Report - allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=

Report Overview

Submitted URL
allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
IP
104.21.73.26
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-26 22:37:52
Access
public
Website Title
Watch your favorite movies and TV shows!
Final URL
allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
112

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
secureanalytic.com	13422	2019-05-02	2015-12-31	2024-04-16	451 B	8.7 kB	104.21.77.48
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-04-26	430 B	190 kB	142.250.74.168
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-25	447 B	9.4 kB	142.250.74.106
allmediamatrix.com	unknown	2024-01-18	2024-01-19	2024-03-04	47 kB	1.9 MB	104.21.73.26
event.secureanalytic.com	30491	2019-05-02	2021-07-14	2024-04-16	550 B	1.6 kB	172.67.204.164

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed
2024-04-26	medium	allmediamatrix.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (24)

	URL	Size	First Seen	Last Seen
	unknown	163 B	2024-04-27	2024-05-07
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-27 00:37:53 Last Seen2024-05-07 09:45:18 Times Seen27 Hash cc414337bb36849560abe1ff11f89845 a01d0ddc1ce500894a82547faf5fdcb5cedcf712 551be41a75091e43572aa7f7c14d12f4af9cf15b5008420656762a8bedbb8f8f Loading...

	allmediamatrix.com/en_us/sandbox%20eval%20code	147 B	2023-04-11	2024-05-07
Pretty URL allmediamatrix.com/en_us/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-07 16:33:30 Times Seen345593 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	secureanalytic.com/scripts/push/script/02eyoyxdkz?url=allmediamatrix.com	7.3 kB	2024-04-27	2024-04-30
Pretty URL secureanalytic.com/scripts/push/script/02eyoyxdkz?url=allmediamatrix.com IP 104.21.77.48 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-27 00:37:53 Last Seen2024-04-30 20:33:27 Times Seen6 Hash 73cacdab7a072256b0f22febb8677886 f0b71e79d2eeca4b8efad1eb87c98579e246b218 7971426f69d512dbc8d70a0c8665af7941ad27a8a60e764d27faa1996758df67 Loading...

	allmediamatrix.com/assets/hl-5c945f3d.js	3.2 kB	2024-04-26	2024-04-30
Pretty URL allmediamatrix.com/assets/hl-5c945f3d.js IP 104.21.73.26 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 09:26:38 Last Seen2024-04-30 00:51:34 Times Seen12 Hash fb8ecbb37505cf3d45ac21d7287ea9c3 50f3b024c9ea94ba92ea5dcc7774101a716d153a a2123f598b6888261819f5aaebd8e7ff2bb7e2e37a75f190d9f46ae8f5de6699 Loading...

	allmediamatrix.com/assets/hl-792ddeea.js	779 B	2024-04-26	2024-04-30
Pretty URL allmediamatrix.com/assets/hl-792ddeea.js IP 104.21.73.26 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 09:26:39 Last Seen2024-04-30 00:51:34 Times Seen15 Hash e1bfd6e4c6daa2b1a3cd4a3f2a1f8f29 188fedf3f8cef02e6c8ee2de4f794cab6a320df3 ad5e274fa644479d71df93bc54e4a12553195cd85ca9d583feaedc74f1cc2046 Loading...

	allmediamatrix.com/assets/hl-fa300abb.js	529 B	2024-04-26	2024-04-30
Pretty URL allmediamatrix.com/assets/hl-fa300abb.js IP 104.21.73.26 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2024-04-26 09:26:38 Last Seen2024-04-30 00:51:34 Times Seen12 Hash 3621eedb6d5d436673a13dc81842ac09 85b931318a1ca6e6f23e5dfe53cc6afe1ad0de8d 3ee8ec46442c7ed539cc1f4d50090f0c4530d5a076b9dbb290df3e1edac95fd2 Loading...

	allmediamatrix.com/assets/hl-69cc381a.js	418 B	2024-04-26	2024-04-30
Pretty URL allmediamatrix.com/assets/hl-69cc381a.js IP 104.21.73.26 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2024-04-26 09:26:39 Last Seen2024-04-30 00:51:33 Times Seen16 Hash 017a45968b720cc670bfb369a0d9526f 665770821bbeda398c027c57bb617296ed7c472c 92b7730b848c6db54d5506c0d8c4a0dc3b059f0ef3bd03a2c5e8efe1ba1cbf1b Loading...

	allmediamatrix.com/assets/hl-edb2da2a.js	1.4 kB	2024-04-18	2024-05-07
Pretty URL allmediamatrix.com/assets/hl-edb2da2a.js IP 104.21.73.26 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2024-04-18 12:16:43 Last Seen2024-05-07 16:33:30 Times Seen117 Hash 0fb9d8a5fba7f6a569da52896f965ea3 6e57202028341c2674083acf9e428817c6725c6c 30137b4b0317a40d0c195fff2b2cd054bb39adf2fb94d357f269cb36e3c11581 Loading...

	allmediamatrix.com/assets/hl-35a77ba0.js	72 kB	2024-04-18	2024-05-07
Pretty URL allmediamatrix.com/assets/hl-35a77ba0.js IP 104.21.73.26 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2024-04-18 12:16:42 Last Seen2024-05-07 16:33:30 Times Seen129 Hash f87da472e47dc575b6cb8dc377d18916 bff262654ae71f3be0a658cfbe5a53c787c05d55 5c38207c92f3650eaef6616521c8b1e0a03ceb384030f1c2b67cb75e25925ca8 Loading...

	allmediamatrix.com/assets/hl-de833af9.js	690 B	2023-11-04	2024-05-07
Pretty URL allmediamatrix.com/assets/hl-de833af9.js IP 104.21.73.26 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2023-11-04 19:20:12 Last Seen2024-05-07 16:33:30 Times Seen129 Hash 07f4201d4f772dc3825f3399bb217552 e70c0af48037b02ab9ea515952b889f9eb7bcdb1 5103bcdb5637c56d4a70564479cef8e07ec2d3f00620b428cdb36c28c430d906 Loading...

	allmediamatrix.com/assets/hl-4bc0c634.js	4.8 kB	2024-04-26	2024-04-30
Pretty URL allmediamatrix.com/assets/hl-4bc0c634.js IP 104.21.73.26 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 09:26:38 Last Seen2024-04-30 00:51:34 Times Seen18 Hash 2ecddb69cae17a5edf492efb2310ca5e b46bed0e479e87309c86d11d52ae0c1bcf5f3108 70f02ddb19f6c743759171a9303d9aa660ecda8df117380a40c464196b620b61 Loading...

	allmediamatrix.com/assets/hl-6456547b.js	2.0 kB	2024-04-26	2024-04-30
Pretty URL allmediamatrix.com/assets/hl-6456547b.js IP 104.21.73.26 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 09:26:39 Last Seen2024-04-30 00:51:34 Times Seen15 Hash c513ec2e4b6f09a2b1d6eb98213bab67 77b2e8964ec8939801df8c807d45376286342496 3d46bd5226f8351d2a141ab6b36280261f3673326354575f8a11f587f2bfc03b Loading...

	allmediamatrix.com/assets/hl-d3fbdfe4.js	915 B	2024-04-26	2024-04-30
Pretty URL allmediamatrix.com/assets/hl-d3fbdfe4.js IP 104.21.73.26 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2024-04-26 09:26:38 Last Seen2024-04-30 00:51:34 Times Seen14 Hash 153cbfe5ea0e3c318465f1c8cf279264 67513e4a7530514362394d60b1b98148a6729800 cfb1dc862173aac66bb1bdf27e659f7186df86886e24bbe7d7b69559223e6c56 Loading...

	allmediamatrix.com/assets/hl-bc98154d.js	687 B	2024-04-26	2024-04-30
Pretty URL allmediamatrix.com/assets/hl-bc98154d.js IP 104.21.73.26 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2024-04-26 09:26:38 Last Seen2024-04-30 00:51:34 Times Seen16 Hash 014345a7b4141b21fca069a7f53e7bd5 1af2940d12804dd2b223f9e89eff1491fe81ff04 37b72908d4821cab4e569231bbf3eef8295f775466c6fa55b0e7646eb5ba508c Loading...

	allmediamatrix.com/assets/hl-83316dfd.js	6.1 kB	2024-04-26	2024-04-30
Pretty URL allmediamatrix.com/assets/hl-83316dfd.js IP 104.21.73.26 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2024-04-26 09:26:38 Last Seen2024-04-30 00:51:34 Times Seen17 Hash f1e0bf286af2fe24cb992e95ecbd61a3 2befe2ca8456063e2869ca91e724d1fdcee1a779 135d025e854b2f61960f4aef0be05096f7952f305bce377847ebd2f5dd789628 Loading...

	allmediamatrix.com/assets/hl-ac68def5.js	1.9 kB	2024-04-26	2024-04-30
Pretty URL allmediamatrix.com/assets/hl-ac68def5.js IP 104.21.73.26 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2024-04-26 09:26:38 Last Seen2024-04-30 00:51:34 Times Seen11 Hash addc6dc8f6206ae1b14b39dbad45367b a8d05fb350a24b854c0ffe4bd9440d916a31de81 1ae5e2b2c9e574df432479902d86133b60218c25b6348e3d2bef0a1a54821d92 Loading...

	www.googletagmanager.com/gtag/js?id=UA-195162716-19	190 kB	2024-04-27	2024-04-27
Pretty URL www.googletagmanager.com/gtag/js?id=UA-195162716-19 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-27 00:37:54 Last Seen2024-04-27 00:37:54 Times Seen2 Hash 5e0dce660fb973da1226ac4b22eaecae 87f8bb46a6deaec902a589cd77cf6e3a7d34ecbc 0b0b05cc776a59b64c5bef5bea9f50709c4a2d267d70e5c9b700303ad22de6d0 Loading...

	allmediamatrix.com/assets/hl-0b01f32c.js	2.8 kB	2024-04-26	2024-04-30
Pretty URL allmediamatrix.com/assets/hl-0b01f32c.js IP 104.21.73.26 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 09:26:39 Last Seen2024-04-30 00:51:34 Times Seen19 Hash 0e36cfaac1547260ab55e5c06aeaa646 a42bee30ddf571110286d895b11775c857e82601 78a32b7f255e67362fd31a02b4b10cb336c47dcc1ec1f633a1369ef27b861f99 Loading...

	allmediamatrix.com/assets/hl-30e661e5.js	616 B	2024-04-26	2024-04-30
Pretty URL allmediamatrix.com/assets/hl-30e661e5.js IP 104.21.73.26 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 09:26:39 Last Seen2024-04-30 00:51:34 Times Seen16 Hash 9f4e117e562a67591ca71c6ec1642940 5a3563270a8bd2c264e32601c9556a5617de80c6 2a9445508a67f320e07007cd42ef576028b2c81eb56b7186ca6b21369fcc7fa2 Loading...

	allmediamatrix.com/assets/hl-7067c1b8.js	1.3 kB	2024-04-26	2024-04-30
Pretty URL allmediamatrix.com/assets/hl-7067c1b8.js IP 104.21.73.26 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 11:36:39 Last Seen2024-04-30 00:51:34 Times Seen8 Hash a9ae5cdde3d6c9cee9a04986b7171460 2d4b868b4bae0ec19887905ef79f466ed49d83a8 51705f7291a5f8eda50e504dd6da666a8e5bbd6a2e0efb855ee25696a4e718f9 Loading...

	allmediamatrix.com/assets/hl-b357b190.js	266 kB	2024-04-26	2024-04-30
Pretty URL allmediamatrix.com/assets/hl-b357b190.js IP 104.21.73.26 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 09:26:38 Last Seen2024-04-30 00:51:34 Times Seen30 Hash cd6e0eff789221181a0b8471967bcb8d 71586e5b8ca6df344fd58e8a1772baa3734bb190 b7baa94b8d9f78408c104d46f5b9df36b49a27a09719b7a5b80be68d72d5651e Loading...

	allmediamatrix.com/assets/hl-7c523d10.js	561 B	2024-04-26	2024-04-30
Pretty URL allmediamatrix.com/assets/hl-7c523d10.js IP 104.21.73.26 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2024-04-26 09:26:38 Last Seen2024-04-30 00:51:33 Times Seen17 Hash 3f90e2427940a06d4e9815c861bb91cb d7b4609aab1a69ecba7a1b03982c25658fe04fe5 9b93b2d84b27d2b351ef609d2d9c892a1355d5d7f9e20403dc043d51c8e8eae9 Loading...

	allmediamatrix.com/assets/hl-f46804a9.js	7.1 kB	2024-04-26	2024-04-30
Pretty URL allmediamatrix.com/assets/hl-f46804a9.js IP 104.21.73.26 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 09:26:38 Last Seen2024-04-30 00:51:34 Times Seen13 Hash b46ae957a3c6ff3f5f1a09881c661f0b c5571fbe7258702bcef30f37f0bd304970ca97c3 4b157142f5df448b8a0c9276008e9784f535b095ce665c58111dc334d4652013 Loading...

	www.google-analytics.com/analytics.js	4.7 kB	2023-04-11	2024-05-07
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-07 16:33:30 Times Seen345084 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

HTTP Transactions (60)

URL IP Response Size

allmediamatrix.com/assets/hl-35a77ba0.js

104.21.73.26

200 OK

190 kB

URL GET HTTP/3
allmediamatrix.com/assets/hl-35a77ba0.js
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (37102)
Size
190 kB (190154 bytes)
Hash
f87da472e47dc575b6cb8dc377d18916
bff262654ae71f3be0a658cfbe5a53c787c05d55
5c38207c92f3650eaef6616521c8b1e0a03ceb384030f1c2b67cb75e25925ca8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-35a77ba0.js HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://allmediamatrix.com/assets/hl-7067c1b8.js
Cookie: visitInfo::7536=5c0532c87c8b07e7d43ec8b3d81521faeb8d0a5725ae7ec764141261d00b480fa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7536%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%222bb247b423c4d3fcb92038be86b5ed4f%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22a693b535%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%22d3aedbb8-66a6-4c7d-94dc-a3afee784d02%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:25 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=72018
access-control-allow-origin: *
etag: W/"6628bc74-11952"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jdkQiP%2BZeknjv5uEoPb5O0bxJHVQQ1PsJ4QzbNsuZ%2Bjxx60lHTSK4ozwDWEb6YpH6pZWiM9ArAps9ZhPTGKEhflpK3MZTaqkBaqw3mPKWW1vEpOipYgRbda8rk4n5zg%2F5kRh0vKoBQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
server: cloudflare
cf-ray: 87aa0eab7973b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/prod/images/b169e30ad5cb8b0b613ae6c3006afbe0.png

104.21.73.26

5.4 kB

URL GET
allmediamatrix.com/prod/images/b169e30ad5cb8b0b613ae6c3006afbe0.png
IP
104.21.73.26:0
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
PNG image data, 646 x 116, 8-bit colormap, non-interlaced
Size
5.4 kB (5415 bytes)
Hash
b169e30ad5cb8b0b613ae6c3006afbe0
b0f804da985ec024b15155f33084ee796d1abc0d
7f474dce0f1f49839379e2c6c1130a4a399ccfc5b173eb89dbbc28c83d75a803

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /prod/images/b169e30ad5cb8b0b613ae6c3006afbe0.png HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Cookie: visitInfo::7536=5c0532c87c8b07e7d43ec8b3d81521faeb8d0a5725ae7ec764141261d00b480fa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7536%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%222bb247b423c4d3fcb92038be86b5ed4f%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22a693b535%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%22d3aedbb8-66a6-4c7d-94dc-a3afee784d02%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:26 GMT
content-type: image/png
content-length: 5415
last-modified: Thu, 13 Jan 2022 14:51:39 GMT
etag: "61e03c7b-1527"
access-control-allow-origin: *
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sJYPtLREvl5ZMBU9fm%2FIjUYSYo1dBvPOmh9jXp2RREvMtPR%2Fe%2BGtto9Jc9WJ2kDjBt0IqaxRpUZDmajN%2FwlWfT%2BPYPy%2FUh0Ry6BGEH1yXJ4Y0Nrs9nw7NYmbQy227P7T%2FeCIFdetyA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
accept-ranges: bytes
server: cloudflare
cf-ray: 87aa0eae2b42b50c-OSL
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/prod/images/12e2bcc7cae9c2211a695df886e28e9b.png

104.21.73.26

200 OK

4.8 kB

URL GET HTTP/3
allmediamatrix.com/prod/images/12e2bcc7cae9c2211a695df886e28e9b.png
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
PNG image data, 190 x 108, 8-bit/color RGBA, non-interlaced
Size
4.8 kB (4792 bytes)
Hash
12e2bcc7cae9c2211a695df886e28e9b
0e31a94632d7efa8ca00b3d84b90f3e61fcc7322
cdebbfd2ef3531023cb60b657445e188a0e76824338edc4ada292ac7ab1e164f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /prod/images/12e2bcc7cae9c2211a695df886e28e9b.png HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Cookie: visitInfo::7536=5c0532c87c8b07e7d43ec8b3d81521faeb8d0a5725ae7ec764141261d00b480fa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7536%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%222bb247b423c4d3fcb92038be86b5ed4f%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22a693b535%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%22d3aedbb8-66a6-4c7d-94dc-a3afee784d02%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:26 GMT
content-type: image/png
content-length: 4792
last-modified: Thu, 27 May 2021 07:31:45 GMT
etag: "60af4ae1-12b8"
access-control-allow-origin: *
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=saLJEZKxXVhAYD8bx45j8kUEsAdVHn8Prk35vSz88Z6%2FtGNbtWZsfVenjOzHepEu6bT66o%2BzFuiTuhziK2D6bscXiX0ahTxPzwrid0Fz8nfnYTfBKZkygKDyA9Y7vzlWpV6VrFt%2F5w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
accept-ranges: bytes
server: cloudflare
cf-ray: 87aa0eae2b44b50c-OSL
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/favicon.ico

104.21.73.26

200 OK

3.2 kB

URL GET HTTP/3
allmediamatrix.com/favicon.ico
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel
Size
3.2 kB (3249 bytes)
Hash
1ba2ae710d927f13d483fd5d1e548c9b
c0605efed936ee2600284e6480521d06fa64f872
db74ab0b78338c1f778f8398c45f4103c99aea0e845a3118a7750b4eeafd3445

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:25 GMT
content-type: image/x-icon
last-modified: Wed, 13 Sep 2023 08:04:59 GMT
etag: W/"65016d2b-10be"
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=f7%2B2hPhtZrejMqpcagx%2Bfk3WqNp%2BUef0OSKPqnxQJg%2BaYsc7mLALSZMIiMDNB%2FraaUBl%2B%2FVJ6Dk7ZIbNMLoIJf2gr739uSOgAI1r0NWp7Muc6BQlF9Nkz61%2BeYZchn8lp%2FtHD00%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa0eaa4895b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/assets/hl-69cc381a.js

104.21.73.26

200 OK

987 B

URL GET HTTP/3
allmediamatrix.com/assets/hl-69cc381a.js
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
ASCII text, with very long lines (418), with no line terminators
Size
987 B (987 bytes)
Hash
017a45968b720cc670bfb369a0d9526f
665770821bbeda398c027c57bb617296ed7c472c
92b7730b848c6db54d5506c0d8c4a0dc3b059f0ef3bd03a2c5e8efe1ba1cbf1b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-69cc381a.js HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:25 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=419
access-control-allow-origin: *
etag: W/"6628bc74-1a3"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WV6xxVDlL1Fy3hfQof5dQoFx14huaH1OacjsmRaT6kahDOKONPHnDo6M9yGm2hhkudBkM5XT7EKPK1PbM3S4UR5FL0gVDL%2FvIdl02BFEfpxQz%2B8DeMBBXOkXvHWZQYJ8wvQ6Nu%2Feuw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 87aa0eaae902b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/assets/hl-de833af9.js

104.21.73.26

200 OK

580 B

URL GET HTTP/3
allmediamatrix.com/assets/hl-de833af9.js
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
JavaScript source, ASCII text, with very long lines (690), with no line terminators
Size
580 B (580 bytes)
Hash
07f4201d4f772dc3825f3399bb217552
e70c0af48037b02ab9ea515952b889f9eb7bcdb1
5103bcdb5637c56d4a70564479cef8e07ec2d3f00620b428cdb36c28c430d906

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-de833af9.js HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:25 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=691
access-control-allow-origin: *
etag: W/"6628bc74-2b3"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2Bj1upQ181h2q%2Fdum85ijaa2y%2FwzY7MhcOdsLgOekHFAZw0OF89LHGcJLubKcsYPepnzXgZmFbU9pj%2F6avd%2Bi908quYXGti6CdT5V1BJRSD8IK6QylSX6E%2BKgXansgGaqljM22514dg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 87aa0eaaf90eb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/assets/hl-35a77ba0.js

104.21.73.26

200 OK

27 kB

URL GET HTTP/3
allmediamatrix.com/assets/hl-35a77ba0.js
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (37102)
Size
27 kB (27027 bytes)
Hash
f87da472e47dc575b6cb8dc377d18916
bff262654ae71f3be0a658cfbe5a53c787c05d55
5c38207c92f3650eaef6616521c8b1e0a03ceb384030f1c2b67cb75e25925ca8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-35a77ba0.js HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:25 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=72018
access-control-allow-origin: *
etag: W/"6628bc74-11952"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jdkQiP%2BZeknjv5uEoPb5O0bxJHVQQ1PsJ4QzbNsuZ%2Bjxx60lHTSK4ozwDWEb6YpH6pZWiM9ArAps9ZhPTGKEhflpK3MZTaqkBaqw3mPKWW1vEpOipYgRbda8rk4n5zg%2F5kRh0vKoBQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 87aa0eaaf90cb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/prod/images/3e81792d1c3c845ca714ccb6d622a5cb.png

104.21.73.26

736 B

URL GET
allmediamatrix.com/prod/images/3e81792d1c3c845ca714ccb6d622a5cb.png
IP
104.21.73.26:0
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
PNG image data, 60 x 60, 8-bit colormap, non-interlaced
Size
736 B (736 bytes)
Hash
3e81792d1c3c845ca714ccb6d622a5cb
370d33f46430e85060c11f8d0d325b963743e738
039b1d9bc03573a402798799c1d0dbef6f03979e51ccf3576d2cfb07112b4145

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /prod/images/3e81792d1c3c845ca714ccb6d622a5cb.png HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Cookie: visitInfo::7536=5c0532c87c8b07e7d43ec8b3d81521faeb8d0a5725ae7ec764141261d00b480fa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7536%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%222bb247b423c4d3fcb92038be86b5ed4f%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22a693b535%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%22d3aedbb8-66a6-4c7d-94dc-a3afee784d02%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:26 GMT
content-type: image/png
content-length: 736
last-modified: Fri, 14 Jan 2022 12:48:43 GMT
etag: "61e1712b-2e0"
access-control-allow-origin: *
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LIoTbS8pxzg%2BpnGPWuZPpNemzI0sGZxrFOJdCNYJ3KpFwDQPFV4UJ%2FRpZPKmLQGg%2Fllhp5YYkPU3xSlZMAEzwiopaPKHEXKMvhQFdBYYcWR%2FVGqBhwgDu%2B85NRdDAGdE0EN1tNk9YQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
accept-ranges: bytes
server: cloudflare
cf-ray: 87aa0eae3b56b50c-OSL
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/prod/images/d8d5a5e33a87b192a74126bbaf431726.png

104.21.73.26

200 OK

113 kB

URL GET HTTP/3
allmediamatrix.com/prod/images/d8d5a5e33a87b192a74126bbaf431726.png
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
PNG image data, 993 x 546, 8-bit colormap, non-interlaced
Size
113 kB (113379 bytes)
Hash
d8d5a5e33a87b192a74126bbaf431726
febdcfef57d6d6d8a7b81c46f30d47a065d7e0df
f09f3901c52fc5ec1650f763efcd1f2b41694db31a6d3e135a1c5cf020e1e490

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /prod/images/d8d5a5e33a87b192a74126bbaf431726.png HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Cookie: visitInfo::7536=5c0532c87c8b07e7d43ec8b3d81521faeb8d0a5725ae7ec764141261d00b480fa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7536%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%222bb247b423c4d3fcb92038be86b5ed4f%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22a693b535%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%22d3aedbb8-66a6-4c7d-94dc-a3afee784d02%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:26 GMT
content-type: image/png
content-length: 113379
last-modified: Thu, 17 Aug 2023 13:10:50 GMT
etag: "64de1c5a-1bae3"
access-control-allow-origin: *
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OKVsYJoJEZsK9ClP50CTK3f5Y88MkhNEI1joiBuOF%2FaEhM%2BV%2FgSEkgRiZ3GbI0ICKhD0exNMnW4MjRJJww42VSt8nlgcN0LvhkYQcZq3lk2jR639%2BLT3N%2Fu1HbCDTQe2eRvmJxVDLA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
accept-ranges: bytes
server: cloudflare
cf-ray: 87aa0eae3b57b50c-OSL
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/prod/images/2296953043efaeb814b4ac9aa91b1edd.jpg

104.21.73.26

200 OK

607 kB

URL GET HTTP/3
allmediamatrix.com/prod/images/2296953043efaeb814b4ac9aa91b1edd.jpg
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1258, components 3
Size
607 kB (606551 bytes)
Hash
2296953043efaeb814b4ac9aa91b1edd
9947df98a24084f16562735b335d14d574f84d82
25d11bd085d802574f8fc54f57abea5572f97b91b0d0c89429736e7d5ba6567c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /prod/images/2296953043efaeb814b4ac9aa91b1edd.jpg HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Cookie: visitInfo::7536=5c0532c87c8b07e7d43ec8b3d81521faeb8d0a5725ae7ec764141261d00b480fa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7536%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%222bb247b423c4d3fcb92038be86b5ed4f%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22a693b535%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%22d3aedbb8-66a6-4c7d-94dc-a3afee784d02%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:26 GMT
content-type: image/jpeg
content-length: 606551
cf-bgj: h2pri
access-control-allow-origin: *
etag: "61e03d22-94157"
last-modified: Thu, 13 Jan 2022 14:54:26 GMT
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QgZfykEcAY9Rg8DXTrLxDXd37tkEkxA2doAOdfi9ev5IkOSdJvCujCD5qUUUeGD0nqrMIU33xKZi5DkrvR%2Bi7icpUCDwW8R%2BBiB8F7be2KjwibMLcWORALLHMaG9dqzBmitVzrRxAw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 87aa0eae6b82b50c-OSL
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/assets/hl-28a0afe6.png

104.21.73.26

200 OK

132 kB

URL GET HTTP/3
allmediamatrix.com/assets/hl-28a0afe6.png
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
PNG image data, 490 x 310, 8-bit/color RGBA, non-interlaced
Size
132 kB (132079 bytes)
Hash
663a088b73ce519c38adbad79e82d659
39ef28b09af2fdcf7f683c58efc18a43bd9e121f
28a0afe680833c1a10601e37f8a86a59b13f0e10aa03b9f5a5c53848639f77ac

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-28a0afe6.png HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://allmediamatrix.com/assets/hl-04d68de7.css
Cookie: visitInfo::7536=5c0532c87c8b07e7d43ec8b3d81521faeb8d0a5725ae7ec764141261d00b480fa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7536%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%222bb247b423c4d3fcb92038be86b5ed4f%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22a693b535%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%22d3aedbb8-66a6-4c7d-94dc-a3afee784d02%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:26 GMT
content-type: image/png
content-length: 132079
last-modified: Wed, 24 Apr 2024 08:01:55 GMT
etag: "6628bc73-203ef"
access-control-allow-origin: *
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hQK%2BWqw%2BeWmS1sjnFbe8FNgVvhrAKuwMR3OArQYRQGsWEKyT8Q1rNGnkvD95CsRt2XG8s6RB6KenkX7UuTC3SabMnJCmyT9BIh68ZdCUSBjD0r82VTrke79y2qk5fqjcAzeaenm8Ag%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 87aa0eae6b83b50c-OSL

allmediamatrix.com/assets/hl-3638d339.woff2

104.21.73.26

200 OK

17 kB

URL GET HTTP/3
allmediamatrix.com/assets/hl-3638d339.woff2
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
Web Open Font Format (Version 2), TrueType, length 16860, version 1.0
Size
17 kB (16860 bytes)
Hash
13049c7a16af3e830b7668f15f8e668a
f9eca560164be1be239e42c43cf8bb07aa7d8f14
3638d33930adfd35323251395221e7b9e1f2a641e6a1ead6e9d18d09588a2cfb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-3638d339.woff2 HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://allmediamatrix.com/assets/hl-04d68de7.css
Cookie: visitInfo::7536=5c0532c87c8b07e7d43ec8b3d81521faeb8d0a5725ae7ec764141261d00b480fa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7536%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%222bb247b423c4d3fcb92038be86b5ed4f%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22a693b535%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%22d3aedbb8-66a6-4c7d-94dc-a3afee784d02%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:26 GMT
content-type: application/octet-stream
content-length: 16860
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
etag: "6628bc74-41dc"
access-control-allow-origin: *
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bteZEEhZq550caW3%2Fu1%2Ff4mcGLGTnOEVbYoBvpLsJA6tkSBG8QhssCQDm35aPuknv%2BskMvgLOdJfni1XaXFwMA6OsFRin0DsQbzfLngdgLDpyTK%2BfwUwIx9zZ8apeHcDVg8Lb3T%2F6Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 87aa0eae9b99b50c-OSL
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/assets/hl-8d3ca80f.woff2

104.21.73.26

200 OK

23 kB

URL GET HTTP/3
allmediamatrix.com/assets/hl-8d3ca80f.woff2
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
Web Open Font Format (Version 2), TrueType, length 22992, version 1.0
Size
23 kB (22992 bytes)
Hash
1efbd38aa76ddae2580fedf378276333
8a49976f2470ba2a1db6144245355d3b889312e4
8d3ca80fa271e94b0c36cf3053b0f806b7a42bb3395b424c99dc0bd218f0ac20

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-8d3ca80f.woff2 HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://allmediamatrix.com/assets/hl-04d68de7.css
Cookie: visitInfo::7536=5c0532c87c8b07e7d43ec8b3d81521faeb8d0a5725ae7ec764141261d00b480fa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7536%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%222bb247b423c4d3fcb92038be86b5ed4f%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22a693b535%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%22d3aedbb8-66a6-4c7d-94dc-a3afee784d02%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:26 GMT
content-type: application/octet-stream
content-length: 22992
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
etag: "6628bc74-59d0"
access-control-allow-origin: *
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7rniDunAJLLblabZLwmzy3PpvOQqcmI8GSny%2BLOFi7Q9uyzr3Xt9ucRqyzyPTmarpt3Z%2F0fkPAXHE2RK3K61B%2Fyhbt8hDzCyOY%2BiKfGIdHJGuOknwkal0xHXCwkz9THfCm6m28Q%2FvQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 87aa0eaeaba3b50c-OSL
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/assets/hl-c3c0d3f4.woff2

104.21.73.26

200 OK

24 kB

URL GET HTTP/3
allmediamatrix.com/assets/hl-c3c0d3f4.woff2
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23484, version 1.0
Size
24 kB (23484 bytes)
Hash
b4d2c4c39853ee244272c04999b230ba
c82e22dde9716c40ba20e6c7ed03a1b66556de15
c3c0d3f472358aac78455515c4800771426770c22698e2486d39fdb5505634e1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-c3c0d3f4.woff2 HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://allmediamatrix.com/assets/hl-04d68de7.css
Cookie: visitInfo::7536=5c0532c87c8b07e7d43ec8b3d81521faeb8d0a5725ae7ec764141261d00b480fa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7536%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%222bb247b423c4d3fcb92038be86b5ed4f%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22a693b535%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%22d3aedbb8-66a6-4c7d-94dc-a3afee784d02%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:26 GMT
content-type: application/octet-stream
content-length: 23484
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
etag: "6628bc74-5bbc"
access-control-allow-origin: *
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5%2BPgD%2FGmAnRnux8aaBq4tR7rlH2Ux8n2%2FC%2B9T503y%2BaN389tawBTBjJMm5te2EwgOh56e0aJIyVNY85CI8FAOQ70%2F%2FhQecC49eFIqnsMVJU7DOZmwY7UPH39pvyqHR%2Bp1hMZW9cCqw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 87aa0eae9b9fb50c-OSL
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/assets/hl-70789bd7.woff2

104.21.73.26

200 OK

17 kB

URL GET HTTP/3
allmediamatrix.com/assets/hl-70789bd7.woff2
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
Web Open Font Format (Version 2), TrueType, length 17372, version 1.0
Size
17 kB (17372 bytes)
Hash
c02fb7419b8629666bf2ccc0a5177e3d
b70b21a3e6e55fbcbae137a3cbb4e05371c2bab6
70789bd70be9b6d68acd51063e499d6fe5e7fe53a654dab4fb00a8cf5bfe3637

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-70789bd7.woff2 HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://allmediamatrix.com/assets/hl-04d68de7.css
Cookie: visitInfo::7536=5c0532c87c8b07e7d43ec8b3d81521faeb8d0a5725ae7ec764141261d00b480fa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7536%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%222bb247b423c4d3fcb92038be86b5ed4f%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22a693b535%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%22d3aedbb8-66a6-4c7d-94dc-a3afee784d02%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:26 GMT
content-type: application/octet-stream
content-length: 17372
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
etag: "6628bc74-43dc"
access-control-allow-origin: *
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=R7EtSMhm%2Bb3nBwJhkekAZNwNYvozL1NcF2OWgae4czE3Tumn8%2B2qT%2FHAopWFS7N3ZZW27F7pj9T2KF3CqWbxFoVPQDA43Q4ErOw7rJ87%2Bflufr4GukKnjR477qmsY%2Fq35fjPepppLw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 87aa0eaebbb4b50c-OSL
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/assets/hl-4bc0c634.js

104.21.73.26

200 OK

3.7 kB

URL GET HTTP/3
allmediamatrix.com/assets/hl-4bc0c634.js
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
ASCII text, with very long lines (4793), with no line terminators
Size
3.7 kB (3722 bytes)
Hash
2ecddb69cae17a5edf492efb2310ca5e
b46bed0e479e87309c86d11d52ae0c1bcf5f3108
70f02ddb19f6c743759171a9303d9aa660ecda8df117380a40c464196b620b61

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-4bc0c634.js HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://allmediamatrix.com/assets/hl-b357b190.js
Cookie: visitInfo::7536=5c0532c87c8b07e7d43ec8b3d81521faeb8d0a5725ae7ec764141261d00b480fa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7536%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%222bb247b423c4d3fcb92038be86b5ed4f%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22a693b535%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%22d3aedbb8-66a6-4c7d-94dc-a3afee784d02%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:25 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=4794
access-control-allow-origin: *
etag: W/"6628bc74-12ba"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=t6ktGQ%2BaVLV2AIunsZQRWXeZIUYn%2B9RBZBYYpu2a3uIsEtW%2BbNH8gaqRf9SECiST94OB2r02%2BNoVHobMIgRTZBWJ0q9CCSIkJuUpOqBXSBcE%2Br8mkxg5T6f0JfAr0nmjrToDZs%2BzXg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
server: cloudflare
cf-ray: 87aa0eaaf90fb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

event.secureanalytic.com/register/event_log/02eyj2r1ek

172.67.204.164

200 OK

0 B

URL POST HTTP/2
event.secureanalytic.com/register/event_log/02eyj2r1ek
IP
172.67.204.164:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerLet's Encrypt
Subjectsecureanalytic.com
FingerprintE8:56:22:9E:5D:B8:81:BD:9C:20:0E:24:64:BE:C4:CA:4E:D6:C9:63
ValidityFri, 29 Mar 2024 10:27:40 GMT - Thu, 27 Jun 2024 10:27:39 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /register/event_log/02eyj2r1ek HTTP/1.1
Host: event.secureanalytic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://allmediamatrix.com/
Origin: https://allmediamatrix.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 22:37:26 GMT
content-length: 0
expires: 0
cache-control: no-cache, no-store, max-age=0, must-revalidate
access-control-allow-headers: content-type
x-xss-protection: 1; mode=block
pragma: no-cache
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src 'self'; frame-src 'self' data:; connect-src 'self' https://cdn-media-2020.s3.amazonaws.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://storage.googleapis.com; style-src 'self' 'unsafe-inline'; img-src * 'self' https://* blob: data:; font-src 'self' data:
access-control-allow-methods: POST
x-frame-options: SAMEORIGIN
access-control-expose-headers: Authorization, Link, X-Total-Count, X-pushPlatformApp-alert, X-pushPlatformApp-error, X-pushPlatformApp-params
access-control-allow-origin: *
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
x-content-type-options: nosniff
permissions-policy: camera=(), fullscreen=(self), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), sync-xhr=()
access-control-max-age: 1800
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fiL7GIeLtaz6X2Zl38zaX4iG2F3xErmlSbZrjjBTqRbZp8TKuGHl3zC4BlRzRj8yHr5RUccjd%2Bk9MXBkgwWv6TXQrA458yUE9J45bgLfok%2F4mqtleEgX1tky05qSmU%2BVa6ZeUukq56KuNg4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87aa0eafed8c5685-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

allmediamatrix.com/prod/images/ae126dcdf8581afd4f5287e47a865c4b.png

104.21.73.26

200 OK

917 B

URL GET HTTP/3
allmediamatrix.com/prod/images/ae126dcdf8581afd4f5287e47a865c4b.png
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
917 B (917 bytes)
Hash
ae126dcdf8581afd4f5287e47a865c4b
467a70ace4e8ba22c6d060de9a51041158c93d0f
584e53768bb90991e7b60eb7ecc2c5d9c26dd9a4f782a104030348c9b82cf473

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /prod/images/ae126dcdf8581afd4f5287e47a865c4b.png HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Cookie: visitInfo::7536=5c0532c87c8b07e7d43ec8b3d81521faeb8d0a5725ae7ec764141261d00b480fa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7536%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%222bb247b423c4d3fcb92038be86b5ed4f%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22a693b535%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%22d3aedbb8-66a6-4c7d-94dc-a3afee784d02%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:26 GMT
content-type: image/png
content-length: 917
last-modified: Thu, 01 Apr 2021 09:44:44 GMT
etag: "6065960c-395"
access-control-allow-origin: *
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=W3IeyziBkDDVmXZf3r323fhni0aKuugmEwz9g5HTaZmtKeJGd4XHdmwYabBoq7vtpML1oRr4dTnVDHSvv17fPl2Kl0c1M3QEtJnGT8tiETpTSgIcemYi3dhfbPX46S5s8kP2WhbgYw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 87aa0eb08ccdb50c-OSL
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/assets/hl-30e661e5.js

104.21.73.26

200 OK

405 B

URL GET HTTP/3
allmediamatrix.com/assets/hl-30e661e5.js
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
ASCII text, with very long lines (616), with no line terminators
Size
405 B (405 bytes)
Hash
9f4e117e562a67591ca71c6ec1642940
5a3563270a8bd2c264e32601c9556a5617de80c6
2a9445508a67f320e07007cd42ef576028b2c81eb56b7186ca6b21369fcc7fa2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-30e661e5.js HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://allmediamatrix.com/assets/hl-83316dfd.js
Cookie: visitInfo::7536=5c0532c87c8b07e7d43ec8b3d81521faeb8d0a5725ae7ec764141261d00b480fa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7536%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%222bb247b423c4d3fcb92038be86b5ed4f%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22a693b535%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%22d3aedbb8-66a6-4c7d-94dc-a3afee784d02%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:26 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=617
access-control-allow-origin: *
etag: W/"6628bc74-269"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DY1%2Fu%2Fby1%2Bv2g5DIJezEvT3KtGwwi8pBdCxXsw9l1rn4BX2lHHBpTH2JpcgYdSZ4SbA6sX4TYeXTpIk6b45kxQt%2Bczu50unYDUNzrxWmOLmTD5zASEGkIJJV%2FWhFawWtzmFjYb2zyw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
server: cloudflare
cf-ray: 87aa0eae4b62b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/assets/hl-792ddeea.js

104.21.73.26

200 OK

5.6 kB

URL GET HTTP/3
allmediamatrix.com/assets/hl-792ddeea.js
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
ASCII text, with very long lines (779), with no line terminators
Size
5.6 kB (5636 bytes)
Hash
e1bfd6e4c6daa2b1a3cd4a3f2a1f8f29
188fedf3f8cef02e6c8ee2de4f794cab6a320df3
ad5e274fa644479d71df93bc54e4a12553195cd85ca9d583feaedc74f1cc2046

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-792ddeea.js HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://allmediamatrix.com/assets/hl-83316dfd.js
Cookie: visitInfo::7536=5c0532c87c8b07e7d43ec8b3d81521faeb8d0a5725ae7ec764141261d00b480fa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7536%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%222bb247b423c4d3fcb92038be86b5ed4f%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22a693b535%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%22d3aedbb8-66a6-4c7d-94dc-a3afee784d02%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:26 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=780
access-control-allow-origin: *
etag: W/"6628bc74-30c"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JbpfwIiH7zwypvZi8lI0Fr85JzpylMSDA6QKQuuFSG%2BrxD97pi0X1%2BhVnaagroKvazEROUkiLdZS%2FvmFOAIh1vg33Khmz9ivJGIJLguMVzjRuKqD74%2BxrZFq0Ce9ySyGo1tZv9sLWA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
server: cloudflare
cf-ray: 87aa0eae4b5fb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

secureanalytic.com/scripts/push/script/02eyoyxdkz?url=allmediamatrix.com

104.21.77.48

200 OK

7.3 kB

URL GET HTTP/2
secureanalytic.com/scripts/push/script/02eyoyxdkz?url=allmediamatrix.com
IP
104.21.77.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerLet's Encrypt
Subjectsecureanalytic.com
FingerprintE8:56:22:9E:5D:B8:81:BD:9C:20:0E:24:64:BE:C4:CA:4E:D6:C9:63
ValidityFri, 29 Mar 2024 10:27:40 GMT - Thu, 27 Jun 2024 10:27:39 GMT

File type
JavaScript source, ASCII text, with very long lines (7538), with no line terminators
Size
7.3 kB (7328 bytes)
Hash
8f45e2671c768dbdf099ea1dfbee50bc
3bb5cef2c8a64418a7bc627000cd400fd51871e8
883bd3629c03e8f359f6491ac537be1720d998683cc8117bf298334f687e853f

HTTP Headers

GET /scripts/push/script/02eyoyxdkz?url=allmediamatrix.com HTTP/1.1
Host: secureanalytic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://allmediamatrix.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 22:37:26 GMT
content-type: application/javascript;charset=UTF-8
expires: 0
cache-control: max-age=14400, must-revalidate
x-xss-protection: 1; mode=block
pragma: no-cache
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src 'self'; frame-src 'self' data:; connect-src 'self' https://cdn-media-2020.s3.amazonaws.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://storage.googleapis.com; style-src 'self' 'unsafe-inline'; img-src * 'self' https://* blob: data:; font-src 'self' data:
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
x-content-type-options: nosniff
permissions-policy: camera=(), fullscreen=(self), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), sync-xhr=()
cf-cache-status: EXPIRED
last-modified: Fri, 26 Apr 2024 15:00:03 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NQYxgbQ8STYcBI7I9nQHmh8oquFk3mLTNtft2iNYhtR%2BCZOY6sFEkNNZaLptdiKKN2tSYG2DdpeuapUyHOtyD4HqzfpYMOdIdsiaCMzdbCMClUyqfJEfZ8pcp0VFdC5N56bIofw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87aa0eab5d7e5694-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=

104.21.73.26

200 OK

417 B

URL User Request GET HTTP/2
allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
HTML document, ASCII text, with very long lines (456), with no line terminators
Size
417 B (417 bytes)
Hash
212cbcd5690b87e95175d3ed76378367
4a3bef2f772abbf9e39dc339ad3e64e32ad4beff
8be6bffa64d12bfd779ed1cea354bf5c68758c262fa9e95415cd3c04db9c5c10

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource= HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 22:37:25 GMT
content-type: text/html; charset=UTF-8
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zXWsx3xRgIUVVoyzsFsagiosSfKRe%2FnZdKpwQMPWFiDsoSoF6AqG%2FXvXVft9A8f8GAElp7ET37X3vOVekL8Gu6MR5mFO%2BG0vc5fVgnSU2VuGABwJHQkU%2FeuFXfgpTEafNSIvpnE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87aa0ea748445697-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

allmediamatrix.com/prod/images/cf1125dc9e8565471095b2315121607f.png

104.21.73.26

200 OK

1.1 kB

URL GET HTTP/3
allmediamatrix.com/prod/images/cf1125dc9e8565471095b2315121607f.png
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
PNG image data, 142 x 116, 8-bit colormap, non-interlaced
Size
1.1 kB (1089 bytes)
Hash
cf1125dc9e8565471095b2315121607f
4587708c5f5abb1f9e5edfa01df0db5231dc6384
b6834940fa7f64a908522d2f88d6487b2da1580f6ae729e7cb8f7088c9b9204e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /prod/images/cf1125dc9e8565471095b2315121607f.png HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Cookie: visitInfo::7536=5c0532c87c8b07e7d43ec8b3d81521faeb8d0a5725ae7ec764141261d00b480fa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7536%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%222bb247b423c4d3fcb92038be86b5ed4f%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22a693b535%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%22d3aedbb8-66a6-4c7d-94dc-a3afee784d02%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:26 GMT
content-type: image/png
content-length: 1089
last-modified: Thu, 13 Jan 2022 14:51:39 GMT
etag: "61e03c7b-441"
access-control-allow-origin: *
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ro62GqnoUNLJ8sFJxG6PeA61eC0pfsbN82i%2F2ERMdlikLQqRjzkiB3YHD%2BS1u%2FXETa8NOFBhlD0ObcfvRgssSXCygpn6DdKvppfZ4lvhQODIYS9pnv8VP%2F%2F6oDUXhwKLkSUL9OdWLQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
accept-ranges: bytes
server: cloudflare
cf-ray: 87aa0eae2b47b50c-OSL
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/assets/hl-6456547b.js

104.21.73.26

200 OK

2.0 kB

URL GET HTTP/3
allmediamatrix.com/assets/hl-6456547b.js
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
ASCII text, with very long lines (2078), with no line terminators
Size
2.0 kB (1952 bytes)
Hash
0fa64a48f927b190784abdcfe8a6834a
3ad2dfca860e2c5e8926ad806ed5abe4b55a1213
aa097552285eb7ee8c3850421177e4bee882a08ff395c1eabdbd7705331859f7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-6456547b.js HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://allmediamatrix.com/assets/hl-4bc0c634.js
Cookie: visitInfo::7536=5c0532c87c8b07e7d43ec8b3d81521faeb8d0a5725ae7ec764141261d00b480fa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7536%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%222bb247b423c4d3fcb92038be86b5ed4f%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22a693b535%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%22d3aedbb8-66a6-4c7d-94dc-a3afee784d02%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:25 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1953
access-control-allow-origin: *
etag: W/"6628bc74-7a1"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=V%2FF%2BcdYucmY8Qb%2B7xou3lTNbyfirLfYiaqmcsIajx3ZErsqiGrUu7YCRwQqAbfi7p6sJhW93y4UPhi1mFqLwX5JTydLL9PkghWWI0s%2B0%2FvS1TrFbN4RATqr4hJepUq4pDmRDQ8GQKw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
server: cloudflare
cf-ray: 87aa0eaba98bb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/assets/hl-d3fbdfe4.js

104.21.73.26

200 OK

915 B

URL GET HTTP/3
allmediamatrix.com/assets/hl-d3fbdfe4.js
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
ASCII text, with very long lines (943), with no line terminators
Size
915 B (915 bytes)
Hash
c031800c96fa289ab0f286d46661bea2
0b56e63ed6e2cdedd318c9030a1f6056ea5eac72
3e5d95a8678551eacf124da824401720a824943199ae59ea9a2c49df75b06255

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-d3fbdfe4.js HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://allmediamatrix.com/assets/hl-f46804a9.js
Cookie: visitInfo::7536=5c0532c87c8b07e7d43ec8b3d81521faeb8d0a5725ae7ec764141261d00b480fa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7536%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%222bb247b423c4d3fcb92038be86b5ed4f%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22a693b535%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%22d3aedbb8-66a6-4c7d-94dc-a3afee784d02%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:26 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=916
access-control-allow-origin: *
etag: W/"6628bc74-394"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QwzR1yXyUzCZnZpq8WaOWWTZrqWMkXjaqd3iAnps%2Fpk22E%2F5d1rSap%2B63QwhaJpdzc1GeC%2B0upoEklS7xcIK0CfZioxNvW2jp6l6fkeKLkzpCNuRUw47uVNNya60m0sub1ZxZY1H7g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 1
server: cloudflare
cf-ray: 87aa0ead9ab5b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/prod/images/ba8f10079cf5a5f5cffd4312e047db3d.png

0.0.0.0

0 B

URL GET
allmediamatrix.com/prod/images/ba8f10079cf5a5f5cffd4312e047db3d.png
IP
0.0.0.0:0
ASN
#0

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /prod/images/ba8f10079cf5a5f5cffd4312e047db3d.png HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Cookie: visitInfo::7536=5c0532c87c8b07e7d43ec8b3d81521faeb8d0a5725ae7ec764141261d00b480fa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7536%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%222bb247b423c4d3fcb92038be86b5ed4f%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22a693b535%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%22d3aedbb8-66a6-4c7d-94dc-a3afee784d02%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

allmediamatrix.com/assets/hl-bc98154d.js

104.21.73.26

200 OK

687 B

URL GET HTTP/3
allmediamatrix.com/assets/hl-bc98154d.js
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
ASCII text, with very long lines (707), with no line terminators
Size
687 B (687 bytes)
Hash
657a33de0a64648786dabb21a3618871
457ac15c80711e6ee8f7c4f458ce5da45831de0d
eb42e28ead8453831f97b2cfecbc4998f803a113d2447c67a48aad489a10159e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-bc98154d.js HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:25 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=688
access-control-allow-origin: *
etag: W/"6628bc74-2b0"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tVHH8ExGq%2BqQRkV2mElRc50AVcxv3212IZtivsVhlvFdLDGWs8RYfEqVWCAk5iw6mLbVyHiyN%2FsRmO1WVdF5GRGH85IKKLrrgucfEdiV4%2BEyyGimZeLFfuE%2FXD4HcNaWwgPlXjx6Ng%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 87aa0eac39ceb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/prod/images/f1063acb225b213d5fa9b231ee16cd25.png

0.0.0.0

0 B

URL GET
allmediamatrix.com/prod/images/f1063acb225b213d5fa9b231ee16cd25.png
IP
0.0.0.0:0
ASN
#0

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /prod/images/f1063acb225b213d5fa9b231ee16cd25.png HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Cookie: visitInfo::7536=5c0532c87c8b07e7d43ec8b3d81521faeb8d0a5725ae7ec764141261d00b480fa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7536%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%222bb247b423c4d3fcb92038be86b5ed4f%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22a693b535%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%22d3aedbb8-66a6-4c7d-94dc-a3afee784d02%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

allmediamatrix.com/prod/images/f1063acb225b213d5fa9b231ee16cd25.png

104.21.73.26

200 OK

220 B

URL GET HTTP/3
allmediamatrix.com/prod/images/f1063acb225b213d5fa9b231ee16cd25.png
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
PNG image data, 72 x 48, 4-bit colormap, non-interlaced
Size
220 B (220 bytes)
Hash
f1063acb225b213d5fa9b231ee16cd25
e549decdc41f5ee29e75387f32470d90ee772787
4ee13f508c5a43754521cc34fd490bfb72daa996baaa558fa8638586371b1752

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /prod/images/f1063acb225b213d5fa9b231ee16cd25.png HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Cookie: visitInfo::7536=5c0532c87c8b07e7d43ec8b3d81521faeb8d0a5725ae7ec764141261d00b480fa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7536%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%222bb247b423c4d3fcb92038be86b5ed4f%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22a693b535%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%22d3aedbb8-66a6-4c7d-94dc-a3afee784d02%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:26 GMT
content-type: image/png
content-length: 220
last-modified: Fri, 14 Jan 2022 12:48:43 GMT
etag: "61e1712b-dc"
access-control-allow-origin: *
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LYgrpcQNOjaKVsQPBwZ8%2FapYPTHNW4plwceurt8Zt2ZLy%2BOHm%2F7%2BaMIs1gC5%2FOZha6%2FY2Z%2FUUKUYkWj%2B64f0tcIE8ctg%2B%2BXzxzZ7c5%2BlYrKARKBYbtMlGHXPeMlW%2FSbwQn5awRHhpA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
accept-ranges: bytes
server: cloudflare
cf-ray: 87aa0eae3b51b50c-OSL
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/assets/hl-ac68def5.js

104.21.73.26

200 OK

1.9 kB

URL GET HTTP/3
allmediamatrix.com/assets/hl-ac68def5.js
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
JavaScript source, ASCII text, with very long lines (1960), with no line terminators
Size
1.9 kB (1922 bytes)
Hash
0ff6ab8d653238e85c26fc3cfe55015a
18ec157045ee471ba8530e17f0ca0f5fb6bd9d1e
5d8585fce9ef9ba564f252ce8f290814d7b563d5b4d5b6b44b03f49b1e6c0668

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-ac68def5.js HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://allmediamatrix.com/assets/hl-30e661e5.js
Cookie: visitInfo::7536=5c0532c87c8b07e7d43ec8b3d81521faeb8d0a5725ae7ec764141261d00b480fa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7536%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%222bb247b423c4d3fcb92038be86b5ed4f%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22a693b535%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%22d3aedbb8-66a6-4c7d-94dc-a3afee784d02%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:26 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1923
access-control-allow-origin: *
etag: W/"6628bc74-783"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dt8APmAp%2FbXA5BfSIOnJmMk%2BcZIKI0n9Y9AK68c%2FAT8aTESfTrsnsYAOb0NplOwwD8sFNrvCqIAtGjuJhvwBPgK718A6f%2FJcqqZuQwlfZeUJrpWDFjbbp0TVp7lsZXw71nqDv%2F9o8g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
server: cloudflare
cf-ray: 87aa0eafcc58b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/prod/images/09d6a9ebc45af5c5367f0a216e6234d7.png

0.0.0.0

0 B

URL GET
allmediamatrix.com/prod/images/09d6a9ebc45af5c5367f0a216e6234d7.png
IP
0.0.0.0:0
ASN
#0

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /prod/images/09d6a9ebc45af5c5367f0a216e6234d7.png HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Cookie: visitInfo::7536=5c0532c87c8b07e7d43ec8b3d81521faeb8d0a5725ae7ec764141261d00b480fa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7536%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%222bb247b423c4d3fcb92038be86b5ed4f%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22a693b535%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%22d3aedbb8-66a6-4c7d-94dc-a3afee784d02%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

www.googletagmanager.com/gtag/js?id=UA-195162716-19

142.250.74.168

200 OK

190 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=UA-195162716-19
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52
ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT

File type
JavaScript source, ASCII text, with very long lines (1763)
Size
190 kB (189738 bytes)
Hash
5e0dce660fb973da1226ac4b22eaecae
87f8bb46a6deaec902a589cd77cf6e3a7d34ecbc
0b0b05cc776a59b64c5bef5bea9f50709c4a2d267d70e5c9b700303ad22de6d0

HTTP Headers

GET /gtag/js?id=UA-195162716-19 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://allmediamatrix.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 Apr 2024 22:37:25 GMT
expires: Fri, 26 Apr 2024 22:37:25 GMT
cache-control: private, max-age=900
last-modified: Fri, 26 Apr 2024 22:05:23 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 69282
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

allmediamatrix.com/assets/hl-7067c1b8.js

104.21.73.26

200 OK

1.3 kB

URL GET HTTP/3
allmediamatrix.com/assets/hl-7067c1b8.js
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
ASCII text, with very long lines (1322), with no line terminators
Size
1.3 kB (1285 bytes)
Hash
b2a2401718f5520346db6fe9fb182172
8896ccd112d6a01b45068061331f5ce55ff8bd8f
fc574421da0dd5f41a55723443f68497f29aed7577b88b447065a87c911d0127

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-7067c1b8.js HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:25 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1286
access-control-allow-origin: *
etag: W/"6628bc74-506"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2F%2F9O6WWOBTTATE4gEyztD8v0xuY0B1%2B8F8I8hyRl0FnLB6SZK%2B8qR%2FjbEkr0OQa%2BZJYhoMC1R6lIYwINDPAEr9h4qywNb3HPcHOYrEhbksdvD7FZ3hzfo7bx3pJ5vkKKYeQEtVYuJQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 87aa0eaaf90bb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/lead/prefill

104.21.73.26

200 OK

64 B

URL POST HTTP/3
allmediamatrix.com/lead/prefill
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
64 B (64 bytes)
Hash
0a00dc476383c35bcfbc0ea44c3a60ea
36ebdfa0bfa4aa0ec8f4d7417d2112bae7d406db
819bd596583bc3bc638b2fa8d87d80b16551a1d68abb86261795db848cc226d2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /lead/prefill HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
sentry-trace: a0116e3c2a48472a8c1dace46c513014-bd008e15577d6050-0
baggage: sentry-environment=production,sentry-public_key=9056b383582c444792eb65c1726488d9,sentry-trace_id=a0116e3c2a48472a8c1dace46c513014,sentry-sample_rate=0.1,sentry-transaction=LandingHome,sentry-sampled=false
Content-Length: 56
Origin: https://allmediamatrix.com
DNT: 1
Connection: keep-alive
Referer: https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Cookie: visitInfo::7536=5c0532c87c8b07e7d43ec8b3d81521faeb8d0a5725ae7ec764141261d00b480fa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7536%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%222bb247b423c4d3fcb92038be86b5ed4f%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22a693b535%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%22d3aedbb8-66a6-4c7d-94dc-a3afee784d02%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:26 GMT
content-type: application/json; charset=UTF-8
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FZD4Mc5OO6qabSxL8%2FwrCcnbyPJSna%2BAHJ6HdkUY8DIQDruxikDqNt08ioZo69JYNxe7D3GL%2F0nLT%2BATT8G8TGUtW4m%2FYe7V6mIslirtxnQCjTEWFvQ2RaPAHjT%2F8QYAO7vIUa8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87aa0eae0b27b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/assets/hl-ac68def5.js

104.21.73.26

200 OK

1.9 kB

URL GET HTTP/3
allmediamatrix.com/assets/hl-ac68def5.js
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
JavaScript source, ASCII text, with very long lines (1960), with no line terminators
Size
1.9 kB (1922 bytes)
Hash
0ff6ab8d653238e85c26fc3cfe55015a
18ec157045ee471ba8530e17f0ca0f5fb6bd9d1e
5d8585fce9ef9ba564f252ce8f290814d7b563d5b4d5b6b44b03f49b1e6c0668

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-ac68def5.js HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:26 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1923
access-control-allow-origin: *
etag: W/"6628bc74-783"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dt8APmAp%2FbXA5BfSIOnJmMk%2BcZIKI0n9Y9AK68c%2FAT8aTESfTrsnsYAOb0NplOwwD8sFNrvCqIAtGjuJhvwBPgK718A6f%2FJcqqZuQwlfZeUJrpWDFjbbp0TVp7lsZXw71nqDv%2F9o8g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 87aa0eae1b3bb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/assets/hl-b357b190.js

104.21.73.26

200 OK

266 kB

URL GET HTTP/3
allmediamatrix.com/assets/hl-b357b190.js
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
266 kB (265705 bytes)
Hash
cd6e0eff789221181a0b8471967bcb8d
71586e5b8ca6df344fd58e8a1772baa3734bb190
b7baa94b8d9f78408c104d46f5b9df36b49a27a09719b7a5b80be68d72d5651e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-b357b190.js HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:25 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=265728
access-control-allow-origin: *
etag: W/"6628bc74-40e00"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YGXJ2sQ4SVSV8IpkniLbS2lIk2vuPNVt4AJuxUqNvXuifqfBAHm3d3XEcZk%2FVYDzlCCwr9dnSYN0LVhFQNen5ST42uRqm8eJAIQNbiEE7HN%2BFKjZMRd5ZvcdRjlVIdIa%2B%2FYLRwnlZA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 87aa0ea8cfacb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/assets/hl-7c523d10.js

104.21.73.26

200 OK

561 B

URL GET HTTP/3
allmediamatrix.com/assets/hl-7c523d10.js
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
ASCII text, with very long lines (583), with no line terminators
Size
561 B (561 bytes)
Hash
c4e16824e2d23ad53b814db935bea17e
97c58a335f3bd169c0ed15ecc0978ab0280c27d0
c801c0119e2696729255f92db679d9e56f56ff050c1ce1d269c5863aa5ea7c3a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-7c523d10.js HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:25 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=562
access-control-allow-origin: *
etag: W/"6628bc74-232"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pXZfxycWjxoWGkFBwD7wF8FW7CChTp%2FRGxEkqR2u4Abp3aQpmt6aklec1nrJj21FSZoXo0DHdIWwoWQBZGzYnzjkDbCKXr%2Fjp2QnYsz2PKvK1zuueIbXq2jqhxM7KFWdjT4HK9%2FVGQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 87aa0eac39ccb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/prod/images/cf1125dc9e8565471095b2315121607f.png

0.0.0.0

0 B

URL GET
allmediamatrix.com/prod/images/cf1125dc9e8565471095b2315121607f.png
IP
0.0.0.0:0
ASN
#0

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /prod/images/cf1125dc9e8565471095b2315121607f.png HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Cookie: visitInfo::7536=5c0532c87c8b07e7d43ec8b3d81521faeb8d0a5725ae7ec764141261d00b480fa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7536%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%222bb247b423c4d3fcb92038be86b5ed4f%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22a693b535%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%22d3aedbb8-66a6-4c7d-94dc-a3afee784d02%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

allmediamatrix.com/prod/images/ba8f10079cf5a5f5cffd4312e047db3d.png

104.21.73.26

200 OK

723 B

URL GET HTTP/3
allmediamatrix.com/prod/images/ba8f10079cf5a5f5cffd4312e047db3d.png
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
PNG image data, 60 x 60, 8-bit colormap, non-interlaced
Size
723 B (723 bytes)
Hash
ba8f10079cf5a5f5cffd4312e047db3d
2864af04fbdb64a20c8e1c2615a0401fca4bc956
e157263323db5ea8e56113a9119f4733b0a8130563d87e20e1b3575f4f22620c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /prod/images/ba8f10079cf5a5f5cffd4312e047db3d.png HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Cookie: visitInfo::7536=5c0532c87c8b07e7d43ec8b3d81521faeb8d0a5725ae7ec764141261d00b480fa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7536%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%222bb247b423c4d3fcb92038be86b5ed4f%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22a693b535%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%22d3aedbb8-66a6-4c7d-94dc-a3afee784d02%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:26 GMT
content-type: image/png
content-length: 723
last-modified: Fri, 14 Jan 2022 12:48:43 GMT
etag: "61e1712b-2d3"
access-control-allow-origin: *
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1JYDExHYqwb52UR7OWSj25CFi8Q8vgIFSCSIPJtuT578A8u47ipeJiUz%2BLXDUfwzzU2ep2%2BI0atGKBOt39hJJltwhP5yREd3mNkRoJZPLKqQNL8dZrIBF8QIMObiw%2Bnzf3f9FnE3lA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
accept-ranges: bytes
server: cloudflare
cf-ray: 87aa0eae2b49b50c-OSL
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/prod/images/09d6a9ebc45af5c5367f0a216e6234d7.png

104.21.73.26

200 OK

110 B

URL GET HTTP/3
allmediamatrix.com/prod/images/09d6a9ebc45af5c5367f0a216e6234d7.png
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
PNG image data, 48 x 48, 1-bit colormap, non-interlaced
Size
110 B (110 bytes)
Hash
09d6a9ebc45af5c5367f0a216e6234d7
357bb5d08644fbe599d34d165652dc19afe0df9c
5fda2ac54507259375f4107937b24a9c42302725c816cfd1620e84a526c734b1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /prod/images/09d6a9ebc45af5c5367f0a216e6234d7.png HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Cookie: visitInfo::7536=5c0532c87c8b07e7d43ec8b3d81521faeb8d0a5725ae7ec764141261d00b480fa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7536%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%222bb247b423c4d3fcb92038be86b5ed4f%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22a693b535%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%22d3aedbb8-66a6-4c7d-94dc-a3afee784d02%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:26 GMT
content-type: image/png
content-length: 110
last-modified: Fri, 14 Jan 2022 12:48:43 GMT
etag: "61e1712b-6e"
access-control-allow-origin: *
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Lx7s4pMKG2pEsSujEaKecVar%2F7Q2HkJpGgTzdY77qw%2B8Mgj4Okimh10qEzQZT4YgM2GQoPZbQeA%2FwuN%2BkjiHgyIUqL9Xy7GB4Pij3JDEHfvY6Yb%2FaOgV3v3T1mfoabIkyl7ic4kqrw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
accept-ranges: bytes
server: cloudflare
cf-ray: 87aa0eae3b4fb50c-OSL
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/assets/hl-fa300abb.js

104.21.73.26

200 OK

529 B

URL GET HTTP/3
allmediamatrix.com/assets/hl-fa300abb.js
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
ASCII text, with very long lines (555), with no line terminators
Size
529 B (529 bytes)
Hash
6179ecd091fcc7f9d8aca9649b1d3a9b
53eb8ef029331df4ace79098490c1f82fbb4e71b
a4077d09054f0e3acba71cc5d0bf3398f79124a12a0f531350b2137f694e1c40

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-fa300abb.js HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:25 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=530
access-control-allow-origin: *
etag: W/"6628bc74-212"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AsXslyM2zzQg5i8fQXrNc4rJ3XNrfRVEdrP8o6bP5sPzP1w%2BbuexDJxawqWnMoojHW5k5zTT7HzAAOslcJAFTjSjnc6rNnBwz0y0gJ1Tlk1yhdHwSBb7kDXVks8wCG9h%2Fnqy1W3JuQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 87aa0eac39c8b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/assets/hl-f46804a9.js

104.21.73.26

200 OK

7.1 kB

URL GET HTTP/3
allmediamatrix.com/assets/hl-f46804a9.js
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
ASCII text, with very long lines (7771), with no line terminators
Size
7.1 kB (7083 bytes)
Hash
480b71de179b3c60057e0de84e7799c7
7e5be25da70f062e56e66fb317c7b3c0e44ae845
3e6f7cfecfe685f6de3c7e02c5281e177f9ce48eec1b5375e5fefd264d6b112d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-f46804a9.js HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:25 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=7084
access-control-allow-origin: *
etag: W/"6628bc74-1bac"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=W64olLd1rzriF%2Flm%2Fjr67zunwZrHvyqUfK%2BKvQyNxy%2FQISkFEeZ2HS3MecsYnZJuSYMFzvCH1sIlVamArRVNP5sAWSIKKpiokp4L7ug%2FqMxmKi7X%2BVJ0odCWXomJUwKCZMqPgSEOrg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 87aa0eac39c5b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/assets/hl-fa300abb.js

104.21.73.26

200 OK

529 B

URL GET HTTP/3
allmediamatrix.com/assets/hl-fa300abb.js
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
ASCII text, with very long lines (555), with no line terminators
Size
529 B (529 bytes)
Hash
6179ecd091fcc7f9d8aca9649b1d3a9b
53eb8ef029331df4ace79098490c1f82fbb4e71b
a4077d09054f0e3acba71cc5d0bf3398f79124a12a0f531350b2137f694e1c40

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-fa300abb.js HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://allmediamatrix.com/assets/hl-f46804a9.js
Cookie: visitInfo::7536=5c0532c87c8b07e7d43ec8b3d81521faeb8d0a5725ae7ec764141261d00b480fa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7536%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%222bb247b423c4d3fcb92038be86b5ed4f%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22a693b535%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%22d3aedbb8-66a6-4c7d-94dc-a3afee784d02%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:26 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=530
access-control-allow-origin: *
etag: W/"6628bc74-212"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AsXslyM2zzQg5i8fQXrNc4rJ3XNrfRVEdrP8o6bP5sPzP1w%2BbuexDJxawqWnMoojHW5k5zTT7HzAAOslcJAFTjSjnc6rNnBwz0y0gJ1Tlk1yhdHwSBb7kDXVks8wCG9h%2Fnqy1W3JuQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 1
server: cloudflare
cf-ray: 87aa0ead9ab4b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/assets/hl-83316dfd.js

104.21.73.26

200 OK

6.1 kB

URL GET HTTP/3
allmediamatrix.com/assets/hl-83316dfd.js
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
ASCII text, with very long lines (6412), with no line terminators
Size
6.1 kB (6096 bytes)
Hash
27a35e0ced45379f41358a6beedea7fa
e7f50dd1456fb36c9d10d469061701f6832996e7
e6fa07feb0815b3f09ed4ca05e6e145aedfe7e96cd7783d357f4332e33629048

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-83316dfd.js HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://allmediamatrix.com/assets/hl-f46804a9.js
Cookie: visitInfo::7536=5c0532c87c8b07e7d43ec8b3d81521faeb8d0a5725ae7ec764141261d00b480fa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7536%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%222bb247b423c4d3fcb92038be86b5ed4f%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22a693b535%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%22d3aedbb8-66a6-4c7d-94dc-a3afee784d02%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:26 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=6097
access-control-allow-origin: *
etag: W/"6628bc74-17d1"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KaFmH%2FOs7Jw0lGYkdYviDpYz5Qlx0rZuN2mRtwWPvn%2F2jjWy%2F%2BI9zPGrNIKvx5GJH1jl3UR8r4wRShpNp%2Bxb%2BQdm6rNDQUnSiLnmmuOQjHj6q1TgnNv7OXEL%2FnPIoLoFaZVZAFZRng%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 1
server: cloudflare
cf-ray: 87aa0ead9abab50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/assets/hl-6456547b.js

104.21.73.26

200 OK

2.0 kB

URL GET HTTP/3
allmediamatrix.com/assets/hl-6456547b.js
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
ASCII text, with very long lines (2078), with no line terminators
Size
2.0 kB (1952 bytes)
Hash
0fa64a48f927b190784abdcfe8a6834a
3ad2dfca860e2c5e8926ad806ed5abe4b55a1213
aa097552285eb7ee8c3850421177e4bee882a08ff395c1eabdbd7705331859f7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-6456547b.js HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:25 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1953
access-control-allow-origin: *
etag: W/"6628bc74-7a1"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=V%2FF%2BcdYucmY8Qb%2B7xou3lTNbyfirLfYiaqmcsIajx3ZErsqiGrUu7YCRwQqAbfi7p6sJhW93y4UPhi1mFqLwX5JTydLL9PkghWWI0s%2B0%2FvS1TrFbN4RATqr4hJepUq4pDmRDQ8GQKw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 87aa0eaba986b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/assets/hl-d3fbdfe4.js

104.21.73.26

200 OK

915 B

URL GET HTTP/3
allmediamatrix.com/assets/hl-d3fbdfe4.js
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
ASCII text, with very long lines (943), with no line terminators
Size
915 B (915 bytes)
Hash
c031800c96fa289ab0f286d46661bea2
0b56e63ed6e2cdedd318c9030a1f6056ea5eac72
3e5d95a8678551eacf124da824401720a824943199ae59ea9a2c49df75b06255

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-d3fbdfe4.js HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:25 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=916
access-control-allow-origin: *
etag: W/"6628bc74-394"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QwzR1yXyUzCZnZpq8WaOWWTZrqWMkXjaqd3iAnps%2Fpk22E%2F5d1rSap%2B63QwhaJpdzc1GeC%2B0upoEklS7xcIK0CfZioxNvW2jp6l6fkeKLkzpCNuRUw47uVNNya60m0sub1ZxZY1H7g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 87aa0eac39cab50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/assets/hl-0b01f32c.js

104.21.73.26

200 OK

2.8 kB

URL GET HTTP/3
allmediamatrix.com/assets/hl-0b01f32c.js
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
JavaScript source, ASCII text, with very long lines (2919), with no line terminators
Size
2.8 kB (2841 bytes)
Hash
eb74b27cdf7931830bf93e970811a9c0
742f6576a102dc9e281410d84de8d014970a6e7d
7041a1fd974f76d20401e2974f4c563e3bbb3a489348fff8513a3f24c5ee59c2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-0b01f32c.js HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:26 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=2842
access-control-allow-origin: *
etag: W/"6628bc74-b1a"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3RIfoeCoLz6NDuoazxlx1dM26K8VbSXQpsGUhxB3lRtje9wO%2BawKTC5msVJIp3z60b%2FXX%2FH15arwXLnEaEzk90HHvSmccZWigEaoLEcG%2BpFJ%2FhMQyO1AXqwm2DbqkDvkR6lPfpTAIA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 87aa0eae0b2fb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/assets/hl-f46804a9.js

104.21.73.26

200 OK

7.1 kB

URL GET HTTP/3
allmediamatrix.com/assets/hl-f46804a9.js
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
ASCII text, with very long lines (7771), with no line terminators
Size
7.1 kB (7083 bytes)
Hash
480b71de179b3c60057e0de84e7799c7
7e5be25da70f062e56e66fb317c7b3c0e44ae845
3e6f7cfecfe685f6de3c7e02c5281e177f9ce48eec1b5375e5fefd264d6b112d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-f46804a9.js HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://allmediamatrix.com/assets/hl-6456547b.js
Cookie: visitInfo::7536=5c0532c87c8b07e7d43ec8b3d81521faeb8d0a5725ae7ec764141261d00b480fa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7536%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%222bb247b423c4d3fcb92038be86b5ed4f%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22a693b535%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%22d3aedbb8-66a6-4c7d-94dc-a3afee784d02%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:26 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=7084
access-control-allow-origin: *
etag: W/"6628bc74-1bac"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=W64olLd1rzriF%2Flm%2Fjr67zunwZrHvyqUfK%2BKvQyNxy%2FQISkFEeZ2HS3MecsYnZJuSYMFzvCH1sIlVamArRVNP5sAWSIKKpiokp4L7ug%2FqMxmKi7X%2BVJ0odCWXomJUwKCZMqPgSEOrg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 1
server: cloudflare
cf-ray: 87aa0ead7a9fb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/assets/hl-7c523d10.js

104.21.73.26

200 OK

561 B

URL GET HTTP/3
allmediamatrix.com/assets/hl-7c523d10.js
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
ASCII text, with very long lines (583), with no line terminators
Size
561 B (561 bytes)
Hash
c4e16824e2d23ad53b814db935bea17e
97c58a335f3bd169c0ed15ecc0978ab0280c27d0
c801c0119e2696729255f92db679d9e56f56ff050c1ce1d269c5863aa5ea7c3a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-7c523d10.js HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://allmediamatrix.com/assets/hl-f46804a9.js
Cookie: visitInfo::7536=5c0532c87c8b07e7d43ec8b3d81521faeb8d0a5725ae7ec764141261d00b480fa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7536%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%222bb247b423c4d3fcb92038be86b5ed4f%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22a693b535%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%22d3aedbb8-66a6-4c7d-94dc-a3afee784d02%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:26 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=562
access-control-allow-origin: *
etag: W/"6628bc74-232"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pXZfxycWjxoWGkFBwD7wF8FW7CChTp%2FRGxEkqR2u4Abp3aQpmt6aklec1nrJj21FSZoXo0DHdIWwoWQBZGzYnzjkDbCKXr%2Fjp2QnYsz2PKvK1zuueIbXq2jqhxM7KFWdjT4HK9%2FVGQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 1
server: cloudflare
cf-ray: 87aa0ead9ab6b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/assets/hl-7067c1b8.js

104.21.73.26

200 OK

1.3 kB

URL GET HTTP/3
allmediamatrix.com/assets/hl-7067c1b8.js
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
ASCII text, with very long lines (1322), with no line terminators
Size
1.3 kB (1285 bytes)
Hash
b2a2401718f5520346db6fe9fb182172
8896ccd112d6a01b45068061331f5ce55ff8bd8f
fc574421da0dd5f41a55723443f68497f29aed7577b88b447065a87c911d0127

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-7067c1b8.js HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://allmediamatrix.com/assets/hl-b357b190.js
Cookie: visitInfo::7536=5c0532c87c8b07e7d43ec8b3d81521faeb8d0a5725ae7ec764141261d00b480fa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7536%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%222bb247b423c4d3fcb92038be86b5ed4f%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22a693b535%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%22d3aedbb8-66a6-4c7d-94dc-a3afee784d02%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:25 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1286
access-control-allow-origin: *
etag: W/"6628bc74-506"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2F%2F9O6WWOBTTATE4gEyztD8v0xuY0B1%2B8F8I8hyRl0FnLB6SZK%2B8qR%2FjbEkr0OQa%2BZJYhoMC1R6lIYwINDPAEr9h4qywNb3HPcHOYrEhbksdvD7FZ3hzfo7bx3pJ5vkKKYeQEtVYuJQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
server: cloudflare
cf-ray: 87aa0eaaf912b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/assets/hl-edb2da2a.js

104.21.73.26

200 OK

1.4 kB

URL GET HTTP/3
allmediamatrix.com/assets/hl-edb2da2a.js
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
JavaScript source, ASCII text, with very long lines (1438), with no line terminators
Size
1.4 kB (1410 bytes)
Hash
862c9cf6fcd7b7f9a63460432c1c4cd4
fd37338a883a89512e82afbc9c5e226b871d4fed
cd09ea827717eb9bf6f24164c61f1c8c8fbf4c41d80b4c9bdf48cefede2e3290

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-edb2da2a.js HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:25 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1413
access-control-allow-origin: *
etag: W/"6628bc74-585"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vqHKZdO8JlC3lPgV65FutDAnFUREbab4l1claxUH2Cwngh2lDGDcDF2CeypS1%2Fn7ed6ZUtfeJ7dqo0YG5wl%2BHkMEB3OpywGfSI0rzuMeTNoZfYux%2B6mFxRECU1ntkCSPK4aObA8Rlg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 87aa0eaae907b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/assets/hl-5c945f3d.js

104.21.73.26

200 OK

3.2 kB

URL GET HTTP/3
allmediamatrix.com/assets/hl-5c945f3d.js
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
JavaScript source, ASCII text, with very long lines (3246), with no line terminators
Size
3.2 kB (3166 bytes)
Hash
219e485e2d1dfaadc5e91eec4faf82c6
400e7de51772ba591e025016ecec38c0bf77cf7d
a3806ab273401f7bd3c37908cdaadbc2baea37c0e4846cd34cefdbb85299b5b2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-5c945f3d.js HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://allmediamatrix.com/assets/hl-b357b190.js
Cookie: visitInfo::7536=5c0532c87c8b07e7d43ec8b3d81521faeb8d0a5725ae7ec764141261d00b480fa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7536%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%222bb247b423c4d3fcb92038be86b5ed4f%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22a693b535%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%22d3aedbb8-66a6-4c7d-94dc-a3afee784d02%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:25 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=3167
access-control-allow-origin: *
etag: W/"6628bc74-c5f"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DYl4BnBzAMqK2yX90Lqmp5OXOmp4YrsT%2Fv7ktGWjzR3tJmT5B8%2FVVVwn1HBD1abi6e%2BjeQOyY6K3xg5ngjISv%2BqdneUfdCoRNLJpBXNPFuHCWL4JJe%2FgX8f3htmHYc7ELiUFkkc7hQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 87aa0eaad8f3b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/assets/hl-83316dfd.js

104.21.73.26

200 OK

6.1 kB

URL GET HTTP/3
allmediamatrix.com/assets/hl-83316dfd.js
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
ASCII text, with very long lines (6412), with no line terminators
Size
6.1 kB (6096 bytes)
Hash
27a35e0ced45379f41358a6beedea7fa
e7f50dd1456fb36c9d10d469061701f6832996e7
e6fa07feb0815b3f09ed4ca05e6e145aedfe7e96cd7783d357f4332e33629048

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-83316dfd.js HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:25 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=6097
access-control-allow-origin: *
etag: W/"6628bc74-17d1"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KaFmH%2FOs7Jw0lGYkdYviDpYz5Qlx0rZuN2mRtwWPvn%2F2jjWy%2F%2BI9zPGrNIKvx5GJH1jl3UR8r4wRShpNp%2Bxb%2BQdm6rNDQUnSiLnmmuOQjHj6q1TgnNv7OXEL%2FnPIoLoFaZVZAFZRng%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 87aa0eac49cfb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css?family=Roboto:300,400,500,700

142.250.74.106

200 OK

8.7 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Roboto:300,400,500,700
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50
ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT

File type
ASCII text, with very long lines (8956), with no line terminators
Size
8.7 kB (8732 bytes)
Hash
91804c0df51e58b0bf469561e1ac2732
cc5a9023e310b49ef8f8ae32bb89ea774fe116ec
8a8aed46bfb9cdec8e34e76343b7e66796cf09926aef42efdfe5fa8a1fdda8aa

HTTP Headers

GET /css?family=Roboto:300,400,500,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://allmediamatrix.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 Apr 2024 22:37:25 GMT
date: Fri, 26 Apr 2024 22:37:25 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

allmediamatrix.com/assets/hl-bc98154d.js

104.21.73.26

200 OK

687 B

URL GET HTTP/3
allmediamatrix.com/assets/hl-bc98154d.js
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
ASCII text, with very long lines (707), with no line terminators
Size
687 B (687 bytes)
Hash
657a33de0a64648786dabb21a3618871
457ac15c80711e6ee8f7c4f458ce5da45831de0d
eb42e28ead8453831f97b2cfecbc4998f803a113d2447c67a48aad489a10159e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-bc98154d.js HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://allmediamatrix.com/assets/hl-f46804a9.js
Cookie: visitInfo::7536=5c0532c87c8b07e7d43ec8b3d81521faeb8d0a5725ae7ec764141261d00b480fa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7536%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%222bb247b423c4d3fcb92038be86b5ed4f%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22a693b535%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%22d3aedbb8-66a6-4c7d-94dc-a3afee784d02%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:26 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=688
access-control-allow-origin: *
etag: W/"6628bc74-2b0"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tVHH8ExGq%2BqQRkV2mElRc50AVcxv3212IZtivsVhlvFdLDGWs8RYfEqVWCAk5iw6mLbVyHiyN%2FsRmO1WVdF5GRGH85IKKLrrgucfEdiV4%2BEyyGimZeLFfuE%2FXD4HcNaWwgPlXjx6Ng%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 1
server: cloudflare
cf-ray: 87aa0ead9ab7b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/visit/get-data?landingId=7536&subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=

104.21.73.26

200 OK

14 kB

URL GET HTTP/3
allmediamatrix.com/visit/get-data?landingId=7536&subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type

Size
14 kB (14492 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /visit/get-data?landingId=7536&subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource= HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
sentry-trace: a0116e3c2a48472a8c1dace46c513014-a9c1f2404b88c96b-0
baggage: sentry-environment=production,sentry-public_key=9056b383582c444792eb65c1726488d9,sentry-trace_id=a0116e3c2a48472a8c1dace46c513014,sentry-sample_rate=0.1,sentry-sampled=false
DNT: 1
Connection: keep-alive
Referer: https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:25 GMT
content-type: application/json; charset=UTF-8
set-cookie: visitInfo::7536=5c0532c87c8b07e7d43ec8b3d81521faeb8d0a5725ae7ec764141261d00b480fa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7536%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%222bb247b423c4d3fcb92038be86b5ed4f%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22a693b535%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%22d3aedbb8-66a6-4c7d-94dc-a3afee784d02%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; path=/; HttpOnly; SameSite=Lax
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PdPD%2F2WPdP4f0A8mk1VgwD%2Fu5sP3%2FqxB4O8Pe%2BK4g%2Fkt0XBP5qNs24qKtsS8LPP76FibysBV3B2Y%2FWtzGcCkdFiFOesfh4ABbPYdcqZLybSoj8ZkfvX6i%2B85BQ2BR4IMgwHyjqE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87aa0ea99823b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/assets/hl-0b01f32c.js

104.21.73.26

200 OK

2.8 kB

URL GET HTTP/3
allmediamatrix.com/assets/hl-0b01f32c.js
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
JavaScript source, ASCII text, with very long lines (2919), with no line terminators
Size
2.8 kB (2841 bytes)
Hash
eb74b27cdf7931830bf93e970811a9c0
742f6576a102dc9e281410d84de8d014970a6e7d
7041a1fd974f76d20401e2974f4c563e3bbb3a489348fff8513a3f24c5ee59c2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-0b01f32c.js HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://allmediamatrix.com/assets/hl-83316dfd.js
Cookie: visitInfo::7536=5c0532c87c8b07e7d43ec8b3d81521faeb8d0a5725ae7ec764141261d00b480fa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7536%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%222bb247b423c4d3fcb92038be86b5ed4f%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22a693b535%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%22d3aedbb8-66a6-4c7d-94dc-a3afee784d02%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:26 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=2842
access-control-allow-origin: *
etag: W/"6628bc74-b1a"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3RIfoeCoLz6NDuoazxlx1dM26K8VbSXQpsGUhxB3lRtje9wO%2BawKTC5msVJIp3z60b%2FXX%2FH15arwXLnEaEzk90HHvSmccZWigEaoLEcG%2BpFJ%2FhMQyO1AXqwm2DbqkDvkR6lPfpTAIA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
server: cloudflare
cf-ray: 87aa0eae3b59b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/assets/hl-04d68de7.css

104.21.73.26

200 OK

114 kB

URL GET HTTP/3
allmediamatrix.com/assets/hl-04d68de7.css
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
ASCII text, with very long lines (65329)
Size
114 kB (114023 bytes)
Hash
038b389697202a86001d7cb8b113803c
c031ffb6795766b1babac743602c2d386b4e8d03
232cf36617bb2fd98321cbcd5fd0eb0cfbcf9b69c85a4d6e7d5134fc549436ea

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-04d68de7.css HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Cookie: visitInfo::7536=5c0532c87c8b07e7d43ec8b3d81521faeb8d0a5725ae7ec764141261d00b480fa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7536%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%222bb247b423c4d3fcb92038be86b5ed4f%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22a693b535%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%22d3aedbb8-66a6-4c7d-94dc-a3afee784d02%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:25 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=114555
access-control-allow-origin: *
etag: W/"6628bc74-1bf7b"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wEK%2BQBZPapTvSZqMgYgFPrX7M41WyP86zBpVzNmPYjte244H5xbCb0s9C%2BlmcO09hiTV%2FcuOBNouqK7Sz1oI1wNhtdQe%2Bh3qxxvJTkKLHiu7RKbcdY%2FdhaBKT8r%2B322G8YkPCRIi7A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 87aa0eac29bfb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/assets/hl-edb2da2a.js

104.21.73.26

200 OK

1.4 kB

URL GET HTTP/3
allmediamatrix.com/assets/hl-edb2da2a.js
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
JavaScript source, ASCII text, with very long lines (1438), with no line terminators
Size
1.4 kB (1410 bytes)
Hash
862c9cf6fcd7b7f9a63460432c1c4cd4
fd37338a883a89512e82afbc9c5e226b871d4fed
cd09ea827717eb9bf6f24164c61f1c8c8fbf4c41d80b4c9bdf48cefede2e3290

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-edb2da2a.js HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://allmediamatrix.com/assets/hl-4bc0c634.js
Cookie: visitInfo::7536=5c0532c87c8b07e7d43ec8b3d81521faeb8d0a5725ae7ec764141261d00b480fa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7536%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%222bb247b423c4d3fcb92038be86b5ed4f%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22a693b535%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%22d3aedbb8-66a6-4c7d-94dc-a3afee784d02%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:25 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1413
access-control-allow-origin: *
etag: W/"6628bc74-585"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vqHKZdO8JlC3lPgV65FutDAnFUREbab4l1claxUH2Cwngh2lDGDcDF2CeypS1%2Fn7ed6ZUtfeJ7dqo0YG5wl%2BHkMEB3OpywGfSI0rzuMeTNoZfYux%2B6mFxRECU1ntkCSPK4aObA8Rlg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
server: cloudflare
cf-ray: 87aa0eab796fb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

allmediamatrix.com/assets/hl-b357b190.js

104.21.73.26

200 OK

266 kB

URL GET HTTP/3
allmediamatrix.com/assets/hl-b357b190.js
IP
104.21.73.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectallmediamatrix.com
Fingerprint55:53:3E:CE:90:43:8F:63:1B:BD:95:23:CE:35:CC:03:5A:21:04:F6
ValidityMon, 18 Mar 2024 17:09:14 GMT - Sun, 16 Jun 2024 17:09:13 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
266 kB (265705 bytes)
Hash
cd6e0eff789221181a0b8471967bcb8d
71586e5b8ca6df344fd58e8a1772baa3734bb190
b7baa94b8d9f78408c104d46f5b9df36b49a27a09719b7a5b80be68d72d5651e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-b357b190.js HTTP/1.1
Host: allmediamatrix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://allmediamatrix.com/en_us/streaming-clubd?subid=d3aedbb8-66a6-4c7d-94dc-a3afee784d02&networkid=200347&publisher=a693b535&isNewTr=1&stream=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 22:37:25 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=265728
access-control-allow-origin: *
etag: W/"6628bc74-40e00"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YGXJ2sQ4SVSV8IpkniLbS2lIk2vuPNVt4AJuxUqNvXuifqfBAHm3d3XEcZk%2FVYDzlCCwr9dnSYN0LVhFQNen5ST42uRqm8eJAIQNbiEE7HN%2BFKjZMRd5ZvcdRjlVIdIa%2B%2FYLRwnlZA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
server: cloudflare
cf-ray: 87aa0eaba988b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (24)

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL