Check DNS, Urls + Redirects, Certificates and Content of your Website


 

 

 

1. IP-Addresses

HostTypeIP-Addressis auth.∑ Queries∑ Timeout
cl.1538x.xyz
A
72.52.178.23
Lansing/Michigan/United States (US) - Liquid Web, L.L.C
Hostname: haproxy05.parklogic.com
yes
1
0

AAAA

yes


www.cl.1538x.xyz
A
72.52.178.23
Lansing/Michigan/United States (US) - Liquid Web, L.L.C
Hostname: haproxy05.parklogic.com
yes
1
0

AAAA

yes


*.1538x.xyz
A
72.52.178.23
yes



AAAA

yes



CNAME

yes


*.cl.1538x.xyz
A
72.52.178.23
yes



AAAA

yes



CNAME

yes


 

2. DNSSEC

Zone (*)DNSSEC - Informations


Zone: (root)

(root)
1 DS RR published






DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest 4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=






Status: Valid because published






3 DNSKEY RR found






Public Key with Algorithm 8, KeyTag 20326, Flags 257 (SEP = Secure Entry Point)






Public Key with Algorithm 8, KeyTag 26470, Flags 256






Public Key with Algorithm 8, KeyTag 38696, Flags 257 (SEP = Secure Entry Point)






1 RRSIG RR to validate DNSKEY RR found






RRSIG-Owner (root), Algorithm: 8, 0 Labels, original TTL: 172800 sec, Signature-expiration: 21.02.2025, 00:00:00 +, Signature-Inception: 31.01.2025, 00:00:00 +, KeyTag 20326, Signer-Name: (root)






Status: Good - Algorithmus 8 and DNSKEY with KeyTag 20326 used to validate the DNSKEY RRSet






Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest "4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone



Zone: xyz

xyz
2 DS RR in the parent zone found






DS with Algorithm 8, KeyTag 3599, DigestType 2 and Digest uXM4abyEyGu1nRArpdprJ7IIhVIzKjnc1UvE6NZrBJk=






DS with Algorithm 8, KeyTag 18130, DigestType 2 and Digest WqWWEmZZTM6sUJSamSGf4ATxMOGGSkJxQ+n/LmQcrG8=






1 RRSIG RR to validate DS RR found






RRSIG-Owner xyz., Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 19.02.2025, 05:00:00 +, Signature-Inception: 06.02.2025, 04:00:00 +, KeyTag 26470, Signer-Name: (root)






Status: Good - Algorithmus 8 and DNSKEY with KeyTag 26470 used to validate the DS RRSet in the parent zone






2 DNSKEY RR found






Public Key with Algorithm 8, KeyTag 18130, Flags 257 (SEP = Secure Entry Point)






Public Key with Algorithm 8, KeyTag 65206, Flags 256






1 RRSIG RR to validate DNSKEY RR found






RRSIG-Owner xyz., Algorithm: 8, 1 Labels, original TTL: 3600 sec, Signature-expiration: 08.03.2025, 10:29:48 +, Signature-Inception: 06.02.2025, 08:59:48 +, KeyTag 18130, Signer-Name: xyz






Status: Good - Algorithmus 8 and DNSKEY with KeyTag 18130 used to validate the DNSKEY RRSet






Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 18130, DigestType 2 and Digest "WqWWEmZZTM6sUJSamSGf4ATxMOGGSkJxQ+n/LmQcrG8=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone



Zone: 1538x.xyz

1538x.xyz
0 DS RR in the parent zone found






DS-Query in the parent zone has a valid NSEC3 RR as result with the hashed query name "n68crvvi5cvk1s84rdp98d6phonoog3h" between the hashed NSEC3-owner "n68c5l2aj8c47tu7fbbpomno4ml2sq0u" and the hashed NextOwner "n6a9m980m4ivgehj7h1goimjn3u8h5vs". So the parent zone confirmes the not-existence of a DS RR.
Bitmap: NS, DS, RRSIG Validated: RRSIG-Owner n68c5l2aj8c47tu7fbbpomno4ml2sq0u.xyz., Algorithm: 8, 2 Labels, original TTL: 900 sec, Signature-expiration: 08.03.2025, 10:29:48 +, Signature-Inception: 06.02.2025, 08:59:48 +, KeyTag 65206, Signer-Name: xyz






DS-Query in the parent zone sends valid NSEC3 RR with the Hash "2tjms8vm0h8n7j9e748d19gpnujm0emj" as Owner. That's the Hash of "xyz" with the NextHashedOwnerName "2tjp61hrh0bqp2hj34juu7va1j23pcro". So that domain name is the Closest Encloser of "1538x.xyz". Opt-Out: True.
Bitmap: NS, SOA, RRSIG, DNSKEY, NSEC3PARAM Validated: RRSIG-Owner 2tjms8vm0h8n7j9e748d19gpnujm0emj.xyz., Algorithm: 8, 2 Labels, original TTL: 900 sec, Signature-expiration: 08.03.2025, 10:29:48 +, Signature-Inception: 06.02.2025, 08:59:48 +, KeyTag 65206, Signer-Name: xyz






0 DNSKEY RR found









Zone: cl.1538x.xyz

cl.1538x.xyz
0 DS RR in the parent zone found






0 DNSKEY RR found









Zone: www.cl.1538x.xyz

www.cl.1538x.xyz
0 DS RR in the parent zone found

 

3. Name Servers

DomainNameserverNS-IP
www.cl.1538x.xyz
  ns1.parklogic.com / cinnamon.parklogic.com


  ns2.parklogic.com / parmesan.parklogic.com

cl.1538x.xyz
  ns1.parklogic.com / cinnamon.parklogic.com
185.67.45.231
Amsterdam/North Holland/The Netherlands (NL) - Liquid Web B.V.


 
50.116.34.34
Atlanta/Georgia/United States (US) - Akamai Technologies, Inc.


 
50.28.104.44
Phoenix/Arizona/United States (US) - Liquid Web, L.L.C


 
50.28.32.153
Lansing/Michigan/United States (US) - Liquid Web, L.L.C


 
69.16.230.48
Atlanta/Georgia/United States (US) - SOURCEDNS


 
69.39.238.36
Arlington Heights/Illinois/United States (US) - GigeNET


 
69.39.238.37
Arlington Heights/Illinois/United States (US) - GigeNET


 
2001:1850:1:5:103:1400::
Arlington Heights/Illinois/United States (US) - GigeNET


 
2607:fad0:3706:3::
Ashburn/Virginia/United States (US) - Liquid Web, L.L.C


  ns2.parklogic.com / parmesan.parklogic.com
185.67.45.232
Amsterdam/North Holland/The Netherlands (NL) - Liquid Web B.V.


 
216.38.8.120
Arlington Heights/Illinois/United States (US) - GigeNET


 
216.38.8.121
Arlington Heights/Illinois/United States (US) - GigeNET


 
45.79.197.241
Atlanta/Georgia/United States (US) - Akamai Technologies, Inc.


 
50.28.102.86
Phoenix/Arizona/United States (US) - Liquid Web, L.L.C


 
50.28.32.155
Lansing/Michigan/United States (US) - Liquid Web, L.L.C


 
2001:1850:1:5:102:e600::
Arlington Heights/Illinois/United States (US) - GigeNET

1538x.xyz
  ns1.fp261.parklogic.com / cinnamon.parklogic.com
185.67.45.231
Amsterdam/North Holland/The Netherlands (NL) - Liquid Web B.V.


 
50.116.34.34
Atlanta/Georgia/United States (US) - Akamai Technologies, Inc.


 
50.28.104.44
Phoenix/Arizona/United States (US) - Liquid Web, L.L.C


 
50.28.32.153
Lansing/Michigan/United States (US) - Liquid Web, L.L.C


 
69.16.230.48
Atlanta/Georgia/United States (US) - SOURCEDNS


 
69.39.238.36
Arlington Heights/Illinois/United States (US) - GigeNET


 
69.39.238.37
Arlington Heights/Illinois/United States (US) - GigeNET


 
2001:1850:1:5:103:1400::
Arlington Heights/Illinois/United States (US) - GigeNET


 
2607:fad0:3706:3::
Ashburn/Virginia/United States (US) - Liquid Web, L.L.C


  ns1.parklogic.com / cinnamon.parklogic.com
185.67.45.231
Amsterdam/North Holland/The Netherlands (NL) - Liquid Web B.V.


 
50.116.34.34
Atlanta/Georgia/United States (US) - Akamai Technologies, Inc.


 
50.28.104.44
Phoenix/Arizona/United States (US) - Liquid Web, L.L.C


 
50.28.32.153
Lansing/Michigan/United States (US) - Liquid Web, L.L.C


 
69.16.230.48
Atlanta/Georgia/United States (US) - SOURCEDNS


 
69.39.238.36
Arlington Heights/Illinois/United States (US) - GigeNET


 
69.39.238.37
Arlington Heights/Illinois/United States (US) - GigeNET


 
2001:1850:1:5:103:1400::
Arlington Heights/Illinois/United States (US) - GigeNET


 
2607:fad0:3706:3::
Ashburn/Virginia/United States (US) - Liquid Web, L.L.C


  ns2.fp261.parklogic.com / parmesan.parklogic.com
185.67.45.232
Amsterdam/North Holland/The Netherlands (NL) - Liquid Web B.V.


 
216.38.8.120
Arlington Heights/Illinois/United States (US) - GigeNET


 
216.38.8.121
Arlington Heights/Illinois/United States (US) - GigeNET


 
45.79.197.241
Atlanta/Georgia/United States (US) - Akamai Technologies, Inc.


 
50.28.102.86
Phoenix/Arizona/United States (US) - Liquid Web, L.L.C


 
50.28.32.155
Lansing/Michigan/United States (US) - Liquid Web, L.L.C


 
2001:1850:1:5:102:e600::
Arlington Heights/Illinois/United States (US) - GigeNET


  ns2.parklogic.com / parmesan.parklogic.com
185.67.45.232
Amsterdam/North Holland/The Netherlands (NL) - Liquid Web B.V.


 
216.38.8.120
Arlington Heights/Illinois/United States (US) - GigeNET


 
216.38.8.121
Arlington Heights/Illinois/United States (US) - GigeNET


 
45.79.197.241
Atlanta/Georgia/United States (US) - Akamai Technologies, Inc.


 
50.28.102.86
Phoenix/Arizona/United States (US) - Liquid Web, L.L.C


 
50.28.32.155
Lansing/Michigan/United States (US) - Liquid Web, L.L.C


 
2001:1850:1:5:102:e600::
Arlington Heights/Illinois/United States (US) - GigeNET

xyz
  generationxyz.nic.xyz / PDUS-VJ5JVS-CTI2KM


  ns0.centralnic.net


  x.nic.xyz / PGXL-PS5KRW-2C7ZTP


  y.nic.xyz / PDUS-VJ5JVS-CTI2KM


  z.nic.xyz / SFQY-BG7AF9-XTW0MS

 

4. SOA-Entries


Domain:xyz
Zone-Name:
Primary:
Mail:
Serial:
Refresh:
Retry:
Expire:
TTL:
num Entries:1


Domain:xyz
Zone-Name:xyz
Primary:ns0.centralnic.net
Mail:hostmaster.centralnic.net
Serial:3000808766
Refresh:900
Retry:1800
Expire:6048000
TTL:3600
num Entries:4


Domain:1538x.xyz
Zone-Name:1538x.xyz
Primary:ns1.parklogic.com
Mail:hostmaster.1538x.xyz
Serial:2024090201
Refresh:3600
Retry:7200
Expire:1209600
TTL:3600
num Entries:32


Domain:cl.1538x.xyz
Zone-Name:cl.1538x.xyz
Primary:ns1.parklogic.com
Mail:hostmaster.1538x.xyz
Serial:2024090201
Refresh:3600
Retry:7200
Expire:1209600
TTL:3600
num Entries:16


Domain:www.cl.1538x.xyz
Zone-Name:www.cl.1538x.xyz
Primary:ns1.parklogic.com
Mail:hostmaster.1538x.xyz
Serial:2024090201
Refresh:3600
Retry:7200
Expire:1209600
TTL:3600
num Entries:2


5. Screenshots

No Screenshot listed, because no url-check with https + http status 200-299, 400-599 + not-ACME-check found.

 

 

6. Url-Checks


:

:
DomainnameHttp-StatusredirectSec.G
• http://cl.1538x.xyz/
72.52.178.23
302
http://ww7.1538x.xyz/?usid=16&utid=36669106308

0.310
D
Date: Thu, 06 Feb 2025 15:53:51 GMT
Connection: keep-alive
Location: http://ww7.1538x.xyz/?usid=16&utid=36669106308
Cache-Control: no-cache
Pragma: no-cache
Access-Control-Allow-Origin: *
Content-Type: text/html
Content-Length: 0

• http://www.cl.1538x.xyz/
72.52.178.23
302
http://ww1.1538x.xyz/?usid=16&utid=36669106354

0.167
D
Date: Thu, 06 Feb 2025 15:53:51 GMT
Connection: keep-alive
Location: http://ww1.1538x.xyz/?usid=16&utid=36669106354
Cache-Control: no-cache
Pragma: no-cache
Access-Control-Allow-Origin: *
Content-Type: text/html
Content-Length: 0

• http://ww7.1538x.xyz/?usid=16&utid=36669106308

200

Html is minified: 159.83 %
0.250

Date: Thu, 06 Feb 2025 15:54:05 GMT
X-Request-ID: 467dd7d3-86b7-4332-9791-67550a1b8ea8
Cache-Control: no-store, max-age=0
accept-ch: sec-ch-prefers-color-scheme
critical-ch: sec-ch-prefers-color-scheme
Vary: sec-ch-prefers-color-scheme
x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_YcKznWFFYMK7GKniU1v272edizAWrUBCy74BMDtFmT1iVtrzbwsSiYoXd1I84SsM6+aA+eAdrz/Kt8/ydEEEHg==
Set-Cookie: parking_session=467dd7d3-86b7-4332-9791-67550a1b8ea8; expires=Thu, 06 Feb 2025 16:09:05 GMT; path=/
Content-Type: text/html; charset=utf-8
Content-Length: 1122

• http://ww1.1538x.xyz/?usid=16&utid=36669106354
gzip used - 8227 / 25230 - 67.39 %
200

Html is minified: 179.85 %
0.257
H
Date: Thu, 06 Feb 2025 15:54:06 GMT
Transfer-Encoding: chunked
Vary: Accept-Encoding
Cache-Control: no-store, must-revalidate, no-cache, post-check=0, pre-check=0
Pragma: no-cache
x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANnylWw2vLY4hUn9w06zQKbhKBfvjFUCsdFlb6TdQhxb9RXWXuI4t31c+o8fYOv/s8q1LGPga3DE1L/tHU4LENMCAwEAAQ==_IMcUo6t0P9lqdT3UzdULRACAA1kIRJGoqF9CCMD11FcOG6Us/FnIN1AqFy0QJ1VeQbwyoQv2PR9K0W8HxAQvHQ==
x-cache-miss-from: parking-759f8f6b6-4jp88
Server: Parking/1.0
Content-Type: text/html; charset=UTF-8
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Thu, 06 Feb 2025 15:54:06 GMT
Content-Encoding: gzip
Content-Length: 8227

• http://ww1.1538x.xyz/?usid=24&utid=10498161823
gzip used - 8249 / 25230 - 67.30 %
200

Html is minified: 179.85 %
0.053
H
Date: Thu, 06 Feb 2025 15:54:06 GMT
Transfer-Encoding: chunked
Vary: Accept-Encoding
Cache-Control: no-store, must-revalidate, no-cache, post-check=0, pre-check=0
Pragma: no-cache
x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANnylWw2vLY4hUn9w06zQKbhKBfvjFUCsdFlb6TdQhxb9RXWXuI4t31c+o8fYOv/s8q1LGPga3DE1L/tHU4LENMCAwEAAQ==_X998xTqp4Q/ZS2HW1upAkWarZ79+fDqm8ogb8pFYYYeq6oFaxNAh+I3LCN9tXnENYvXUC49npx3AeCbyDfD+nA==
x-cache-miss-from: parking-759f8f6b6-rrjkl
Server: Parking/1.0
Content-Type: text/html; charset=UTF-8
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Thu, 06 Feb 2025 15:54:06 GMT
Content-Encoding: gzip
Content-Length: 8249

• http://ww12.1538x.xyz/?usid=24&utid=10498163151
gzip used - 6007 / 15817 - 62.02 %
200

Html is minified: 146.74 %
0.254
H
Accept-Ch: viewport-width,dpr,device-memory,rtt,downlink,ect,ua,ua-full-version,ua-platform,ua-platform-version,ua-arch,ua-model,ua-mobile
Accept-Ch-Lifetime: 30
Date: Thu, 06 Feb 2025 15:54:06 GMT
Server: Caddy,nginx
Vary: Accept-Encoding
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_rGkfzEA5RZBvsrcc/gaW5E6hEEVUniY2wkFi5dFgT9XrBr54TQs/OIhhFWVdfs6L3aK6DwuYmkRkE12YZqprTw==
X-Buckets: bucket003
X-Domain: 1538x.xyz
X-Language: german
X-Pcrew-Blocked-Reason: hosting network
X-Pcrew-Ip-Organization: STRATO
X-Subdomain: ww12
X-Template: tpl_CleanPeppermintBlack_twoclick
Transfer-Encoding: chunked
Content-Encoding: gzip
Content-Type: text/html; charset=UTF-8
Content-Length: 6007

• https://cl.1538x.xyz/
72.52.178.23
302
http://ww1.1538x.xyz/?usid=24&utid=10498161823

5.137
F
Date: Thu, 06 Feb 2025 15:53:52 GMT
Connection: keep-alive
Location: http://ww1.1538x.xyz/?usid=24&utid=10498161823
Cache-Control: no-cache
Pragma: no-cache
Access-Control-Allow-Origin: *
Content-Type: text/html
Content-Length: 0

• https://www.cl.1538x.xyz/
72.52.178.23
302
http://ww12.1538x.xyz/?usid=24&utid=10498163151

4.940
N
Certificate error: RemoteCertificateNameMismatch, RemoteCertificateChainErrors
Date: Thu, 06 Feb 2025 15:53:58 GMT
Connection: keep-alive
Location: http://ww12.1538x.xyz/?usid=24&utid=10498163151
Cache-Control: no-cache
Pragma: no-cache
Access-Control-Allow-Origin: *
Content-Type: text/html
Content-Length: 0

• http://cl.1538x.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
72.52.178.23
302
http://ww12.1538x.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de?usid=16&utid=36669109485

0.177
D
Visible Content:
Date: Thu, 06 Feb 2025 15:54:04 GMT
Connection: keep-alive
Location: http://ww12.1538x.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de?usid=16&utid=36669109485
Cache-Control: no-cache
Pragma: no-cache
Access-Control-Allow-Origin: *
Content-Type: text/html
Content-Length: 0

• http://www.cl.1538x.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
72.52.178.23
302
http://ww12.1538x.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de?usid=16&utid=36669109526

0.166
D
Visible Content:
Date: Thu, 06 Feb 2025 15:54:05 GMT
Connection: keep-alive
Location: http://ww12.1538x.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de?usid=16&utid=36669109526
Cache-Control: no-cache
Pragma: no-cache
Access-Control-Allow-Origin: *
Content-Type: text/html
Content-Length: 0

• http://ww12.1538x.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de?usid=16&utid=36669109485

404


0.090
A
Not Found
Visible Content:
Date: Thu, 06 Feb 2025 15:54:06 GMT
Server: Caddy,nginx
Content-Length: 0

• http://ww12.1538x.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de?usid=16&utid=36669109526

404


0.090
A
Not Found
Visible Content:
Date: Thu, 06 Feb 2025 15:54:06 GMT
Server: Caddy,nginx
Content-Length: 0

• https://72.52.178.23/
72.52.178.23
-103


0.264
P
SecureConnectionError (3, 0x80131501). The SSL connection could not be established, see inner exception. Authentication failed because the remote party sent a TLS alert: 'InternalError' (FF: SSL_ERROR_INTERNAL_ERROR_ALERT)

 

7. Comments


1. General Results, most used to calculate the result

Aname "cl.1538x.xyz" is subdomain, public suffix is ".xyz", top-level-domain is ".xyz", top-level-domain-type is "generic", tld-manager is "XYZ.COM LLC", num .xyz-domains preloaded: 1922 (complete: 263653)
AGood: All ip addresses are public addresses
Warning: Only one ip address found: cl.1538x.xyz has only one ip address.
Warning: Only one ip address found: www.cl.1538x.xyz has only one ip address.
Warning: No ipv6 address found. Ipv6 is the future with a lot of new features. So every domain name should have an ipv6 address. See https://en.wikipedia.org/wiki/IPv6: cl.1538x.xyz has no ipv6 address.
Warning: No ipv6 address found. Ipv6 is the future with a lot of new features. So every domain name should have an ipv6 address. See https://en.wikipedia.org/wiki/IPv6: www.cl.1538x.xyz has no ipv6 address.
AGood: No asked Authoritative Name Server had a timeout
HSTS-Preload-Status: unknown. Domain never included in the Preload-list. Check https://hstspreload.org/ to learn some basics about the Google-Preload-List.
Bhttps://cl.1538x.xyz/ 72.52.178.23
302

Missing HSTS-Header
Bhttps://www.cl.1538x.xyz/ 72.52.178.23
302

Missing HSTS-Header
http://ww7.1538x.xyz/?usid=16&utid=36669106308
200
parking_session=467dd7d3-86b7-4332-9791-67550a1b8ea8; expires=Thu, 06 Feb 2025 16:09:05 GMT; path=/
Fatal: Cookie sent via http. Never send Cookies / Session-Cookies via http. If a user uses an insecure WLan and if the same cookie is used to managed the authenticated session, it's possible to hack that user. Same with HttpOnly - without https that's only decorative.
Bhttp://ww7.1538x.xyz/?usid=16&utid=36669106308
200
parking_session=467dd7d3-86b7-4332-9791-67550a1b8ea8; expires=Thu, 06 Feb 2025 16:09:05 GMT; path=/
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
Dhttp://cl.1538x.xyz/ 72.52.178.23
302
http://ww7.1538x.xyz/?usid=16&utid=36669106308
Wrong redirect one domain http to other domain http. First redirect to https without changing the domain, so no new dns query is required. So the server can send the HSTS header. That's fundamental using HSTS (Http Strict Transport Security). First step: Add correct redirects http ⇒ https. Perhaps in your port 80 vHost something like "RewriteEngine on" + "RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,QSA,R=permanent]" (two rows, without the "). Don't add this in your port 443 vHost, that would create a loop. Then recheck your domain, should be Grade C. There is the rule to select one https version as preferred version.
Dhttp://www.cl.1538x.xyz/ 72.52.178.23
302
http://ww1.1538x.xyz/?usid=16&utid=36669106354
Wrong redirect one domain http to other domain http. First redirect to https without changing the domain, so no new dns query is required. So the server can send the HSTS header. That's fundamental using HSTS (Http Strict Transport Security). First step: Add correct redirects http ⇒ https. Perhaps in your port 80 vHost something like "RewriteEngine on" + "RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,QSA,R=permanent]" (two rows, without the "). Don't add this in your port 443 vHost, that would create a loop. Then recheck your domain, should be Grade C. There is the rule to select one https version as preferred version.
Dhttp://cl.1538x.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 72.52.178.23
302
http://ww12.1538x.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de?usid=16&utid=36669109485
Wrong redirect one domain http to other domain http. First redirect to https without changing the domain, so no new dns query is required. So the server can send the HSTS header. That's fundamental using HSTS (Http Strict Transport Security). First step: Add correct redirects http ⇒ https. Perhaps in your port 80 vHost something like "RewriteEngine on" + "RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,QSA,R=permanent]" (two rows, without the "). Don't add this in your port 443 vHost, that would create a loop. Then recheck your domain, should be Grade C. There is the rule to select one https version as preferred version.
Dhttp://www.cl.1538x.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 72.52.178.23
302
http://ww12.1538x.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de?usid=16&utid=36669109526
Wrong redirect one domain http to other domain http. First redirect to https without changing the domain, so no new dns query is required. So the server can send the HSTS header. That's fundamental using HSTS (Http Strict Transport Security). First step: Add correct redirects http ⇒ https. Perhaps in your port 80 vHost something like "RewriteEngine on" + "RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,QSA,R=permanent]" (two rows, without the "). Don't add this in your port 443 vHost, that would create a loop. Then recheck your domain, should be Grade C. There is the rule to select one https version as preferred version.
Fhttps://cl.1538x.xyz/ 72.52.178.23
302
http://ww1.1538x.xyz/?usid=24&utid=10498161823
Wrong redirect https - http - never redirect https to http
Fhttps://www.cl.1538x.xyz/ 72.52.178.23
302
http://ww12.1538x.xyz/?usid=24&utid=10498163151
Wrong redirect https - http - never redirect https to http
HFatal error: No https - result with http-status 200, no encryption
HFatal error: http result with http-status 200, no encryption. Add a redirect http ⇒ https, so every connection is secure. Perhaps in your port 80 vHost something like "RewriteEngine on" + "RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,QSA,R=permanent]" (two rows, without the "). Don't add this in your port 443 vHost, that would create a loop.
Nhttps://www.cl.1538x.xyz/ 72.52.178.23
302
http://ww12.1538x.xyz/?usid=24&utid=10498163151
Error - Certificate isn't trusted, RemoteCertificateNameMismatch, RemoteCertificateChainErrors
Info: Checking the ip addresses of that domain name not exact one certificate found. So it's impossible to check if that domain requires Server Name Indication (SNI).: Domain cl.1538x.xyz, 1 ip addresses.
Info: Checking the ip addresses of that domain name not exact one certificate found. So it's impossible to check if that domain requires Server Name Indication (SNI).: Domain www.cl.1538x.xyz, 1 ip addresses.
AGood: _mta-sts TXT record found (mta-sts: Mail Transfer Agent Strict Transport Security - see RFC 8461). Domainname: _mta-sts.cl.1538x.xyz
BBad: _mta-sts TXT found, but invalid

2. Header-Checks

U

No https result with http status 2** or 4** (standard-check) found, no header checked.

3. DNS- and NameServer - Checks

AInfo:: 2 Root-climbing DNS Queries required to find all IPv4- and IPv6-Addresses of 2 Name Servers.
AInfo:: 2 Queries complete, 2 with IPv6, 0 with IPv4.
AGood: All DNS Queries done via IPv6.
AGood: Some ip addresses of name servers found with the minimum of two DNS Queries. One to find the TLD-Zone, one to ask the TLD-Zone.ns1.parklogic.com (185.67.45.231, 2001:1850:1:5:103:1400::, 2600:3c02::f03c:92ff:fe7f:1f1d, 2607:fad0:3706:3::, 50.116.34.34, 50.28.104.44, 50.28.32.153, 69.16.230.48, 69.39.238.36, 69.39.238.37), ns2.parklogic.com (185.67.45.232, 2001:1850:1:5:102:e600::, 216.38.8.120, 216.38.8.121, 2600:3c02::f03c:92ff:fe9c:edd9, 45.79.197.241, 50.28.102.86, 50.28.32.155)
AGood (1 - 3.0):: An average of 1.0 queries per domain name server required to find all ip addresses of all name servers.
AInfo:: 2 different Name Servers found: ns1.parklogic.com, ns2.parklogic.com, 2 Name Servers included in Delegation: ns1.parklogic.com, ns2.parklogic.com, 2 Name Servers included in 1 Zone definitions: ns1.parklogic.com, ns2.parklogic.com, 1 Name Servers listed in SOA.Primary: ns1.parklogic.com.
AGood: Only one SOA.Primary Name Server found.: ns1.parklogic.com.
AGood: SOA.Primary Name Server included in the delegation set.: ns1.parklogic.com.
AGood: Consistency between delegation and zone. The set of NS records served by the authoritative name servers must match those proposed for the delegation in the parent zone. Ordered list of name servers: ns1.parklogic.com, ns2.parklogic.com
AGood: All Name Server Domain Names have a Public Suffix.
AGood: Minimal 2 different name servers (public suffix and public ip address) found: 2 different Name Servers found
Warning: All Name Servers have the same Top Level Domain / Public Suffix. If there is a problem with that Top Level Domain, your domain may be affected. Better: Use Name Servers with different top level domains.: 2 Name Servers, 1 Top Level Domain: com
Warning: All Name Servers have the same domain name. If there is a problem with that domain name (or with the name servers of that domain name), your domain may be affected. Better: Use Name Servers with different domain names / different top level domains.: Only one domain name used: parklogic.com
AGood: Name servers with different Country locations found: 2 Name Servers, 2 Countries: NL, US
A
AGood: Nameserver supports TCP connections: 16 good Nameserver
AGood: Nameserver supports Echo Capitalization: 16 good Nameserver
AGood: Nameserver supports EDNS with max. 512 Byte Udp payload, message is smaller: 16 good Nameserver
AGood: Nameserver has passed 10 EDNS-Checks (OP100, FLAGS, V1, V1OP100, V1FLAGS, DNSSEC, V1DNSSEC, NSID, COOKIE, CLIENTSUBNET): 16 good Nameserver
Nameserver doesn't pass all EDNS-Checks: ns0.centralnic.net: OP100: no result. FLAGS: no result. V1: no result. V1OP100: no result. V1FLAGS: no result. DNSSEC: no result. V1DNSSEC: no result. NSID: no result. COOKIE: no result. CLIENTSUBNET: no result.
Nameserver doesn't pass all EDNS-Checks: x.nic.xyz: OP100: ok. FLAGS: ok. V1: ok. V1OP100: ok. V1FLAGS: ok. DNSSEC: ok. V1DNSSEC: ok. NSID: ok (PGXL-PS5KRW-2C7ZTP). COOKIE: SOA expected, but NOT found, NOERR expected, BADVER found, Version 0 expectend and found. CLIENTSUBNET: ok.
Nameserver doesn't pass all EDNS-Checks: z.nic.xyz: OP100: ok. FLAGS: ok. V1: ok. V1OP100: ok. V1FLAGS: ok. DNSSEC: ok. V1DNSSEC: ok. NSID: ok (SFQY-BG7AF9-XTW0MS). COOKIE: SOA expected, but NOT found, NOERR expected, BADVER found, Version 0 expectend and found. CLIENTSUBNET: ok.
AGood: All SOA have the same Serial Number
Warning: No CAA entry with issue/issuewild found, every CAA can create a certificate. Read https://en.wikipedia.org/wiki/DNS_Certification_Authority_Authorization to learn some basics about the idea of CAA. Your name server must support such an entry. Not all dns providers support CAA entries.

4. Content- and Performance-critical Checks

AGood: All checks /.well-known/acme-challenge/random-filename without redirects answer with the expected http status 404 - Not Found. Creating a Letsencrypt certificate via http-01 challenge should work. If it doesn't work: Check your vHost configuration (apachectl -S, httpd -S, nginx -T). Every combination of port and ServerName / ServerAlias (Apache) or Server (Nginx) must be unique. Merge duplicated entries in one vHost. If you use an IIS, extensionless files must be allowed in the /.well-known/acme-challenge subdirectory. Create a web.config in that directory. Content: <configuration><system.webServer><staticContent><mimeMap fileExtension="." mimeType="text/plain" /></staticContent></system.webServer></configuration>. If you have a redirect http ⇒ https, that's ok, Letsencrypt follows such redirects to port 80 / 443 (same or other server). There must be a certificate. But the certificate may be expired, self signed or with a not matching domain name. Checking the validation file Letsencrypt ignores such certificate errors. Trouble creating a certificate? Use https://community.letsencrypt.org/ to ask.
AInfo: No img element found, no alt attribute checked
AGood: Domainname is not on the "Specially Designated Nationals And Blocked Persons List" (SDN). That's an US-list of individuals and companies owned or controlled by, or acting for or on behalf of, targeted countries. It also lists individuals, groups, and entities, such as terrorists and narcotics traffickers designated under programs that are not country-specific. Collectively, such individuals and companies are called "Specially Designated Nationals" or "SDNs." Their assets are blocked and U.S. persons are generally prohibited from dealing with them. So if a domain name is on that list, it's impossible to create a Letsencrypt certificate with that domain name. Check the list manual - https://www.treasury.gov/resource-center/sanctions/sdn-list/pages/default.aspx
AInfo: Different Server-Headers found
ADuration: 387603 milliseconds, 387.603 seconds

 

8. Connections

DomainIPPortCert.ProtocolKeyExchangeStrengthCipherStrengthHashAlgorithmOCSP stapling
Domain/KeyExchangeIP/StrengthPort/CipherCert./StrengthProtocol/HashAlgorithmOCSP stapling
cl.1538x.xyz
72.52.178.23
443
ok
Tls12
ECDH Ephermal
255
Aes256
256
Sha384
not supported
ok
cl.1538x.xyz
72.52.178.23
443
ok
Tls12

ECDH Ephermal
255
Aes256
256
Sha384
not supported
ok
no http/2 via ALPN 
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
no http/2 via ALPN
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
Chain (complete)

1CN=cl.1538x.xyz


2CN=R11, O=Let's Encrypt, C=US


www.cl.1538x.xyz
72.52.178.23
443
Certificate/chain invalid and wrong name
Tls12
ECDH Ephermal
255
Aes256
256
Sha384
not supported
ok

www.cl.1538x.xyz
72.52.178.23
443
Certificate/chain invalid and wrong name
Tls12

ECDH Ephermal
255
Aes256
256
Sha384
not supported
ok
no http/2 via ALPN 
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
no http/2 via ALPN
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
Self signed certificate

1

 

9. Certificates

1.
1.
CN=cl.1538x.xyz
19.12.2024
19.03.2025
expires in 28 days
cl.1538x.xyz - 1 entry
1.
1.
CN=cl.1538x.xyz
19.12.2024

19.03.2025
expires in 28 days


cl.1538x.xyz - 1 entry

KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:032FD1D64146A5BABAB075202CB1BF893BA4
Thumbprint:0E3F3350ADA7F95D8E1B851FDFC3DC80E0AFF035
SHA256 / Certificate:+PfVI4UHT7hD9azSE8fValr6kEHhkTkjx7unieKm1Zo=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):053375e9ebc4acc9268c1fe56a3d010d3daac1f11b5502255f9277763e4551f4
SHA256 hex / Subject Public Key Information (SPKI):053375e9ebc4acc9268c1fe56a3d010d3daac1f11b5502255f9277763e4551f4 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:http://r11.o.lencr.org
OCSP - must staple:no
Certificate Transparency:yes
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)




2.
CN=R11, O=Let's Encrypt, C=US
13.03.2024
13.03.2027
expires in 752 days


2.
CN=R11, O=Let's Encrypt, C=US
13.03.2024

13.03.2027
expires in 752 days




KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:008A7D3E13D62F30EF2386BD29076B34F8
Thumbprint:696DB3AF0DFFC17E65C6A20D925C5A7BD24DEC7E
SHA256 / Certificate:WR6c5shj06B56fq+FHjHM5omshJp3eeVIRNhAkrjGkQ=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):6ddac18698f7f1f7e1c69b9bce420d974ac6f94ca8b2c761701623f99c767dc7
SHA256 hex / Subject Public Key Information (SPKI):
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Clientauthentifizierung (1.3.6.1.5.5.7.3.2), Serverauthentifizierung (1.3.6.1.5.5.7.3.1)




3.
CN=ISRG Root X1, O=Internet Security Research Group, C=US
04.06.2015
04.06.2035
expires in 3757 days


3.
CN=ISRG Root X1, O=Internet Security Research Group, C=US
04.06.2015

04.06.2035
expires in 3757 days




KeyalgorithmRSA encryption (4096 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:008210CFB0D240E3594463E0BB63828B00
Thumbprint:CABD2A79A1076A31F21D253635CB039D4329A5E8
SHA256 / Certificate:lrzsBiZJdvN0YHeazyjFp8/oo8Cq4RqP/O4FwL3fCMY=
SHA256 hex / Cert (DANE * 0 1):96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6
SHA256 hex / PublicKey (DANE * 1 1):0b9fa5a59eed715c26c1020c711b4f6ec42d58b0015e14337a39dad301c5afc3
SHA256 hex / Subject Public Key Information (SPKI):0b9fa5a59eed715c26c1020c711b4f6ec42d58b0015e14337a39dad301c5afc3
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:




2.
1.

13.11.2024
11.11.2034
expires in 3552 days

2.
1.

13.11.2024

11.11.2034
expires in 3552 days




KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:30229DC631C2D69660D1B626AFF15A17028969C2
Thumbprint:FDFB0DFEF59B3D245FEEA3E45456FA3A4E64CFCF
SHA256 / Certificate:EBm95E1sLTt0uquAwI0wFYp0M7ZXnH8nAAopHBbPR5s=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):23718dc1aca76cf4e5eb3fe36de7af3f8287ca43b98dbd770e79a45fa6e2c33c
SHA256 hex / Subject Public Key Information (SPKI):23718dc1aca76cf4e5eb3fe36de7af3f8287ca43b98dbd770e79a45fa6e2c33c (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:


UntrustedRoot: A certificate chain processed, but terminated in a root certificate which is not trusted by the trust provider.


 

10. Last Certificates - Certificate Transparency Log Check

1. Source CertSpotter - active certificates (one check per day)

Issuerlast 7 daysactivenum Certs
CN=R11, O=Let's Encrypt, C=US
0
1
1

CertSpotter-IdIssuernot beforenot afterDomain namesLE-Duplicatenext LE
8982968409
leaf cert
CN=R11, O=Let's Encrypt, C=US
2024-12-19 21:47:18
2025-03-19 21:47:17
cl.1538x.xyz - 1 entries


 

2. Source crt.sh - old and new certificates, sometimes very slow - only certificates with "not after" > of the last months are listed

Issuerlast 7 daysactivenum Certs
CN=R10, O=Let's Encrypt, C=US
0
0
2
CN=R11, O=Let's Encrypt, C=US
0
1
1
CN=GTS CA 1P5, O=Google Trust Services LLC, C=US
0
0
1
CN=E1, O=Let's Encrypt, C=US
0
0
1

CRT-IdIssuernot beforenot afterDomain namesLE-Duplicatenext LE
16170348278
leaf cert
CN=R11, O=Let's Encrypt, C=US
2024-12-19 20:47:18
2025-03-19 20:47:17
cl.1538x.xyz
1 entries


14032247545
precert
CN=R10, O=Let's Encrypt, C=US
2024-08-03 17:15:02
2024-11-01 18:15:01
www.cl.1538x.xyz
1 entries


14018824654
precert
CN=R10, O=Let's Encrypt, C=US
2024-08-02 05:35:30
2024-10-31 06:35:29
cl.1538x.xyz
1 entries


10046608724
precert
CN=GTS CA 1P5, O=Google Trust Services LLC, C=US
2023-08-02 03:24:55
2023-10-31 04:24:54
*.1538x.xyz, 1538x.xyz
2 entries


10072382223
precert
CN=E1, O=Let's Encrypt, C=US
2023-08-02 03:22:50
2023-10-31 04:22:49
*.1538x.xyz, 1538x.xyz
2 entries


 

11. Html-Content - Entries

No Html-Content entries found. Only checked if https + status 200/401/403/404

 

12. Html-Parsing via https://validator.w3.org/nu/


No https result http status 200 and Content-Type text/html or text/xml found, no Html-Parsing - Check

 

13. Nameserver - IP-Adresses

Required Root-climbing DNS-Queries to find ip addresses of all Name Servers: ns1.parklogic.com, ns2.parklogic.com

 

QNr.DomainTypeNS used
1
com
NS
j.root-servers.net (2001:503:c27::2:30)

Answer: a.gtld-servers.net, b.gtld-servers.net, c.gtld-servers.net, d.gtld-servers.net, e.gtld-servers.net, f.gtld-servers.net, g.gtld-servers.net, h.gtld-servers.net, i.gtld-servers.net, j.gtld-servers.net, k.gtld-servers.net, l.gtld-servers.net, m.gtld-servers.net
2
ns1.parklogic.com: 185.67.45.231, 2001:1850:1:5:103:1400::, 2600:3c02::f03c:92ff:fe7f:1f1d, 2607:fad0:3706:3::, 50.116.34.34, 50.28.104.44, 50.28.32.153, 69.16.230.48, 69.39.238.36, 69.39.238.37
NS
a.gtld-servers.net (2001:503:a83e::2:30)

Answer: ns2.parklogic.com
185.67.45.232, 2001:1850:1:5:102:e600::, 216.38.8.120, 216.38.8.121, 2600:3c02::f03c:92ff:fe9c:edd9, 45.79.197.241, 50.28.102.86, 50.28.32.155

Answer: ns3.parklogic.com
185.67.45.231, 2001:1850:1:5:103:1400::, 2600:3c02::f03c:92ff:fe7f:1f1d, 2607:fad0:3706:3::, 50.116.34.34, 50.28.104.44, 50.28.32.153, 69.16.230.48, 69.39.238.36, 69.39.238.37

Answer: ns4.parklogic.com
50.28.104.44

Answer: ns5.parklogic.com
185.67.45.231, 2001:1850:1:5:103:1400::, 2600:3c02::f03c:92ff:fe7f:1f1d, 2607:fad0:3706:3::, 50.116.34.34, 50.28.104.44, 50.28.32.153, 69.16.230.48, 69.39.238.36, 69.39.238.37

 

14. CAA - Entries

DomainnameflagNameValue∑ Queries∑ Timeout
www.cl.1538x.xyz
0

no CAA entry found
1
0
cl.1538x.xyz
0

no CAA entry found
1
0
1538x.xyz
0

no CAA entry found
1
0
xyz
0

no CAA entry found
1
0

 

15. TXT - Entries

DomainnameTXT EntryStatus∑ Queries∑ Timeout
1538x.xyz
v=spf1 -all
ok
1
0
cl.1538x.xyz
v=spf1 -all
ok
1
0
www.cl.1538x.xyz
v=spf1 -all
ok
1
0
_acme-challenge.cl.1538x.xyz
v=spf1 -all
missing entry or wrong length
1
0
_acme-challenge.www.cl.1538x.xyz
v=spf1 -all
missing entry or wrong length
1
0
_acme-challenge.cl.1538x.xyz.1538x.xyz
v=spf1 -all
perhaps wrong
1
0
_acme-challenge.cl.1538x.xyz.cl.1538x.xyz
v=spf1 -all
perhaps wrong
1
0
_acme-challenge.www.cl.1538x.xyz.cl.1538x.xyz
v=spf1 -all
perhaps wrong
1
0
_acme-challenge.www.cl.1538x.xyz.www.cl.1538x.xyz
v=spf1 -all
perhaps wrong
1
0

 

16. DomainService - Entries

TypeDomainPrefValueDNS-errornum AnswersStatusDescription
MX

cl.1538x.xyz
10
mx156.hostedmxserver.com
01ok

A


147.182.189.184
08ok

A


147.182.160.18
08ok

A


147.182.180.139
08ok

A


164.90.197.79
08ok

A


164.90.197.162
08ok

A


147.182.130.78
08ok

A


164.90.197.105
08ok

A


164.90.197.143
08ok

CNAME


00ok
MX

www.cl.1538x.xyz
10
mx156.hostedmxserver.com
01ok

A


164.90.197.105
08ok

A


147.182.180.139
08ok

A


164.90.197.143
08ok

A


164.90.197.162
08ok

A


147.182.189.184
08ok

A


147.182.130.78
08ok

A


147.182.160.18
08ok

A


164.90.197.79
08ok

CNAME


00ok
_mta-sts
TXT
_mta-sts.cl.1538x.xyz

v=spf1 -all
2A MTA-STS TXT Entry (Mail Transfer Agent Strict Transport Security) must start with "'v=STSv1". Do you really want to create a MTA-STS? Or is it the effect of a wildcard * DNS?
SPF
TXT
cl.1538x.xyz

v=spf1 -all
ok

 

 

17. Cipher Suites

Summary
DomainIPPortnum CipherstimeStd.ProtocolForward Secrecy
cl.1538x.xyz
72.52.178.23
443
6 Ciphers77.74 sec
0 without, 6 FS
100.00 %
www.cl.1538x.xyz
72.52.178.23
443
6 Ciphers78.69 sec
0 without, 6 FS
100.00 %
Complete

2
12 Ciphers
6.00 Ciphers/Check
156.42 sec78.21 sec/Check
0 without, 12 FS
100.00 %

Details
DomainIPPortCipher (OpenSsl / IANA)
cl.1538x.xyz
72.52.178.23
443
ECDHE-RSA-CHACHA20-POLY1305
(Secure)
TLSv1.2
0xCC,0xA8
FS
6 Ciphers, 77.74 sec
TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256

ECDH
RSA
CHACHA20/POLY1305(256)
AEAD




ECDHE-RSA-AES256-GCM-SHA384
(Secure)
TLSv1.2
0xC0,0x30
FS

TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384

ECDH
RSA
AESGCM(256)
AEAD




DHE-RSA-CHACHA20-POLY1305
(Secure)
TLSv1.2
0xCC,0xAA
FS

TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256

DH
RSA
CHACHA20/POLY1305(256)
AEAD




DHE-RSA-AES256-GCM-SHA384
(Secure)
TLSv1.2
0x00,0x9F
FS

TLS_DHE_RSA_WITH_AES_256_GCM_SHA384

DH
RSA
AESGCM(256)
AEAD




ECDHE-RSA-AES128-GCM-SHA256
(Secure)
TLSv1.2
0xC0,0x2F
FS

TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256

ECDH
RSA
AESGCM(128)
AEAD




DHE-RSA-AES128-GCM-SHA256
(Secure)
TLSv1.2
0x00,0x9E
FS

TLS_DHE_RSA_WITH_AES_128_GCM_SHA256

DH
RSA
AESGCM(128)
AEAD

www.cl.1538x.xyz
72.52.178.23
443
ECDHE-RSA-CHACHA20-POLY1305
(Secure)
TLSv1.2
0xCC,0xA8
FS
6 Ciphers, 78.69 sec
TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256

ECDH
RSA
CHACHA20/POLY1305(256)
AEAD




ECDHE-RSA-AES256-GCM-SHA384
(Secure)
TLSv1.2
0xC0,0x30
FS

TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384

ECDH
RSA
AESGCM(256)
AEAD




DHE-RSA-CHACHA20-POLY1305
(Secure)
TLSv1.2
0xCC,0xAA
FS

TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256

DH
RSA
CHACHA20/POLY1305(256)
AEAD




DHE-RSA-AES256-GCM-SHA384
(Secure)
TLSv1.2
0x00,0x9F
FS

TLS_DHE_RSA_WITH_AES_256_GCM_SHA384

DH
RSA
AESGCM(256)
AEAD




ECDHE-RSA-AES128-GCM-SHA256
(Secure)
TLSv1.2
0xC0,0x2F
FS

TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256

ECDH
RSA
AESGCM(128)
AEAD




DHE-RSA-AES128-GCM-SHA256
(Secure)
TLSv1.2
0x00,0x9E
FS

TLS_DHE_RSA_WITH_AES_128_GCM_SHA256

DH
RSA
AESGCM(128)
AEAD

 

18. Portchecks

DomainIPPortDescriptionResultAnswer
cl.1538x.xyz
72.52.178.23
21
FTP



cl.1538x.xyz
72.52.178.23
21
FTP



cl.1538x.xyz
72.52.178.23
22
SSH
open
Exceeded MaxStartups

cl.1538x.xyz
72.52.178.23
22
SSH
open
Exceeded MaxStartups

cl.1538x.xyz
72.52.178.23
25
SMTP



cl.1538x.xyz
72.52.178.23
25
SMTP



cl.1538x.xyz
72.52.178.23
53
DNS



cl.1538x.xyz
72.52.178.23
53
DNS



cl.1538x.xyz
72.52.178.23
110
POP3



cl.1538x.xyz
72.52.178.23
110
POP3



cl.1538x.xyz
72.52.178.23
143
IMAP



cl.1538x.xyz
72.52.178.23
143
IMAP



cl.1538x.xyz
72.52.178.23
465
SMTP (encrypted)



cl.1538x.xyz
72.52.178.23
465
SMTP (encrypted)



cl.1538x.xyz
72.52.178.23
587
SMTP (encrypted, submission)



cl.1538x.xyz
72.52.178.23
587
SMTP (encrypted, submission)



cl.1538x.xyz
72.52.178.23
993
IMAP (encrypted)



cl.1538x.xyz
72.52.178.23
993
IMAP (encrypted)



cl.1538x.xyz
72.52.178.23
995
POP3 (encrypted)



cl.1538x.xyz
72.52.178.23
995
POP3 (encrypted)



cl.1538x.xyz
72.52.178.23
1433
MS SQL



cl.1538x.xyz
72.52.178.23
1433
MS SQL



cl.1538x.xyz
72.52.178.23
2082
cPanel (http)



cl.1538x.xyz
72.52.178.23
2082
cPanel (http)



cl.1538x.xyz
72.52.178.23
2083
cPanel (https)



cl.1538x.xyz
72.52.178.23
2083
cPanel (https)



cl.1538x.xyz
72.52.178.23
2086
WHM (http)



cl.1538x.xyz
72.52.178.23
2086
WHM (http)



cl.1538x.xyz
72.52.178.23
2087
WHM (https)



cl.1538x.xyz
72.52.178.23
2087
WHM (https)



cl.1538x.xyz
72.52.178.23
2089
cPanel Licensing



cl.1538x.xyz
72.52.178.23
2089
cPanel Licensing



cl.1538x.xyz
72.52.178.23
2095
cPanel Webmail (http)



cl.1538x.xyz
72.52.178.23
2095
cPanel Webmail (http)



cl.1538x.xyz
72.52.178.23
2096
cPanel Webmail (https)



cl.1538x.xyz
72.52.178.23
2096
cPanel Webmail (https)



cl.1538x.xyz
72.52.178.23
2222
DirectAdmin (http)



cl.1538x.xyz
72.52.178.23
2222
DirectAdmin (http)



cl.1538x.xyz
72.52.178.23
2222
DirectAdmin (https)



cl.1538x.xyz
72.52.178.23
2222
DirectAdmin (https)



cl.1538x.xyz
72.52.178.23
3306
mySql



cl.1538x.xyz
72.52.178.23
3306
mySql



cl.1538x.xyz
72.52.178.23
5224
Plesk Licensing



cl.1538x.xyz
72.52.178.23
5224
Plesk Licensing



cl.1538x.xyz
72.52.178.23
5432
PostgreSQL



cl.1538x.xyz
72.52.178.23
5432
PostgreSQL



cl.1538x.xyz
72.52.178.23
8080
Ookla Speedtest (http)



cl.1538x.xyz
72.52.178.23
8080
Ookla Speedtest (http)



cl.1538x.xyz
72.52.178.23
8080
Ookla Speedtest (https)



cl.1538x.xyz
72.52.178.23
8080
Ookla Speedtest (https)



cl.1538x.xyz
72.52.178.23
8083
VestaCP http



cl.1538x.xyz
72.52.178.23
8083
VestaCP http



cl.1538x.xyz
72.52.178.23
8083
VestaCP https



cl.1538x.xyz
72.52.178.23
8083
VestaCP https



cl.1538x.xyz
72.52.178.23
8443
Plesk Administration (https)



cl.1538x.xyz
72.52.178.23
8443
Plesk Administration (https)



cl.1538x.xyz
72.52.178.23
8447
Plesk Installer + Updates



cl.1538x.xyz
72.52.178.23
8447
Plesk Installer + Updates



cl.1538x.xyz
72.52.178.23
8880
Plesk Administration (http)



cl.1538x.xyz
72.52.178.23
8880
Plesk Administration (http)



cl.1538x.xyz
72.52.178.23
10000
Webmin (http)



cl.1538x.xyz
72.52.178.23
10000
Webmin (http)



cl.1538x.xyz
72.52.178.23
10000
Webmin (https)



cl.1538x.xyz
72.52.178.23
10000
Webmin (https)



www.cl.1538x.xyz
72.52.178.23
21
FTP



www.cl.1538x.xyz
72.52.178.23
21
FTP



www.cl.1538x.xyz
72.52.178.23
22
SSH
open
Exceeded MaxStartups

www.cl.1538x.xyz
72.52.178.23
22
SSH
open
Exceeded MaxStartups

www.cl.1538x.xyz
72.52.178.23
25
SMTP



www.cl.1538x.xyz
72.52.178.23
25
SMTP



www.cl.1538x.xyz
72.52.178.23
53
DNS



www.cl.1538x.xyz
72.52.178.23
53
DNS



www.cl.1538x.xyz
72.52.178.23
110
POP3



www.cl.1538x.xyz
72.52.178.23
110
POP3



www.cl.1538x.xyz
72.52.178.23
143
IMAP



www.cl.1538x.xyz
72.52.178.23
143
IMAP



www.cl.1538x.xyz
72.52.178.23
465
SMTP (encrypted)



www.cl.1538x.xyz
72.52.178.23
465
SMTP (encrypted)



www.cl.1538x.xyz
72.52.178.23
587
SMTP (encrypted, submission)



www.cl.1538x.xyz
72.52.178.23
587
SMTP (encrypted, submission)



www.cl.1538x.xyz
72.52.178.23
993
IMAP (encrypted)



www.cl.1538x.xyz
72.52.178.23
993
IMAP (encrypted)



www.cl.1538x.xyz
72.52.178.23
995
POP3 (encrypted)



www.cl.1538x.xyz
72.52.178.23
995
POP3 (encrypted)



www.cl.1538x.xyz
72.52.178.23
1433
MS SQL



www.cl.1538x.xyz
72.52.178.23
1433
MS SQL



www.cl.1538x.xyz
72.52.178.23
2082
cPanel (http)



www.cl.1538x.xyz
72.52.178.23
2082
cPanel (http)



www.cl.1538x.xyz
72.52.178.23
2083
cPanel (https)



www.cl.1538x.xyz
72.52.178.23
2083
cPanel (https)



www.cl.1538x.xyz
72.52.178.23
2086
WHM (http)



www.cl.1538x.xyz
72.52.178.23
2086
WHM (http)



www.cl.1538x.xyz
72.52.178.23
2087
WHM (https)



www.cl.1538x.xyz
72.52.178.23
2087
WHM (https)



www.cl.1538x.xyz
72.52.178.23
2089
cPanel Licensing



www.cl.1538x.xyz
72.52.178.23
2089
cPanel Licensing



www.cl.1538x.xyz
72.52.178.23
2095
cPanel Webmail (http)



www.cl.1538x.xyz
72.52.178.23
2095
cPanel Webmail (http)



www.cl.1538x.xyz
72.52.178.23
2096
cPanel Webmail (https)



www.cl.1538x.xyz
72.52.178.23
2096
cPanel Webmail (https)



www.cl.1538x.xyz
72.52.178.23
2222
DirectAdmin (http)



www.cl.1538x.xyz
72.52.178.23
2222
DirectAdmin (http)



www.cl.1538x.xyz
72.52.178.23
2222
DirectAdmin (https)



www.cl.1538x.xyz
72.52.178.23
2222
DirectAdmin (https)



www.cl.1538x.xyz
72.52.178.23
3306
mySql



www.cl.1538x.xyz
72.52.178.23
3306
mySql



www.cl.1538x.xyz
72.52.178.23
5224
Plesk Licensing



www.cl.1538x.xyz
72.52.178.23
5224
Plesk Licensing



www.cl.1538x.xyz
72.52.178.23
5432
PostgreSQL



www.cl.1538x.xyz
72.52.178.23
5432
PostgreSQL



www.cl.1538x.xyz
72.52.178.23
8080
Ookla Speedtest (http)



www.cl.1538x.xyz
72.52.178.23
8080
Ookla Speedtest (http)



www.cl.1538x.xyz
72.52.178.23
8080
Ookla Speedtest (https)



www.cl.1538x.xyz
72.52.178.23
8080
Ookla Speedtest (https)



www.cl.1538x.xyz
72.52.178.23
8083
VestaCP http



www.cl.1538x.xyz
72.52.178.23
8083
VestaCP http



www.cl.1538x.xyz
72.52.178.23
8083
VestaCP https



www.cl.1538x.xyz
72.52.178.23
8083
VestaCP https



www.cl.1538x.xyz
72.52.178.23
8443
Plesk Administration (https)



www.cl.1538x.xyz
72.52.178.23
8443
Plesk Administration (https)



www.cl.1538x.xyz
72.52.178.23
8447
Plesk Installer + Updates



www.cl.1538x.xyz
72.52.178.23
8447
Plesk Installer + Updates



www.cl.1538x.xyz
72.52.178.23
8880
Plesk Administration (http)



www.cl.1538x.xyz
72.52.178.23
8880
Plesk Administration (http)



www.cl.1538x.xyz
72.52.178.23
10000
Webmin (http)



www.cl.1538x.xyz
72.52.178.23
10000
Webmin (http)



www.cl.1538x.xyz
72.52.178.23
10000
Webmin (https)



www.cl.1538x.xyz
72.52.178.23
10000
Webmin (https)



 

 

Permalink: https://check-your-website.server-daten.de/?i=4d9ed393-ee92-4009-aa9e-2173d3b06607

 

Last Result: https://check-your-website.server-daten.de/?q=cl.1538x.xyz - 2025-02-06 16:51:05

 

Do you like this page? Support this tool, add a link on your page:

 

<a href="https://check-your-website.server-daten.de/?q=cl.1538x.xyz" target="_blank">Check this Site: cl.1538x.xyz</a>

 

 

Do you really want to support this project? Donate: Check-your-website, IBAN DE98 1001 0010 0575 2211 07, SWIFT/BIC PBNKDEFF, Euro

 

QR-Code of this page - https://check-your-website.server-daten.de/?d=cl.1538x.xyz