Report - terraskills.com/en/?93023071

Report Overview

Visited public
2023-11-28 07:25:07
Tags
URL
terraskills.com/en/?93023071
Finishing URL
terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
IP / ASN
192.185.21.72
#46606 UNIFIEDLAYER-AS-1
Title
SAFE DRIVING IS A LIFE SKILL – Terraskills – Professional Training in Abuja | Skills to excel

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

240

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
terraskills.com	unknown	2019-07-26	2019-07-31 18:55:27	2023-11-16 17:35:47	35 kB	848 kB	192.185.21.72
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2023-11-28 07:59:41	1.8 kB	444 kB	216.58.211.8
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-11-28 07:50:39	3.8 kB	180 kB	216.58.207.227
js.usemessages.com	5634	2015-12-07	2017-10-05 20:55:58	2023-11-27 17:25:28	427 B	25 kB	104.17.250.168
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-11-28 07:52:06	485 B	6.0 kB	142.250.74.106
www.google.no	25607	2001-02-26	2016-04-05 21:50:59	2023-11-27 07:31:27	590 B	580 B	142.250.74.163
chimpstatic.com	4832	2017-02-16	2017-04-21 07:35:42	2023-11-27 11:01:18	482 B	4.5 kB	23.208.19.236
js.hs-scripts.com	2571	2016-07-11	2016-08-09 12:18:36	2023-11-27 10:28:03	449 B	27 kB	104.16.191.89
js.hs-banner.com	2426	2020-03-09	2020-03-26 18:45:21	2023-11-27 10:28:04	424 B	21 kB	104.18.34.229
js.hscollectedforms.net	5697	2017-01-23	2017-03-02 11:33:31	2023-11-27 18:25:27	459 B	72 kB	104.17.88.154
forms.hscollectedforms.net	unknown	2017-01-23	2023-03-02 14:31:09	2023-11-27 10:28:05	527 B	1.0 kB	104.17.88.154
region1.analytics.google.com	unknown	1997-09-15	2022-03-17 12:26:33	2023-11-28 07:34:10	1.0 kB	448 B	216.239.32.36

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

Scan Date	Severity	Indicator	Alert
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed
2023-11-28	medium	terraskills.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (34)

	URL	From	Size	First Seen	Last Seen
	terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287	ScriptElement	300 B	2023-05-17	2024-08-20
Pretty URL terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287 IP 192.185.21.72 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-17 17:29 Last Seen2024-08-20 20:34 Times Seen13 Hash 54ec736643a1f790bd785f20720d4123 5ad93b879dffb0fd91860e73210de5626e462a60 967717d0b2fd4b672c3761a0d95acafbbe7e34f07c386ec3cc30aba6ff2206df Loading...

	terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287	ScriptElement	2.0 kB	2023-11-07	2024-08-20
Pretty URL terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287 IP 192.185.21.72 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-07 09:25 Last Seen2024-08-20 20:34 Times Seen13 Hash 0f9356df2ea847fcc622ee01bfb2cf46 2b02153ddd5caad5ed2fe9c8ea94165083f3019c a3f965c97d9bd971296099805dba44e7bbcef450f9c7b8eb9b14fbb7c437b65c Loading...

	js.hs-banner.com/v2/23627743/banner.js	ScriptElement	67 kB	2023-11-07	2023-12-08
Pretty URL js.hs-banner.com/v2/23627743/banner.js IP 104.18.34.229 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-07 09:25 Last Seen2023-12-08 23:00 Times Seen13 Hash 462b3b5ca574a993393190b2856b890f a03fe8f1f21101f210793337a93d6cc16fd9bc9b a2755076885c4f515d0ef9a6bfdd52c10797c94eb07626302ad42e021ecea143 Loading...

	terraskills.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1	ScriptElement	98 kB	2023-11-24	2023-12-12
Pretty URL terraskills.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 IP 192.185.21.72 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-24 03:46 Last Seen2023-12-12 16:29 Times Seen55 Hash cdc88e5472d25c0a72220febfae3c6ea 18fa14a8b655afeab9d292ee9a3ca1a1a32590c6 bb8378696e7c5e0924a1b602fab103e5b27f73ecd36aebde44ac42f0093ccf92 Loading...

	www.googletagmanager.com/gtag/js?id=UA-167949829-1	ScriptElement	190 kB	2023-11-28	2023-11-28
Pretty URL www.googletagmanager.com/gtag/js?id=UA-167949829-1 IP 216.58.211.8 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-28 08:25 Last Seen2023-11-28 08:25 Times Seen1 Hash 7b68f4adb5bb26813d6ed9f38590aa3b 0851e562e61e65ded9f4b211151e2515a0d6532f 3040fdf64c839a0cb9f29478301326522594850b16be5099639cc762a26bd5b7 Loading...

	js.usemessages.com/conversations-embed.js	ScriptElement	85 kB	2023-11-27	2023-11-30
Pretty URL js.usemessages.com/conversations-embed.js IP 104.17.250.168 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-27 19:13 Last Seen2023-11-30 21:28 Times Seen64 Hash 39b367b42a31fe6b2125121db42f0184 4c87a3c3765816ca6d29985f0f904ec8d0f88338 f06446b13022232de2be8cec72cc0bbbf64225b9a000ed6749394f420b219082 Loading...

	js.hscollectedforms.net/collectedforms.js	ScriptElement	70 kB	2023-10-23	2024-08-21
Pretty URL js.hscollectedforms.net/collectedforms.js IP 104.17.88.154 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-23 15:17 Last Seen2024-08-21 03:44 Times Seen983 Hash 7864f8fd485be672e98358eb894b6fd7 b84449be266a31ea6e60a6d48538b220302d9aef 200cef31a4664eb38f1293062efc3d5acf8e769cc27242418b198a0aa4b20492 Loading...

	unknown	Function	79 B	2023-04-11	2025-05-11
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:38 Last Seen2025-05-11 08:01 Times Seen112471 Hash aa049e2749b8531cb8f233c2f64fc2b2 b611a5a62c1813ae5b4763378b3a4a565556530a e52e51d5897d7a179089ddcf8f5de7aeb3ef4f27b054b63e937cf308b685c9e2 Loading...

	data:text/javascript;base64,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	ScriptElement	18 kB	2023-11-27	2024-08-20
Pretty URL data:text/javascript;base64,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 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-27 17:48 Last Seen2024-08-20 17:42 Times Seen4 Hash 6888856bb92a59def2d2bf5f460e0b43 26172623655f59f585b5208902b187863ab37e58 7e0df50115b4d76b9316e57aed3267b5473636be64516baf06deec286c36a856 Loading...

	www.googletagmanager.com/gtag/js?id=G-4S28NM2TT6&l=dataLayer&cx=c	ScriptElement	207 kB	2023-11-28	2023-11-28
Pretty URL www.googletagmanager.com/gtag/js?id=G-4S28NM2TT6&l=dataLayer&cx=c IP 216.58.211.8 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-28 08:25 Last Seen2023-11-28 08:25 Times Seen1 Hash f5a9c0b7c15053d9dce6b73b4d69f7e1 bf02608cf498393f951331965c28da023f730ac7 21130f3fb0eb4b682634429ef58032afc78b8f6b846363cc8d1b1bf536b8efb3 Loading...

	www.googletagmanager.com/gtag/js?id=G-R942LLB0JN&l=dataLayer&cx=c	ScriptElement	229 kB	2023-11-28	2023-11-28
Pretty URL www.googletagmanager.com/gtag/js?id=G-R942LLB0JN&l=dataLayer&cx=c IP 216.58.211.8 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-28 08:25 Last Seen2023-11-28 08:25 Times Seen1 Hash d8ffe2fa73cfeb822076516361c11bfd 9f4e115a4d0955552a4d59ae4c23998602b029ab d5be5b32788ad5bd59b571da3824dc8a4405f7fbab6cef3ece2ac9766c048aed Loading...

	terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287	ScriptElement	67 B	2023-11-27	2024-10-16
Pretty URL terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287 IP 192.185.21.72 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-27 17:48 Last Seen2024-10-16 18:56 Times Seen5 Hash 0095cf6d1c21906b52af82896eaf223d f445daee90f8995beab994dab262ac79c3255f2b 8c44f7bca77896e7ff68c53caeff0bee073869beab9e96a90c2704522c03d5a3 Loading...

	terraskills.com/wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1	ScriptElement	15 kB	2023-11-24	2023-12-14
Pretty URL terraskills.com/wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1 IP 192.185.21.72 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-24 06:02 Last Seen2023-12-14 13:59 Times Seen41 Hash dcd2d220d6f1c8e8a4935e3dc8dcccde d14b0c5d3254462f2862378fdc62a845d0794fdf 2921238211caf06ae16a2508fcc0f8a1721d287480fbc6189e3fade858bfcc97 Loading...

	terraskills.com/wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef	ScriptElement	20 kB	2023-11-24	2023-12-14
Pretty URL terraskills.com/wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef IP 192.185.21.72 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-24 06:02 Last Seen2023-12-14 13:59 Times Seen40 Hash a1762e4bd8b21c8053a8687c1d871d1e fbdc74102bc3a361ee8b50d61728e8c245747c83 af0d10ddffb7f40f186ae31eaa9abbaacd53aa9bc18036bcdea2c90c198932a0 Loading...

	terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287	ScriptElement	389 B	2023-04-26	2025-05-10
Pretty URL terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287 IP 192.185.21.72 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-26 22:29 Last Seen2025-05-10 15:26 Times Seen1952 Hash 8312f395ec9aa3cd176c8a668a6005ba fb790049f5af21cd739d1d8a57c3385b4e79ae7b eff3e7e56252029120f2fbf14a0b40a42243c5ded8dc10ad0ed0def8d56105d0 Loading...

	terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287	ScriptElement	109 B	2023-11-07	2024-08-20
Pretty URL terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287 IP 192.185.21.72 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-07 09:25 Last Seen2024-08-20 20:34 Times Seen13 Hash b1ceac80a3992a4cd06388d9b7ffc703 5fdd74cceac0b6fc82d92c43d9052239483a1faf 8a17621b8c00cd02d48c8e2cd8de01bd22cb099ffd3302da576f2d5a46417594 Loading...

	js.hs-scripts.com/23627743.js?integration=WordPress&ver=10.1.30	ScriptElement	2.0 kB	2023-11-28	2023-11-28
Pretty URL js.hs-scripts.com/23627743.js?integration=WordPress&ver=10.1.30 IP 104.16.191.89 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-28 08:25 Last Seen2023-11-28 08:25 Times Seen1 Hash 93f48d01ecf9ff3124624185ee25397e f4eb53b2f2cb31244c3eab373ad4e8a883292291 137dbd4928fe56f70f662402f633f55ba1bfae7b128f6d749cf4c6cf2be75e16 Loading...

	terraskills.com/ts-courses/safe-driving-is-a-life-skill/sandbox%20eval%20code		147 B	2023-04-11	2025-05-11
Pretty URL terraskills.com/ts-courses/safe-driving-is-a-life-skill/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-11 08:12 Times Seen341857 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287	ScriptElement	75 B	2023-11-27	2024-08-20
Pretty URL terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287 IP 192.185.21.72 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-27 17:48 Last Seen2024-08-20 17:42 Times Seen9 Hash 0ac02d9062a96ea591fce545ba250fe2 90393c6ebf8d87ba4a077d8a3d699d8eb472f6c2 28d61800593d1d9a105c0b4903f25e72b43801599849d709e720f05f6ae33832 Loading...

	www.googletagmanager.com/gtag/js?id=UA-167949829-1	ScriptElement	190 kB	2023-11-28	2023-11-28
Pretty URL www.googletagmanager.com/gtag/js?id=UA-167949829-1 IP 216.58.211.8 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-28 08:25 Last Seen2023-11-28 08:25 Times Seen1 Hash 143968f928c59b5f00aab19f07116348 d70ae7fd51787c3a864a580b80a38aa3c617cb9b fd3adc8f0e36fa9294390330beb06d4408f9d46d33ab522dfaa2df0baa8205e1 Loading...

	terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287	ScriptElement	33 B	2023-11-07	2024-08-20
Pretty URL terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287 IP 192.185.21.72 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-07 09:25 Last Seen2024-08-20 20:34 Times Seen13 Hash 200e9f1ebcfe77d52e43fb973c651286 4eb6aff6164b401be185dbde2c8337ea9e20191e 6096a39238c5cffbe924c365390b8a54dd3183a0f10dcfc9366e562045911546 Loading...

	www.google-analytics.com/analytics.js	ScriptElement	4.7 kB	2023-04-11	2025-05-11
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-11 08:12 Times Seen341055 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287	ScriptElement	149 B	2023-05-17	2024-08-20
Pretty URL terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287 IP 192.185.21.72 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-17 17:29 Last Seen2024-08-20 20:34 Times Seen13 Hash 45e5300ce326ef5d737308c1de981e95 b9326af74b5ad02a6fc5067fed7d73d4953fb19a 75c6618e4428ad626df657b2f0e9f1ba75886fcd76d81da9fec7f4654600f2ea Loading...

	terraskills.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0	ScriptElement	17 kB	2023-11-24	2023-12-07
Pretty URL terraskills.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0 IP 192.185.21.72 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-24 03:46 Last Seen2023-12-07 17:45 Times Seen41 Hash f3ab08236ea28640e6773b9cd95eb1a7 82338946c5b8bab8d3838c91cb6c98d4c9595ba4 e48ae90b248d052174aaa053c0ca94dc41408174c5f70f5ab512a5bdc3b3c2af Loading...

	terraskills.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0	ScriptElement	126 kB	2023-11-24	2024-08-20
Pretty URL terraskills.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 IP 192.185.21.72 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-24 03:46 Last Seen2024-08-20 18:06 Times Seen40 Hash 8a0a441eb9ca6805901bbc1b0d4b5d41 e4adf1215e7d7a761ed1b8cddc66ced495b8bc23 dd9c54bdddecafa9acfe38bb6a42ea37271c471c103c57f40fca7d529327b2f6 Loading...

	chimpstatic.com/mcjs-connected/js/users/11eb72b9b953673d0ae31c1e1/e4092463c030f784371c89a8a.js	ScriptElement	3.9 kB	2023-05-17	2023-12-08
Pretty URL chimpstatic.com/mcjs-connected/js/users/11eb72b9b953673d0ae31c1e1/e4092463c030f784371c89a8a.js IP 23.208.19.236 ASN #35994 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-17 17:29 Last Seen2023-12-08 23:00 Times Seen13 Hash d0ef7f0595d8d274d37fd3af862160fe 0c71a2f9e576741568eb043f22f68062702e950d f12cafd72276d283b12b20f342d159c523745338e00f63f979167c95d766f2c8 Loading...

	terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287	ScriptElement	247 B	2023-05-17	2024-08-20
Pretty URL terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287 IP 192.185.21.72 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-17 17:29 Last Seen2024-08-20 20:34 Times Seen13 Hash bc390d38002a095692b524b6b90fc238 0a12dca6ab8737fe12d5f978972c423c3d641f2a d673cd4c7de76aaaf6df415ce457dab171bafc3ccf0036cf39e9833e459aacd7 Loading...

	terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287	ScriptElement	1 B	2023-03-07	2025-05-11
Pretty URL terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287 IP 192.185.21.72 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 07:21 Times Seen12192 Hash 7215ee9c7d9dc229d2921a40e899ec5f b858cb282617fb0956d960215c8e84d1ccf909c6 36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068 Loading...

	terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287	ScriptElement	177 B	2023-05-17	2024-08-20
Pretty URL terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287 IP 192.185.21.72 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-17 17:29 Last Seen2024-08-20 20:34 Times Seen13 Hash 83c54dd64415fc7a291e5230dfa1dee2 0a555ea153ddaa9b99bd8ecdcd5dc5b42f8fe7ba e3f0fcd675a0acecb0690c91a4b6a1422d19a5f50f8f714aefe9718659cd4eaa Loading...

	terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287	ScriptElement	68 B	2023-03-07	2025-05-11
Pretty URL terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287 IP 192.185.21.72 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 07:35 Times Seen24275 Hash d30f13da1f424ee0383b76edc55881e1 7e348a5f57ab13eedbc4ed917cdeee5bb9f9bd46 cf01a621447e67a81629bc28276677c86c48fd72c44cba83a82448574aadfd60 Loading...

	unknown	Function	37 B	2023-04-11	2025-05-11
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:31 Last Seen2025-05-11 08:01 Times Seen263658 Hash 29d0c84b9d1d8da446a6062c6a840ad9 6d6b3a6065667c7c50d92f3889c85ed65a9ad784 3c3cbdb71d0d2c22f504f4d63d8a6ffe8d250cde7e58300619be35b6bbab26a1 Loading...

	terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287	ScriptElement	3.4 kB	2023-11-28	2024-08-20
Pretty URL terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287 IP 192.185.21.72 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-28 08:25 Last Seen2024-08-20 17:37 Times Seen2 Hash 5ac7e5128a18e32a92faa86ed99a1638 c73ae2b07cd7c0a76d0cfe391810309e32873d55 61e49ae2d7290f970a211c2e5f3945048d4dd866ddf5c29b0060168cfc6a5a08 Loading...

	terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287	ScriptElement	98 B	2023-08-02	2024-08-20
Pretty URL terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287 IP 192.185.21.72 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-02 21:25 Last Seen2024-08-20 17:42 Times Seen5 Hash dff88b6df8b5ed6a39b1912a72ae01d5 39c96c59d4b735d977c8fe847339aae5a7dfbb78 49612f323e86edf278c49ca62a1c7f1d904d477ea87225dcb32cdf817619b432 Loading...

	terraskills.com/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2	ScriptElement	19 kB	2023-11-24	2023-12-14
Pretty URL terraskills.com/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2 IP 192.185.21.72 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-24 03:46 Last Seen2023-12-14 13:59 Times Seen40 Hash 9da621ed6c59cf657d2b241c25128099 7a724a46061839f89aab29e188a1d9b1b3ed9ab4 d19388ddfcc54bccfdd85e1d2ed2d0e4e2f045ab1d50514a676a27d9f7f977a5 Loading...

HTTP Transactions (80)

URL IP Response Size

terraskills.com/en/?93023071

192.185.21.72

200 OK

186 B

URL User Request GET HTTP/2
terraskills.com/en/?93023071
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
HTML document, ASCII text, with no line terminators
Size
186 B (186 bytes)
Hash
b17da6785ced57406117f7920aeef159
fb5853a2b443666c26ff1a877f7d46710c09dcb8
606563c3b41d4500e439de7345df3ef06076cf543f99ca5ff88d30bb85b7d384

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /en/?93023071 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 186
content-type: text/html; charset=UTF-8
date: Tue, 28 Nov 2023 07:24:47 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/favicon.ico

192.185.21.72

302 Found

0 B

URL GET HTTP/2
terraskills.com/favicon.ico
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/en/?93023071
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/en/?93023071
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
link: <https://terraskills.com/wp-json/>; rel="https://api.w.org/"
x-redirect-by: WordPress
location: https://terraskills.com/wp-content/uploads/2019/08/TERRASKILLS-tabicon-100x100.png
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 0
content-type: text/html; charset=UTF-8
date: Tue, 28 Nov 2023 07:24:48 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-content/uploads/2019/08/TERRASKILLS-tabicon-100x100.png

192.185.21.72

200 OK

2.5 kB

URL GET HTTP/2
terraskills.com/wp-content/uploads/2019/08/TERRASKILLS-tabicon-100x100.png
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Size
2.5 kB (2486 bytes)
Hash
c1453b5e02d0a8a983a28986bb3421a0
1d829985d08008def502642fa86e619eb32d52c9
9f2f7bd996e0115c27a4987921a6a320d82f4e536b798083192606507c575d5d

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2019/08/TERRASKILLS-tabicon-100x100.png HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://terraskills.com/en/?93023071
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 11 Jul 2020 10:53:29 GMT
accept-ranges: bytes
content-length: 2486
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-type: image/png
date: Tue, 28 Nov 2023 07:24:48 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/en//?wyc5ai7kLE=1701156287

192.185.21.72

302 Found

0 B

URL User Request GET HTTP/2
terraskills.com/en//?wyc5ai7kLE=1701156287
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /en//?wyc5ai7kLE=1701156287 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/en/?93023071
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
cache-control: no-store
location: /safe?e=index&wyc5ai7kLE=1701156287
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 0
content-type: text/html; charset=UTF-8
date: Tue, 28 Nov 2023 07:24:51 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/safe?e=index&wyc5ai7kLE=1701156287

192.185.21.72

301 Moved Permanently

0 B

URL User Request GET HTTP/2
terraskills.com/safe?e=index&wyc5ai7kLE=1701156287
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /safe?e=index&wyc5ai7kLE=1701156287 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://terraskills.com/en/?93023071
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 301 Moved Permanently
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
location: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 0
content-type: text/html; charset=UTF-8
date: Tue, 28 Nov 2023 07:24:51 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/add-to-cart-form.css?ver=10.6.4

192.185.21.72

200 OK

379 B

URL GET HTTP/2
terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/add-to-cart-form.css?ver=10.6.4
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
ASCII text, with very long lines (987), with no line terminators
Size
379 B (379 bytes)
Hash
f1b5c7c07f410b9886217dd95f0a277f
58333b258e5875077c1564c2411655b80981215e
1efdf469d4f0daebb6355dfbadc7882e19acad98b61c8a4ae2c197645a615a36

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/add-to-cart-form.css?ver=10.6.4 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 09 Aug 2023 13:03:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 379
content-type: text/css
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-167949829-1

216.58.211.8

200 OK

69 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=UA-167949829-1
IP
216.58.211.8:443
ASN
#15169 GOOGLE

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type
ASCII text, with very long lines (4179)
Size
69 kB (68663 bytes)
Hash
143968f928c59b5f00aab19f07116348
d70ae7fd51787c3a864a580b80a38aa3c617cb9b
fd3adc8f0e36fa9294390330beb06d4408f9d46d33ab522dfaa2df0baa8205e1

HTTP Headers

GET /gtag/js?id=UA-167949829-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 28 Nov 2023 07:24:52 GMT
expires: Tue, 28 Nov 2023 07:24:52 GMT
cache-control: private, max-age=900
last-modified: Tue, 28 Nov 2023 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 68663
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/all-reviews.css?ver=10.6.4

192.185.21.72

200 OK

3.0 kB

URL GET HTTP/2
terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/all-reviews.css?ver=10.6.4
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
Unicode text, UTF-8 text, with very long lines (11094), with no line terminators
Size
3.0 kB (3029 bytes)
Hash
a710ad83069e3d5083dbcbd1947bf68a
94fea850705885040bc9581b2492ad8339359b4b
712fe782b9d50de150194e4c25d9b7be2030e5fd4d9dbfa5f4bcafa860a33e74

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/all-reviews.css?ver=10.6.4 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 09 Aug 2023 13:03:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 3029
content-type: text/css
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/attribute-filter.css?ver=10.6.4

192.185.21.72

200 OK

7.0 kB

URL GET HTTP/2
terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/attribute-filter.css?ver=10.6.4
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
ASCII text, with very long lines (32447), with no line terminators
Size
7.0 kB (7018 bytes)
Hash
b0308a7b20f61f94446bce268451defa
6720d122e9b4f3f3fc1caa2fb6af86b270032fa2
cf25e5b9925f7cb3648c716e4b91f506a3ce6cb186fa21c5e5fc46ec3968c7a4

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/attribute-filter.css?ver=10.6.4 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 09 Aug 2023 13:03:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 7018
content-type: text/css
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/packages-style.css?ver=10.6.4

192.185.21.72

200 OK

5.0 kB

URL GET HTTP/2
terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/packages-style.css?ver=10.6.4
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
ASCII text, with very long lines (25008), with no line terminators
Size
5.0 kB (5012 bytes)
Hash
08c7f4ce6c7065b18936427b2d006e62
89c2c5e03b5975188dc7a69fbe9500678b67faa1
6ca26b5eadf129e031848a33663df9442ffbf488ea45a525b42d3928101358cb

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/packages-style.css?ver=10.6.4 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 09 Aug 2023 13:03:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 5012
content-type: text/css
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/catalog-sorting.css?ver=10.6.4

192.185.21.72

200 OK

276 B

URL GET HTTP/2
terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/catalog-sorting.css?ver=10.6.4
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
ASCII text, with very long lines (857), with no line terminators
Size
276 B (276 bytes)
Hash
849a5f4f10951b298d89ce110f8627a6
5b60a9014170aeb5ee7fe7853aaa194f14228db1
90567cf35cac85490a9997392214aea234454af5142a5a06475e8bb9d931d463

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/catalog-sorting.css?ver=10.6.4 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 09 Aug 2023 13:03:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 276
content-type: text/css
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/all-products.css?ver=10.6.4

192.185.21.72

200 OK

7.9 kB

URL GET HTTP/2
terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/all-products.css?ver=10.6.4
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
ASCII text, with very long lines (33349), with no line terminators
Size
7.9 kB (7882 bytes)
Hash
5614262108f38228e37a860df6d9bf8c
d3c679afd5507d7e31510995bdc25ab78867748f
2439c98f3623d41ae047efff52d59cfd0112bc180d8de0562a9c6c86b20c6f5d

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/all-products.css?ver=10.6.4 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 09 Aug 2023 13:03:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 7882
content-type: text/css
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/breadcrumbs.css?ver=10.6.4

192.185.21.72

200 OK

253 B

URL GET HTTP/2
terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/breadcrumbs.css?ver=10.6.4
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
ASCII text, with very long lines (732), with no line terminators
Size
253 B (253 bytes)
Hash
24b5c505d892352e33142b4a6f59e0d6
29ca7e25dcc2e1527e617c61da70dbc73ebc098f
e5c8b054d31035304ab12a174c2f2fb71a64e9cf308f4977f53adb906ced2319

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/breadcrumbs.css?ver=10.6.4 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 09 Aug 2023 13:03:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 253
content-type: text/css
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/active-filters.css?ver=10.6.4

192.185.21.72

200 OK

3.4 kB

URL GET HTTP/2
terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/active-filters.css?ver=10.6.4
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
ASCII text, with very long lines (13525), with no line terminators
Size
3.4 kB (3420 bytes)
Hash
d70de01326194d3f2c3a12ca63c29af3
bc0e52eba523cd069897f3872a27acbf01299b00
dab1664b5f8fac3d8f3711a12c2c8ab6a91abd2843ca68236ba8b6b972671f30

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/active-filters.css?ver=10.6.4 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 09 Aug 2023 13:03:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 3420
content-type: text/css
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/featured-category.css?ver=10.6.4

192.185.21.72

200 OK

1.1 kB

URL GET HTTP/2
terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/featured-category.css?ver=10.6.4
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
ASCII text, with very long lines (5498), with no line terminators
Size
1.1 kB (1140 bytes)
Hash
1627536d5140d8d40aeff2f797348251
55668eef896b53138af65924ad53b4662777a10a
bb36377898daddc4e9b5c126fb1b9b031525f755e24c85f77fc1297d0a6f06fb

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/featured-category.css?ver=10.6.4 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 09 Aug 2023 13:03:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 1140
content-type: text/css
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/customer-account.css?ver=10.6.4

192.185.21.72

200 OK

405 B

URL GET HTTP/2
terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/customer-account.css?ver=10.6.4
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
ASCII text, with very long lines (1367), with no line terminators
Size
405 B (405 bytes)
Hash
1cb944f814f2bf91ade50ad680bbb3f0
ebe89c214ed1515e776820a6786579b7a45cf8d3
9721cde9f96217fdfd1868926c60da410de4264f5a9f838d75e1af6969644c98

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/customer-account.css?ver=10.6.4 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 09 Aug 2023 13:03:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 405
content-type: text/css
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/price-filter.css?ver=10.6.4

192.185.21.72

200 OK

5.9 kB

URL GET HTTP/2
terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/price-filter.css?ver=10.6.4
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
ASCII text, with very long lines (24249), with no line terminators
Size
5.9 kB (5933 bytes)
Hash
1ea467d62d47707f910009f2b6ce853f
0de53e2a9e96ea9d91afb8e548c996b677848ef9
99ba4ce5016efac43bdbd8e43731b88c402c2d1810c9b4182d94bf353bb61cc7

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/price-filter.css?ver=10.6.4 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 09 Aug 2023 13:03:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 5933
content-type: text/css
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-categories.css?ver=10.6.4

192.185.21.72

200 OK

685 B

URL GET HTTP/2
terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-categories.css?ver=10.6.4
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
ASCII text, with very long lines (2334), with no line terminators
Size
685 B (685 bytes)
Hash
5b97a6d3b21c77b3958185126151d2ab
030d0424c11faaa578e120f5fefcdb9fb01afa06
cbb0799d717ce41b525ac29d4cdace455b17b63e59de9994f42e97e4e0540ced

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-categories.css?ver=10.6.4 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 09 Aug 2023 13:03:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 685
content-type: text/css
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-button.css?ver=10.6.4

192.185.21.72

200 OK

1.2 kB

URL GET HTTP/2
terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-button.css?ver=10.6.4
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
ASCII text, with very long lines (4290), with no line terminators
Size
1.2 kB (1226 bytes)
Hash
1d8682137744e6f80edbc1cf41181854
e3a3a4e21aa7e08c13d3fb0635c1312eb65059f9
2fc2dd2c07c1131e8d99f24bd6eb43e824fa94ce4331c11242624e81d2e0869f

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-button.css?ver=10.6.4 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 09 Aug 2023 13:03:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 1226
content-type: text/css
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/featured-product.css?ver=10.6.4

192.185.21.72

200 OK

1.2 kB

URL GET HTTP/2
terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/featured-product.css?ver=10.6.4
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
ASCII text, with very long lines (5914), with no line terminators
Size
1.2 kB (1203 bytes)
Hash
cd7e9154b0d2809ee14d3132c905f1af
21a3c8418ec6b427cdbf9356622412e81700da35
01027112216a9f6ffd4c2756c31b5dc5e8ecadd07f0b93ec5156feb93cf8aa43

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/featured-product.css?ver=10.6.4 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 09 Aug 2023 13:03:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 1203
content-type: text/css
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-add-to-cart.css?ver=10.6.4

192.185.21.72

200 OK

1.7 kB

URL GET HTTP/2
terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-add-to-cart.css?ver=10.6.4
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
ASCII text, with very long lines (7537), with no line terminators
Size
1.7 kB (1708 bytes)
Hash
caf58c59bee9886c940d8d87438e2f72
0786802f37bad3b4b5f8f06c4875a16576047dcd
533ce051d0dfd729e4f3eeba792018dc276b6946f7ed0299b977b21c6ab64138

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-add-to-cart.css?ver=10.6.4 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 09 Aug 2023 13:03:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 1708
content-type: text/css
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/mini-cart.css?ver=10.6.4

192.185.21.72

200 OK

3.4 kB

URL GET HTTP/2
terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/mini-cart.css?ver=10.6.4
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
ASCII text, with very long lines (13600), with no line terminators
Size
3.4 kB (3427 bytes)
Hash
bbf1f6fed98ae1521eb29508a74de963
bf93442d2273e056bd9cd8f0cfcf4ebab8a721f0
ee66489e899ef995307be951b64d1eb011d596d6118b97b9b76f8f9c25177f41

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/mini-cart.css?ver=10.6.4 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 09 Aug 2023 13:03:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 3427
content-type: text/css
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-results-count.css?ver=10.6.4

192.185.21.72

200 OK

247 B

URL GET HTTP/2
terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-results-count.css?ver=10.6.4
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
ASCII text, with very long lines (689), with no line terminators
Size
247 B (247 bytes)
Hash
616d16213bec507f192d46e32254eb47
397fc9290c566bc967df09da5712cb9178ed79cc
1646fecd18dad7589f0006aeb17ff5eb0563d87fd12b1f626063ed2d7f39f01e

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-results-count.css?ver=10.6.4 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 09 Aug 2023 13:03:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 247
content-type: text/css
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-query.css?ver=10.6.4

192.185.21.72

200 OK

365 B

URL GET HTTP/2
terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-query.css?ver=10.6.4
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
ASCII text, with very long lines (1020), with no line terminators
Size
365 B (365 bytes)
Hash
fc137f2c78b71f6bfce94efac88add0d
61dc9b858ae352d3eba8284a792e1e8f34cee774
e9d8eaaa3c53c27264a9a0fc3d833e9336d49de2252b08f720a6e9ef8831e1c8

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-query.css?ver=10.6.4 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 09 Aug 2023 13:03:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 365
content-type: text/css
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-image-gallery.css?ver=10.6.4

192.185.21.72

200 OK

322 B

URL GET HTTP/2
terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-image-gallery.css?ver=10.6.4
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
ASCII text, with very long lines (985), with no line terminators
Size
322 B (322 bytes)
Hash
b08abf1266487983ea8b45a77752a0d7
da8908f17348350eb58d1d91501293c2644c5fd7
1c63aa725f2795268e22b56b4e1f3cb90553ce84fdba51aec0194dd562372fa8

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-image-gallery.css?ver=10.6.4 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 09 Aug 2023 13:03:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 322
content-type: text/css
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-sale-badge.css?ver=10.6.4

192.185.21.72

200 OK

389 B

URL GET HTTP/2
terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-sale-badge.css?ver=10.6.4
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
ASCII text, with very long lines (970), with no line terminators
Size
389 B (389 bytes)
Hash
716bb54e067146487dee7eb192e2e5bd
562477d1e68ea94cd27415eb8a0e1ca73dbd9a9d
9715b3c3fcc481deb268845b160f088060830c59ac53fb13aadaaf0bbeee57b5

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-sale-badge.css?ver=10.6.4 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 09 Aug 2023 13:03:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 389
content-type: text/css
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-stock-indicator.css?ver=10.6.4

192.185.21.72

200 OK

250 B

URL GET HTTP/2
terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-stock-indicator.css?ver=10.6.4
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
ASCII text, with very long lines (687), with no line terminators
Size
250 B (250 bytes)
Hash
2c0d55790ddd58e0cf79b15c6e747cdb
ab5e4cd9461e65b3ac5fd0273d36bc3266488be4
135556c0fa763dab82dad46e83b9cce4067ab4726d940e7ee577ab63728051b2

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-stock-indicator.css?ver=10.6.4 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 09 Aug 2023 13:03:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 250
content-type: text/css
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-reviews.css?ver=10.6.4

192.185.21.72

200 OK

473 B

URL GET HTTP/2
terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-reviews.css?ver=10.6.4
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
ASCII text, with very long lines (1487), with no line terminators
Size
473 B (473 bytes)
Hash
60dac13773d1e787e005eff5acd3c966
bf4f466b0fe2b95a15e26164f26b6d9c318ed02c
d77c97fd7266dd24df9a90d3364ede500bff5fe2c3edc2640797fbff361e16f0

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-reviews.css?ver=10.6.4 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 09 Aug 2023 13:03:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 473
content-type: text/css
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-search.css?ver=10.6.4

192.185.21.72

200 OK

436 B

URL GET HTTP/2
terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-search.css?ver=10.6.4
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
ASCII text, with very long lines (1534), with no line terminators
Size
436 B (436 bytes)
Hash
c62e880e30d4e87ee2cac602a0afc38f
a900f280a808b00b0569bebcb7379584b8b8fda5
be83b2e784a028cd281ceca255ed7b5327e901a8d95246cee78170fc9b1a7505

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-search.css?ver=10.6.4 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 09 Aug 2023 13:03:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 436
content-type: text/css
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-details.css?ver=10.6.4

192.185.21.72

200 OK

410 B

URL GET HTTP/2
terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-details.css?ver=10.6.4
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
ASCII text, with very long lines (1267), with no line terminators
Size
410 B (410 bytes)
Hash
bfe6352bb0646d89d5485e33384a3619
c54397c89f97b0e816c1b0caa8b080a594974f1c
43f17cc13969b87d6f9109ee6d21c047d3f21413733f22f9dfc1b064ad87d991

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-details.css?ver=10.6.4 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 09 Aug 2023 13:03:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 410
content-type: text/css
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/reviews-by-category.css?ver=10.6.4

192.185.21.72

200 OK

3.0 kB

URL GET HTTP/2
terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/reviews-by-category.css?ver=10.6.4
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
Unicode text, UTF-8 text, with very long lines (11094), with no line terminators
Size
3.0 kB (3029 bytes)
Hash
a710ad83069e3d5083dbcbd1947bf68a
94fea850705885040bc9581b2492ad8339359b4b
712fe782b9d50de150194e4c25d9b7be2030e5fd4d9dbfa5f4bcafa860a33e74

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/reviews-by-category.css?ver=10.6.4 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 09 Aug 2023 13:03:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 3029
content-type: text/css
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/reviews-by-product.css?ver=10.6.4

192.185.21.72

200 OK

3.0 kB

URL GET HTTP/2
terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/reviews-by-product.css?ver=10.6.4
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
Unicode text, UTF-8 text, with very long lines (11094), with no line terminators
Size
3.0 kB (3029 bytes)
Hash
a710ad83069e3d5083dbcbd1947bf68a
94fea850705885040bc9581b2492ad8339359b4b
712fe782b9d50de150194e4c25d9b7be2030e5fd4d9dbfa5f4bcafa860a33e74

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/reviews-by-product.css?ver=10.6.4 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 09 Aug 2023 13:03:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 3029
content-type: text/css
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/rating-filter.css?ver=10.6.4

192.185.21.72

200 OK

7.1 kB

URL GET HTTP/2
terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/rating-filter.css?ver=10.6.4
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
ASCII text, with very long lines (32969), with no line terminators
Size
7.1 kB (7068 bytes)
Hash
9afceeccc45be73dcb01568e5e568f7c
6e6a7af5b3dd38acea3946266b053b6613941242
12df06c27d1e786adaf0385e330404b66182bfa1ad4e269856324f0e91cfbaa2

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/rating-filter.css?ver=10.6.4 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 09 Aug 2023 13:03:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 7068
content-type: text/css
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/single-product.css?ver=10.6.4

192.185.21.72

200 OK

397 B

URL GET HTTP/2
terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/single-product.css?ver=10.6.4
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
ASCII text, with very long lines (1110), with no line terminators
Size
397 B (397 bytes)
Hash
e92d08358fab389fa0d28d404f4fa88e
531be8c12c320b2c94dc1f13a621e4c809564294
9408b883c3de03f670df60c6201dcc8adbb991aab481a9b72351846e42d2ccdd

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/single-product.css?ver=10.6.4 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 09 Aug 2023 13:03:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 397
content-type: text/css
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/stock-filter.css?ver=10.6.4

192.185.21.72

200 OK

6.7 kB

URL GET HTTP/2
terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/stock-filter.css?ver=10.6.4
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
ASCII text, with very long lines (31243), with no line terminators
Size
6.7 kB (6725 bytes)
Hash
b9c352230a062aa68749768f18e5c7b2
3cd29ceb9a6ff5b6fd6687b08c527b7976308240
5df87b6f94e511197d18e791eb8284700e7776719b86604632157533019bf754

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/stock-filter.css?ver=10.6.4 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 09 Aug 2023 13:03:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 6725
content-type: text/css
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-sku.css?ver=10.6.4

192.185.21.72

200 OK

258 B

URL GET HTTP/2
terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-sku.css?ver=10.6.4
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
ASCII text, with very long lines (692), with no line terminators
Size
258 B (258 bytes)
Hash
2b3f38a69a162f2116fd1fdba4d34115
eb8de0f95007493ffa518dadf9b94377ccf17a00
8acf5f8d0a5d24267e83e43faa1733bd728dd02e7993cdbfa06a7729cc94c782

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-sku.css?ver=10.6.4 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 09 Aug 2023 13:03:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 258
content-type: text/css
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/mini-cart-contents.css?ver=10.6.4

192.185.21.72

200 OK

3.7 kB

URL GET HTTP/2
terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/mini-cart-contents.css?ver=10.6.4
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
ASCII text, with very long lines (17267), with no line terminators
Size
3.7 kB (3701 bytes)
Hash
f4d89b84baae1acc13afc5bca7d2d37c
6b0c0ca997f4105dfcea973854bc318dc53b3781
e7107d3a71f000762a1f4482be2504bc200411be11071a027bb45a5a08d63068

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/mini-cart-contents.css?ver=10.6.4 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 09 Aug 2023 13:03:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 3701
content-type: text/css
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-content/plugins/themify-ptb/public/css/ptb-public.min.css?ver=2.0.5

192.185.21.72

200 OK

4.7 kB

URL GET HTTP/2
terraskills.com/wp-content/plugins/themify-ptb/public/css/ptb-public.min.css?ver=2.0.5
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
ASCII text, with very long lines (16209), with no line terminators
Size
4.7 kB (4729 bytes)
Hash
5b12f1e64ed1f7941e1dc5acab2bfc4b
a338dd0f361e0e67a36cc17e470757f2c6449f4d
529261d78189427adc77abb2147dd5b305e4edf570e934a99b7ecd96006409cf

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/themify-ptb/public/css/ptb-public.min.css?ver=2.0.5 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 07 Jul 2023 10:42:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 4729
content-type: text/css
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-content/plugins/themify-event-post/assets/style.css?ver=bb270fba1988038f5680f75b7475565e

192.185.21.72

200 OK

5.1 kB

URL GET HTTP/2
terraskills.com/wp-content/plugins/themify-event-post/assets/style.css?ver=bb270fba1988038f5680f75b7475565e
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
ASCII text, with very long lines (5059)
Size
5.1 kB (5074 bytes)
Hash
6c6af3ccac037b9036c2256dc781ce85
de83b6ef7db7c70a5bcd4760f1615239be33ce15
f1bdead274766c099e6839bf5b27a881fcc203f1d687d640713d79e8b167e4d0

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/themify-event-post/assets/style.css?ver=bb270fba1988038f5680f75b7475565e HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 09 Aug 2023 13:03:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 5074
content-type: text/css
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-content/plugins/themify-ptb/public/js/ptb-public.min.js?ver=2.0.5

192.185.21.72

200 OK

11 kB

URL GET HTTP/2
terraskills.com/wp-content/plugins/themify-ptb/public/js/ptb-public.min.js?ver=2.0.5
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
ASCII text, with very long lines (21566), with no line terminators
Size
11 kB (11421 bytes)
Hash
09dc552a893b10bf97914db2a023756e
74212243a691d1530ce21e2d98117a553d814084
2168052743fd17d4b10f7672079b4c1766efc7b288962934456e4df51c2955aa

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/themify-ptb/public/js/ptb-public.min.js?ver=2.0.5 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 07 Jul 2023 10:42:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 11421
content-type: application/javascript
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-content/plugins/taxonomy-images/css/style.css?ver=0.9.6

192.185.21.72

200 OK

217 B

URL GET HTTP/2
terraskills.com/wp-content/plugins/taxonomy-images/css/style.css?ver=0.9.6
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
ASCII text
Size
217 B (217 bytes)
Hash
ece5196614c30bb572297b50ec0d659e
e939daef67acef768aee10c3e284d5619ad11980
4dd1908c6a8fd56a009de150a0d1b0c6c18a21543ff2f246a7108f385a22500e

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/taxonomy-images/css/style.css?ver=0.9.6 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 01 Sep 2019 22:33:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 217
content-type: text/css
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-image.css?ver=10.6.4

192.185.21.72

200 OK

1.1 kB

URL GET HTTP/2
terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-image.css?ver=10.6.4
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
ASCII text, with very long lines (3979), with no line terminators
Size
1.1 kB (1077 bytes)
Hash
383e6bbfaa2a174c7fa3bdce4a966bae
0664ec9c69b57405190a4ebfebeac66671b2d47e
3fcd5f9e444ab8ecd5b5a50abc24b8905a5110cb1e222383d8d708d40d91ca0b

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-image.css?ver=10.6.4 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 09 Aug 2023 13:03:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 1077
content-type: text/css
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-summary.css?ver=10.6.4

192.185.21.72

200 OK

584 B

URL GET HTTP/2
terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-summary.css?ver=10.6.4
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
ASCII text, with very long lines (1651), with no line terminators
Size
584 B (584 bytes)
Hash
9abf10360fadd1bbb37b5b17d2be5ad1
ba46c4a9f3fabe6ba01dc860c2e2d0fda9533b1e
1614e3f5feb81923b30132d1a7f769fc35cdd830a34f02aa52af3493b51728c9

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-summary.css?ver=10.6.4 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 09 Aug 2023 13:03:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 584
content-type: text/css
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/checkout.css?ver=10.6.4

192.185.21.72

200 OK

15 kB

URL GET HTTP/2
terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/checkout.css?ver=10.6.4
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
Unicode text, UTF-8 text, with very long lines (65532), with no line terminators
Size
15 kB (15195 bytes)
Hash
56af19b176aff39892f7ad4c5e043cd0
af0345870762cc579b3f6784e1e709c6bab21ac4
2fb85e9ea2f3eebb2fdf6e6db43399eb8acaf524be1fa26a0c0cfae525265f61

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/checkout.css?ver=10.6.4 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 09 Aug 2023 13:03:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 15195
content-type: text/css
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-title.css?ver=10.6.4

192.185.21.72

200 OK

728 B

URL GET HTTP/2
terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-title.css?ver=10.6.4
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
ASCII text, with very long lines (2197), with no line terminators
Size
728 B (728 bytes)
Hash
241d3e45d2a2ab595c6fe55e1c07aedf
efafd7b5d260610c8bdb45f2123c437cca852075
6dfc2777b090eaacf80ae0355af4059ee2c6a6e39178fceec372cac2abd4ec0d

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/product-title.css?ver=10.6.4 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 09 Aug 2023 13:03:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 728
content-type: text/css
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-content/uploads/2022/12/Terraskills-Logo-blue.png

192.185.21.72

200 OK

4.3 kB

URL GET HTTP/2
terraskills.com/wp-content/uploads/2022/12/Terraskills-Logo-blue.png
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
PNG image data, 191 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
4.3 kB (4305 bytes)
Hash
e5f2f9d06a69b97aceda497761504cb5
065093dc44937d5d55c082db970c3603519acd42
f579f01d5e27da94d7ad2a40566bc1df119f63821caed6198888664a6cc70b01

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/12/Terraskills-Logo-blue.png HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 26 Dec 2022 23:17:49 GMT
accept-ranges: bytes
content-length: 4305
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-type: image/png
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-content/uploads/2019/09/Safe-Driving.jpg

192.185.21.72

200 OK

55 kB

URL GET HTTP/2
terraskills.com/wp-content/uploads/2019/09/Safe-Driving.jpg
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 978x652, components 3\012- data
Size
55 kB (54700 bytes)
Hash
d26b5efdc251d182165488d64482b845
50b2a6a985af0be2dd94be7d1e165845e0d75be9
62d7dd294f07e62ebbee7dc560ff0437b562512d1f4f08664c2121934a6b86cc

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2019/09/Safe-Driving.jpg HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 27 Sep 2019 16:40:18 GMT
accept-ranges: bytes
content-length: 54700
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-type: image/jpeg
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0

192.185.21.72

200 OK

8.4 kB

URL GET HTTP/2
terraskills.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
ASCII text, with very long lines (17210), with no line terminators
Size
8.4 kB (8447 bytes)
Hash
f3ab08236ea28640e6773b9cd95eb1a7
82338946c5b8bab8d3838c91cb6c98d4c9595ba4
e48ae90b248d052174aaa053c0ca94dc41408174c5f70f5ab512a5bdc3b3c2af

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 17 Nov 2023 19:44:53 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 8447
content-type: application/javascript
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2

192.185.21.72

200 OK

8.7 kB

URL GET HTTP/2
terraskills.com/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
ASCII text, with very long lines (18756), with no line terminators
Size
8.7 kB (8694 bytes)
Hash
9da621ed6c59cf657d2b241c25128099
7a724a46061839f89aab29e188a1d9b1b3ed9ab4
d19388ddfcc54bccfdd85e1d2ed2d0e4e2f045ab1d50514a676a27d9f7f977a5

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 17 Nov 2023 19:44:53 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 8694
content-type: application/javascript
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1

192.185.21.72

200 OK

7.3 kB

URL GET HTTP/2
terraskills.com/wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
ASCII text, with very long lines (15177)
Size
7.3 kB (7267 bytes)
Hash
dcd2d220d6f1c8e8a4935e3dc8dcccde
d14b0c5d3254462f2862378fdc62a845d0794fdf
2921238211caf06ae16a2508fcc0f8a1721d287480fbc6189e3fade858bfcc97

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 17 Nov 2023 19:44:53 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 7267
content-type: application/javascript
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef

192.185.21.72

200 OK

9.7 kB

URL GET HTTP/2
terraskills.com/wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
data
Size
9.7 kB (9687 bytes)
Hash
a1762e4bd8b21c8053a8687c1d871d1e
fbdc74102bc3a361ee8b50d61728e8c245747c83
af0d10ddffb7f40f186ae31eaa9abbaacd53aa9bc18036bcdea2c90c198932a0

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 17 Nov 2023 19:44:53 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 9687
content-type: application/javascript
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-content/plugins/presto-player/src/player/player-static.js?ver=1691586209

192.185.21.72

200 OK

7.2 kB

URL GET HTTP/2
terraskills.com/wp-content/plugins/presto-player/src/player/player-static.js?ver=1691586209
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
ASCII text, with very long lines (13971)
Size
7.2 kB (7218 bytes)
Hash
b9f897d4e87217c618cce130ec072916
20feb000bd32b6c19c6b3d31e658fbb97fc08f4f
dcbe53fc79370932e37c294fd19a9fdf847240331e27722bb3caf64660d009c0

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/presto-player/src/player/player-static.js?ver=1691586209 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 09 Aug 2023 13:03:29 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 7218
content-type: application/javascript
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.8.0.0

192.185.21.72

200 OK

11 kB

URL GET HTTP/2
terraskills.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.8.0.0
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
ASCII text, with very long lines (23213)
Size
11 kB (11077 bytes)
Hash
7be59ef2e5716117aeaf588eff554327
478c3da7f8b03959f24387ea8ad2655680e8185f
76bbf8dfdb2d522113b4fe6a77a9c3ae3dd84ae13234918ab8dd0c2585efb74e

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.8.0.0 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 09 Aug 2023 13:03:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-length: 11077
content-type: application/javascript
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-167949829-1

216.58.211.8

200 OK

69 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=UA-167949829-1
IP
216.58.211.8:443
ASN
#15169 GOOGLE

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type
ASCII text, with very long lines (4179)
Size
69 kB (68665 bytes)
Hash
7b68f4adb5bb26813d6ed9f38590aa3b
0851e562e61e65ded9f4b211151e2515a0d6532f
3040fdf64c839a0cb9f29478301326522594850b16be5099639cc762a26bd5b7

HTTP Headers

GET /gtag/js?id=UA-167949829-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 28 Nov 2023 07:24:53 GMT
expires: Tue, 28 Nov 2023 07:24:53 GMT
cache-control: private, max-age=900
last-modified: Tue, 28 Nov 2023 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 68665
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287

192.185.21.72

200 OK

155 kB

URL User Request GET HTTP/2
terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
gzip compressed data, from Unix\012- data
Size
155 kB (154586 bytes)
Hash
90ba7864d71116055d0b050a142d2636
0dbe1425d35186fb328fc69ce0348c7e67d81f13
7c649f7ce5d08e08d20947dafe63ab240da7abd701d49564f88aaf8e626be999

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://terraskills.com/en/?93023071
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
link: <https://terraskills.com/wp-json/>; rel="https://api.w.org/", <https://terraskills.com/wp-json/wp/v2/ts-courses/1234>; rel="alternate"; type="application/json", <https://terraskills.com/?p=1234>; rel=shortlink
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-type: text/html; charset=UTF-8
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-4S28NM2TT6&l=dataLayer&cx=c

216.58.211.8

200 OK

75 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-4S28NM2TT6&l=dataLayer&cx=c
IP
216.58.211.8:443
ASN
#15169 GOOGLE

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type
ASCII text, with very long lines (3026)
Size
75 kB (75316 bytes)
Hash
f5a9c0b7c15053d9dce6b73b4d69f7e1
bf02608cf498393f951331965c28da023f730ac7
21130f3fb0eb4b682634429ef58032afc78b8f6b846363cc8d1b1bf536b8efb3

HTTP Headers

GET /gtag/js?id=G-4S28NM2TT6&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 28 Nov 2023 07:24:53 GMT
expires: Tue, 28 Nov 2023 07:24:53 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 75316
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/publicsans/v14/ijwRs572Xtc6ZYQws9YVwnNGfJ4.woff2

216.58.207.227

200 OK

25 kB

URL GET HTTP/2
fonts.gstatic.com/s/publicsans/v14/ijwRs572Xtc6ZYQws9YVwnNGfJ4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 25320, version 1.0\012- data
Size
25 kB (25320 bytes)
Hash
098efcdd0d179610154999da1cefedb4
8c61253b07f5833a6c8b0d30c654113f02660774
ecd01d6ed5d492148e9ba9ead2db0ee09b8664e9e6cda3150ad7d31977c2e702

HTTP Headers

GET /s/publicsans/v14/ijwRs572Xtc6ZYQws9YVwnNGfJ4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://terraskills.com
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25320
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Nov 2023 23:22:19 GMT
expires: Fri, 22 Nov 2024 23:22:19 GMT
cache-control: public, max-age=31536000
age: 374554
last-modified: Mon, 18 Jul 2022 19:46:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

js.hs-scripts.com/23627743.js?integration=WordPress&ver=10.1.30

104.16.191.89

200 OK

26 kB

URL GET HTTP/2
js.hs-scripts.com/23627743.js?integration=WordPress&ver=10.1.30
IP
104.16.191.89:443
ASN
#13335 CLOUDFLARENET

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5A:DE:00:16:F4:3C:EB:0D:2A:0C:6E:27:59:94:38:E3:D9:B1:20:3E
ValidityWed, 03 May 2023 00:00:00 GMT - Thu, 02 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (542)
Size
26 kB (25866 bytes)
Hash
93f48d01ecf9ff3124624185ee25397e
f4eb53b2f2cb31244c3eab373ad4e8a883292291
137dbd4928fe56f70f662402f633f55ba1bfae7b128f6d749cf4c6cf2be75e16

HTTP Headers

GET /23627743.js?integration=WordPress&ver=10.1.30 HTTP/1.1
Host: js.hs-scripts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:24:52 GMT
content-type: application/javascript;charset=utf-8
x-trace: 2B6F445AEC49FB56784DB776DA74132A41C95F6A06000000000000000000
cache-control: public, max-age=60
vary: origin, Accept-Encoding
access-control-allow-credentials: true
x-content-type-options: nosniff
access-control-max-age: 3600
access-control-allow-origin: https://terraskills.com
x-envoy-upstream-service-time: 11
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/hubapi-td/envoy-proxy-66c9b4c4f4-j6tg4
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-hubspot-correlation-id: 656e69a4-2612-4731-82f3-03c2362b59f6
x-request-id: 656e69a4-2612-4731-82f3-03c2362b59f6
last-modified: Tue, 28 Nov 2023 07:24:52 GMT
cf-cache-status: MISS
expires: Tue, 28 Nov 2023 07:25:52 GMT
server: cloudflare
cf-ray: 82d0dfad7a951c02-OSL
content-encoding: br
X-Firefox-Spdy: h2

fonts.gstatic.com/s/publicsans/v14/ijwRs572Xtc6ZYQws9YVwnNIfJ7Cww.woff2

216.58.207.227

200 OK

17 kB

URL GET HTTP/2
fonts.gstatic.com/s/publicsans/v14/ijwRs572Xtc6ZYQws9YVwnNIfJ7Cww.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 16736, version 1.0\012- data
Size
17 kB (16736 bytes)
Hash
918e47b150f8ccee3da0bb7f8bf37c8c
e9970d2613b80e01dccf145dd1011b40b4e98411
4d4081d085f0fdfd883100071190249bfadbd3fdaaefedcb964c03f60f38ec7a

HTTP Headers

GET /s/publicsans/v14/ijwRs572Xtc6ZYQws9YVwnNIfJ7Cww.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://terraskills.com
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16736
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Nov 2023 05:38:06 GMT
expires: Fri, 22 Nov 2024 05:38:06 GMT
cache-control: public, max-age=31536000
age: 438407
last-modified: Mon, 18 Jul 2022 19:31:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/sora/v12/xMQbuFFYT72XzQUpDg.woff2

216.58.207.227

200 OK

34 kB

URL GET HTTP/2
fonts.gstatic.com/s/sora/v12/xMQbuFFYT72XzQUpDg.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 33616, version 1.0\012- data
Size
34 kB (33616 bytes)
Hash
79db8d0e98af036659a9511b0f10bcc9
13ee80769d9a4e31fe146033c7dbeb02cf45e55d
714cfbc8e4b3f224102a517dd5f39c85e114b27163602159deee4d8c4a8602f0

HTTP Headers

GET /s/sora/v12/xMQbuFFYT72XzQUpDg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://terraskills.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33616
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Nov 2023 23:23:35 GMT
expires: Fri, 22 Nov 2024 23:23:35 GMT
cache-control: public, max-age=31536000
age: 374478
last-modified: Wed, 13 Sep 2023 22:16:38 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/sora/v11/xMQ9uFFYT72X5wkB_18qmnndmSdSnh2BAfO5mnuyOo1lfiQwV6-x.woff2

216.58.207.227

200 OK

23 kB

URL GET HTTP/2
fonts.gstatic.com/s/sora/v11/xMQ9uFFYT72X5wkB_18qmnndmSdSnh2BAfO5mnuyOo1lfiQwV6-x.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23252, version 1.0\012- data
Size
23 kB (23252 bytes)
Hash
7d04f22ff433523565eafd49da015a46
ef4f4fe7302c941a1c04c66a8c06cd5c3a03932a
0bc567bba08485fa1610412e323cce4ff69f40e7269743360281c68d234f59cf

HTTP Headers

GET /s/sora/v11/xMQ9uFFYT72X5wkB_18qmnndmSdSnh2BAfO5mnuyOo1lfiQwV6-x.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://terraskills.com
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23252
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Nov 2023 07:03:34 GMT
expires: Fri, 22 Nov 2024 07:03:34 GMT
cache-control: public, max-age=31536000
age: 433279
last-modified: Tue, 23 Aug 2022 18:15:37 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/sora/v11/xMQ9uFFYT72X5wkB_18qmnndmSdSnh2BAfO5mnuyOo1lfiQwV6-x.woff2

216.58.207.227

200 OK

23 kB

URL GET HTTP/2
fonts.gstatic.com/s/sora/v11/xMQ9uFFYT72X5wkB_18qmnndmSdSnh2BAfO5mnuyOo1lfiQwV6-x.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23252, version 1.0\012- data
Size
23 kB (23252 bytes)
Hash
7d04f22ff433523565eafd49da015a46
ef4f4fe7302c941a1c04c66a8c06cd5c3a03932a
0bc567bba08485fa1610412e323cce4ff69f40e7269743360281c68d234f59cf

HTTP Headers

GET /s/sora/v11/xMQ9uFFYT72X5wkB_18qmnndmSdSnh2BAfO5mnuyOo1lfiQwV6-x.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://terraskills.com
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23252
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Nov 2023 07:03:34 GMT
expires: Fri, 22 Nov 2024 07:03:34 GMT
cache-control: public, max-age=31536000
age: 433279
last-modified: Tue, 23 Aug 2022 18:15:37 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

terraskills.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0

192.185.21.72

200 OK

53 kB

URL GET HTTP/2
terraskills.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Size
53 kB (53114 bytes)
Hash
5f4cf3dc90728710313724effda5a29d
48005b4de93294e92aaaa3060538e46b44145149
e7bf69a137376ceecfa169f4a17d709662f01426e944552950fbd512c0262a4a

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 17 Nov 2023 19:44:53 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-type: application/javascript
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

fonts.gstatic.com/s/publicsans/v14/ijwTs572Xtc6ZYQws9YVwnNDTJzaxw.woff2

216.58.207.227

200 OK

27 kB

URL GET HTTP/2
fonts.gstatic.com/s/publicsans/v14/ijwTs572Xtc6ZYQws9YVwnNDTJzaxw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 26988, version 1.0\012- data
Size
27 kB (26988 bytes)
Hash
f9c92892c1464c03fb5f2f1c9f4cdb0f
99c19bccb8b00acb0be046d90a24e38ae29ff39a
ebca5d315224a0c777691e529227971de2175a03a5183ec4ff705124f2cdf1b6

HTTP Headers

GET /s/publicsans/v14/ijwTs572Xtc6ZYQws9YVwnNDTJzaxw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://terraskills.com
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 26988
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Nov 2023 21:40:00 GMT
expires: Thu, 21 Nov 2024 21:40:00 GMT
cache-control: public, max-age=31536000
age: 467093
last-modified: Mon, 18 Jul 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/publicsans/v14/ijwRs572Xtc6ZYQws9YVwnNGfJ4.woff2

216.58.207.227

200 OK

25 kB

URL GET HTTP/2
fonts.gstatic.com/s/publicsans/v14/ijwRs572Xtc6ZYQws9YVwnNGfJ4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 25320, version 1.0\012- data
Size
25 kB (25320 bytes)
Hash
098efcdd0d179610154999da1cefedb4
8c61253b07f5833a6c8b0d30c654113f02660774
ecd01d6ed5d492148e9ba9ead2db0ee09b8664e9e6cda3150ad7d31977c2e702

HTTP Headers

GET /s/publicsans/v14/ijwRs572Xtc6ZYQws9YVwnNGfJ4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://terraskills.com
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25320
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Nov 2023 23:22:19 GMT
expires: Fri, 22 Nov 2024 23:22:19 GMT
cache-control: public, max-age=31536000
age: 374554
last-modified: Mon, 18 Jul 2022 19:46:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

js.hs-banner.com/v2/23627743/banner.js

104.18.34.229

200 OK

19 kB

URL GET HTTP/2
js.hs-banner.com/v2/23627743/banner.js
IP
104.18.34.229:443
ASN
#13335 CLOUDFLARENET

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint2C:9C:DC:70:87:29:18:51:70:06:6E:2F:4B:4D:E0:23:1F:30:84:18
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65044)
Size
19 kB (18678 bytes)
Hash
462b3b5ca574a993393190b2856b890f
a03fe8f1f21101f210793337a93d6cc16fd9bc9b
a2755076885c4f515d0ef9a6bfdd52c10797c94eb07626302ad42e021ecea143

HTTP Headers

GET /v2/23627743/banner.js HTTP/1.1
Host: js.hs-banner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:24:53 GMT
content-type: text/javascript; charset=UTF-8
x-amz-id-2: 2TZyhm2lMqn2Xt+MpFIeh5VDVMpAdxhFWq377yPLHprN1ZLW8AJWm/O+u9vsr66iNKHngqsZyyY=
x-amz-request-id: PBZ79K0GRQSQDM3W
last-modified: Wed, 18 Oct 2023 20:32:25 GMT
etag: W/"462b3b5ca574a993393190b2856b890f"
x-amz-server-side-encryption: AES256
cache-control: max-age=300,public
x-amz-version-id: PsB3yBfBjtim27DoO8miPve1gZOymhoF
access-control-allow-origin: https://terraskills.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
vary: origin, Accept-Encoding
expires: Tue, 28 Nov 2023 07:29:53 GMT
x-envoy-upstream-service-time: 35
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/analytics-js-proxy-td/envoy-proxy-6849bc8697-vvl5l
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-hubspot-correlation-id: f4061227-043f-4733-97f6-823fb9f733cf
x-request-id: f4061227-043f-4733-97f6-823fb9f733cf
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 82d0dfb38ce1b51b-OSL
content-encoding: br
X-Firefox-Spdy: h2

terraskills.com/wp-content/uploads/2019/08/TERRASKILLS-tabicon-300x300.png

192.185.21.72

200 OK

7.8 kB

URL GET HTTP/2
terraskills.com/wp-content/uploads/2019/08/TERRASKILLS-tabicon-300x300.png
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Size
7.8 kB (7816 bytes)
Hash
331d2fd05b0f6c8cdf1a39dfc6f1dc0f
2f84bf858c4dec02fa69bfecfbb5604f2b494bcc
c58daad3ce7d913e507a0a9d3aca464b1c0188fc9a586ac2856ab66169562d4f

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2019/08/TERRASKILLS-tabicon-300x300.png HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Cookie: _ga_4S28NM2TT6=GS1.1.1701156297.1.0.1701156297.0.0.0; _ga=GA1.1.748876993.1701156297; _ga_R942LLB0JN=GS1.1.1701156297.1.0.1701156297.60.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 11 Jul 2020 10:53:29 GMT
accept-ranges: bytes
content-length: 7816
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-type: image/png
date: Tue, 28 Nov 2023 07:24:53 GMT
server: Apache
X-Firefox-Spdy: h2

terraskills.com/wp-content/uploads/2019/08/TERRASKILLS-tabicon-100x100.png

192.185.21.72

200 OK

2.5 kB

URL GET HTTP/2
terraskills.com/wp-content/uploads/2019/08/TERRASKILLS-tabicon-100x100.png
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Size
2.5 kB (2486 bytes)
Hash
c1453b5e02d0a8a983a28986bb3421a0
1d829985d08008def502642fa86e619eb32d52c9
9f2f7bd996e0115c27a4987921a6a320d82f4e536b798083192606507c575d5d

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2019/08/TERRASKILLS-tabicon-100x100.png HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Cookie: _ga_4S28NM2TT6=GS1.1.1701156297.1.0.1701156297.0.0.0; _ga=GA1.1.748876993.1701156297; _ga_R942LLB0JN=GS1.1.1701156297.1.0.1701156297.60.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 11 Jul 2020 10:53:29 GMT
accept-ranges: bytes
content-length: 2486
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-type: image/png
date: Tue, 28 Nov 2023 07:24:53 GMT
server: Apache
X-Firefox-Spdy: h2

js.usemessages.com/conversations-embed.js

104.17.250.168

200 OK

24 kB

URL GET HTTP/2
js.usemessages.com/conversations-embed.js
IP
104.17.250.168:443
ASN
#13335 CLOUDFLARENET

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint28:4A:40:A2:36:B6:3B:19:87:43:1A:24:AA:7F:5D:16:80:D3:27:B6
ValiditySat, 13 May 2023 00:00:00 GMT - Sun, 12 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
24 kB (23705 bytes)
Hash
39b367b42a31fe6b2125121db42f0184
4c87a3c3765816ca6d29985f0f904ec8d0f88338
f06446b13022232de2be8cec72cc0bbbf64225b9a000ed6749394f420b219082

HTTP Headers

GET /conversations-embed.js HTTP/1.1
Host: js.usemessages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:24:53 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Mon, 27 Nov 2023 17:21:43 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: U3W.WaGxPKY6m_Qyvc6mAvkaYoB0JUhE
etag: W/"39b367b42a31fe6b2125121db42f0184"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c5f8f8068a88ebb73e505f5e51b5262e.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: 0h2f4GcBBStnMtrguJP9IQMsuhu7NwB9ewwLNPhCpA_7vf-WVZ_oNA==
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://send.hsbrowserreports.com/csp/report?resource=conversations-embed/static-1.14797/bundles/project.js&cfRay=82cf5127181ad96f-ARN
cache-control: max-age=600
x-hs-target-asset: conversations-embed/static-1.14797/bundles/project.js
x-content-type-options: nosniff
x-hs-cache-status: HIT
x-envoy-upstream-service-time: 3
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/app-td/envoy-proxy-7b7f9459cc-q5s2s
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-hubspot-correlation-id: 7063fb05-4fec-4be2-aaed-39e0ec6eb67b
x-request-id: 7063fb05-4fec-4be2-aaed-39e0ec6eb67b
cache-tag: staticjsapp-conversations-embed-web-prod,staticjsapp-prod
cf-cache-status: HIT
age: 211
server: cloudflare
cf-ray: 82d0dfb3992b7129-OSL
content-encoding: br
X-Firefox-Spdy: h2

terraskills.com/wp-content/uploads/themify-concate/3665051772/themify-1115446282.min.css

192.185.21.72

200 OK

169 kB

URL GET HTTP/2
terraskills.com/wp-content/uploads/themify-concate/3665051772/themify-1115446282.min.css
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type

Size
169 kB (168653 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/themify-concate/3665051772/themify-1115446282.min.css HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Fri, 17 Nov 2023 20:10:56 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-type: text/css
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Sora:wght@200;300;400;500;600;700;800&display=swap

142.250.74.106

200 OK

5.3 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Sora:wght@200;300;400;500;600;700;800&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
ASCII text, with very long lines (5453), with no line terminators
Size
5.3 kB (5327 bytes)
Hash
7f5f63d2eac02035bf4fdf5f88286909
f4382cf4c94f8590d2de6342b71539e4be480c09
6e6ca179e6045fcbc605f9184d652c1a38131838fcde2a80741ecd42baa8a88e

HTTP Headers

GET /css2?family=Sora:wght@200;300;400;500;600;700;800&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 28 Nov 2023 07:24:52 GMT
date: Tue, 28 Nov 2023 07:24:52 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

js.hscollectedforms.net/collectedforms.js

104.17.88.154

200 OK

70 kB

URL GET HTTP/2
js.hscollectedforms.net/collectedforms.js
IP
104.17.88.154:443
ASN
#13335 CLOUDFLARENET

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA5:D1:D2:E1:EA:8D:D7:F7:79:F2:ED:55:66:75:F5:52:07:A7:F4:B3
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT

File type

Size
70 kB (70438 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /collectedforms.js HTTP/1.1
Host: js.hscollectedforms.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://terraskills.com
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:24:53 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Mon, 23 Oct 2023 13:11:34 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: XYPPFvciWFKtpS2hNgrEqmNT6fxOdL.H
etag: W/"7864f8fd485be672e98358eb894b6fd7"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6b29c936420d116b13807604a0e67044.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: haqtVBtA3kTkOdH-zETOhkiJyJcEePfjDbkJ2t2YPLF1LyhSHMqhOA==
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://send.hsbrowserreports.com/csp/report?resource=collected-forms-embed-js/static-1.433/bundles/project.js&cfRay=82c9e0964ad1b512-ARN
cache-control: s-maxage=600, max-age=300
x-hs-target-asset: collected-forms-embed-js/static-1.433/bundles/project.js
x-content-type-options: nosniff
access-control-allow-origin: *
x-hs-cache-status: HIT
x-envoy-upstream-service-time: 5
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/app-td/envoy-proxy-7b7f9459cc-xdbnc
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-hubspot-correlation-id: c914eef5-b03d-4a39-8d5b-f8cff24d4926
x-request-id: c914eef5-b03d-4a39-8d5b-f8cff24d4926
cache-tag: staticjsapp-collected-forms-embed-js-web-prod,staticjsapp-prod
cf-cache-status: EXPIRED
server: cloudflare
cf-ray: 82d0dfb39c880afe-OSL
content-encoding: br
X-Firefox-Spdy: h2

terraskills.com/wp-content/themes/themify-ultra/themify/js/main.min.js?ver=7.2.6

192.185.21.72

200 OK

39 kB

URL GET HTTP/2
terraskills.com/wp-content/themes/themify-ultra/themify/js/main.min.js?ver=7.2.6
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
ASCII text, with very long lines (38829), with no line terminators
Size
39 kB (38829 bytes)
Hash
3fa629bd49f58b8c8fff28325b0aaa70
d8493b202aa3f54fd7cca965bd266edc3a27c994
da6683c4e3158599dfd6ff2bfe7fcc89b3dcfe180325e3a83f83c100765d1e76

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/themify-ultra/themify/js/main.min.js?ver=7.2.6 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Wed, 09 Aug 2023 13:06:01 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-type: application/javascript
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&_ono=1&tid=G-R942LLB0JN&cid=748876993.1701156297&gtm=45je3b81v9129101216&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=1652257291

142.250.74.163

200 OK

42 B

URL GET HTTP/2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&_ono=1&tid=G-R942LLB0JN&cid=748876993.1701156297&gtm=45je3b81v9129101216&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=1652257291
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.no
Fingerprint6E:E4:BC:4A:67:5E:46:6A:B3:E4:CA:61:A7:C0:97:AB:14:F0:34:32
ValidityMon, 23 Oct 2023 11:27:27 GMT - Mon, 15 Jan 2024 11:27:26 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&_ono=1&tid=G-R942LLB0JN&cid=748876993.1701156297&gtm=45je3b81v9129101216&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=1652257291 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 28 Nov 2023 07:24:53 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

terraskills.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1

192.185.21.72

200 OK

98 kB

URL GET HTTP/2
terraskills.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type
ASCII text, with very long lines (65447)
Size
98 kB (98138 bytes)
Hash
cdc88e5472d25c0a72220febfae3c6ea
18fa14a8b655afeab9d292ee9a3ca1a1a32590c6
bb8378696e7c5e0924a1b602fab103e5b27f73ecd36aebde44ac42f0093ccf92

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Fri, 17 Nov 2023 19:44:53 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-type: application/javascript
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

forms.hscollectedforms.net/collected-forms/v1/config/json?portalId=23627743&utk=

104.17.88.154

200 OK

116 B

URL GET HTTP/2
forms.hscollectedforms.net/collected-forms/v1/config/json?portalId=23627743&utk=
IP
104.17.88.154:443
ASN
#13335 CLOUDFLARENET

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA5:D1:D2:E1:EA:8D:D7:F7:79:F2:ED:55:66:75:F5:52:07:A7:F4:B3
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
116 B (116 bytes)
Hash
31af8dc3b20fbefb4cab2e7b393c6c53
a624fbb960f8601cb15519744bd55a138106169f
998e01371f3c0ab588c98539f595b20d236f027bcc4bc63b02cb9b07d6f418ff

HTTP Headers

GET /collected-forms/v1/config/json?portalId=23627743&utk= HTTP/1.1
Host: forms.hscollectedforms.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://terraskills.com
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:24:54 GMT
content-type: application/json;charset=utf-8
vary: Accept-Encoding
cache-control: max-age=0
x-content-type-options: nosniff
access-control-allow-origin: https://terraskills.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: *
access-control-max-age: 180
x-robots-tag: none
x-envoy-upstream-service-time: 8
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/app-td/envoy-proxy-7b7f9459cc-xdbnc
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-hubspot-correlation-id: fb339344-109b-4668-9028-c811137144b9
x-request-id: fb339344-109b-4668-9028-c811137144b9
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 82d0dfb4fd0a0afe-OSL
content-encoding: br
X-Firefox-Spdy: h2

region1.analytics.google.com/g/collect?v=2&tid=G-R942LLB0JN&_ono=1&gtm=45je3b81v9129101216&_p=1701156296829&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&gdid=dZTNiMT&cid=748876993.1701156297&ul=en-us&sr=1280x1024&ir=1&_eu=EAAI&_s=1&sid=1701156297&sct=1&seg=0&dl=https%3A%2F%2Fterraskills.com%2Fts-courses%2Fsafe-driving-is-a-life-skill%2F%3Fe%3Dindex%26wyc5ai7kLE%3D1701156287&dr=https%3A%2F%2Fterraskills.com%2Fen%2F%3F93023071&dt=SAFE%20DRIVING%20IS%20A%20LIFE%20SKILL%20%E2%80%93%20Terraskills%20%E2%80%93%20Professional%20Training%20in%20Abuja%20%7C%20Skills%20to%20excel&en=page_view&_fv=1&_ss=1&ep.anonymize_ip=true&tfd=2317

216.239.32.36

204 No Content

0 B

URL POST HTTP/2
region1.analytics.google.com/g/collect?v=2&tid=G-R942LLB0JN&_ono=1&gtm=45je3b81v9129101216&_p=1701156296829&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&gdid=dZTNiMT&cid=748876993.1701156297&ul=en-us&sr=1280x1024&ir=1&_eu=EAAI&_s=1&sid=1701156297&sct=1&seg=0&dl=https%3A%2F%2Fterraskills.com%2Fts-courses%2Fsafe-driving-is-a-life-skill%2F%3Fe%3Dindex%26wyc5ai7kLE%3D1701156287&dr=https%3A%2F%2Fterraskills.com%2Fen%2F%3F93023071&dt=SAFE%20DRIVING%20IS%20A%20LIFE%20SKILL%20%E2%80%93%20Terraskills%20%E2%80%93%20Professional%20Training%20in%20Abuja%20%7C%20Skills%20to%20excel&en=page_view&_fv=1&_ss=1&ep.anonymize_ip=true&tfd=2317
IP
216.239.32.36:443
ASN
#15169 GOOGLE

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-R942LLB0JN&_ono=1&gtm=45je3b81v9129101216&_p=1701156296829&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&gdid=dZTNiMT&cid=748876993.1701156297&ul=en-us&sr=1280x1024&ir=1&_eu=EAAI&_s=1&sid=1701156297&sct=1&seg=0&dl=https%3A%2F%2Fterraskills.com%2Fts-courses%2Fsafe-driving-is-a-life-skill%2F%3Fe%3Dindex%26wyc5ai7kLE%3D1701156287&dr=https%3A%2F%2Fterraskills.com%2Fen%2F%3F93023071&dt=SAFE%20DRIVING%20IS%20A%20LIFE%20SKILL%20%E2%80%93%20Terraskills%20%E2%80%93%20Professional%20Training%20in%20Abuja%20%7C%20Skills%20to%20excel&en=page_view&_fv=1&_ss=1&ep.anonymize_ip=true&tfd=2317 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://terraskills.com
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://terraskills.com
date: Tue, 28 Nov 2023 07:24:54 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/cart.css?ver=10.6.4

192.185.21.72

200 OK

83 kB

URL GET HTTP/2
terraskills.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/cart.css?ver=10.6.4
IP
192.185.21.72:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerLet's Encrypt
Subject*.terraskills.com
FingerprintBE:08:6E:E1:8B:8D:C2:05:7E:78:0D:9A:82:FE:BD:FD:4D:5D:FD:E6
ValiditySat, 30 Sep 2023 10:27:12 GMT - Fri, 29 Dec 2023 10:27:11 GMT

File type

Size
83 kB (82997 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/cart.css?ver=10.6.4 HTTP/1.1
Host: terraskills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Wed, 09 Aug 2023 13:03:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 0
x-nginx-cache: WordPress
content-type: text/css
date: Tue, 28 Nov 2023 07:24:52 GMT
server: Apache
X-Firefox-Spdy: h2

chimpstatic.com/mcjs-connected/js/users/11eb72b9b953673d0ae31c1e1/e4092463c030f784371c89a8a.js

23.208.19.236

200 OK

3.9 kB

URL GET HTTP/1.1
chimpstatic.com/mcjs-connected/js/users/11eb72b9b953673d0ae31c1e1/e4092463c030f784371c89a8a.js
IP
23.208.19.236:443
ASN
#35994 AKAMAI-AS

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerDigiCert Inc
Subjectwildcardsan.us15.list-manage.com
Fingerprint2F:74:E6:B8:56:C6:9A:B7:00:E3:0B:09:0C:9B:D1:AB:A0:98:95:BB
ValiditySun, 17 Sep 2023 00:00:00 GMT - Tue, 17 Sep 2024 23:59:59 GMT

File type
ASCII text, with very long lines (4042), with no line terminators
Size
3.9 kB (3861 bytes)
Hash
5abf2d5e492e34bd9e0e26c0fb0fe1e8
b18236cad0aba3536207a2f36c311d545d9f1426
3801dbd0536fd176826dd4cdbdb41482f69dd908bbb58b07413b08f072388424

HTTP Headers

GET /mcjs-connected/js/users/11eb72b9b953673d0ae31c1e1/e4092463c030f784371c89a8a.js HTTP/1.1
Host: chimpstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: YMOh+85wN0d7ukL4gTiyTzWYQOcjZfL7IoUKdDg8noIx9Lr9bnaxj5dvf2dBeCw5XsRYPr1kaJg=
x-amz-request-id: NJQ5TPSJ3ZX13K0S
Last-Modified: Mon, 29 Mar 2021 11:48:29 GMT
ETag: "d0ef7f0595d8d274d37fd3af862160fe"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
X-EdgeConnect-MidMile-RTT: 0, 0, 0, 0, 0, 0
X-EdgeConnect-Origin-MEX-Latency: 119, 103, 103, 429, 104, 103
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1792
Expires: Tue, 28 Nov 2023 07:54:45 GMT
Date: Tue, 28 Nov 2023 07:24:53 GMT
Content-Length: 1221
Connection: keep-alive

www.googletagmanager.com/gtag/js?id=G-R942LLB0JN&l=dataLayer&cx=c

216.58.211.8

200 OK

229 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-R942LLB0JN&l=dataLayer&cx=c
IP
216.58.211.8:443
ASN
#15169 GOOGLE

Requested by
https://terraskills.com/ts-courses/safe-driving-is-a-life-skill/?e=index&wyc5ai7kLE=1701156287
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type
ASCII text, with very long lines (5955)
Size
229 kB (228883 bytes)
Hash
d8ffe2fa73cfeb822076516361c11bfd
9f4e115a4d0955552a4d59ae4c23998602b029ab
d5be5b32788ad5bd59b571da3824dc8a4405f7fbab6cef3ece2ac9766c048aed

HTTP Headers

GET /gtag/js?id=G-R942LLB0JN&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://terraskills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 28 Nov 2023 07:24:53 GMT
expires: Tue, 28 Nov 2023 07:24:53 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 81012
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (34)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash