC, cache-fra-etou8220066-FRA, cache-bma1641-BMA
x-vercel-id: arn1::5m7hv-1722729262639-eba1048385ba
content-length: 671281
X-Firefox-Spdy: h2

assets.univer.se/b43e6aef-208a-4225-93f6-de2fceb93320?fit=crop&q=60&w=750&auto=compress,format

76.76.21.61

200 OK

166 kB

URL GET HTTP/2
assets.univer.se/b43e6aef-208a-4225-93f6-de2fceb93320?fit=crop&q=60&w=750&auto=compress,format
IP
76.76.21.61:443
ASN
#16509 AMAZON-02

Requested by
https://www.amtproductions.net/
Certificate
IssuerLet's Encrypt
Subject*.univer.se
Fingerprint53:73:DB:ED:C6:23:81:64:FB:34:D3:B3:2F:00:4A:65:27:89:B0:86
ValidityFri, 05 Jul 2024 10:08:17 GMT - Thu, 03 Oct 2024 10:08:16 GMT

File type
ISO Media, AVIF Image
Size
166 kB (166184 bytes)
Hash
08c9648a8eb1a0cb61214df6d5c2784e
6bc117f1a750d9b9a6bc35d660e099ea17e33ab5
0889480be9055ac17d51e9049075a2f4835b8817c7e084273c219b9e8b26dc3e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /b43e6aef-208a-4225-93f6-de2fceb93320?fit=crop&q=60&w=750&auto=compress,format HTTP/1.1
Host: assets.univer.se
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amtproductions.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: public, max-age=31536000
content-type: image/avif
cross-origin-resource-policy: cross-origin
date: Sat, 03 Aug 2024 23:54:23 GMT
last-modified: Sat, 03 Aug 2024 23:54:23 GMT
server: Vercel
strict-transport-security: max-age=63072000
timing-allow-origin: *
vary: Accept, User-Agent
x-cache: MISS, MISS, MISS
x-content-type-options: nosniff
x-imgix-id: ad53f9acb92ccf51233c93bada144bfd3faa01fa
x-served-by: cache-sjc1000129-SJC, cache-fra-etou8220129-FRA, cache-bma1654-BMA
x-vercel-id: arn1::vs25m-1722729262605-bd989024ef06
content-length: 166184
X-Firefox-Spdy: h2

assets.univer.se/b9525eb6-9d53-45dc-84a4-475b0bbad851?fit=crop&q=60&w=750&auto=compress,format

76.76.21.61

200 OK

189 kB

URL GET HTTP/2
assets.univer.se/b9525eb6-9d53-45dc-84a4-475b0bbad851?fit=crop&q=60&w=750&auto=compress,format
IP
76.76.21.61:443
ASN
#16509 AMAZON-02

Requested by
https://www.amtproductions.net/
Certificate
IssuerLet's Encrypt
Subject*.univer.se
Fingerprint53:73:DB:ED:C6:23:81:64:FB:34:D3:B3:2F:00:4A:65:27:89:B0:86
ValidityFri, 05 Jul 2024 10:08:17 GMT - Thu, 03 Oct 2024 10:08:16 GMT

File type
ISO Media, AVIF Image
Size
189 kB (189306 bytes)
Hash
a2a2f0c4260be14723caeb5a1c736df2
dde5ebafcd9d196013d3366b1cf1f95a6404e10a
d3cbe8059b5bd3edfc72fc68a3be71aa62f28a879cfd3bbf4f4d9ac7b0008c11

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /b9525eb6-9d53-45dc-84a4-475b0bbad851?fit=crop&q=60&w=750&auto=compress,format HTTP/1.1
Host: assets.univer.se
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amtproductions.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: public, max-age=31536000
content-type: image/avif
cross-origin-resource-policy: cross-origin
date: Sat, 03 Aug 2024 23:54:23 GMT
last-modified: Sat, 03 Aug 2024 23:54:23 GMT
server: Vercel
strict-transport-security: max-age=63072000
timing-allow-origin: *
vary: Accept, User-Agent
x-cache: MISS, MISS, MISS
x-content-type-options: nosniff
x-imgix-id: 5ac79b632182c6f39b34fb36e83e826146c6067d
x-served-by: cache-sjc10078-SJC, cache-fra-eddf8230126-FRA, cache-bma1633-BMA
x-vercel-id: arn1::v87bc-1722729262584-d4db7fc6b030
content-length: 189306
X-Firefox-Spdy: h2

assets.univer.se/4697a25e-7196-4e63-b939-87e05ac5ee32?fit=crop&q=60&w=750&auto=compress,format

76.76.21.61

200 OK

240 kB

URL GET HTTP/2
assets.univer.se/4697a25e-7196-4e63-b939-87e05ac5ee32?fit=crop&q=60&w=750&auto=compress,format
IP
76.76.21.61:443
ASN
#16509 AMAZON-02

Requested by
https://www.amtproductions.net/
Certificate
IssuerLet's Encrypt
Subject*.univer.se
Fingerprint53:73:DB:ED:C6:23:81:64:FB:34:D3:B3:2F:00:4A:65:27:89:B0:86
ValidityFri, 05 Jul 2024 10:08:17 GMT - Thu, 03 Oct 2024 10:08:16 GMT

File type
ISO Media, AVIF Image
Size
240 kB (240202 bytes)
Hash
1149032c87727cd4b3cd98809e803a31
b34ba64297847337bf167021dbcfc87b0eb9b3cb
f2741c1468d25836e373c4c6c5624309c980a9f0319d208cc9445ee8a55c73bd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /4697a25e-7196-4e63-b939-87e05ac5ee32?fit=crop&q=60&w=750&auto=compress,format HTTP/1.1
Host: assets.univer.se
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amtproductions.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: public, max-age=31536000
content-type: image/avif
cross-origin-resource-policy: cross-origin
date: Sat, 03 Aug 2024 23:54:23 GMT
last-modified: Sat, 03 Aug 2024 23:54:23 GMT
server: Vercel
strict-transport-security: max-age=63072000
timing-allow-origin: *
vary: Accept, User-Agent
x-cache: MISS, MISS, MISS
x-content-type-options: nosniff
x-imgix-id: 233a7d79a0b9f4a3efb7276aeab6d381abc1ffa0
x-served-by: cache-sjc1000095-SJC, cache-fra-eddf8230147-FRA, cache-bma1630-BMA
x-vercel-id: arn1::5lbzk-1722729262585-e882d63cff79
content-length: 240202
X-Firefox-Spdy: h2

assets.univer.se/d394b8bc-6b73-428a-b9b2-a8076a54579b?fit=crop&q=60&w=1500&auto=compress,format

76.76.21.61

200 OK

62 kB

URL GET HTTP/2
assets.univer.se/d394b8bc-6b73-428a-b9b2-a8076a54579b?fit=crop&q=60&w=1500&auto=compress,format
IP
76.76.21.61:443
ASN
#16509 AMAZON-02

Requested by
https://www.amtproductions.net/
Certificate
IssuerLet's Encrypt
Subject*.univer.se
Fingerprint53:73:DB:ED:C6:23:81:64:FB:34:D3:B3:2F:00:4A:65:27:89:B0:86
ValidityFri, 05 Jul 2024 10:08:17 GMT - Thu, 03 Oct 2024 10:08:16 GMT

File type
ISO Media, AVIF Image
Size
62 kB (62054 bytes)
Hash
e31fbfa8e5bbfb20b95dfc973c6675f6
bf2a781f07471f74e611deae67132a80c80cc943
a312ea50a6065ef81fd8a8f3de567ee3808c9523f3aab28b42baa4ee1f40c5a1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /d394b8bc-6b73-428a-b9b2-a8076a54579b?fit=crop&q=60&w=1500&auto=compress,format HTTP/1.1
Host: assets.univer.se
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amtproductions.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: public, max-age=31536000
content-type: image/avif
cross-origin-resource-policy: cross-origin
date: Sat, 03 Aug 2024 23:54:23 GMT
last-modified: Sat, 03 Aug 2024 23:54:23 GMT
server: Vercel
strict-transport-security: max-age=63072000
timing-allow-origin: *
vary: Accept, User-Agent
x-cache: MISS, MISS, MISS
x-content-type-options: nosniff
x-imgix-id: 6cbc839f2f4619571a509fc6b6d239d269e63643
x-served-by: cache-sjc1000142-SJC, cache-fra-etou8220043-FRA, cache-bma1664-BMA
x-vercel-id: arn1::bs94g-1722729262607-0ed8825a00be
content-length: 62054
X-Firefox-Spdy: h2

assets.univer.se/fa5d51c2-a62a-489e-815d-1b8ac9c25360?fit=crop&q=60&w=1500&auto=compress,format&h=1878

76.76.21.61

200 OK

422 kB

URL GET HTTP/2
assets.univer.se/fa5d51c2-a62a-489e-815d-1b8ac9c25360?fit=crop&q=60&w=1500&auto=compress,format&h=1878
IP
76.76.21.61:443
ASN
#16509 AMAZON-02

Requested by
https://www.amtproductions.net/
Certificate
IssuerLet's Encrypt
Subject*.univer.se
Fingerprint53:73:DB:ED:C6:23:81:64:FB:34:D3:B3:2F:00:4A:65:27:89:B0:86
ValidityFri, 05 Jul 2024 10:08:17 GMT - Thu, 03 Oct 2024 10:08:16 GMT

File type
ISO Media, AVIF Image
Size
422 kB (422174 bytes)
Hash
1267f9f269100f4f7a41539af6a25d2a
834f599d3febb962e07c42b6eb500b8ad351b638
9c33f8c84e8b9c578c6b91dd66a9f7152de493cae37bec081a79db5c26ff9c11

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /fa5d51c2-a62a-489e-815d-1b8ac9c25360?fit=crop&q=60&w=1500&auto=compress,format&h=1878 HTTP/1.1
Host: assets.univer.se
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amtproductions.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: public, max-age=31536000
content-type: image/avif
cross-origin-resource-policy: cross-origin
date: Sat, 03 Aug 2024 23:54:23 GMT
last-modified: Sat, 03 Aug 2024 23:54:23 GMT
server: Vercel
strict-transport-security: max-age=63072000
timing-allow-origin: *
vary: Accept, User-Agent
x-cache: MISS, MISS, MISS
x-content-type-options: nosniff
x-imgix-id: 0c679e52fc2c07d7297333979701539c73ba8b34
x-served-by: cache-sjc10044-SJC, cache-fra-eddf8230047-FRA, cache-bma1624-BMA
x-vercel-id: arn1::fbmtd-1722729262636-0df858d0b9eb
content-length: 422174
X-Firefox-Spdy: h2

www.amtproductions.net/_next/static/chunks/framework-9e03599dad7746cc.js

76.76.21.98

200 OK

500 kB

URL GET HTTP/2
www.amtproductions.net/_next/static/chunks/framework-9e03599dad7746cc.js
IP
76.76.21.98:443
ASN
#16509 AMAZON-02

Requested by
https://www.amtproductions.net/
Certificate
IssuerLet's Encrypt
Subjectwww.amtproductions.net
Fingerprint3B:18:58:F2:AE:C8:A8:A2:97:BE:69:D8:E2:8C:0D:34:54:41:79:93
ValidityFri, 05 Jul 2024 23:11:26 GMT - Thu, 03 Oct 2024 23:11:25 GMT

File type
JavaScript source, ASCII text, with very long lines (65202)
Size
500 kB (500519 bytes)
Hash
a287e128aae49c7e52b137576fe83655
056dbc2956be28e897dcc4a6589c9e0041e1ee67
365722b88937784a58b6f5bb017c82aaf62b3f145b498232722efa17ecb7bb23

HTTP Headers

GET /_next/static/chunks/framework-9e03599dad7746cc.js HTTP/1.1
Host: www.amtproductions.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amtproductions.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
age: 289544
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="framework-9e03599dad7746cc.js"
content-encoding: br
content-security-policy: frame-ancestors https://tools.univer.se
content-type: application/javascript; charset=utf-8
date: Sat, 03 Aug 2024 23:54:22 GMT
etag: W/"a287e128aae49c7e52b137576fe83655"
server: Vercel
strict-transport-security: max-age=63072000
universe-request-id: ea020c75
x-matched-path: /_next/static/chunks/framework-9e03599dad7746cc.js
x-vercel-cache: HIT
x-vercel-id: arn1::bs94g-1722729262054-3acf0206e331
X-Firefox-Spdy: h2

assets.univer.se/d1bdfd75-a438-499e-840f-f1f24002a768?fit=crop&q=60&w=1500&auto=compress,format&h=1878

76.76.21.61

200 OK

561 kB

URL GET HTTP/2
assets.univer.se/d1bdfd75-a438-499e-840f-f1f24002a768?fit=crop&q=60&w=1500&auto=compress,format&h=1878
IP
76.76.21.61:443
ASN
#16509 AMAZON-02

Requested by
https://www.amtproductions.net/
Certificate
IssuerLet's Encrypt
Subject*.univer.se
Fingerprint53:73:DB:ED:C6:23:81:64:FB:34:D3:B3:2F:00:4A:65:27:89:B0:86
ValidityFri, 05 Jul 2024 10:08:17 GMT - Thu, 03 Oct 2024 10:08:16 GMT

File type
ISO Media, AVIF Image
Size
561 kB (560929 bytes)
Hash
8a32e3cbbb49f4674898d54d51c11d54
2f043daae93b18a6d61c835c957e8ff28ad438e0
3f9577a302c5166190d2c574883b9ecad0f5773b59687fd0d1955f9737ea479f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /d1bdfd75-a438-499e-840f-f1f24002a768?fit=crop&q=60&w=1500&auto=compress,format&h=1878 HTTP/1.1
Host: assets.univer.se
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amtproductions.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: public, max-age=31536000
content-type: image/avif
cross-origin-resource-policy: cross-origin
date: Sat, 03 Aug 2024 23:54:23 GMT
last-modified: Sat, 03 Aug 2024 23:54:23 GMT
server: Vercel
strict-transport-security: max-age=63072000
timing-allow-origin: *
vary: Accept, User-Agent
x-cache: MISS, MISS, MISS
x-content-type-options: nosniff
x-imgix-id: 6aee0bb819c29120ab5ff595f49f046e860bc79d
x-served-by: cache-sjc10065-SJC, cache-fra-etou8220068-FRA, cache-bma1656-BMA
x-vercel-id: arn1::m95ts-1722729262635-1df179119f0a
content-length: 560929
X-Firefox-Spdy: h2

assets.univer.se/3fb3ae17-1018-4cba-bb06-07c9de79123b?fit=crop&q=60&w=750&auto=compress,format

76.76.21.61

200 OK

322 kB

URL GET HTTP/2
assets.univer.se/3fb3ae17-1018-4cba-bb06-07c9de79123b?fit=crop&q=60&w=750&auto=compress,format
IP
76.76.21.61:443
ASN
#16509 AMAZON-02

Requested by
https://www.amtproductions.net/
Certificate
IssuerLet's Encrypt
Subject*.univer.se
Fingerprint53:73:DB:ED:C6:23:81:64:FB:34:D3:B3:2F:00:4A:65:27:89:B0:86
ValidityFri, 05 Jul 2024 10:08:17 GMT - Thu, 03 Oct 2024 10:08:16 GMT

File type
ISO Media, AVIF Image
Size
322 kB (322271 bytes)
Hash
ef466acccc5e52dd697e8a68cbcb4122
8a5cc96ba65e92bef6084c59d8473e19a5160fc7
6106dac905b9f851fc52c4996c179fee50fed697c70986d9e53697a5a0358977

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /3fb3ae17-1018-4cba-bb06-07c9de79123b?fit=crop&q=60&w=750&auto=compress,format HTTP/1.1
Host: assets.univer.se
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amtproductions.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: public, max-age=31536000
content-type: image/avif
cross-origin-resource-policy: cross-origin
date: Sat, 03 Aug 2024 23:54:23 GMT
last-modified: Sat, 03 Aug 2024 23:54:23 GMT
server: Vercel
strict-transport-security: max-age=63072000
timing-allow-origin: *
vary: Accept, User-Agent
x-cache: MISS, MISS, MISS
x-content-type-options: nosniff
x-imgix-id: d1a1512ac386bf42f0a83c44d0b98cdcda06afcb
x-served-by: cache-sjc10081-SJC, cache-fra-eddf8230072-FRA, cache-bma1664-BMA
x-vercel-id: arn1::jb7ws-1722729262594-37d7a22246bd
content-length: 322271
X-Firefox-Spdy: h2

www.amtproductions.net/_next/static/UfXXmxF00YFNZsOdxF2KY/_buildManifest.js

76.76.21.98

200 OK

308 kB

URL GET HTTP/2
www.amtproductions.net/_next/static/UfXXmxF00YFNZsOdxF2KY/_buildManifest.js
IP
76.76.21.98:443
ASN
#16509 AMAZON-02

Requested by
https://www.amtproductions.net/
Certificate
IssuerLet's Encrypt
Subjectwww.amtproductions.net
Fingerprint3B:18:58:F2:AE:C8:A8:A2:97:BE:69:D8:E2:8C:0D:34:54:41:79:93
ValidityFri, 05 Jul 2024 23:11:26 GMT - Thu, 03 Oct 2024 23:11:25 GMT

File type
ASCII text, with very long lines (1614), with no line terminators
Size
308 kB (308254 bytes)
Hash
2e940b120eda6f45e8d035830a19a062
a4c91f9c26f0f7a1df7438cf8c1ad679c2e27a37
73dcbc9ab79a33c586d3067d1b31d3eaf95e63328e7abdc7b3e84473a40669e9

HTTP Headers

GET /_next/static/UfXXmxF00YFNZsOdxF2KY/_buildManifest.js HTTP/1.1
Host: www.amtproductions.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amtproductions.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
age: 284604
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="_buildManifest.js"
content-encoding: br
content-security-policy: frame-ancestors https://tools.univer.se
content-type: application/javascript; charset=utf-8
date: Sat, 03 Aug 2024 23:54:22 GMT
etag: W/"2e940b120eda6f45e8d035830a19a062"
server: Vercel
strict-transport-security: max-age=63072000
universe-request-id: f860563d
x-matched-path: /_next/static/UfXXmxF00YFNZsOdxF2KY/_buildManifest.js
x-vercel-cache: HIT
x-vercel-id: arn1::v87bc-1722729262063-1c987dc194ae
X-Firefox-Spdy: h2

assets.univer.se/854eec9f-db81-4769-99da-3ce1e43102fa?fit=crop&q=60&w=1500&auto=compress,format&h=2497

76.76.21.61

200 OK

384 kB

URL GET HTTP/2
assets.univer.se/854eec9f-db81-4769-99da-3ce1e43102fa?fit=crop&q=60&w=1500&auto=compress,format&h=2497
IP
76.76.21.61:443
ASN
#16509 AMAZON-02

Requested by
https://www.amtproductions.net/
Certificate
IssuerLet's Encrypt
Subject*.univer.se
Fingerprint53:73:DB:ED:C6:23:81:64:FB:34:D3:B3:2F:00:4A:65:27:89:B0:86
ValidityFri, 05 Jul 2024 10:08:17 GMT - Thu, 03 Oct 2024 10:08:16 GMT

File type
ISO Media, AVIF Image
Size
384 kB (383651 bytes)
Hash
72e8c76214005c0552d38808b24cf9a4
c0c8c9918ccd8fc74ccdd89dc0d213fbf173ddbe
f08b4832386b4978bea9e18bc34c59e116e6ce6338290d549fd2c04d0b563943

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /854eec9f-db81-4769-99da-3ce1e43102fa?fit=crop&q=60&w=1500&auto=compress,format&h=2497 HTTP/1.1
Host: assets.univer.se
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amtproductions.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: public, max-age=31536000
content-type: image/avif
cross-origin-resource-policy: cross-origin
date: Sat, 03 Aug 2024 23:54:23 GMT
last-modified: Sat, 03 Aug 2024 23:54:23 GMT
server: Vercel
strict-transport-security: max-age=63072000
timing-allow-origin: *
vary: Accept, User-Agent
x-cache: MISS, MISS, MISS
x-content-type-options: nosniff
x-imgix-id: 3935ec594784a9e50a654e2657557ad625755ff6
x-served-by: cache-sjc1000147-SJC, cache-fra-eddf8230109-FRA, cache-bma1659-BMA
x-vercel-id: arn1::m95ts-1722729262641-f97a3f09669d
content-length: 383651
X-Firefox-Spdy: h2

assets.univer.se/63ba1384-6dab-433d-920e-4b5ecdea56d4?fit=crop&q=60&w=1500&auto=compress,format&h=2497

76.76.21.61

200 OK

691 kB

URL GET HTTP/2
assets.univer.se/63ba1384-6dab-433d-920e-4b5ecdea56d4?fit=crop&q=60&w=1500&auto=compress,format&h=2497
IP
76.76.21.61:443
ASN
#16509 AMAZON-02

Requested by
https://www.amtproductions.net/
Certificate
IssuerLet's Encrypt
Subject*.univer.se
Fingerprint53:73:DB:ED:C6:23:81:64:FB:34:D3:B3:2F:00:4A:65:27:89:B0:86
ValidityFri, 05 Jul 2024 10:08:17 GMT - Thu, 03 Oct 2024 10:08:16 GMT

File type
ISO Media, AVIF Image
Size
691 kB (690877 bytes)
Hash
390dbd41eb9a98de4db68d0a01e2f448
018fc2fcba61d07a0d304a4e59d745e07f89a66d
f7a4dedc9e7f2d90ca41be720c06275eea6c87b6fd27864ec4a1f6cd81320c50

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /63ba1384-6dab-433d-920e-4b5ecdea56d4?fit=crop&q=60&w=1500&auto=compress,format&h=2497 HTTP/1.1
Host: assets.univer.se
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amtproductions.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: public, max-age=31536000
content-type: image/avif
cross-origin-resource-policy: cross-origin
date: Sat, 03 Aug 2024 23:54:23 GMT
last-modified: Sat, 03 Aug 2024 23:54:23 GMT
server: Vercel
strict-transport-security: max-age=63072000
timing-allow-origin: *
vary: Accept, User-Agent
x-cache: MISS, MISS, MISS
x-content-type-options: nosniff
x-imgix-id: f974834bef69ec517ceab90470e7685c525a0bef
x-served-by: cache-sjc1000088-SJC, cache-fra-eddf8230036-FRA, cache-bma1676-BMA
x-vercel-id: arn1::774lj-1722729262642-ce6346ca1b26
content-length: 690877
X-Firefox-Spdy: h2

assets.univer.se/67650038-95c3-4f6c-9091-f5d633b01d08?fit=crop&q=60&w=1500&auto=compress,format&h=2497

76.76.21.61

200 OK

647 kB

URL GET HTTP/2
assets.univer.se/67650038-95c3-4f6c-9091-f5d633b01d08?fit=crop&q=60&w=1500&auto=compress,format&h=2497
IP
76.76.21.61:443
ASN
#16509 AMAZON-02

Requested by
https://www.amtproductions.net/
Certificate
IssuerLet's Encrypt
Subject*.univer.se
Fingerprint53:73:DB:ED:C6:23:81:64:FB:34:D3:B3:2F:00:4A:65:27:89:B0:86
ValidityFri, 05 Jul 2024 10:08:17 GMT - Thu, 03 Oct 2024 10:08:16 GMT

File type
ISO Media, AVIF Image
Size
647 kB (647273 bytes)
Hash
6b676854af3c188875903d1f61ee2241
0aedd7c16d7afc316ac0a590da02df4bdd4179f8
00c7235cc07b4531f6e6d8864b624a31b29da71c8cbc3253e31e9ebfdb5b028e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /67650038-95c3-4f6c-9091-f5d633b01d08?fit=crop&q=60&w=1500&auto=compress,format&h=2497 HTTP/1.1
Host: assets.univer.se
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amtproductions.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: public, max-age=31536000
content-type: image/avif
cross-origin-resource-policy: cross-origin
date: Sat, 03 Aug 2024 23:54:24 GMT
last-modified: Sat, 03 Aug 2024 23:54:23 GMT
server: Vercel
strict-transport-security: max-age=63072000
timing-allow-origin: *
vary: Accept, User-Agent
x-cache: MISS, MISS, MISS
x-content-type-options: nosniff
x-imgix-id: 2113080522a67cc11f565f9f23a2365874733782
x-served-by: cache-sjc1000113-SJC, cache-fra-etou8220072-FRA, cache-bma1683-BMA
x-vercel-id: arn1::jb7ws-1722729262640-3bd62ac758b9
content-length: 647273
X-Firefox-Spdy: h2

www.amtproductions.net/_next/static/chunks/875-f5eac0213d72bb7b.js

76.76.21.98

200 OK

838 kB

URL GET HTTP/2
www.amtproductions.net/_next/static/chunks/875-f5eac0213d72bb7b.js
IP
76.76.21.98:443
ASN
#16509 AMAZON-02

Requested by
https://www.amtproductions.net/
Certificate
IssuerLet's Encrypt
Subjectwww.amtproductions.net
Fingerprint3B:18:58:F2:AE:C8:A8:A2:97:BE:69:D8:E2:8C:0D:34:54:41:79:93
ValidityFri, 05 Jul 2024 23:11:26 GMT - Thu, 03 Oct 2024 23:11:25 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
838 kB (838413 bytes)
Hash
24a3ea0fd29d7cf8ad438a05cf79e76f
b2b6b3405ea002017f1f9da0ba5ef6dd71f5eaf9
503158c62719cb66926ccfa40d3323d4cdf1050df1bc888f1151e06e780686fa

HTTP Headers

GET /_next/static/chunks/875-f5eac0213d72bb7b.js HTTP/1.1
Host: www.amtproductions.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amtproductions.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
age: 258155
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="875-f5eac0213d72bb7b.js"
content-encoding: br
content-security-policy: frame-ancestors https://tools.univer.se
content-type: application/javascript; charset=utf-8
date: Sat, 03 Aug 2024 23:54:22 GMT
etag: W/"24a3ea0fd29d7cf8ad438a05cf79e76f"
server: Vercel
strict-transport-security: max-age=63072000
universe-request-id: 2c8a6e5c
x-matched-path: /_next/static/chunks/875-f5eac0213d72bb7b.js
x-vercel-cache: HIT
x-vercel-id: arn1::vlnsl-1722729262060-55de5302ac15
X-Firefox-Spdy: h2

www.amtproductions.net/static/favicons/universelogo/apple-touch-icon.png

76.76.21.98

200 OK

3.7 kB

URL GET HTTP/2
www.amtproductions.net/static/favicons/universelogo/apple-touch-icon.png
IP
76.76.21.98:443
ASN
#16509 AMAZON-02

Requested by
https://www.amtproductions.net/
Certificate
IssuerLet's Encrypt
Subjectwww.amtproductions.net
Fingerprint3B:18:58:F2:AE:C8:A8:A2:97:BE:69:D8:E2:8C:0D:34:54:41:79:93
ValidityFri, 05 Jul 2024 23:11:26 GMT - Thu, 03 Oct 2024 23:11:25 GMT

File type
PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced
Size
3.7 kB (3740 bytes)
Hash
c0fcfea00054327fd4e70458cab1e6a6
7220ae369a3a1349449c7fe08ec5d5af49b94860
d3581ee22ee9a828dbf1432cb9817614222d0f80426244a8243caa163bef9afc

HTTP Headers

GET /static/favicons/universelogo/apple-touch-icon.png HTTP/1.1
Host: www.amtproductions.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amtproductions.net/
Cookie: _ga_CX6QWFXGS9=GS1.1.1722729262.1.0.1722729262.0.0.0; _ga=GA1.1.426220202.1722729263
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 293541
cache-control: max-age=604800
content-disposition: inline; filename="apple-touch-icon.png"
content-security-policy: frame-ancestors https://tools.univer.se
content-type: image/png
date: Sat, 03 Aug 2024 23:54:24 GMT
etag: "c0fcfea00054327fd4e70458cab1e6a6"
server: Vercel
strict-transport-security: max-age=63072000
universe-request-id: e5f8a13d
x-matched-path: /static/favicons/universelogo/apple-touch-icon.png
x-vercel-cache: HIT
x-vercel-id: arn1::9qw75-1722729264477-32a16943b308
content-length: 3740
X-Firefox-Spdy: h2

www.amtproductions.net/static/favicons/universelogo/favicon-16x16.png

76.76.21.98

200 OK

335 B

URL GET HTTP/2
www.amtproductions.net/static/favicons/universelogo/favicon-16x16.png
IP
76.76.21.98:443
ASN
#16509 AMAZON-02

Requested by
https://www.amtproductions.net/
Certificate
IssuerLet's Encrypt
Subjectwww.amtproductions.net
Fingerprint3B:18:58:F2:AE:C8:A8:A2:97:BE:69:D8:E2:8C:0D:34:54:41:79:93
ValidityFri, 05 Jul 2024 23:11:26 GMT - Thu, 03 Oct 2024 23:11:25 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Size
335 B (335 bytes)
Hash
061fc6f94d98e40bb91bd423988575b6
49925371578d47c6aab89db29c170ba3028bb0b9
7e6a6450605543d2956ae3953672b94f76e47bb07cf96f3c5c54f4610afda825

HTTP Headers

GET /static/favicons/universelogo/favicon-16x16.png HTTP/1.1
Host: www.amtproductions.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amtproductions.net/
Cookie: _ga_CX6QWFXGS9=GS1.1.1722729262.1.0.1722729262.0.0.0; _ga=GA1.1.426220202.1722729263
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 293684
cache-control: max-age=604800
content-disposition: inline; filename="favicon-16x16.png"
content-security-policy: frame-ancestors https://tools.univer.se
content-type: image/png
date: Sat, 03 Aug 2024 23:54:24 GMT
etag: "061fc6f94d98e40bb91bd423988575b6"
server: Vercel
strict-transport-security: max-age=63072000
universe-request-id: 336dc6f2
x-matched-path: /static/favicons/universelogo/favicon-16x16.png
x-vercel-cache: HIT
x-vercel-id: arn1::r58rw-1722729264476-3732499ef15c
content-length: 335
X-Firefox-Spdy: h2

www.amtproductions.net/_next/static/chunks/628.3520dbc0b43dbd0c.js

76.76.21.98

200 OK

10 kB

URL GET HTTP/2
www.amtproductions.net/_next/static/chunks/628.3520dbc0b43dbd0c.js
IP
76.76.21.98:443
ASN
#16509 AMAZON-02

Requested by
https://www.amtproductions.net/
Certificate
IssuerLet's Encrypt
Subjectwww.amtproductions.net
Fingerprint3B:18:58:F2:AE:C8:A8:A2:97:BE:69:D8:E2:8C:0D:34:54:41:79:93
ValidityFri, 05 Jul 2024 23:11:26 GMT - Thu, 03 Oct 2024 23:11:25 GMT

File type
JavaScript source, ASCII text, with very long lines (10384), with no line terminators
Size
10 kB (10384 bytes)
Hash
9394172f1451e2b43f741b0ce5f10989
204d948148f6221ca2f921b7230d5aab669b5233
9a8d2982330b7bdef77b3a913dbfb001db9b023199f9ca80b72e73d15e69d7df

HTTP Headers

GET /_next/static/chunks/628.3520dbc0b43dbd0c.js HTTP/1.1
Host: www.amtproductions.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amtproductions.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 293492
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="628.3520dbc0b43dbd0c.js"
content-encoding: br
content-security-policy: frame-ancestors https://tools.univer.se
content-type: application/javascript; charset=utf-8
date: Sat, 03 Aug 2024 23:54:22 GMT
etag: W/"9394172f1451e2b43f741b0ce5f10989"
server: Vercel
strict-transport-security: max-age=63072000
universe-request-id: 1839fa79
x-matched-path: /_next/static/chunks/628.3520dbc0b43dbd0c.js
x-vercel-cache: HIT
x-vercel-id: arn1::bs94g-1722729262288-40c7a7793dfa
X-Firefox-Spdy: h2

assets.univer.se/b43e6aef-208a-4225-93f6-de2fceb93320?fit=crop&q=65&w=200&auto=compress,format

0.0.0.0

0 B

URL GET
assets.univer.se/b43e6aef-208a-4225-93f6-de2fceb93320?fit=crop&q=65&w=200&auto=compress,format
IP
0.0.0.0:0
ASN
#0

Requested by
https://www.amtproductions.net/
Certificate
IssuerLet's Encrypt
Subject*.univer.se
Fingerprint53:73:DB:ED:C6:23:81:64:FB:34:D3:B3:2F:00:4A:65:27:89:B0:86
ValidityFri, 05 Jul 2024 10:08:17 GMT - Thu, 03 Oct 2024 10:08:16 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /b43e6aef-208a-4225-93f6-de2fceb93320?fit=crop&q=65&w=200&auto=compress,format HTTP/1.1
Host: assets.univer.se
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amtproductions.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

assets.univer.se/b9525eb6-9d53-45dc-84a4-475b0bbad851?fit=crop&q=65&w=200&auto=compress,format

0.0.0.0

0 B

URL GET
assets.univer.se/b9525eb6-9d53-45dc-84a4-475b0bbad851?fit=crop&q=65&w=200&auto=compress,format
IP
0.0.0.0:0
ASN
#0

Requested by
https://www.amtproductions.net/
Certificate
IssuerLet's Encrypt
Subject*.univer.se
Fingerprint53:73:DB:ED:C6:23:81:64:FB:34:D3:B3:2F:00:4A:65:27:89:B0:86
ValidityFri, 05 Jul 2024 10:08:17 GMT - Thu, 03 Oct 2024 10:08:16 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /b9525eb6-9d53-45dc-84a4-475b0bbad851?fit=crop&q=65&w=200&auto=compress,format HTTP/1.1
Host: assets.univer.se
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amtproductions.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

assets.univer.se/d394b8bc-6b73-428a-b9b2-a8076a54579b?fit=crop&q=65&w=200&auto=compress,format

0.0.0.0

0 B

URL GET
assets.univer.se/d394b8bc-6b73-428a-b9b2-a8076a54579b?fit=crop&q=65&w=200&auto=compress,format
IP
0.0.0.0:0
ASN
#0

Requested by
https://www.amtproductions.net/
Certificate
IssuerLet's Encrypt
Subject*.univer.se
Fingerprint53:73:DB:ED:C6:23:81:64:FB:34:D3:B3:2F:00:4A:65:27:89:B0:86
ValidityFri, 05 Jul 2024 10:08:17 GMT - Thu, 03 Oct 2024 10:08:16 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /d394b8bc-6b73-428a-b9b2-a8076a54579b?fit=crop&q=65&w=200&auto=compress,format HTTP/1.1
Host: assets.univer.se
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amtproductions.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

www.amtproductions.net/_next/static/chunks/pages/_sites/%5BsiteId%5D/%5BcacheTag%5D/%5B%5B...slug%5D%5D-21299e5a0db911a4.js

76.76.21.98

200 OK

4.3 kB

URL GET HTTP/2
www.amtproductions.net/_next/static/chunks/pages/_sites/%5BsiteId%5D/%5BcacheTag%5D/%5B%5B...slug%5D%5D-21299e5a0db911a4.js
IP
76.76.21.98:443
ASN
#16509 AMAZON-02

Requested by
https://www.amtproductions.net/
Certificate
IssuerLet's Encrypt
Subjectwww.amtproductions.net
Fingerprint3B:18:58:F2:AE:C8:A8:A2:97:BE:69:D8:E2:8C:0D:34:54:41:79:93
ValidityFri, 05 Jul 2024 23:11:26 GMT - Thu, 03 Oct 2024 23:11:25 GMT

File type
ASCII text, with very long lines (4561), with no line terminators
Size
4.3 kB (4345 bytes)
Hash
8b4daf364c6120ccbe1f4864da58fd45
34a698922e1495af4a627a42810bead5cfca72f6
94092c9e06d408869fdf2ff8874de8baf6b70ac3944a4396b1aeddfac01bce87

HTTP Headers

GET /_next/static/chunks/pages/_sites/%5BsiteId%5D/%5BcacheTag%5D/%5B%5B...slug%5D%5D-21299e5a0db911a4.js HTTP/1.1
Host: www.amtproductions.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amtproductions.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 216491
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="[[...slug]]-21299e5a0db911a4.js"
content-encoding: br
content-security-policy: frame-ancestors https://tools.univer.se
content-type: application/javascript; charset=utf-8
date: Sat, 03 Aug 2024 23:54:22 GMT
etag: W/"13fb4309c049f8c17dcc4d426523ebf1"
server: Vercel
strict-transport-security: max-age=63072000
universe-request-id: a6d566f4
x-matched-path: /_next/static/chunks/pages/_sites/%5BsiteId%5D/%5BcacheTag%5D/%5B%5B...slug%5D%5D-21299e5a0db911a4.js
x-vercel-cache: HIT
x-vercel-id: arn1::r58rw-1722729262062-d5076e491ada
X-Firefox-Spdy: h2

www.amtproductions.net/static/fonts/Lunchtype22-Regular.woff2

76.76.21.98

200 OK

22 kB

URL GET HTTP/2
www.amtproductions.net/static/fonts/Lunchtype22-Regular.woff2
IP
76.76.21.98:443
ASN
#16509 AMAZON-02

Requested by
https://www.amtproductions.net/
Certificate
IssuerLet's Encrypt
Subjectwww.amtproductions.net
Fingerprint3B:18:58:F2:AE:C8:A8:A2:97:BE:69:D8:E2:8C:0D:34:54:41:79:93
ValidityFri, 05 Jul 2024 23:11:26 GMT - Thu, 03 Oct 2024 23:11:25 GMT

File type
Web Open Font Format (Version 2), TrueType, length 22076, version 1.0
Size
22 kB (22076 bytes)
Hash
6a029ddee534b2b77169a6bce5d028fb
25c8276f848a80c95d3f5a26bafe9f225362373f
fad68988285d75b72f2a93c6d10f207a3cbd362dcb9bb9c96a4cd821669e1657

HTTP Headers

GET /static/fonts/Lunchtype22-Regular.woff2 HTTP/1.1
Host: www.amtproductions.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.amtproductions.net/_next/static/css/3df0ddd732814165.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 288861
cache-control: max-age=604800
content-disposition: inline; filename="Lunchtype22-Regular.woff2"
content-security-policy: frame-ancestors https://tools.univer.se
content-type: font/woff2
date: Sat, 03 Aug 2024 23:54:22 GMT
etag: "6a029ddee534b2b77169a6bce5d028fb"
server: Vercel
strict-transport-security: max-age=63072000
universe-request-id: da38ca06
x-matched-path: /static/fonts/Lunchtype22-Regular.woff2
x-vercel-cache: HIT
x-vercel-id: arn1::fbmtd-1722729262360-021e91505f4f
content-length: 22076
X-Firefox-Spdy: h2

www.amtproductions.net/_next/static/css/2ce4f3f8ee31aca9.css

76.76.21.98

200 OK

43 B

URL GET HTTP/2
www.amtproductions.net/_next/static/css/2ce4f3f8ee31aca9.css
IP
76.76.21.98:443
ASN
#16509 AMAZON-02

Requested by
https://www.amtproductions.net/
Certificate
IssuerLet's Encrypt
Subjectwww.amtproductions.net
Fingerprint3B:18:58:F2:AE:C8:A8:A2:97:BE:69:D8:E2:8C:0D:34:54:41:79:93
ValidityFri, 05 Jul 2024 23:11:26 GMT - Thu, 03 Oct 2024 23:11:25 GMT

File type
ASCII text, with no line terminators
Size
43 B (43 bytes)
Hash
74fa82eeac2065335f5b310768fa5c65
707872cfb525aad42922d28557b5478fe5174134
e02243c162b7524aa8131e76da945986f3cd011973756043397754c24e9bfa17

HTTP Headers

GET /_next/static/css/2ce4f3f8ee31aca9.css HTTP/1.1
Host: www.amtproductions.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amtproductions.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 292909
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="2ce4f3f8ee31aca9.css"
content-security-policy: frame-ancestors https://tools.univer.se
content-type: text/css; charset=utf-8
date: Sat, 03 Aug 2024 23:54:22 GMT
etag: "74fa82eeac2065335f5b310768fa5c65"
server: Vercel
strict-transport-security: max-age=63072000
universe-request-id: 1bf4423b
x-matched-path: /_next/static/css/2ce4f3f8ee31aca9.css
x-vercel-cache: HIT
x-vercel-id: arn1::qmgwb-1722729262287-7363fa7646eb
content-length: 43
X-Firefox-Spdy: h2

www.amtproductions.net/_next/static/chunks/17.b56927c9e818cee7.js

76.76.21.98

200 OK

36 kB

URL GET HTTP/2
www.amtproductions.net/_next/static/chunks/17.b56927c9e818cee7.js
IP
76.76.21.98:443
ASN
#16509 AMAZON-02

Requested by
https://www.amtproductions.net/
Certificate
IssuerLet's Encrypt
Subjectwww.amtproductions.net
Fingerprint3B:18:58:F2:AE:C8:A8:A2:97:BE:69:D8:E2:8C:0D:34:54:41:79:93
ValidityFri, 05 Jul 2024 23:11:26 GMT - Thu, 03 Oct 2024 23:11:25 GMT

File type
JavaScript source, ASCII text, with very long lines (35080)
Size
36 kB (36018 bytes)
Hash
5f411908f7ca982b2c58813c56b0930c
8c6632d8f8b1358160d693c0c0443a60d4f7844d
02cc4ecceeaeb751dd0a43ff1eb13826bd46383f2dfc0d137cb13e41389c4453

HTTP Headers

GET /_next/static/chunks/17.b56927c9e818cee7.js HTTP/1.1
Host: www.amtproductions.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amtproductions.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 293184
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="17.b56927c9e818cee7.js"
content-encoding: br
content-security-policy: frame-ancestors https://tools.univer.se
content-type: application/javascript; charset=utf-8
date: Sat, 03 Aug 2024 23:54:22 GMT
etag: W/"5f411908f7ca982b2c58813c56b0930c"
server: Vercel
strict-transport-security: max-age=63072000
universe-request-id: fad86602
x-matched-path: /_next/static/chunks/17.b56927c9e818cee7.js
x-vercel-cache: HIT
x-vercel-id: arn1::fbmtd-1722729262280-a631e3bbb2c4
X-Firefox-Spdy: h2

www.amtproductions.net/_next/data/UfXXmxF00YFNZsOdxF2KY/contact-business.json?slug=contact-business

76.76.21.98

200 OK

3 B

URL GET HTTP/2
www.amtproductions.net/_next/data/UfXXmxF00YFNZsOdxF2KY/contact-business.json?slug=contact-business
IP
76.76.21.98:443
ASN
#16509 AMAZON-02

Requested by
https://www.amtproductions.net/
Certificate
IssuerLet's Encrypt
Subjectwww.amtproductions.net
Fingerprint3B:18:58:F2:AE:C8:A8:A2:97:BE:69:D8:E2:8C:0D:34:54:41:79:93
ValidityFri, 05 Jul 2024 23:11:26 GMT - Thu, 03 Oct 2024 23:11:25 GMT

File type
ASCII text, with no line terminators
Size
3 B (3 bytes)
Hash
fdf48e6b3239e0b378031fb47d5b202a
b1806f381758bc595c29988c05ef5e0ef580c90a
fcd393d2c13bad308661b62b34d9c3234a3ce840e22909b0a180e85f76b5d24d

HTTP Headers

GET /_next/data/UfXXmxF00YFNZsOdxF2KY/contact-business.json?slug=contact-business HTTP/1.1
Host: www.amtproductions.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.amtproductions.net/
purpose: prefetch
x-middleware-prefetch: 1
x-nextjs-data: 1
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: private, no-cache, no-store, max-age=0, must-revalidate
content-security-policy: frame-ancestors https://tools.univer.se
date: Sat, 03 Aug 2024 23:54:22 GMT
server: Vercel
strict-transport-security: max-age=63072000
universe-request-id: fd983d27
x-matched-path: /_sites/[siteId]/[cacheTag]/[[...slug]]
x-middleware-skip: 1
x-nextjs-rewrite: /_sites/2126149/2024-07-08T17:19:40.018Z/contact-business
x-vercel-id: arn1::9qw75-1722729262632-5e6c5fc265fe
X-Firefox-Spdy: h2

assets.univer.se/f2c7ef38-76f5-4b22-b837-52195fa30ba0?fit=crop&q=60&w=1500&auto=compress,format&h=1878

76.76.21.61

200 OK

771 kB

URL GET HTTP/2
assets.univer.se/f2c7ef38-76f5-4b22-b837-52195fa30ba0?fit=crop&q=60&w=1500&auto=compress,format&h=1878
IP
76.76.21.61:443
ASN
#16509 AMAZON-02

Requested by
https://www.amtproductions.net/
Certificate
IssuerLet's Encrypt
Subject*.univer.se
Fingerprint53:73:DB:ED:C6:23:81:64:FB:34:D3:B3:2F:00:4A:65:27:89:B0:86
ValidityFri, 05 Jul 2024 10:08:17 GMT - Thu, 03 Oct 2024 10:08:16 GMT

File type
ISO Media, AVIF Image
Size
771 kB (771041 bytes)
Hash
3f7d30a32ef8d0511d4309f04ab89136
fd7dd1d574e5553d72e21bfbb38cf79269b550b9
f3c320bac8b7125dcb2a03b0ff82777e97a31d93d181c41f15a864ae9aee6076

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /f2c7ef38-76f5-4b22-b837-52195fa30ba0?fit=crop&q=60&w=1500&auto=compress,format&h=1878 HTTP/1.1
Host: assets.univer.se
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amtproductions.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: public, max-age=31536000
content-type: image/avif
cross-origin-resource-policy: cross-origin
date: Sat, 03 Aug 2024 23:54:24 GMT
last-modified: Sat, 03 Aug 2024 23:54:23 GMT
server: Vercel
strict-transport-security: max-age=63072000
timing-allow-origin: *
vary: Accept, User-Agent
x-cache: MISS, MISS, MISS
x-content-type-options: nosniff
x-imgix-id: 17928c80b58a632864423ef52be1d13241223a76
x-served-by: cache-sjc1000139-SJC, cache-fra-eddf8230128-FRA, cache-bma1655-BMA
x-vercel-id: arn1::qgnbt-1722729262638-43b7cb9d3b75
content-length: 771041
X-Firefox-Spdy: h2

www.amtproductions.net/_next/static/chunks/pages/_app-2b05b2048ebfb7e1.js

76.76.21.98

200 OK

19 kB

URL GET HTTP/2
www.amtproductions.net/_next/static/chunks/pages/_app-2b05b2048ebfb7e1.js
IP
76.76.21.98:443
ASN
#16509 AMAZON-02

Requested by
https://www.amtproductions.net/
Certificate
IssuerLet's Encrypt
Subjectwww.amtproductions.net
Fingerprint3B:18:58:F2:AE:C8:A8:A2:97:BE:69:D8:E2:8C:0D:34:54:41:79:93
ValidityFri, 05 Jul 2024 23:11:26 GMT - Thu, 03 Oct 2024 23:11:25 GMT

File type
JavaScript source, ASCII text, with very long lines (16380)
Size
19 kB (18876 bytes)
Hash
9b255d8629a0fdb4e57d72b3e67008cc
b7c6e70c20fcd8e4e2b728b28be0c93fd01dfd65
d148febbedebffccd13e59bed8d24becfd660114e85d320e058c833919422b63

HTTP Headers

GET /_next/static/chunks/pages/_app-2b05b2048ebfb7e1.js HTTP/1.1
Host: www.amtproductions.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amtproductions.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 271117
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="_app-2b05b2048ebfb7e1.js"
content-encoding: br
content-security-policy: frame-ancestors https://tools.univer.se
content-type: application/javascript; charset=utf-8
date: Sat, 03 Aug 2024 23:54:22 GMT
etag: W/"9b255d8629a0fdb4e57d72b3e67008cc"
server: Vercel
strict-transport-security: max-age=63072000
universe-request-id: 7117ba0f
x-matched-path: /_next/static/chunks/pages/_app-2b05b2048ebfb7e1.js
x-vercel-cache: HIT
x-vercel-id: arn1::8gdgx-1722729262058-6a4eef1d5001
X-Firefox-Spdy: h2

assets.univer.se/d3df2591-951c-431e-b0ba-06e81ce357d9?fit=crop&q=60&w=1500&auto=compress,format&h=1878

76.76.21.61

200 OK

454 kB

URL GET HTTP/2
assets.univer.se/d3df2591-951c-431e-b0ba-06e81ce357d9?fit=crop&q=60&w=1500&auto=compress,format&h=1878
IP
76.76.21.61:443
ASN
#16509 AMAZON-02

Requested by
https://www.amtproductions.net/
Certificate
IssuerLet's Encrypt
Subject*.univer.se
Fingerprint53:73:DB:ED:C6:23:81:64:FB:34:D3:B3:2F:00:4A:65:27:89:B0:86
ValidityFri, 05 Jul 2024 10:08:17 GMT - Thu, 03 Oct 2024 10:08:16 GMT

File type
ISO Media, AVIF Image
Size
454 kB (453545 bytes)
Hash
ff177154390ca96bd253057c359fe297
833fd83b8194c0d26ae4d0397f325a682e5740eb
29915f523a583aee98246fa279c5dcd408f818970631d022d99b93d8cb346512

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /d3df2591-951c-431e-b0ba-06e81ce357d9?fit=crop&q=60&w=1500&auto=compress,format&h=1878 HTTP/1.1
Host: assets.univer.se
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amtproductions.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: public, max-age=31536000
content-type: image/avif
cross-origin-resource-policy: cross-origin
date: Sat, 03 Aug 2024 23:54:23 GMT
last-modified: Sat, 03 Aug 2024 23:54:23 GMT
server: Vercel
strict-transport-security: max-age=63072000
timing-allow-origin: *
vary: Accept, User-Agent
x-cache: MISS, MISS, MISS
x-content-type-options: nosniff
x-imgix-id: 96ea3a4bf34cf6c2ecc6b4ad8d4a43b677a6335b
x-served-by: cache-sjc10058-SJC, cache-fra-etou8220152-FRA, cache-bma1676-BMA
x-vercel-id: arn1::5lbzk-1722729262637-9df0ebdfbc6d
content-length: 453545
X-Firefox-Spdy: h2

www.amtproductions.net/_next/static/chunks/ac1c44fc.a475a8485a46df18.js

76.76.21.98

200 OK

96 kB

URL GET HTTP/2
www.amtproductions.net/_next/static/chunks/ac1c44fc.a475a8485a46df18.js
IP
76.76.21.98:443
ASN
#16509 AMAZON-02

Requested by
https://www.amtproductions.net/
Certificate
IssuerLet's Encrypt
Subjectwww.amtproductions.net
Fingerprint3B:18:58:F2:AE:C8:A8:A2:97:BE:69:D8:E2:8C:0D:34:54:41:79:93
ValidityFri, 05 Jul 2024 23:11:26 GMT - Thu, 03 Oct 2024 23:11:25 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
96 kB (95502 bytes)
Hash
d9a5d1ecc0c4e50b17a8c9e21e20d764
0293ddc1695c52d4c09f08b311484e6862cc5ab9
3ba5856e40493d7b850d69e9718dc2178a0e18d4e46c435e17d6cd56d8a2cd0c

HTTP Headers

GET /_next/static/chunks/ac1c44fc.a475a8485a46df18.js HTTP/1.1
Host: www.amtproductions.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amtproductions.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 293184
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="ac1c44fc.a475a8485a46df18.js"
content-encoding: br
content-security-policy: frame-ancestors https://tools.univer.se
content-type: application/javascript; charset=utf-8
date: Sat, 03 Aug 2024 23:54:22 GMT
etag: W/"d9a5d1ecc0c4e50b17a8c9e21e20d764"
server: Vercel
strict-transport-security: max-age=63072000
universe-request-id: 74791ecb
x-matched-path: /_next/static/chunks/ac1c44fc.a475a8485a46df18.js
x-vercel-cache: HIT
x-vercel-id: arn1::9qw75-1722729262280-fff13de69567
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-CX6QWFXGS9&l=ga4DataLayer

142.250.74.168

200 OK

314 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-CX6QWFXGS9&l=ga4DataLayer
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.amtproductions.net/
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint27:BF:6E:8E:D6:51:1C:C5:B2:CF:E2:E9:0F:87:D0:F3:33:23:E7:37
ValidityTue, 30 Jul 2024 12:32:47 GMT - Tue, 22 Oct 2024 12:32:46 GMT

File type
JavaScript source, ASCII text, with very long lines (9030)
Size
314 kB (314513 bytes)
Hash
1e60433d6a514fbb4df09ef762267de1
bc937dc47ec562634f87870eef5912e92754aadb
d5f0d14d68287d89d19d51dea953ed412d2338fb95f4f4e1bd8a1d56a53360d8

HTTP Headers

GET /gtag/js?id=G-CX6QWFXGS9&l=ga4DataLayer HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amtproductions.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 03 Aug 2024 23:54:22 GMT
expires: Sat, 03 Aug 2024 23:54:22 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 104602
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

assets.univer.se/4697a25e-7196-4e63-b939-87e05ac5ee32?fit=crop&q=65&w=200&auto=compress,format

0.0.0.0

0 B

URL GET
assets.univer.se/4697a25e-7196-4e63-b939-87e05ac5ee32?fit=crop&q=65&w=200&auto=compress,format
IP
0.0.0.0:0
ASN
#0

Requested by
https://www.amtproductions.net/
Certificate
IssuerLet's Encrypt
Subject*.univer.se
Fingerprint53:73:DB:ED:C6:23:81:64:FB:34:D3:B3:2F:00:4A:65:27:89:B0:86
ValidityFri, 05 Jul 2024 10:08:17 GMT - Thu, 03 Oct 2024 10:08:16 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /4697a25e-7196-4e63-b939-87e05ac5ee32?fit=crop&q=65&w=200&auto=compress,format HTTP/1.1
Host: assets.univer.se
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amtproductions.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

assets.univer.se/3fb3ae17-1018-4cba-bb06-07c9de79123b?fit=crop&q=65&w=200&auto=compress,format

0.0.0.0

0 B

URL GET
assets.univer.se/3fb3ae17-1018-4cba-bb06-07c9de79123b?fit=crop&q=65&w=200&auto=compress,format
IP
0.0.0.0:0
ASN
#0

Requested by
https://www.amtproductions.net/
Certificate
IssuerLet's Encrypt
Subject*.univer.se
Fingerprint53:73:DB:ED:C6:23:81:64:FB:34:D3:B3:2F:00:4A:65:27:89:B0:86
ValidityFri, 05 Jul 2024 10:08:17 GMT - Thu, 03 Oct 2024 10:08:16 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /3fb3ae17-1018-4cba-bb06-07c9de79123b?fit=crop&q=65&w=200&auto=compress,format HTTP/1.1
Host: assets.univer.se
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amtproductions.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

www.amtproductions.net/_next/static/chunks/877-3fbb024cd5610308.js

76.76.21.98

200 OK

189 kB

URL GET HTTP/2
www.amtproductions.net/_next/static/chunks/877-3fbb024cd5610308.js
IP
76.76.21.98:443
ASN
#16509 AMAZON-02

Requested by
https://www.amtproductions.net/
Certificate
IssuerLet's Encrypt
Subjectwww.amtproductions.net
Fingerprint3B:18:58:F2:AE:C8:A8:A2:97:BE:69:D8:E2:8C:0D:34:54:41:79:93
ValidityFri, 05 Jul 2024 23:11:26 GMT - Thu, 03 Oct 2024 23:11:25 GMT

File type

Size
189 kB (189373 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /_next/static/chunks/877-3fbb024cd5610308.js HTTP/1.1
Host: www.amtproductions.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amtproductions.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 281481
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="877-3fbb024cd5610308.js"
content-encoding: br
content-security-policy: frame-ancestors https://tools.univer.se
content-type: application/javascript; charset=utf-8
date: Sat, 03 Aug 2024 23:54:22 GMT
etag: W/"c5975eb302f9d955c8836d032c4fc1a5"
server: Vercel
strict-transport-security: max-age=63072000
universe-request-id: 31545bf6
x-matched-path: /_next/static/chunks/877-3fbb024cd5610308.js
x-vercel-cache: HIT
x-vercel-id: arn1::fbmtd-1722729262059-87d7ad2ce6c9
X-Firefox-Spdy: h2

www.amtproductions.net/static/icons/instagram.svg

76.76.21.98

200 OK

1.9 kB

URL GET HTTP/2
www.amtproductions.net/static/icons/instagram.svg
IP
76.76.21.98:443
ASN
#16509 AMAZON-02

Requested by
https://www.amtproductions.net/
Certificate
IssuerLet's Encrypt
Subjectwww.amtproductions.net
Fingerprint3B:18:58:F2:AE:C8:A8:A2:97:BE:69:D8:E2:8C:0D:34:54:41:79:93
ValidityFri, 05 Jul 2024 23:11:26 GMT - Thu, 03 Oct 2024 23:11:25 GMT

File type
SVG Scalable Vector Graphics image
Size
1.9 kB (1851 bytes)
Hash
1f8b5d5f7ad74724eb046aba127977be
addfd9d56aaad8bcce6b4c4a8aa997a790604817
898dce3952b78011dd6d8c5446696be218a170a49f65c7c3dbe5515af417d656

HTTP Headers

GET /static/icons/instagram.svg HTTP/1.1
Host: www.amtproductions.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amtproductions.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 293683
cache-control: max-age=604800
content-disposition: inline; filename="instagram.svg"
content-encoding: br
content-security-policy: frame-ancestors https://tools.univer.se
content-type: image/svg+xml
date: Sat, 03 Aug 2024 23:54:22 GMT
etag: W/"79de7bb654bb1cf933365a07c53ee491"
server: Vercel
strict-transport-security: max-age=63072000
universe-request-id: bfa1a288
x-matched-path: /static/icons/instagram.svg
x-vercel-cache: HIT
x-vercel-id: arn1::qmgwb-1722729262357-4b9fdf1ce372
X-Firefox-Spdy: h2

assets.univer.se/1d9a17c9-189a-4031-ad27-f053c62478ff?fit=crop&q=60&w=1500&auto=compress,format&h=1878

76.76.21.61

200 OK

308 kB

URL GET HTTP/2
assets.univer.se/1d9a17c9-189a-4031-ad27-f053c62478ff?fit=crop&q=60&w=1500&auto=compress,format&h=1878
IP
76.76.21.61:443
ASN
#16509 AMAZON-02

Requested by
https://www.amtproductions.net/
Certificate
IssuerLet's Encrypt
Subject*.univer.se
Fingerprint53:73:DB:ED:C6:23:81:64:FB:34:D3:B3:2F:00:4A:65:27:89:B0:86
ValidityFri, 05 Jul 2024 10:08:17 GMT - Thu, 03 Oct 2024 10:08:16 GMT

File type
ISO Media, AVIF Image
Size
308 kB (307615 bytes)
Hash
09988aa4cdc53332a1fcf1cf7a1e69bc
1ffd1601212f9e82f51c683a55383bc952046816
de70f5731847325e858b6d047751c1cac6bb06c94192d51dea45a4fbf8acc790

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /1d9a17c9-189a-4031-ad27-f053c62478ff?fit=crop&q=60&w=1500&auto=compress,format&h=1878 HTTP/1.1
Host: assets.univer.se
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amtproductions.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: public, max-age=31536000
content-type: image/avif
cross-origin-resource-policy: cross-origin
date: Sat, 03 Aug 2024 23:54:23 GMT
last-modified: Sat, 03 Aug 2024 23:54:23 GMT
server: Vercel
strict-transport-security: max-age=63072000
timing-allow-origin: *
vary: Accept, User-Agent
x-cache: MISS, MISS, MISS
x-content-type-options: nosniff
x-imgix-id: 7ab3bd6c52154cfa1d8e055f9b10a05c1a88056c
x-served-by: cache-sjc10056-SJC, cache-fra-eddf8230087-FRA, cache-bma1670-BMA
x-vercel-id: arn1::pghhh-1722729262637-face4bd5802d
content-length: 307615
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (13)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by