Report Overview

  1. Submitted URL

    doterra.is/4l9h2q

  2. IP

    34.239.22.13

    ASN

    #14618 AMAZON-AES

  3. Submitted

    2022-12-11 09:34:23

    Access

  4. Website Title

  5. Final URL

  6. Tags

    None

  7. urlquery detections

    No alerts detected

Detections

  1. urlquery

    0

  2. Network Intrusion Detection

    0

  3. Threat Detection Systems

    6

Domain Summary

Domain / FQDNRankRegisteredFirst SeenLast Seen
push.services.mozilla.com21400001-01-01T00:00:00Z0001-01-01T00:00:00Z
content-signature-2.cdn.mozilla.net11520001-01-01T00:00:00Z0001-01-01T00:00:00Z
tenmax-static.cacafly.net954780001-01-01T00:00:00Z0001-01-01T00:00:00Z
connect.facebook.net1390001-01-01T00:00:00Z0001-01-01T00:00:00Z
ocsp.usertrust.com8990001-01-01T00:00:00Z0001-01-01T00:00:00Z
dmp.tenmax.io999100001-01-01T00:00:00Z0001-01-01T00:00:00Z
static.xx.fbcdn.net6610001-01-01T00:00:00Z0001-01-01T00:00:00Z
tpc.googlesyndication.com1260001-01-01T00:00:00Z0001-01-01T00:00:00Z
firefox.settings.services.mozilla.com8670001-01-01T00:00:00Z0001-01-01T00:00:00Z
contile.services.mozilla.com11140001-01-01T00:00:00Z0001-01-01T00:00:00Z
maxcdn.bootstrapcdn.com7240001-01-01T00:00:00Z0001-01-01T00:00:00Z
picsee.co2895270001-01-01T00:00:00Z0001-01-01T00:00:00Z
img-getpocket.cdn.mozilla.net16310001-01-01T00:00:00Z0001-01-01T00:00:00Z
ssp.tenmax.io1040840001-01-01T00:00:00Z0001-01-01T00:00:00Z
ocsp.pki.goog1750001-01-01T00:00:00Z0001-01-01T00:00:00Z
www.facebook.com990001-01-01T00:00:00Z0001-01-01T00:00:00Z
r3.o.lencr.org3440001-01-01T00:00:00Z0001-01-01T00:00:00Z
ocsp.digicert.com860001-01-01T00:00:00Z0001-01-01T00:00:00Z
securepubads.g.doubleclick.net1900001-01-01T00:00:00Z0001-01-01T00:00:00Z
92f078e037692eb5dd4500db653e28d2.safeframe.googlesyndication.comunknown0001-01-01T00:00:00Z0001-01-01T00:00:00Z
doterra.isunknown0001-01-01T00:00:00Z0001-01-01T00:00:00Z
ocsp.sca1b.amazontrust.com10150001-01-01T00:00:00Z0001-01-01T00:00:00Z
www.googletagservices.com1690001-01-01T00:00:00Z0001-01-01T00:00:00Z
adservice.google.no969690001-01-01T00:00:00Z0001-01-01T00:00:00Z
adservice.google.com760001-01-01T00:00:00Z0001-01-01T00:00:00Z
pagead2.googlesyndication.com1010001-01-01T00:00:00Z0001-01-01T00:00:00Z
www.google.com70001-01-01T00:00:00Z0001-01-01T00:00:00Z

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected


PhishTank

No alerts detected


Fortinet's Web Filter
SeverityIndicatorAlert
mediumdoterra.is/4l9h2qPhishing
mediumdoterra.is/js/bootstrap.min.jsPhishing
mediumdoterra.is/js/utility.jsPhishing

mnemonic secure dns

No alerts detected


Quad9 DNS

No alerts detected


JavaScript (146)

HTTP Transactions (75)

URLIPResponseSize
r3.o.lencr.org/
23.36.76.226200 OK503 B
doterra.is/4l9h2q
34.239.22.13200 OK3.3 kB
r3.o.lencr.org/
23.36.76.226200 OK503 B
r3.o.lencr.org/
23.36.76.226200 OK503 B
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK939 B
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK5.3 kB
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK12 B
ocsp.digicert.com/
93.184.220.29200 OK278 B
ocsp.digicert.com/
93.184.220.29200 OK278 B
tenmax-static.cacafly.net/ssp/adsbytenmax.js
172.67.23.85200 OK41 kB
maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
104.18.10.207200 OK7.3 kB
doterra.is/js/picsee.css
34.239.22.13200 OK1.8 kB
doterra.is/js/bootstrap.min.js
34.239.22.13200 OK9.5 kB
doterra.is/js/utility.js
34.239.22.13200 OK1.5 kB
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK329 B
ocsp.digicert.com/
93.184.220.29200 OK471 B
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK471 B
push.services.mozilla.com/
35.86.38.2101 Switching Protocols0 B
picsee.co/js/jquery-1.11.1.min.js
34.197.201.189200 OK33 kB
doterra.is/images/picsee_light_web.png
34.239.22.13200 OK6.7 kB
connect.facebook.net/zh_TW/sdk.js
31.13.72.12301 Moved Permanently0 B
ocsp.digicert.com/
93.184.220.29200 OK471 B
connect.facebook.net/zh_TW/sdk.js
31.13.72.12200 OK1.7 kB
ocsp.digicert.com/
93.184.220.29200 OK471 B
doterra.is/favicon.ico
34.239.22.13200 OK420 B
connect.facebook.net/zh_TW/sdk.js?hash=eae93b8111e00136a2eb653629280da0
31.13.72.12200 OK89 kB
r3.o.lencr.org/
23.36.76.226200 OK503 B
r3.o.lencr.org/
23.36.76.226200 OK503 B
r3.o.lencr.org/
23.36.76.226200 OK503 B
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe7732c6-dc98-445c-86c6-d413942250ea.jpeg
34.120.237.76200 OK10 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb6bca12a-103c-4b98-a218-27a61f8d6951.jpeg
34.120.237.76200 OK6.3 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa890f071-ec5c-4223-9724-f63b2c9a73f3.jpeg
34.120.237.76200 OK4.6 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd82bbb32-4d9c-4fdc-a2ed-c03be88389d2.jpeg
34.120.237.76200 OK12 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe639b598-228d-4b74-8dab-25ae9f33b0b6.jpeg
34.120.237.76200 OK6.0 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F05402c6b-a411-4f42-ad2f-5d62ae0b06b3.jpeg
34.120.237.76200 OK5.9 kB
ssp.tenmax.io/supply/v3/universal/spaceSetting?rmaxSpaceId=0cf0b05622074fba&referer=http%3A%2F%2Fdoterra.is%2F4l9h2q&bodyWidth=1280&bodyHeight=1024&cacheBuster=94f4dd8d-8834-4a3e-8645-5730ddbf4347
211.21.190.218200 OK117 B
ocsp.usertrust.com/
104.18.32.68200 OK471 B
ssp.tenmax.io/supply/v3/universal/plan?rmaxSpaceId=0cf0b05622074fba&referer=http%3A%2F%2Fdoterra.is%2F4l9h2q&bodyWidth=1280&bodyHeight=1024&cacheBuster=4adb6d2c-a71b-433c-827b-d375dc5a1238
211.21.190.218200 OK2.0 kB
www.googletagservices.com/tag/js/gpt.js
142.250.74.162200 OK28 kB
dmp.tenmax.io/p/b734323b-0532-40a6-8d4e-782e1c96bd3a?random=610489988
211.21.190.218200 57 B
ocsp.pki.goog/gts1c3
142.250.74.131200 OK472 B
ocsp.pki.goog/gts1c3
142.250.74.131200 OK472 B
securepubads.g.doubleclick.net/pagead/ppub_config?ippd=doterra.is
142.250.74.130200 OK36 B
securepubads.g.doubleclick.net/gpt/pubads_impl_2022120501.js
142.250.74.130200 OK132 kB
ocsp.pki.goog/gts1c3
142.250.74.131200 OK472 B
ocsp.pki.goog/gts1c3
142.250.74.131200 OK472 B
ocsp.pki.goog/gts1c3
142.250.74.131200 OK472 B
adservice.google.no/adsid/integrator.js?domain=doterra.is
142.250.74.162200 OK100 B
adservice.google.com/adsid/integrator.js?domain=doterra.is
172.217.21.162200 OK100 B
ocsp.pki.goog/gts1c3
142.250.74.131200 OK472 B
ocsp.pki.goog/gts1c3
142.250.74.131200 OK472 B
92f078e037692eb5dd4500db653e28d2.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
142.250.74.97200 OK2.7 kB
ssp.tenmax.io/supply/tracking/request?bid=fb596c90-7936-11ed-896d-1729dbaeadb5&chid=a1ebcf323fa54a53&sid=0cf0b05622074fba
211.21.190.218204 No Content0 B
ssp.tenmax.io/supply/v3/universal/ad?rmaxSpaceId=0cf0b05622074fba&sessionId=fb596c90-7936-11ed-896d-1729dbaeadb5&ts=1670751257049&id=e43da42c47f0425a&referer=http%3A%2F%2Fdoterra.is%2F4l9h2q&bodyWidth=1280&bodyHeight=1024&cacheBuster=3f28168e-a53a-4991-ac8e-29b017fc9205
211.21.190.218200 OK2 B
ssp.tenmax.io/supply/tracking/noFill?bid=fb596c90-7936-11ed-896d-1729dbaeadb5&chid=a1ebcf323fa54a53&sid=0cf0b05622074fba
211.21.190.218204 No Content0 B
ssp.tenmax.io/supply/tracking/request?bid=fb596c90-7936-11ed-896d-1729dbaeadb5&chid=e43da42c47f0425a&sid=0cf0b05622074fba
211.21.190.218204 No Content0 B
ssp.tenmax.io/supply/tracking/done?bid=fb596c90-7936-11ed-896d-1729dbaeadb5
211.21.190.218204 No Content0 B
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2022120501&st=env
142.250.74.2200 OK11 kB
ocsp.pki.goog/gts1c3
142.250.74.131200 OK472 B
static.xx.fbcdn.net/rsrc.php/v3/yO/l/1,cross/87nvCtiA_RS.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK5.1 kB
static.xx.fbcdn.net/rsrc.php/v3/y0/l/1,cross/C2kYI_hhVoR.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK4.0 kB
static.xx.fbcdn.net/rsrc.php/v3/ya/l/1,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK830 B
static.xx.fbcdn.net/rsrc.php/v3/yr/r/DtjqDzTgvAK.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK85 kB
static.xx.fbcdn.net/rsrc.php/v3/yr/r/zou-1UF9wGe.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK2.0 kB
tpc.googlesyndication.com/sodar/sodar2.js
172.217.21.161200 OK6.4 kB
static.xx.fbcdn.net/rsrc.php/v3/yR/r/bPhRbIw5d4Y.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK16 kB
www.facebook.com/v2.6/plugins/page.php?adapt_container_width=true&app_id=150378901782986&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df3b2d4d633a836%26domain%3Ddoterra.is%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fdoterra.is%252Ff2d14118524322c%26relation%3Dparent.parent&container_width=0&height=300&hide_cover=true&href=https%3A%2F%2Fwww.facebook.com%2Fpicsee.co&locale=zh_TW&sdk=joey&show_facepile=false&small_header=true&tabs=messages
31.13.72.36200 OK24 kB
static.xx.fbcdn.net/rsrc.php/v3/y8/r/nJt3gY8tj-R.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK5.7 kB
static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK293 B
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
172.217.21.161200 OK5.0 kB
static.xx.fbcdn.net/rsrc.php/v3/yY/r/7Nmln25n6YE.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK7.2 kB
static.xx.fbcdn.net/rsrc.php/v3iUNC4/yX/l/zh_TW/qSS37rnH1xp.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK24 kB
ocsp.pki.goog/gts1c3
142.250.74.131200 OK471 B
www.google.com/recaptcha/api2/aframe
216.58.207.228200 OK512 B
maxcdn.bootstrapcdn.com/bootstrap/3.3.4/css/bootstrap.min.css
104.18.10.207200 OK0 B