Check DNS, Urls + Redirects, Certificates and Content of your Website

0 in Queue, 0 of max. 8 Checks (20:00:54)
Why should you only use Prefix - Cookies? |
Hall of Fame - A+ and A

 

Shortcuts: 1. IP-Addresses | 2. DNSSEC | 3. Name Servers | 4. SOA-Entries | 5. Screenshots | 6. Url-Checks | 7. Comments | 8. Connections | 9. Certificates | 10. CT-Logs | 11. Html-Content | 12. Html-Parsing | 13. NameServer-IPAddresses | 14. CAA | 15. TXT | 16. DomainServiceEntries | 17. Cipher Suites | 18. Portchecks |

 

L

 

Loop - it's impossible to use this site, 2 invalid Headers

 

Checked:
03.10.2025 11:25:00

 

Older results

No older results found

 

1. IP-Addresses

HostTypeIP-Addressis auth.∑ Queries∑ Timeout
185.78.116.136
A
185.78.116.136
Krasnodar/Krasnodar Krai/Russia (RU) - TeleMaks Ltd
No Hostname found
yes


 

2. DNSSEC

 

No DNSSEC - Informations found

 

3. Name Servers

 

No Nameserver entries found

 

4. SOA-Entries

 

No SOA entries found

5. Screenshots

No Screenshot listed, because no url-check with https + http status 200-299, 400-599 + not-ACME-check found.

 

 

6. Url-Checks


:

:
DomainnameHttp-StatusredirectSec.G
• http://185.78.116.136/
185.78.116.136
301
https://192.168.10.3/
Html is minified: 103.00 %
0.167
E
Date: Fri, 03 Oct 2025 09:25:05 GMT
Server: Apache/2.4.52,(Ubuntu)
Location: https://192.168.10.3/
Content-Length: 309
Content-Type: text/html; charset=iso-8859-1

• https://185.78.116.136/
185.78.116.136
302
https://185.78.116.136/index.php/login

3.600
N-
Certificate error: RemoteCertificateNameMismatch
Date: Fri, 03 Oct 2025 09:25:05 GMT
Server: Apache/2.4.52,(Ubuntu)
Content-Security-Policy: default-src 'self'; script-src 'self' 'nonce-H7vDbJqymV4gJhk6gZbgJRuMeh2R+m2GM8l00pHXfy4='; style-src 'self' 'unsafe-inline'; frame-src *; img-src * data: blob:; font-src 'self' data:; media-src *; connect-src *; object-src 'none'; base-uri 'self';
Set-Cookie: oc_sessionPassphrase=rbeVJtx9sO4gqqHrGWfZ3IInbU%2BfsdOtAlG5sroeO3eTwda8QlQGsW8p8hHC2vSMja%2FDyzjKUqTbEcLszpUEIAB5IYLLm%2FX%2BPcsu8trIkByf4JeTAbzxcgQpx1LR%2BBCR; path=/; secure; HttpOnly; SameSite=Lax,__Host-nc_sameSiteCookielax=true; path=/; httponly;secure; expires=Fri, 31-Dec-2100 23:59:59 GMT; SameSite=lax,__Host-nc_sameSiteCookiestrict=true; path=/; httponly;secure; expires=Fri, 31-Dec-2100 23:59:59 GMT; SameSite=strict,ocssvrrcmj8a=ipndgcnugn61i2j4avhmt3vu2p; path=/; secure; HttpOnly; SameSite=Lax
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Robots-Tag: noindex, nofollow
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=15552000; includeSu>
Referrer-Policy: no-referrer
Location: https://185.78.116.136/index.php/login
Content-Length: 0
Content-Type: text/html; charset=UTF-8

• https://185.78.116.136/index.php/login

302
https://185.78.116.136/index.php/login

3.554
L-
Certificate error: RemoteCertificateNameMismatch
Date: Fri, 03 Oct 2025 09:25:27 GMT
Server: Apache/2.4.52,(Ubuntu)
X-Request-ID: 1ErtDJsmR03uNNvJN10q
Cache-Control: no-store, must-revalidate, no-cache
Content-Security-Policy: default-src 'none';base-uri 'none';manifest-src 'self';frame-ancestors 'none'
Feature-Policy: autoplay 'none';camera 'none';fullscreen 'none';geolocation 'none';microphone 'none';payment 'none'
X-Robots-Tag: noindex, nofollow
Set-Cookie: __Host-nc_sameSiteCookielax=true; path=/; httponly;secure; expires=Fri, 31-Dec-2100 23:59:59 GMT; SameSite=lax,__Host-nc_sameSiteCookiestrict=true; path=/; httponly;secure; expires=Fri, 31-Dec-2100 23:59:59 GMT; SameSite=strict
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=15552000; includeSu>
Referrer-Policy: same-origin
Location: /index.php/login
Content-Length: 0
Content-Type: text/html; charset=UTF-8

• https://192.168.10.3/

-14


10.027
T
Timeout - The operation has timed out.

• http://185.78.116.136/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
185.78.116.136
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0		301
https://192.168.10.3/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Html is minified: 102.44 %
Other inline scripts (∑/total): 0/0		0.163
E
Visible Content:
Date: Fri, 03 Oct 2025 09:25:11 GMT
Server: Apache/2.4.52,(Ubuntu)
Location: https://192.168.10.3/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Content-Length: 378
Content-Type: text/html; charset=iso-8859-1

• https://192.168.10.3/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de

-14


10.023
T
Timeout - The operation has timed out.
Visible Content:

• https://185.78.116.136/
185.78.116.136
302
https://185.78.116.136/index.php/login

3.430
N-
Certificate error: RemoteCertificateNameMismatch
Date: Fri, 03 Oct 2025 09:25:12 GMT
Server: Apache/2.4.52,(Ubuntu)
Content-Security-Policy: default-src 'self'; script-src 'self' 'nonce-x6YOStws1yiTw2vZTH1O1aAh5iMwKt9dFEnPC3yhqqk='; style-src 'self' 'unsafe-inline'; frame-src *; img-src * data: blob:; font-src 'self' data:; media-src *; connect-src *; object-src 'none'; base-uri 'self';
Set-Cookie: oc_sessionPassphrase=ITD44sY3TuXveox6EeBVMYpQZkC4GnwLEEZUm5S3BhxRQ73AL9sOPmifxjamCJUMEKx3ZcAf%2FLdoR6IzyK8RtpJNWyl1qY1oRiJVeqzUZnErFIYP%2FajeGX%2B3k%2FQ%2Fi%2B4z; path=/; secure; HttpOnly; SameSite=Lax,ocssvrrcmj8a=k608fb57uq0uqqpjcpjmtca2dp; path=/; secure; HttpOnly; SameSite=Lax
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Robots-Tag: noindex, nofollow
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=15552000; includeSu>
Referrer-Policy: no-referrer
Location: https://185.78.116.136/index.php/login
Content-Length: 0
Content-Type: text/html; charset=UTF-8

 

7. Comments


1. General Results, most used to calculate the result

Aname "185.78.116.136" is ipv4 address, public suffix is not defined
AGood: All ip addresses are public addresses
AGood: No cookie sent via http.
AGood: every cookie sent via https is marked as secure
AGood: Every cookie has a SameSite Attribute with a correct value Strict/Lax/None
BWarning: HSTS max-age is too short - minimum 31536000 = 365 days required, 15552000 seconds = 180 days found
Bhttps://185.78.116.136/ 185.78.116.136
302
max-age=15552000; includeSu>
Critical: HSTS-Header has Parse-Errors. Value of max-age is too small. Should be minimal one year = 31536000., Unknown directive found. Only max-age (with value), includeSubdomains or preload allowed.
Bhttps://185.78.116.136/index.php/login
302
max-age=15552000; includeSu>
Critical: HSTS-Header has Parse-Errors. Value of max-age is too small. Should be minimal one year = 31536000., Unknown directive found. Only max-age (with value), includeSubdomains or preload allowed.
Bhttps://185.78.116.136/ 185.78.116.136
302
max-age=15552000; includeSu>
Critical: HSTS-Header has Parse-Errors. Value of max-age is too small. Should be minimal one year = 31536000., Unknown directive found. Only max-age (with value), includeSubdomains or preload allowed.
CError - no version with Http-Status 200
Ehttp://185.78.116.136/ 185.78.116.136
301
https://192.168.10.3/
Wrong redirect one domain http to other domain https. First redirect to https without new dns query, so the server can send the HSTS header. That's fundamental using HSTS (Http Strict Transport Security). First step: Add correct redirects http ⇒ https. Perhaps in your port 80 vHost something like "RewriteEngine on" + "RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,QSA,R=permanent]" (two rows, without the "). Don't add this in your port 443 vHost, that would create a loop. Then recheck your domain, should be Grade C. There is the rule to select one https version as preferred version.
HFatal error: No https - result with http-status 200, no encryption
Lhttps://185.78.116.136/index.php/login
302
https://185.78.116.136/index.php/login
Error direct loop
Nhttps://185.78.116.136/ 185.78.116.136
302
https://185.78.116.136/index.php/login
Error - Certificate isn't trusted, RemoteCertificateNameMismatch
Nhttps://185.78.116.136/index.php/login
302
https://185.78.116.136/index.php/login
Error - Certificate isn't trusted, RemoteCertificateNameMismatch
Nhttps://185.78.116.136/ 185.78.116.136
302
https://185.78.116.136/index.php/login
Error - Certificate isn't trusted, RemoteCertificateNameMismatch
BNo _mta-sts TXT record found (mta-sts: Mail Transfer Agent Strict Transport Security - see RFC 8461). Read the result of server-daten.de (Url-Checks, Comments, Connections and DomainServiceRecords) to see a complete definition. Domainname: _mta-sts.185.78.116.136

2. Header-Checks

U

No https result with http status 2** or 4** (standard-check) found, no header checked.

3. DNS- and NameServer - Checks


4. Content- and Performance-critical Checks

https://192.168.10.3/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
-14

Fatal: Check of /.well-known/acme-challenge/random-filename has a timeout. Creating a Letsencrypt certificate via http-01 challenge can't work. You need a running webserver (http) and an open port 80. If it's a home server + ipv4, perhaps a correct port forwarding port 80 extern ⇒ working port intern is required. Port 80 / http can redirect to another domain port 80 or port 443, but not other ports. If it's a home server, perhaps your ISP blocks port 80. Then you may use the dns-01 challenge. Trouble creating a certificate? Use https://community.letsencrypt.org/ to ask.
AGood: All checked attribute values are enclosed in quotation marks (" or ').
AInfo: No img element found, no alt attribute checked
https://185.78.116.136/ 185.78.116.136
302
Strict-Transport-Security: max-age=15552000; includeSu>
Parse Error - Header can't be parsed
https://185.78.116.136/index.php/login
302
Strict-Transport-Security: max-age=15552000; includeSu>
Parse Error - Header can't be parsed
https://185.78.116.136/ 185.78.116.136
302
Strict-Transport-Security: max-age=15552000; includeSu>
Parse Error - Header can't be parsed
ADuration: 45466 milliseconds, 45.466 seconds

 

8. Connections

DomainIPPortCert.ProtocolKeyExchangeStrengthCipherStrengthHashAlgorithmOCSP stapling
Domain/KeyExchangeIP/StrengthPort/CipherCert./StrengthProtocol/HashAlgorithmOCSP stapling
185.78.116.136
185.78.116.136
443
name does not match
Tls12
ECDH Ephermal
255
Aes256
256
Sha384
not supported
ok
185.78.116.136
185.78.116.136
443
name does not match
Tls12

ECDH Ephermal
255
Aes256
256
Sha384
not supported
ok
no http/2 via ALPN 
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
no http/2 via ALPN
 Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
Chain (complete)

1CN=avanteko.ddns.net


2CN=R13, O=Let's Encrypt, C=US


185.78.116.136
185.78.116.136
443
name does not match
Tls12
ECDH Ephermal
255
Aes256
256
Sha384
not supported
ok

185.78.116.136
185.78.116.136
443
name does not match
Tls12

ECDH Ephermal
255
Aes256
256
Sha384
not supported
ok
no http/2 via ALPN 
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
no http/2 via ALPN
 Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
Chain (complete)

1CN=avanteko.ddns.net


2CN=R13, O=Let's Encrypt, C=US


185.78.116.136
185.78.116.136
443
name does not match
Tls12
ECDH Ephermal
255
Aes256
256
Sha384
not supported
ok

185.78.116.136
185.78.116.136
443
name does not match
Tls12

ECDH Ephermal
255
Aes256
256
Sha384
not supported
ok
no http/2 via ALPN 
Cert sent without SNI 		Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
no http/2 via ALPN
Cert sent without SNI 		Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
Chain (complete)

1CN=avanteko.ddns.net


2CN=R13, O=Let's Encrypt, C=US

 

9. Certificates

1.
1.
CN=avanteko.ddns.net
03.10.2025
01.01.2026
136 days expired		avanteko.ddns.net - 1 entry
1.
1.
CN=avanteko.ddns.net
03.10.2025

01.01.2026
136 days expired


avanteko.ddns.net - 1 entry

KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:058A03A88A8D653E2CF3036E30D86FE8676F
Thumbprint:1203F45DA5294440E3B197447C5E3071B2816616
SHA256 / Certificate:Ya2U3a+gblKh7xcRgeKmlPUOBLCVHPHjWpAjy1z6cwc=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):ccf8b0215c8d70429a832de76a497a4deb42e77be5bd95833d37c92aaf2053e8
SHA256 hex / Subject Public Key Information (SPKI):ccf8b0215c8d70429a832de76a497a4deb42e77be5bd95833d37c92aaf2053e8 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:yes
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)




2.
CN=R13, O=Let's Encrypt, C=US
13.03.2024
13.03.2027
expires in 300 days

2.
CN=R13, O=Let's Encrypt, C=US
13.03.2024

13.03.2027
expires in 300 days




KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:5A00F212D8D4B480F3924157EA298305
Thumbprint:22FF89586561FC2D52F77491E9F1EFF1B80BE33E
SHA256 / Certificate:07EoIWqEP47xMhUB9d9Spd9Sk57iwZKXcSzT3k1Bk1Q=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):025490860b498ab73c6a12f27a49ad5fe230fafe3ac8f6112c9b7d0aad46941d
SHA256 hex / Subject Public Key Information (SPKI):
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Clientauthentifizierung (1.3.6.1.5.5.7.3.2), Serverauthentifizierung (1.3.6.1.5.5.7.3.1)




3.
CN=ISRG Root X1, O=Internet Security Research Group, C=US
04.06.2015
04.06.2035
expires in 3305 days

3.
CN=ISRG Root X1, O=Internet Security Research Group, C=US
04.06.2015

04.06.2035
expires in 3305 days




KeyalgorithmRSA encryption (4096 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:008210CFB0D240E3594463E0BB63828B00
Thumbprint:CABD2A79A1076A31F21D253635CB039D4329A5E8
SHA256 / Certificate:lrzsBiZJdvN0YHeazyjFp8/oo8Cq4RqP/O4FwL3fCMY=
SHA256 hex / Cert (DANE * 0 1):96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6
SHA256 hex / PublicKey (DANE * 1 1):0b9fa5a59eed715c26c1020c711b4f6ec42d58b0015e14337a39dad301c5afc3
SHA256 hex / Subject Public Key Information (SPKI):0b9fa5a59eed715c26c1020c711b4f6ec42d58b0015e14337a39dad301c5afc3
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:




 

10. Last Certificates - Certificate Transparency Log Check

1. Source CertSpotter - active certificates (one check per day)

No CertSpotter - CT-Log entries found

 

2. Source crt.sh - old and new certificates, sometimes very slow - only certificates with "not after" > of the last months are listed

No CRT - CT-Log entries found

 

11. Html-Content - Entries

No Html-Content entries found. Only checked if https + status 200/401/403/404

 

12. Html-Parsing via https://validator.w3.org/nu/


No https result http status 200 and Content-Type text/html or text/xml found, no Html-Parsing - Check

 

13. Nameserver - IP-Adresses

Required Root-climbing DNS-Queries to find ip addresses of all Name Servers:

 

 

No NameServer - IP address - Informations found

 

14. CAA - Entries

No CAA entries found

 

15. TXT - Entries

No TXT entries found

 

16. DomainService - Entries

No DomainServiceEntries entries found

 

 

17. Cipher Suites

No results

 

18. Portchecks

No open Ports <> 80 / 443 found, so no additional Ports checked.

 

 

Permalink: https://check-your-website.server-daten.de/?i=2399551f-3cbb-46c3-b108-c6e5ddd4b8e6

 

Last Result: https://check-your-website.server-daten.de/?q=185.78.116.136 - 2025-10-03 11:25:00

 

Do you like this page? Support this tool, add a link on your page:

 

<a href="https://check-your-website.server-daten.de/?q=185.78.116.136" target="_blank">Check this Site: 185.78.116.136</a>

 

 

Do you really want to support this project? Donate: Check-your-website, IBAN DE98 1001 0010 0575 2211 07, SWIFT/BIC PBNKDEFF, Euro

 

QR-Code of this page - https://check-your-website.server-daten.de/?d=185.78.116.136

 

 

Jürgen Auer • Friedenstr. 37 • 10249 Berlin • +49(0)30 420 200 60 • info@sql-und-xml.de • USt-IdNr.: DE221734518

 

Errors, ideas, questions? Use the Contact form • A project using Server-Daten - Web Database solutions