Check DNS, Urls + Redirects, Certificates and Content of your Website




1. IP-Addresses

HostTypeIP-Addressis auth.∑ Queries∑ Timeout
forkbomb9.eu.org
A
46.4.64.120
Falkenstein/Saxony/Germany (DE) - Hetzner Online GmbH
Hostname: blackthorn.bsailing.team
yes
1
0

AAAA
2a01:4f8:140:233c::2
Falkenstein/Saxony/Germany (DE) - Hetzner Online GmbH

yes


www.forkbomb9.eu.org

Name Error
yes
1
0
*.forkbomb9.eu.org
A
Name Error
yes



AAAA
Name Error
yes



CNAME
Name Error
yes



2. DNSSEC

Zone (*)DNSSEC - Informations

Zone: (root)
(root)
1 DS RR published



DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest 4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=



Status: Valid because published



2 DNSKEY RR found



Public Key with Algorithm 8, KeyTag 9799, Flags 256



Public Key with Algorithm 8, KeyTag 20326, Flags 257 (SEP = Secure Entry Point)



1 RRSIG RR to validate DNSKEY RR found



RRSIG-Owner (root), Algorithm: 8, 0 Labels, original TTL: 172800 sec, Signature-expiration: 01.02.2022, 00:00:00 +, Signature-Inception: 11.01.2022, 00:00:00 +, KeyTag 20326, Signer-Name: (root)



Status: Good - Algorithmus 8 and DNSKEY with KeyTag 20326 used to validate the DNSKEY RRSet



Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest "4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: org
org
1 DS RR in the parent zone found



DS with Algorithm 8, KeyTag 26974, DigestType 2 and Digest T+3ilMU/Q4oVjEHTlInNeKhr6w2KCur/FHRcDRbh3jI=



1 RRSIG RR to validate DS RR found



RRSIG-Owner org., Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 27.01.2022, 05:00:00 +, Signature-Inception: 14.01.2022, 04:00:00 +, KeyTag 9799, Signer-Name: (root)



Status: Good - Algorithmus 8 and DNSKEY with KeyTag 9799 used to validate the DS RRSet in the parent zone



3 DNSKEY RR found



Public Key with Algorithm 8, KeyTag 7986, Flags 256



Public Key with Algorithm 8, KeyTag 26974, Flags 257 (SEP = Secure Entry Point)



Public Key with Algorithm 8, KeyTag 54255, Flags 256



1 RRSIG RR to validate DNSKEY RR found



RRSIG-Owner org., Algorithm: 8, 1 Labels, original TTL: 900 sec, Signature-expiration: 30.01.2022, 15:22:29 +, Signature-Inception: 09.01.2022, 14:22:29 +, KeyTag 26974, Signer-Name: org



Status: Good - Algorithmus 8 and DNSKEY with KeyTag 26974 used to validate the DNSKEY RRSet



Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 26974, DigestType 2 and Digest "T+3ilMU/Q4oVjEHTlInNeKhr6w2KCur/FHRcDRbh3jI=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: eu.org
eu.org
1 DS RR in the parent zone found



DS with Algorithm 8, KeyTag 36406, DigestType 2 and Digest TGylziS5Tusmz7K7lZTc1VMIjEriKp+YvFyl/Dam9NI=



1 RRSIG RR to validate DS RR found



RRSIG-Owner eu.org., Algorithm: 8, 2 Labels, original TTL: 86400 sec, Signature-expiration: 30.01.2022, 15:22:29 +, Signature-Inception: 09.01.2022, 14:22:29 +, KeyTag 54255, Signer-Name: org



Status: Good - Algorithmus 8 and DNSKEY with KeyTag 54255 used to validate the DS RRSet in the parent zone



3 DNSKEY RR found



Public Key with Algorithm 8, KeyTag 36406, Flags 257 (SEP = Secure Entry Point)



Public Key with Algorithm 8, KeyTag 51291, Flags 256



Public Key with Algorithm 8, KeyTag 62625, Flags 256



2 RRSIG RR to validate DNSKEY RR found



RRSIG-Owner eu.org., Algorithm: 8, 2 Labels, original TTL: 86400 sec, Signature-expiration: 06.02.2022, 09:34:59 +, Signature-Inception: 11.01.2022, 05:42:28 +, KeyTag 36406, Signer-Name: eu.org



RRSIG-Owner eu.org., Algorithm: 8, 2 Labels, original TTL: 86400 sec, Signature-expiration: 07.02.2022, 08:49:37 +, Signature-Inception: 11.01.2022, 05:42:28 +, KeyTag 51291, Signer-Name: eu.org



Status: Good - Algorithmus 8 and DNSKEY with KeyTag 36406 used to validate the DNSKEY RRSet



Status: Good - Algorithmus 8 and DNSKEY with KeyTag 51291 used to validate the DNSKEY RRSet



Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 36406, DigestType 2 and Digest "TGylziS5Tusmz7K7lZTc1VMIjEriKp+YvFyl/Dam9NI=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: forkbomb9.eu.org
forkbomb9.eu.org
0 DS RR in the parent zone found



DS-Query in the parent zone has a valid NSEC3 RR as result with the hashed query name "94gct3cblovvraroq34fihvjffibron6" between the hashed NSEC3-owner "94b4skgrrbaia7lmmpjnpnb8rkphfodi" and the hashed NextOwner "94nghfpv984boti52ohs3h045qed4v3j". So the parent zone confirmes the not-existence of a DS RR.
Bitmap: NS, DS, RRSIG Validated: RRSIG-Owner 94b4skgrrbaia7lmmpjnpnb8rkphfodi.eu.org., Algorithm: 8, 3 Labels, original TTL: 7200 sec, Signature-expiration: 08.02.2022, 14:54:11 +, Signature-Inception: 13.01.2022, 17:02:19 +, KeyTag 51291, Signer-Name: eu.org



DS-Query in the parent zone sends valid NSEC3 RR with the Hash "28vavqb2r2vnfp7pisbv3qfii7r2b6p0" as Owner. That's the Hash of "eu.org" with the NextHashedOwnerName "296hkqlo49dc33e0omopf8g8a8bbhgoj". So that domain name is the Closest Encloser of "forkbomb9.eu.org". Opt-Out: True.
Bitmap: A, NS, SOA, MX, TXT, AAAA, SSHFP, RRSIG, DNSKEY, NSEC3PARAM Validated: RRSIG-Owner 28vavqb2r2vnfp7pisbv3qfii7r2b6p0.eu.org., Algorithm: 8, 3 Labels, original TTL: 7200 sec, Signature-expiration: 25.01.2022, 10:38:46 +, Signature-Inception: 27.12.2021, 05:02:22 +, KeyTag 51291, Signer-Name: eu.org



0 DNSKEY RR found




Zone: www.forkbomb9.eu.org
www.forkbomb9.eu.org
0 DS RR in the parent zone found


3. Name Servers

DomainNameserverNS-IP
www.forkbomb9.eu.org
  hydrogen.ns.hetzner.com

forkbomb9.eu.org
  helium.ns.hetzner.de / dus1-dns-aut1b.hetzner.company
193.47.99.5
Düsseldorf/North Rhine-Westphalia/Germany (DE) - myLoc managed IT AG


 
2001:67c:192c::add:5
Düsseldorf/North Rhine-Westphalia/Germany (DE) - myLoc managed IT AG


  hydrogen.ns.hetzner.com / nbg1-dns-aut1b.hetzner.company
213.133.100.98
Nuremberg/Bavaria/Germany (DE) - Hetzner Online GmbH


 
2a01:4f8:0:1::add:1098
Nuremberg/Bavaria/Germany (DE) - Hetzner Online GmbH


  oxygen.ns.hetzner.com / fsn1-dns-aut1a.hetzner.company
88.198.229.192
Hamburg/Free and Hanseatic City of Hamburg/Germany (DE) - Hetzner Online GmbH


 
2a01:4f8:0:1::add:2992
Nuremberg/Bavaria/Germany (DE) - Hetzner Online GmbH

eu.org
  auth1.dns.elm.net / dns01ams1
94.142.241.101
Almere Stad/Flevoland/Netherlands (NL) - Netwerkvereniging Coloclue


 
2a02:898:55:aabb::c2:53
Almere Stad/Flevoland/Netherlands (NL) - Netwerkvereniging Coloclue


  dns4.gandi.net
217.70.186.184
Luxembourg/Luxembourg (LU) - GANDI is an ICANN accredited registrar


 
2001:4b98:dc2:90:217:70:186:184
Luxembourg/Luxembourg (LU) - GANDI is an ICANN accredited registrar


  gra.wolfhugel.eu
87.98.144.100
Roubaix/Hauts-de-France/France (FR) - OVH SAS


 
2001:41d0:d:266d:1::5
Paris/Île-de-France/France (FR) - OVH SAS


  hobbes.bsd-dk.dk
185.59.228.110
Copenhagen/Capital Region/Denmark (DK) - Sentia Denmark A/S


  ns.bortzmeyer.eu.org / ns2.bortzmeyer.org
172.104.125.43
Tokyo/Japan (JP) - Linode, LLC


 
2400:8902::f03c:91ff:fe69:60d3
Tokyo/Japan (JP) - Linode, LLC


  ns.eu.org


  ns1.eriomem.net
5.9.10.119
Falkenstein/Saxony/Germany (DE) - Hetzner Online GmbH


  ns1.eu.org
45.63.100.187
London/England/United Kingdom (GB) - Choopa


 
2001:19f0:7402:6b6:5400:1ff:fe9e:d9fe
Shadwell/England/United Kingdom (GB) - The Constant Company


  ns3.keltia.net
108.61.167.174
Amsterdam/North Holland/Netherlands (NL) - Choopa


 
2001:19f0:5000:84c2::64
Haarlem/North Holland/Netherlands (NL) - The Constant Company


  wombat.billaud.eu.org
139.99.155.59
Sydney/New South Wales/Australia (AU) - OVH SAS


 
2402:1f00:8100:400::428
Sydney/New South Wales/Australia (AU) - OVH SAS

org
  a0.org.afilias-nst.info


  a2.org.afilias-nst.info


  b0.org.afilias-nst.org


  b2.org.afilias-nst.org


  c0.org.afilias-nst.info


  d0.org.afilias-nst.org


4. SOA-Entries


Domain:org
Zone-Name:
Primary:
Mail:
Serial:
Refresh:
Retry:
Expire:
TTL:
num Entries:6


Domain:eu.org
Zone-Name:
Primary:
Mail:
Serial:
Refresh:
Retry:
Expire:
TTL:
num Entries:1


Domain:eu.org
Zone-Name:eu.org
Primary:ns.eu.org
Mail:hostmaster.eu.org
Serial:2022011427
Refresh:3600
Retry:900
Expire:1814400
TTL:7200
num Entries:16


Domain:forkbomb9.eu.org
Zone-Name:forkbomb9.eu.org
Primary:hydrogen.ns.hetzner.com
Mail:dns.hetzner.com
Serial:2022011300
Refresh:86400
Retry:10800
Expire:3600000
TTL:3600
num Entries:6


Domain:www.forkbomb9.eu.org
Zone-Name:
Primary:
Mail:
Serial:
Refresh:
Retry:
Expire:
TTL:
num Entries:1


5. Screenshots

Startaddress: https://forkbomb9.eu.org, address used: https://forkbomb9.eu.org/, Screenshot created 2022-01-14 17:20:32 +00:0

Mobil (412px x 732px)

247 milliseconds

Screenshot mobile - https://forkbomb9.eu.org/
Mobil + Landscape (732px x 412px)

228 milliseconds

Screenshot mobile landscape - https://forkbomb9.eu.org/
Screen (1280px x 1680px)

316 milliseconds

Screenshot Desktop - https://forkbomb9.eu.org/

Mobile- and other Chrome-Checks

widthheight
visual Viewport412732
content Size412732

Good: No horizontal scrollbar. Content-size width = visual Viewport width.

Chrome-Connection: secure. secure connection settings. The connection to this site is encrypted and authenticated using TLS 1.3, X25519, and AES_128_GCM.

Chrome-Resources : secure. all served securely. All resources on this page are served securely.

6. Url-Checks


:

:
DomainnameHttp-StatusredirectSec.G
• http://forkbomb9.eu.org/
46.4.64.120
301
https://forkbomb9.eu.org/
0.047
A
Location: https://forkbomb9.eu.org/
Permissions-Policy: interest-cohort=()
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: frame-ancestors 'self'; default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline'; img-src 'self' data:
Content-Length: 0
Connection: close
Date: Fri, 14 Jan 2022 16:19:59 GMT
Server: lighttpd/1.4.59

• http://forkbomb9.eu.org/
2a01:4f8:140:233c::2
301
https://forkbomb9.eu.org/
0.046
A
Location: https://forkbomb9.eu.org/
Permissions-Policy: interest-cohort=()
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: frame-ancestors 'self'; default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline'; img-src 'self' data:
Content-Length: 0
Connection: close
Date: Fri, 14 Jan 2022 16:19:59 GMT
Server: lighttpd/1.4.59

• https://forkbomb9.eu.org/
46.4.64.120 GZip used - 380 / 738 - 48.51 %
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0
200

Html is minified: 126.80 %
4.593
A
small visible content (num chars: 99)
namkhai b. gitlab github notabug pgp fingerprint: F7F7 4C22 E12E 765A CFFB 951B 0A30 AAE5 BF54 CEFE
Content-Type: text/html
Accept-Ranges: bytes
ETag: "2952127344-gzip"
Last-Modified: Thu, 13 Jan 2022 00:44:31 GMT
Content-Length: 380
Permissions-Policy: interest-cohort=()
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: frame-ancestors 'self'; default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline'; img-src 'self' data:
Strict-Transport-Security: max-age=63072000
Vary: Accept-Encoding
Content-Encoding: gzip
Connection: close
Date: Fri, 14 Jan 2022 16:19:59 GMT
Server: lighttpd/1.4.59

• https://forkbomb9.eu.org/
2a01:4f8:140:233c::2 GZip used - 380 / 738 - 48.51 %
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0
200

Html is minified: 126.80 %
4.230
A
small visible content (num chars: 99)
namkhai b. gitlab github notabug pgp fingerprint: F7F7 4C22 E12E 765A CFFB 951B 0A30 AAE5 BF54 CEFE
Content-Type: text/html
Accept-Ranges: bytes
ETag: "2952127344-gzip"
Last-Modified: Thu, 13 Jan 2022 00:44:31 GMT
Content-Length: 380
Permissions-Policy: interest-cohort=()
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: frame-ancestors 'self'; default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline'; img-src 'self' data:
Strict-Transport-Security: max-age=63072000
Vary: Accept-Encoding
Content-Encoding: gzip
Connection: close
Date: Fri, 14 Jan 2022 16:20:05 GMT
Server: lighttpd/1.4.59

• http://forkbomb9.eu.org/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
46.4.64.120
301
https://forkbomb9.eu.org/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
0.047
A
Visible Content:
Location: https://forkbomb9.eu.org/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Permissions-Policy: interest-cohort=()
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: frame-ancestors 'self'; default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline'; img-src 'self' data:
Content-Length: 0
Connection: close
Date: Fri, 14 Jan 2022 16:20:10 GMT
Server: lighttpd/1.4.59

• http://forkbomb9.eu.org/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
2a01:4f8:140:233c::2
301
https://forkbomb9.eu.org/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
0.050
A
Visible Content:
Location: https://forkbomb9.eu.org/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Permissions-Policy: interest-cohort=()
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: frame-ancestors 'self'; default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline'; img-src 'self' data:
Content-Length: 0
Connection: close
Date: Fri, 14 Jan 2022 16:20:10 GMT
Server: lighttpd/1.4.59

• https://forkbomb9.eu.org/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
GZip used - 800 / 1590 - 49.69 %
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 1/653
404

Html is minified: 223.31 %
4.250
A
Not Found
Visible Content: Some humans would do anything to see if it was possible to do it. If you put a large switch in some cave somewhere, with a sign on it saying 'End-of-the-World Switch. PLEASE DO NOT TOUCH', the paint wouldn't even have time to dry. ― Terry Pratchett, Thief of Time Coming back to where you started is not the same as never leaving. ― Terry Pratchett, A Hat Full Of Sky The page you're looking for couldn't be found Back to home
Content-Type: text/html
Permissions-Policy: interest-cohort=()
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: frame-ancestors 'self'; default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline'; img-src 'self' data:
Strict-Transport-Security: max-age=63072000
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 800
Connection: close
Date: Fri, 14 Jan 2022 16:20:17 GMT
Server: lighttpd/1.4.59

• https://46.4.64.120/
46.4.64.120 GZip used - 303 / 475 - 36.21 %
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 1/208
200

Html is minified: 237.50 %
2.264
N
Certificate error: RemoteCertificateNameMismatch, RemoteCertificateChainErrors
small visible content (num chars: 19)
Watcha looking for?
Content-Type: text/html
Accept-Ranges: bytes
ETag: "1457045878-gzip"
Last-Modified: Thu, 02 Dec 2021 01:23:29 GMT
Content-Length: 303
Permissions-Policy: interest-cohort=()
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: frame-ancestors 'self'; default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline'; img-src 'self' data:
Strict-Transport-Security: max-age=63072000
Vary: Accept-Encoding
Content-Encoding: gzip
Connection: close
Date: Fri, 14 Jan 2022 16:20:11 GMT
Server: lighttpd/1.4.59

• https://[2a01:04f8:0140:233c:0000:0000:0000:0002]/
2a01:4f8:140:233c::2 GZip used - 303 / 475 - 36.21 %
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 1/208
200

Html is minified: 237.50 %
2.297
N
Certificate error: RemoteCertificateNameMismatch, RemoteCertificateChainErrors
small visible content (num chars: 19)
Watcha looking for?
Content-Type: text/html
Accept-Ranges: bytes
ETag: "1457045878-gzip"
Last-Modified: Thu, 02 Dec 2021 01:23:29 GMT
Content-Length: 303
Permissions-Policy: interest-cohort=()
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: frame-ancestors 'self'; default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline'; img-src 'self' data:
Strict-Transport-Security: max-age=63072000
Vary: Accept-Encoding
Content-Encoding: gzip
Connection: close
Date: Fri, 14 Jan 2022 16:20:14 GMT
Server: lighttpd/1.4.59

7. Comments


1. General Results, most used to calculate the result

Aname "forkbomb9.eu.org" is domain, public suffix is ".eu.org", top-level-domain is ".org", top-level-domain-type is "generic", tld-manager is "Public Interest Registry (PIR)", num .org-domains preloaded: 5904 (complete: 175327)
Agood: All ip addresses are public addresses
AGood: Minimal 2 ip addresses per domain name found: forkbomb9.eu.org has 2 different ip addresses (authoritative).
AGood: Ipv4 and Ipv6 addresses per domain name found: forkbomb9.eu.org has 1 ipv4, 1 ipv6 addresses
Agood: No asked Authoritative Name Server had a timeout
ADNS: "Name Error" means: No www-dns-entry defined. This isn't a problem
Agood: destination is https
Agood - only one version with Http-Status 200
Agood: one preferred version: non-www is preferred
AGood: No cookie sent via http.
Agood: every https has a Strict Transport Security Header
Agood: HSTS max-age is long enough, 63072000 seconds = 730 days
HSTS-Preload-Status: unknown. Domain never included in the Preload-list. Check https://hstspreload.org/ to learn some basics about the Google-Preload-List.
AGood: Some urls with http status 200/404 have a complete Content-Type header (MediaType / MediaSubType + correct charset):0 complete Content-Type - header (5 urls)
https://forkbomb9.eu.org/ 46.4.64.120


Url with incomplete Content-Type - header - missing charset
https://forkbomb9.eu.org/ 2a01:4f8:140:233c::2


Url with incomplete Content-Type - header - missing charset
https://forkbomb9.eu.org/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de


Url with incomplete Content-Type - header - missing charset
https://46.4.64.120/ 46.4.64.120


Url with incomplete Content-Type - header - missing charset
https://[2a01:04f8:0140:233c:0000:0000:0000:0002]/ 2a01:4f8:140:233c::2


Url with incomplete Content-Type - header - missing charset
Ahttp://forkbomb9.eu.org/ 46.4.64.120
301
https://forkbomb9.eu.org/
correct redirect http - https with the same domain name
Ahttp://forkbomb9.eu.org/ 2a01:4f8:140:233c::2
301
https://forkbomb9.eu.org/
correct redirect http - https with the same domain name
Nhttps://46.4.64.120/ 46.4.64.120
200

Error - Certificate isn't trusted, RemoteCertificateNameMismatch, RemoteCertificateChainErrors
Nhttps://[2a01:04f8:0140:233c:0000:0000:0000:0002]/ 2a01:4f8:140:233c::2
200

Error - Certificate isn't trusted, RemoteCertificateNameMismatch, RemoteCertificateChainErrors
AGood: More then one ip address per domain name found, checking all ip addresses the same http status and the same certificate found: Domain forkbomb9.eu.org, 2 ip addresses.
Info: Checking all ip addresses of that domain without sending the hostname only one certificate found. Checking all ip addresses and sending the hostname only one certificate found. Both certificates are different. So that domain requires Server Name Indication (SNI), so the server is able to select the correct certificate.: Domain forkbomb9.eu.org, 2 ip addresses.

2. DNS- and NameServer - Checks

AInfo:: 11 Root-climbing DNS Queries required to find all IPv4- and IPv6-Addresses of 3 Name Servers.
AInfo:: 11 Queries complete, 11 with IPv6, 0 with IPv4.
AGood: All DNS Queries done via IPv6.
Ok (4 - 8):: An average of 3.7 queries per domain name server required to find all ip addresses of all name servers.
AInfo:: 3 different Name Servers found: helium.ns.hetzner.de, hydrogen.ns.hetzner.com, oxygen.ns.hetzner.com, 3 Name Servers included in Delegation: HELIUM.NS.HETZNER.DE, HYDROGEN.NS.HETZNER.COM, OXYGEN.NS.HETZNER.COM, 3 Name Servers included in 1 Zone definitions: helium.ns.hetzner.de, hydrogen.ns.hetzner.com, oxygen.ns.hetzner.com, 1 Name Servers listed in SOA.Primary: hydrogen.ns.hetzner.com.
AGood: Only one SOA.Primary Name Server found.: hydrogen.ns.hetzner.com.
AGood: SOA.Primary Name Server included in the delegation set.: hydrogen.ns.hetzner.com.
AGood: Consistency between delegation and zone. The set of NS records served by the authoritative name servers must match those proposed for the delegation in the parent zone. Ordered list of name servers: helium.ns.hetzner.de, hydrogen.ns.hetzner.com, oxygen.ns.hetzner.com
AGood: All Name Server Domain Names have a Public Suffix.
AGood: All Name Server Domain Names ending with a Public Suffix have minimal one IPv4- or IPv6 address.
AGood: All Name Server ip addresses are public.
AGood: Minimal 2 different name servers (public suffix and public ip address) found: 3 different Name Servers found
AGood: All name servers have ipv4- and ipv6-addresses.: 3 different Name Servers found
AGood: Name servers with different Top Level Domains / Public Suffix List entries found: 3 Name Servers, 2 Top Level Domains: de, com
AGood: Name Servers with different domain names found.: 2 different Domains found
Warning: All Name Servers from the same Country / IP location.: 3 Name Servers, 1 Countries: DE
AInfo: Ipv4-Subnet-list: 3 Name Servers, 3 different subnets (first Byte): 193., 213., 88., 3 different subnets (first two Bytes): 193.47., 213.133., 88.198., 3 different subnets (first three Bytes): 193.47.99., 213.133.100., 88.198.229.
AExcellent: Every Name Server IPv4-address starts with an unique Byte.
AInfo: IPv6-Subnet-list: 3 Name Servers with IPv6, 2 different subnets (first block): 2001:, 2a01:, 2 different subnets (first two blocks): 2001:067c:, 2a01:04f8:, 2 different subnets (first three blocks): 2001:067c:192c:, 2a01:04f8:0000:, 2 different subnets (first four blocks): 2001:067c:192c:0000:, 2a01:04f8:0000:0001:
AGood: Name Server IPv6 addresses from different subnets found.
AGood: Nameserver supports TCP connections: 6 good Nameserver
AGood: Nameserver supports Echo Capitalization: 6 good Nameserver
AGood: Nameserver supports EDNS with max. 512 Byte Udp payload, message is smaller: 6 good Nameserver
AGood: Nameserver has passed 10 EDNS-Checks (OP100, FLAGS, V1, V1OP100, V1FLAGS, DNSSEC, V1DNSSEC, NSID, COOKIE, CLIENTSUBNET): 6 good Nameserver
Nameserver doesn't pass all EDNS-Checks: a0.org.afilias-nst.info: OP100: no result. FLAGS: no result. V1: no result. V1OP100: no result. V1FLAGS: no result. DNSSEC: no result. V1DNSSEC: no result. NSID: no result. COOKIE: no result. CLIENTSUBNET: no result.
Nameserver doesn't pass all EDNS-Checks: a2.org.afilias-nst.info: OP100: no result. FLAGS: no result. V1: no result. V1OP100: no result. V1FLAGS: no result. DNSSEC: no result. V1DNSSEC: no result. NSID: no result. COOKIE: no result. CLIENTSUBNET: no result.
Nameserver doesn't pass all EDNS-Checks: b0.org.afilias-nst.org: OP100: no result. FLAGS: no result. V1: no result. V1OP100: no result. V1FLAGS: no result. DNSSEC: no result. V1DNSSEC: no result. NSID: no result. COOKIE: no result. CLIENTSUBNET: no result.
Nameserver doesn't pass all EDNS-Checks: b2.org.afilias-nst.org: OP100: no result. FLAGS: no result. V1: no result. V1OP100: no result. V1FLAGS: no result. DNSSEC: no result. V1DNSSEC: no result. NSID: no result. COOKIE: no result. CLIENTSUBNET: no result.
Nameserver doesn't pass all EDNS-Checks: c0.org.afilias-nst.info: OP100: no result. FLAGS: no result. V1: no result. V1OP100: no result. V1FLAGS: no result. DNSSEC: no result. V1DNSSEC: no result. NSID: no result. COOKIE: no result. CLIENTSUBNET: no result.
Nameserver doesn't pass all EDNS-Checks: d0.org.afilias-nst.org: OP100: no result. FLAGS: no result. V1: no result. V1OP100: no result. V1FLAGS: no result. DNSSEC: no result. V1DNSSEC: no result. NSID: no result. COOKIE: no result. CLIENTSUBNET: no result.
Nameserver doesn't pass all EDNS-Checks: hydrogen.ns.hetzner.com: OP100: no result. FLAGS: no result. V1: no result. V1OP100: no result. V1FLAGS: no result. DNSSEC: no result. V1DNSSEC: no result. NSID: no result. COOKIE: no result. CLIENTSUBNET: no result.
Nameserver doesn't pass all EDNS-Checks: ns.eu.org: OP100: no result. FLAGS: no result. V1: no result. V1OP100: no result. V1FLAGS: no result. DNSSEC: no result. V1DNSSEC: no result. NSID: no result. COOKIE: no result. CLIENTSUBNET: no result.
AGood: All SOA have the same Serial Number
Warning: No CAA entry with issue/issuewild found, every CAA can create a certificate. Read https://en.wikipedia.org/wiki/DNS_Certification_Authority_Authorization to learn some basics about the idea of CAA. Your name server must support such an entry. Not all dns providers support CAA entries.

3. Content- and Performance-critical Checks

AGood: All checks /.well-known/acme-challenge/random-filename without redirects answer with the expected http status 404 - Not Found. Creating a Letsencrypt certificate via http-01 challenge should work. If it doesn't work: Check your vHost configuration (apachectl -S, httpd -S, nginx -T). Every combination of port and ServerName / ServerAlias (Apache) or Server (Nginx) must be unique. Merge duplicated entries in one vHost. If you use an IIS, extensionless files must be allowed in the /.well-known/acme-challenge subdirectory. Create a web.config in that directory. Content: <configuration><system.webServer><staticContent><mimeMap fileExtension="." mimeType="text/plain" /></staticContent></system.webServer></configuration>. If you have a redirect http ⇒ https, that's ok, Letsencrypt follows such redirects to port 80 / 443 (same or other server). There must be a certificate. But the certificate may be expired, self signed or with a not matching domain name. Checking the validation file Letsencrypt ignores such certificate errors. Trouble creating a certificate? Use https://community.letsencrypt.org/ to ask.
https://46.4.64.120/ 46.4.64.120
200

Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
https://[2a01:04f8:0140:233c:0000:0000:0000:0002]/ 2a01:4f8:140:233c::2
200

Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
https://forkbomb9.eu.org/ 46.4.64.120
200

Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
https://forkbomb9.eu.org/ 2a01:4f8:140:233c::2
200

Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
https://46.4.64.120/ 46.4.64.120
200

Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
https://[2a01:04f8:0140:233c:0000:0000:0000:0002]/ 2a01:4f8:140:233c::2
200

Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
https://46.4.64.120/ 46.4.64.120
200

Warning: Https connections (Standard Port 443) found without support of the http/2 protocol via ALPN. Http/2 is the new Http-Version (old: http 1.1) with some important new features. Update your server software so http/2 is available. Only one TCP-connection per Server (that's a performance boost), Header-Compression and Server Pushs are available. Domain Sharding and Inline-CSS/Javascript shouldn't used with http/2.
https://[2a01:04f8:0140:233c:0000:0000:0000:0002]/ 2a01:4f8:140:233c::2
200

Warning: Https connections (Standard Port 443) found without support of the http/2 protocol via ALPN. Http/2 is the new Http-Version (old: http 1.1) with some important new features. Update your server software so http/2 is available. Only one TCP-connection per Server (that's a performance boost), Header-Compression and Server Pushs are available. Domain Sharding and Inline-CSS/Javascript shouldn't used with http/2.
AGood: All CSS / JavaScript files are sent with GZip. That reduces the content of the files. 2 external CSS / JavaScript files found
Warning: CSS / JavaScript files with a missing or too short Cache-Control header found. Browsers should cache and re-use these files. 2 external CSS / JavaScript files without Cache-Control-Header, 0 with Cache-Control, but no max-age, 0 with Cache-Control max-age too short (minimum 7 days), 0 with Cache-Control long enough, 2 complete.
AGood: All checked attribute values are enclosed in quotation marks (" or ').
AInfo: No img element found, no alt attribute checked
AGood: Domainname is not on the "Specially Designated Nationals And Blocked Persons List" (SDN). That's an US-list of individuals and companies owned or controlled by, or acting for or on behalf of, targeted countries. It also lists individuals, groups, and entities, such as terrorists and narcotics traffickers designated under programs that are not country-specific. Collectively, such individuals and companies are called "Specially Designated Nationals" or "SDNs." Their assets are blocked and U.S. persons are generally prohibited from dealing with them. So if a domain name is on that list, it's impossible to create a Letsencrypt certificate with that domain name. Check the list manual - https://www.treasury.gov/resource-center/sanctions/sdn-list/pages/default.aspx
https://forkbomb9.eu.org/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
404
4.250 seconds
Warning: 404 needs more then one second
ADuration: 194336 milliseconds, 194.336 seconds


8. Connections

DomainIPPortCert.ProtocolKeyExchangeStrengthCipherStrengthHashAlgorithmOCSP stapling
Domain/KeyExchangeIP/StrengthPort/CipherCert./StrengthProtocol/HashAlgorithmOCSP stapling
forkbomb9.eu.org
46.4.64.120
443
ok
Tls12
ECDH Ephermal
255
Aes256
256
Sha384
supported
ok
forkbomb9.eu.org
46.4.64.120
443
ok
Tls12

ECDH Ephermal
255
Aes256
256
Sha384
supported
ok
http/2 via ALPN supported 
SNI required
Tls.1.2
no Tls.1.1
no Tls.1.0
http/2 via ALPN supported
SNI required
Tls.1.2
no Tls.1.1
no Tls.1.0
Chain - too much certificates, don't send root certificates
1CN=forkbomb9.eu.org

2CN=R3, O=Let's Encrypt, C=US

3CN=ISRG Root X1, O=Internet Security Research Group, C=US


forkbomb9.eu.org
2a01:4f8:140:233c::2
443
ok
Tls12
ECDH Ephermal
255
Aes256
256
Sha384
supported
ok

forkbomb9.eu.org
2a01:4f8:140:233c::2
443
ok
Tls12

ECDH Ephermal
255
Aes256
256
Sha384
supported
ok
http/2 via ALPN supported 
SNI required
Tls.1.2
no Tls.1.1
no Tls.1.0
http/2 via ALPN supported
SNI required
Tls.1.2
no Tls.1.1
no Tls.1.0
Chain - too much certificates, don't send root certificates
1CN=forkbomb9.eu.org

2CN=R3, O=Let's Encrypt, C=US

3CN=ISRG Root X1, O=Internet Security Research Group, C=US


forkbomb9.eu.org
forkbomb9.eu.org
443
ok
Tls12
ECDH Ephermal
255
Aes256
256
Sha384
supported
ok

forkbomb9.eu.org
forkbomb9.eu.org
443
ok
Tls12

ECDH Ephermal
255
Aes256
256
Sha384
supported
ok
http/2 via ALPN supported 
Tls.1.2
no Tls.1.1
no Tls.1.0
http/2 via ALPN supported
Tls.1.2
no Tls.1.1
no Tls.1.0
Chain - too much certificates, don't send root certificates
1CN=forkbomb9.eu.org

2CN=R3, O=Let's Encrypt, C=US

3CN=ISRG Root X1, O=Internet Security Research Group, C=US


46.4.64.120
46.4.64.120
443
Certificate/chain invalid and wrong name
Tls12
ECDH Ephermal
255
Aes256
256
Sha384
error checking OCSP stapling
ok

46.4.64.120
46.4.64.120
443
Certificate/chain invalid and wrong name
Tls12

ECDH Ephermal
255
Aes256
256
Sha384
error checking OCSP stapling
ok
no http/2 via ALPN 
Cert sent without SNI
Tls.1.2
no Tls.1.1
no Tls.1.0
no http/2 via ALPN
Cert sent without SNI
Tls.1.2
no Tls.1.1
no Tls.1.0


[2a01:04f8:0140:233c:0000:0000:0000:0002]
2a01:4f8:140:233c::2
443
Certificate/chain invalid and wrong name
Tls12
ECDH Ephermal
255
Aes256
256
Sha384
error checking OCSP stapling
ok

[2a01:04f8:0140:233c:0000:0000:0000:0002]
2a01:4f8:140:233c::2
443
Certificate/chain invalid and wrong name
Tls12

ECDH Ephermal
255
Aes256
256
Sha384
error checking OCSP stapling
ok
no http/2 via ALPN 
Cert sent without SNI
Tls.1.2
no Tls.1.1
no Tls.1.0
no http/2 via ALPN
Cert sent without SNI
Tls.1.2
no Tls.1.1
no Tls.1.0


9. Certificates

1.
1.
CN=forkbomb9.eu.org
01.12.2021
01.03.2022
expires in 36 days
forkbomb9.eu.org - 1 entry
1.
1.
CN=forkbomb9.eu.org
01.12.2021

01.03.2022
expires in 36 days
forkbomb9.eu.org - 1 entry

KeyalgorithmEC Public Key (256 bit, prime256v1)
Signatur:SHA256 With RSA-Encryption
Serial Number:0363DE0265BB4E51BA1D87EC02453DB66807
Thumbprint:D87772338A8EB69D7AA70E52CE012BA1E960C29F
SHA256 / Certificate:Y43aMceD+J+5WvUOb28B2VH57V2a5zrxEhZZN/QmNc4=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):96ecfc126ec2d1995a664de189a721589e677a27f00b673b8307336434839e38
SHA256 hex / Subject Public Key Information (SPKI):96ecfc126ec2d1995a664de189a721589e677a27f00b673b8307336434839e38 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:http://r3.o.lencr.org
OCSP - must staple:no
Certificate Transparency:yes
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)


2.
CN=R3, O=Let's Encrypt, C=US
04.09.2020
15.09.2025
expires in 1330 days


2.
CN=R3, O=Let's Encrypt, C=US
04.09.2020

15.09.2025
expires in 1330 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:00912B084ACF0C18A753F6D62E25A75F5A
Thumbprint:A053375BFE84E8B748782C7CEE15827A6AF5A405
SHA256 / Certificate:Z63RFmsCCuYbj1/JaBPATCqliZYHloZVcqPH5zdhPf0=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):8d02536c887482bc34ff54e41d2ba659bf85b341a0a20afadb5813dcfbcf286d
SHA256 hex / Subject Public Key Information (SPKI):8d02536c887482bc34ff54e41d2ba659bf85b341a0a20afadb5813dcfbcf286d
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Clientauthentifizierung (1.3.6.1.5.5.7.3.2), Serverauthentifizierung (1.3.6.1.5.5.7.3.1)


3.
CN=ISRG Root X1, O=Internet Security Research Group, C=US
04.06.2015
04.06.2035
expires in 4879 days


3.
CN=ISRG Root X1, O=Internet Security Research Group, C=US
04.06.2015

04.06.2035
expires in 4879 days


KeyalgorithmRSA encryption (4096 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:008210CFB0D240E3594463E0BB63828B00
Thumbprint:CABD2A79A1076A31F21D253635CB039D4329A5E8
SHA256 / Certificate:lrzsBiZJdvN0YHeazyjFp8/oo8Cq4RqP/O4FwL3fCMY=
SHA256 hex / Cert (DANE * 0 1):96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6
SHA256 hex / PublicKey (DANE * 1 1):0b9fa5a59eed715c26c1020c711b4f6ec42d58b0015e14337a39dad301c5afc3
SHA256 hex / Subject Public Key Information (SPKI):0b9fa5a59eed715c26c1020c711b4f6ec42d58b0015e14337a39dad301c5afc3
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:


2.
1.
CN=localhost
02.12.2021
02.12.2022
expires in 312 days

2.
1.
CN=localhost
02.12.2021

02.12.2022
expires in 312 days


KeyalgorithmRSA encryption (4096 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:67FF282A6A2E23D04EF217FFE8781556FA620880
Thumbprint:03761F39A91A1C560F58A1A01C822CB49DB2441F
SHA256 / Certificate:UU/wiJGg7gOWkJqmtlhMWWrTiC92bAyvTD0laxn+4MQ=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):8dbfad1e68aef56a3cf42d7252b43540253525a794815a1fa249eddde5a16023
SHA256 hex / Subject Public Key Information (SPKI):8dbfad1e68aef56a3cf42d7252b43540253525a794815a1fa249eddde5a16023 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:

UntrustedRoot: A certificate chain processed, but terminated in a root certificate which is not trusted by the trust provider.


10. Last Certificates - Certificate Transparency Log Check

1. Source CertSpotter - active certificates (one check per day)

Issuerlast 7 daysactivenum Certs
CN=R3, O=Let's Encrypt, C=US
0
1
1

CertSpotter-IdIssuernot beforenot afterDomain namesLE-Duplicatenext LE
3174994349
leaf cert
CN=R3, O=Let's Encrypt, C=US
2021-12-01 02:12:15
2022-03-01 02:12:14
forkbomb9.eu.org - 1 entries



2. Source crt.sh - old and new certificates, sometimes very slow - only certificates with "not after" > 2019 are listed

Issuerlast 7 daysactivenum Certs
CN=R3, O=Let's Encrypt, C=US
0 /0 new
1
1

CRT-IdIssuernot beforenot afterDomain namesLE-Duplicatenext LE
5711660751
precert
CN=R3, O=Let's Encrypt, C=US
2021-12-01 01:12:15
2022-03-01 01:12:14
forkbomb9.eu.org
1 entries



11. Html-Content - Entries

Summary

Subresource Integrity (SRI)
DomainnameHtmlElementrel/property∑ size∑ problems∑ int.∑ ext.∑ Origin poss.∑ SRI ParseErrors∑ SRI valid∑ SRI missing
https://forkbomb9.eu.org/
46.4.64.120
a

3

0


0
0
0


link
stylesheet
1
467 Bytes
0
1
0
0
0
0


meta
other
2

0


0
0
0

https://forkbomb9.eu.org/
2a01:4f8:140:233c::2
a

3

0


0
0
0


link
stylesheet
1
467 Bytes
0
1
0
0
0
0


meta
other
2

0


0
0
0

https://46.4.64.120/
46.4.64.120
meta
other
2

0


0
0
0

https://[2a01:04f8:0140:233c:0000:0000:0000:0002]/
2a01:4f8:140:233c::2
meta
other
2

0


0
0
0

Details

DomainnameHtml-Elementname/equiv/ property/relhref/src/contentHttpStatusmsgStatus
https://forkbomb9.eu.org/
46.4.64.120
a

https://github.com/forkbomb9


1
ok








a

https://gitlab.com/forkbomb9


1
ok








a

https://notabug.org/forkbomb9


1
ok








link
stylesheet
/style.css
200

1
ok
text/css; charset=utf-8, X-Content-Type-Options nosniff found

No Cache-Control - header
GZip: 467/1180 Bytes




local SRI possible, possible hash-values:

sha256-+bKyBIq1P+AqP6/ZktFiunz8/jLX8aOKWAd2QAV4DUw=
sha384-wUs2i/xSQzwUkUtcnLwwx/4FIWmTSRhiJb2Nv+ScKPtf5EPr3ofjgB1vqm26LJOq
sha512-+8na/g2OVjYZTIChVfMVP2mDBPVxaJe7PfaYC9+BMBy6dXEt603q1opL/y8Bxiqa1VSek4ezQ+K7jHDP4NfHvw==

<link rel="stylesheet" href="/style.css" crossorigin="anonymous" integrity="sha256-+bKyBIq1P+AqP6/ZktFiunz8/jLX8aOKWAd2QAV4DUw=" />



Content loaded via url("...")

/fonts/OperatorMonoSSm-Medium.otf1
/fonts/OperatorMonoSSm-MediumItalic.otf1

meta

utf8


1
ok








meta
viewport
width=device-width, initial-scale=1


1
ok







2a01:4f8:140:233c::2
a

https://github.com/forkbomb9


1
ok








a

https://gitlab.com/forkbomb9


1
ok








a

https://notabug.org/forkbomb9


1
ok








link
stylesheet
/style.css
200

1
ok
text/css; charset=utf-8, X-Content-Type-Options nosniff found

No Cache-Control - header
GZip: 467/1180 Bytes




local SRI possible, possible hash-values:

sha256-+bKyBIq1P+AqP6/ZktFiunz8/jLX8aOKWAd2QAV4DUw=
sha384-wUs2i/xSQzwUkUtcnLwwx/4FIWmTSRhiJb2Nv+ScKPtf5EPr3ofjgB1vqm26LJOq
sha512-+8na/g2OVjYZTIChVfMVP2mDBPVxaJe7PfaYC9+BMBy6dXEt603q1opL/y8Bxiqa1VSek4ezQ+K7jHDP4NfHvw==

<link rel="stylesheet" href="/style.css" crossorigin="anonymous" integrity="sha256-+bKyBIq1P+AqP6/ZktFiunz8/jLX8aOKWAd2QAV4DUw=" />



Content loaded via url("...")

/fonts/OperatorMonoSSm-Medium.otf1
/fonts/OperatorMonoSSm-MediumItalic.otf1

meta

utf8


1
ok








meta
viewport
width=device-width, initial-scale=1


1
ok







https://46.4.64.120/
46.4.64.120
meta

utf8


1
ok








meta
viewport
width=device-width, initial-scale=1


1
ok







https://[2a01:04f8:0140:233c:0000:0000:0000:0002]/
2a01:4f8:140:233c::2
meta

utf8


1
ok








meta
viewport
width=device-width, initial-scale=1


1
ok








12. Nameserver - IP-Adresses

Required Root-climbing DNS-Queries to find ip addresses of all Name Servers: helium.ns.hetzner.de, hydrogen.ns.hetzner.com, oxygen.ns.hetzner.com

QNr.DomainTypeNS used
1
de
NS
k.root-servers.net (2001:7fd::1)

Answer: a.nic.de, f.nic.de, l.de.net, n.de.net, s.de.net, z.nic.de
2
helium.ns.hetzner.de
NS
a.nic.de (2001:678:2::53)

Answer: ns.second-ns.com, ns1.your-server.de, ns3.second-ns.de

Answer: ns1.your-server.de
213.133.106.251, 2a01:4f8:d0a:2006::2

Answer: ns3.second-ns.de
193.47.99.4, 2001:67c:192c::add:b3
3
com
NS
k.root-servers.net (2001:7fd::1)

Answer: a.gtld-servers.net, b.gtld-servers.net, c.gtld-servers.net, d.gtld-servers.net, e.gtld-servers.net, f.gtld-servers.net, g.gtld-servers.net, h.gtld-servers.net, i.gtld-servers.net, j.gtld-servers.net, k.gtld-servers.net, l.gtld-servers.net, m.gtld-servers.net
4
hydrogen.ns.hetzner.com
NS
e.gtld-servers.net (2001:502:1ca1::30)

Answer: ns.second-ns.com, ns1.your-server.de, ns3.second-ns.de

Answer: ns.second-ns.com
213.239.204.242, 2a01:4f8:0:a101::b:1
5
oxygen.ns.hetzner.com
NS
e.gtld-servers.net (2001:502:1ca1::30)

Answer: ns.second-ns.com, ns1.your-server.de, ns3.second-ns.de

Answer: ns.second-ns.com
213.239.204.242, 2a01:4f8:0:a101::b:1
6
helium.ns.hetzner.de: 193.47.99.5
A
ns.second-ns.com (2a01:4f8:0:a101::b:1)
7
helium.ns.hetzner.de: 2001:67c:192c::add:5
AAAA
ns.second-ns.com (2a01:4f8:0:a101::b:1)
8
hydrogen.ns.hetzner.com: 213.133.100.98
A
ns.second-ns.com (2a01:4f8:0:a101::b:1)
9
hydrogen.ns.hetzner.com: 2a01:4f8:0:1::add:1098
AAAA
ns.second-ns.com (2a01:4f8:0:a101::b:1)
10
oxygen.ns.hetzner.com: 88.198.229.192
A
ns.second-ns.com (2a01:4f8:0:a101::b:1)
11
oxygen.ns.hetzner.com: 2a01:4f8:0:1::add:2992
AAAA
ns.second-ns.com (2a01:4f8:0:a101::b:1)


13. CAA - Entries

DomainnameflagNameValue∑ Queries∑ Timeout
forkbomb9.eu.org
0

no CAA entry found
1
0
eu.org
0

no CAA entry found
1
0
org
0

no CAA entry found
1
0


14. TXT - Entries

DomainnameTXT EntryStatus∑ Queries∑ Timeout
forkbomb9.eu.org
keybase-site-verification=Ue208WGrl6T7ZbmAl_bohHFu5-DbfmT7KE3RjouBoLY
ok
1
0
forkbomb9.eu.org
v=spf1 a mx ip4:46.4.64.120 ~all
ok
1
0
_acme-challenge.forkbomb9.eu.org

Name Error - The domain name does not exist
1
0
_acme-challenge.forkbomb9.eu.org.forkbomb9.eu.org

Name Error - The domain name does not exist
1
0


15. Portchecks

Domain or IPPortDescriptionResultAnswer
forkbomb9.eu.org
21
FTP



forkbomb9.eu.org
21
FTP



forkbomb9.eu.org
22
SSH



forkbomb9.eu.org
22
SSH



forkbomb9.eu.org
25
SMTP
open
220 blackthorn.bsailing.team ESMTP Postfix

forkbomb9.eu.org
25
SMTP
open
220 blackthorn.bsailing.team ESMTP Postfix

forkbomb9.eu.org
53
DNS



forkbomb9.eu.org
53
DNS



forkbomb9.eu.org
110
POP3



forkbomb9.eu.org
110
POP3



forkbomb9.eu.org
143
IMAP



forkbomb9.eu.org
143
IMAP



forkbomb9.eu.org
465
SMTP (encrypted)
open


forkbomb9.eu.org
465
SMTP (encrypted)
open


forkbomb9.eu.org
587
SMTP (encrypted, submission)
open
220 blackthorn.bsailing.team ESMTP Postfix

forkbomb9.eu.org
587
SMTP (encrypted, submission)
open
220 blackthorn.bsailing.team ESMTP Postfix

forkbomb9.eu.org
993
IMAP (encrypted)
open


forkbomb9.eu.org
993
IMAP (encrypted)
open


forkbomb9.eu.org
995
POP3 (encrypted)



forkbomb9.eu.org
995
POP3 (encrypted)



forkbomb9.eu.org
1433
MS SQL



forkbomb9.eu.org
1433
MS SQL



forkbomb9.eu.org
2082
cPanel (http)



forkbomb9.eu.org
2082
cPanel (http)



forkbomb9.eu.org
2083
cPanel (https)



forkbomb9.eu.org
2083
cPanel (https)



forkbomb9.eu.org
2086
WHM (http)



forkbomb9.eu.org
2086
WHM (http)



forkbomb9.eu.org
2087
WHM (https)



forkbomb9.eu.org
2087
WHM (https)



forkbomb9.eu.org
2089
cPanel Licensing



forkbomb9.eu.org
2089
cPanel Licensing



forkbomb9.eu.org
2095
cPanel Webmail (http)



forkbomb9.eu.org
2095
cPanel Webmail (http)



forkbomb9.eu.org
2096
cPanel Webmail (https)



forkbomb9.eu.org
2096
cPanel Webmail (https)



forkbomb9.eu.org
2222
DirectAdmin (http)



forkbomb9.eu.org
2222
DirectAdmin (http)



forkbomb9.eu.org
2222
DirectAdmin (https)



forkbomb9.eu.org
2222
DirectAdmin (https)



forkbomb9.eu.org
3306
mySql



forkbomb9.eu.org
3306
mySql



forkbomb9.eu.org
5224
Plesk Licensing



forkbomb9.eu.org
5224
Plesk Licensing



forkbomb9.eu.org
5432
PostgreSQL



forkbomb9.eu.org
5432
PostgreSQL



forkbomb9.eu.org
8080
Ookla Speedtest (http)



forkbomb9.eu.org
8080
Ookla Speedtest (http)



forkbomb9.eu.org
8080
Ookla Speedtest (https)



forkbomb9.eu.org
8080
Ookla Speedtest (https)



forkbomb9.eu.org
8083
VestaCP http



forkbomb9.eu.org
8083
VestaCP http



forkbomb9.eu.org
8083
VestaCP https



forkbomb9.eu.org
8083
VestaCP https



forkbomb9.eu.org
8443
Plesk Administration (https)



forkbomb9.eu.org
8443
Plesk Administration (https)



forkbomb9.eu.org
8447
Plesk Installer + Updates



forkbomb9.eu.org
8447
Plesk Installer + Updates



forkbomb9.eu.org
8880
Plesk Administration (http)



forkbomb9.eu.org
8880
Plesk Administration (http)



forkbomb9.eu.org
10000
Webmin (http)



forkbomb9.eu.org
10000
Webmin (http)



forkbomb9.eu.org
10000
Webmin (https)



forkbomb9.eu.org
10000
Webmin (https)



46.4.64.120
21
FTP



46.4.64.120
21
FTP



46.4.64.120
22
SSH



46.4.64.120
22
SSH



46.4.64.120
25
SMTP
open
220 blackthorn.bsailing.team ESMTP Postfix

46.4.64.120
25
SMTP
open
220 blackthorn.bsailing.team ESMTP Postfix

46.4.64.120
53
DNS



46.4.64.120
53
DNS



46.4.64.120
110
POP3



46.4.64.120
110
POP3



46.4.64.120
143
IMAP



46.4.64.120
143
IMAP



46.4.64.120
465
SMTP (encrypted)
open


46.4.64.120
465
SMTP (encrypted)
open


46.4.64.120
587
SMTP (encrypted, submission)
open
220 blackthorn.bsailing.team ESMTP Postfix

46.4.64.120
587
SMTP (encrypted, submission)
open
220 blackthorn.bsailing.team ESMTP Postfix

46.4.64.120
993
IMAP (encrypted)
open


46.4.64.120
993
IMAP (encrypted)
open


46.4.64.120
995
POP3 (encrypted)



46.4.64.120
995
POP3 (encrypted)



46.4.64.120
1433
MS SQL



46.4.64.120
1433
MS SQL



46.4.64.120
2082
cPanel (http)



46.4.64.120
2082
cPanel (http)



46.4.64.120
2083
cPanel (https)



46.4.64.120
2083
cPanel (https)



46.4.64.120
2086
WHM (http)



46.4.64.120
2086
WHM (http)



46.4.64.120
2087
WHM (https)



46.4.64.120
2087
WHM (https)



46.4.64.120
2089
cPanel Licensing



46.4.64.120
2089
cPanel Licensing



46.4.64.120
2095
cPanel Webmail (http)



46.4.64.120
2095
cPanel Webmail (http)



46.4.64.120
2096
cPanel Webmail (https)



46.4.64.120
2096
cPanel Webmail (https)



46.4.64.120
2222
DirectAdmin (http)



46.4.64.120
2222
DirectAdmin (http)



46.4.64.120
2222
DirectAdmin (https)



46.4.64.120
2222
DirectAdmin (https)



46.4.64.120
3306
mySql



46.4.64.120
3306
mySql



46.4.64.120
5224
Plesk Licensing



46.4.64.120
5224
Plesk Licensing



46.4.64.120
5432
PostgreSQL



46.4.64.120
5432
PostgreSQL



46.4.64.120
8080
Ookla Speedtest (http)



46.4.64.120
8080
Ookla Speedtest (http)



46.4.64.120
8080
Ookla Speedtest (https)



46.4.64.120
8080
Ookla Speedtest (https)



46.4.64.120
8083
VestaCP http



46.4.64.120
8083
VestaCP http



46.4.64.120
8083
VestaCP https



46.4.64.120
8083
VestaCP https



46.4.64.120
8443
Plesk Administration (https)



46.4.64.120
8443
Plesk Administration (https)



46.4.64.120
8447
Plesk Installer + Updates



46.4.64.120
8447
Plesk Installer + Updates



46.4.64.120
8880
Plesk Administration (http)



46.4.64.120
8880
Plesk Administration (http)



46.4.64.120
10000
Webmin (http)



46.4.64.120
10000
Webmin (http)



46.4.64.120
10000
Webmin (https)



46.4.64.120
10000
Webmin (https)





Permalink: https://check-your-website.server-daten.de/?i=5321be12-1222-4d36-8fa8-491db9494df1


Last Result: https://check-your-website.server-daten.de/?q=forkbomb9.eu.org - 2022-01-14 17:17:30


Do you like this page? Support this tool, add a link on your page:

<a href="https://check-your-website.server-daten.de/?q=forkbomb9.eu.org" target="_blank">Check this Site: forkbomb9.eu.org</a>