Check DNS, Urls + Redirects, Certificates and Content of your Website




A+

Top config, G+M - Preload

Checked:
26.05.2023 11:07:58


Older results


1. IP-Addresses

HostTypeIP-Addressis auth.∑ Queries∑ Timeout
mzlive.eu
A
194.204.39.49
Tallinn/Harjumaa/Estonia (EE) - Elisa
Hostname: orc.mrstuudio.ee
yes
2
0

AAAA

yes


www.mzlive.eu
CNAME
mzlive.eu
yes
1
0

A
194.204.39.49
Tallinn/Harjumaa/Estonia (EE) - Elisa
Hostname: orc.mrstuudio.ee
yes


*.mzlive.eu
A
Name Error
yes



AAAA
Name Error
yes



CNAME
Name Error
yes



2. DNSSEC

Zone (*)DNSSEC - Informations

Zone: (root)
(root)
1 DS RR published



DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest 4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=



Status: Valid because published



2 DNSKEY RR found



Public Key with Algorithm 8, KeyTag 20326, Flags 257 (SEP = Secure Entry Point)



Public Key with Algorithm 8, KeyTag 60955, Flags 256



1 RRSIG RR to validate DNSKEY RR found



RRSIG-Owner (root), Algorithm: 8, 0 Labels, original TTL: 172800 sec, Signature-expiration: 11.06.2023, 00:00:00 +, Signature-Inception: 21.05.2023, 00:00:00 +, KeyTag 20326, Signer-Name: (root)



Status: Good - Algorithmus 8 and DNSKEY with KeyTag 20326 used to validate the DNSKEY RRSet



Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest "4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: eu
eu
1 DS RR in the parent zone found



DS with Algorithm 8, KeyTag 35926, DigestType 2 and Digest ibnvBEWQTnxgdLW+zoI8PiZPvZHBA9EL3mA0EjQ85ww=



1 RRSIG RR to validate DS RR found



RRSIG-Owner eu., Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 08.06.2023, 05:00:00 +, Signature-Inception: 26.05.2023, 04:00:00 +, KeyTag 60955, Signer-Name: (root)



Status: Good - Algorithmus 8 and DNSKEY with KeyTag 60955 used to validate the DS RRSet in the parent zone



2 DNSKEY RR found



Public Key with Algorithm 8, KeyTag 19371, Flags 256



Public Key with Algorithm 8, KeyTag 35926, Flags 257 (SEP = Secure Entry Point)



2 RRSIG RR to validate DNSKEY RR found



RRSIG-Owner eu., Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 01.06.2023, 09:00:00 +, Signature-Inception: 25.05.2023, 08:00:00 +, KeyTag 19371, Signer-Name: eu



RRSIG-Owner eu., Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 01.06.2023, 09:00:00 +, Signature-Inception: 25.05.2023, 08:00:00 +, KeyTag 35926, Signer-Name: eu



Status: Good - Algorithmus 8 and DNSKEY with KeyTag 19371 used to validate the DNSKEY RRSet



Status: Good - Algorithmus 8 and DNSKEY with KeyTag 35926 used to validate the DNSKEY RRSet



Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 35926, DigestType 2 and Digest "ibnvBEWQTnxgdLW+zoI8PiZPvZHBA9EL3mA0EjQ85ww=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: mzlive.eu
mzlive.eu
0 DS RR in the parent zone found



DS-Query in the parent zone has a valid NSEC3 RR as result with the hashed query name "86q70ciri3g58k6ppaatqk38la182aer" between the hashed NSEC3-owner "86q6vtg0kbckojvkf92r29d3lcaueb5k" and the hashed NextOwner "86q72mjgc54ecm0ks6cgrrrgl85ihmgk". So the parent zone confirmes the not-existence of a DS RR.
Bitmap: NS, DS, RRSIG Validated: RRSIG-Owner 86q6vtg0kbckojvkf92r29d3lcaueb5k.eu., Algorithm: 8, 2 Labels, original TTL: 600 sec, Signature-expiration: 29.05.2023, 14:58:57 +, Signature-Inception: 22.05.2023, 14:30:42 +, KeyTag 19371, Signer-Name: eu



DS-Query in the parent zone sends valid NSEC3 RR with the Hash "cs7nl1v9tgtkj2d4ipjvdfm81ohcdd0c" as Owner. That's the Hash of "eu" with the NextHashedOwnerName "cs7oqv4ruts8u2jm24vnlt8ruuncp8th". So that domain name is the Closest Encloser of "mzlive.eu". Opt-Out: True.
Bitmap: NS, SOA, RRSIG, DNSKEY, NSEC3PARAM Validated: RRSIG-Owner cs7nl1v9tgtkj2d4ipjvdfm81ohcdd0c.eu., Algorithm: 8, 2 Labels, original TTL: 600 sec, Signature-expiration: 29.05.2023, 16:06:03 +, Signature-Inception: 22.05.2023, 15:29:22 +, KeyTag 19371, Signer-Name: eu



0 DNSKEY RR found




Zone: www.mzlive.eu
www.mzlive.eu
0 DS RR in the parent zone found


3. Name Servers

DomainNameserverNS-IP
mzlive.eu
  ns.elkdata.ee
194.106.101.162
Tallinn/Harjumaa/Estonia (EE) - Telia Eesti AS


  ns2.elkdata.ee
194.106.101.163
Tallinn/Harjumaa/Estonia (EE) - Telia Eesti AS


  ns3.elkdata.net
195.222.17.113
Tallinn/Harjumaa/Estonia (EE) - Data Telecom


 
2001:ad0:105:189:195:222:17:113
Tallinn/Harjumaa/Estonia (EE) - CITIC Telecom CPC

eu
  be.dns.eu


  si.dns.eu


  w.dns.eu / tld-all-fam1@53028


  x.dns.eu / ns-1.eu.de8.bind


  y.dns.eu / s2.wie


4. SOA-Entries


Domain:eu
Zone-Name:eu
Primary:si.dns.eu
Mail:tech.eurid.eu
Serial:1090967959
Refresh:3600
Retry:1800
Expire:3600000
TTL:600
num Entries:5


Domain:mzlive.eu
Zone-Name:mzlive.eu
Primary:ns.elkdata.ee
Mail:hostmaster.ns.elkdata.ee
Serial:2022051100
Refresh:10800
Retry:1800
Expire:604800
TTL:1800
num Entries:4


5. Screenshots

Startaddress: https://mzlive.eu/, address used: https://mzlive.eu/, Screenshot created 2023-05-26 11:20:11 +00:0

Mobil (412px x 732px)

370 milliseconds

Screenshot mobile - https://mzlive.eu/
Mobil + Landscape (732px x 412px)

276 milliseconds

Screenshot mobile landscape - https://mzlive.eu/
Screen (1280px x 1680px)

514 milliseconds

Screenshot Desktop - https://mzlive.eu/

Mobile- and other Chrome-Checks

widthheight
visual Viewport396716
content Size4801280

Fatal: Horizontal scrollbar detected. Content-size width is greater then visual Viewport width.

6. Url-Checks


:

:
DomainnameHttp-StatusredirectSec.G
• http://mzlive.eu/
194.204.39.49
301
https://mzlive.eu/
Html is minified: 100.00 %
0.083
A
Date: Fri, 26 May 2023 09:08:25 GMT
Server: Apache
X-Frame-Options: sameorigin
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Referrer-Policy: strict-origin-when-cross-origin
Location: https://mzlive.eu/
Content-Length: 226
Connection: close
Content-Type: text/html; charset=iso-8859-1

• http://www.mzlive.eu/
194.204.39.49
301
https://www.mzlive.eu/
Html is minified: 100.00 %
0.076
A
Date: Fri, 26 May 2023 09:08:25 GMT
Server: Apache
X-Frame-Options: sameorigin
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Referrer-Policy: strict-origin-when-cross-origin
Location: https://www.mzlive.eu/
Content-Length: 230
Connection: close
Content-Type: text/html; charset=iso-8859-1

• https://www.mzlive.eu/
194.204.39.49
301
https://mzlive.eu/
Html is minified: 100.00 %
2.116
A
Date: Fri, 26 May 2023 09:08:28 GMT
Server: Apache
X-Frame-Options: sameorigin
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Referrer-Policy: strict-origin-when-cross-origin
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Location: https://mzlive.eu/
Content-Length: 226
Connection: close
Content-Type: text/html; charset=iso-8859-1

• https://mzlive.eu/
194.204.39.49 GZip used - 6813 / 18448 - 63.07 %
Inline-JavaScript (∑/total): 6/149 Inline-CSS (∑/total): 0/0
200

Html is minified: 105.78 %
2.150
A
Date: Fri, 26 May 2023 09:08:25 GMT
Server: Apache
X-Powered-By: PHP/8.1.19
X-Frame-Options: sameorigin
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Referrer-Policy: strict-origin-when-cross-origin
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Upgrade: h2
Connection: Upgrade, close
Cache-Control: max-age=0
Expires: Fri, 26 May 2023 09:08:25 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6813
Content-Type: text/html; charset=UTF-8

• http://mzlive.eu/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
194.204.39.49
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0
404

Html is minified: 100.00 %
0.083
A
Not Found
Visible Content: Not Found The requested URL was not found on this server.
Date: Fri, 26 May 2023 09:08:31 GMT
Server: Apache
X-Frame-Options: sameorigin
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Referrer-Policy: strict-origin-when-cross-origin
Content-Length: 196
Connection: close
Content-Type: text/html; charset=iso-8859-1

• http://www.mzlive.eu/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
194.204.39.49
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0
404

Html is minified: 100.00 %
0.117
A
Not Found
Visible Content: Not Found The requested URL was not found on this server.
Date: Fri, 26 May 2023 09:08:31 GMT
Server: Apache
X-Frame-Options: sameorigin
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Referrer-Policy: strict-origin-when-cross-origin
Content-Length: 196
Connection: close
Content-Type: text/html; charset=iso-8859-1

• https://194.204.39.49/
194.204.39.49
302
https://www.mrstuudio.ee
Html is minified: 100.00 %
2.094
N
Certificate error: RemoteCertificateNameMismatch
Date: Fri, 26 May 2023 09:08:32 GMT
Server: Apache
X-Frame-Options: sameorigin
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Referrer-Policy: strict-origin-when-cross-origin
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Location: https://www.mrstuudio.ee
Content-Length: 208
Connection: close
Content-Type: text/html; charset=iso-8859-1

• https://www.mrstuudio.ee
GZip used - 11036 / 44119 - 74.99 %
200

Html is minified: 189.65 %
2.366
B
Date: Fri, 26 May 2023 09:08:35 GMT
Server: Apache
X-Powered-By: PHP/8.1.19
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate,private, must-revalidate
Pragma: no-cache
Link: <https://www.mrstuudio.ee/wp-json/>; rel="https://api.w.org/", <https://www.mrstuudio.ee/wp-json/wp/v2/pages/2>; rel="alternate"; type="application/json", <https://www.mrstuudio.ee/>; rel=shortlink, </wp-content/cache/minify/c45ba.js>; rel=preload; as=script, </wp-content/cache/minify/83636.js>; rel=preload; as=script, </wp-content/cache/minify/9c9dd.js>; rel=preload; as=script, </wp-content/cache/minify/081d3.css>; rel=preload; as=style, </wp-content/cache/minify/c780c.css>; rel=preload; as=style
Set-Cookie: PHPSESSID=6t20ga3bjra8m7ara1qv5vdecv; path=/; secure; HttpOnly
X-Frame-Options: sameorigin
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Referrer-Policy: strict-origin-when-cross-origin
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Upgrade: h2
Connection: keep-alive, close
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Security-Policy: base-uri 'self'; default-src 'self'; script-src https://www.google.com https://*.googletagmanager.com https://*.google-analytics.com/analytics.js https://www.gstatic.com https://api.flickr.com 'unsafe-eval' 'unsafe-inline' 'self'; object-src 'self'; style-src https://fonts.googleapis.com https://www.gstatic.com https://cdnjs.cloudflare.com/ajax/libs/fancybox/ 'unsafe-inline' 'self'; img-src 'self' data: https:; media-src 'self'; child-src 'self'; frame-src https://www.google.com 'self'; font-src https://fonts.gstatic.com 'self' data:; connect-src https://*.google-analytics.com https://api.flickr.com 'self'; worker-src 'self'; frame-ancestors 'self'; form-action 'self'; upgrade-insecure-requests
Content-Length: 11036
Content-Type: text/html; charset=UTF-8

7. Comments


1. General Results, most used to calculate the result

Aname "mzlive.eu" is domain, public suffix is ".eu", top-level-domain is ".eu", top-level-domain-type is "country-code", Country is European Union, tld-manager is "EURid vzw/asbl", num .eu-domains preloaded: 2146 (complete: 221801)
AGood: All ip addresses are public addresses
Warning: Only one ip address found: mzlive.eu has only one ip address.
Warning: Only one ip address found: www.mzlive.eu has only one ip address.
Warning: No ipv6 address found. Ipv6 is the future with a lot of new features. So every domain name should have an ipv6 address. See https://en.wikipedia.org/wiki/IPv6: mzlive.eu has no ipv6 address.
Warning: No ipv6 address found. Ipv6 is the future with a lot of new features. So every domain name should have an ipv6 address. See https://en.wikipedia.org/wiki/IPv6: www.mzlive.eu has no ipv6 address.
AGood: No asked Authoritative Name Server had a timeout
AGood: destination is https
AGood - only one version with Http-Status 200
AGood: one preferred version: non-www is preferred
AGood: No cookie sent via http.
AGood: every cookie sent via https is marked as secure
AGood: every https has a Strict Transport Security Header
AGood: HSTS max-age is long enough, 31536000 seconds = 365 days
AGood: HSTS has includeSubdomains - directive
AGood: HSTS has preload directive
AExcellent: Domain is in the Google-Preload-List
AExcellent: Domain is in the Mozilla/Firefox-Preload-List
AHSTS-Preload-Status: Preloaded. Check https://hstspreload.org/ to learn some basics about the Google-Preload-List.
AGood: All urls with http status 200/404 have a complete Content-Type header (MediaType / MediaSubType + correct charset)
Ahttp://mzlive.eu/ 194.204.39.49
301
https://mzlive.eu/
Correct redirect http - https with the same domain name
Ahttp://www.mzlive.eu/ 194.204.39.49
301
https://www.mzlive.eu/
Correct redirect http - https with the same domain name
Bhttps://www.mrstuudio.ee
200
PHPSESSID=6t20ga3bjra8m7ara1qv5vdecv; path=/; secure; HttpOnly
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
Nhttps://194.204.39.49/ 194.204.39.49
302
https://www.mrstuudio.ee
Error - Certificate isn't trusted, RemoteCertificateNameMismatch
Nwww.mzlive.eu:25


Error - Certificate isn't trusted, RemoteCertificateNameMismatch
Nmzlive.eu:25


Error - Certificate isn't trusted, RemoteCertificateNameMismatch
Nmzlive.eu:587


Error - Certificate isn't trusted, RemoteCertificateNameMismatch
Nwww.mzlive.eu:587


Error - Certificate isn't trusted, RemoteCertificateNameMismatch
Nwww.mzlive.eu:993


Error - Certificate isn't trusted, RemoteCertificateNameMismatch
Nmzlive.eu:993


Error - Certificate isn't trusted, RemoteCertificateNameMismatch
Info: Checking all ip addresses of that domain without sending the hostname only one certificate found. Checking all ip addresses and sending the hostname only one certificate found. Both certificates are different. So that domain requires Server Name Indication (SNI), so the server is able to select the correct certificate.: Domain mzlive.eu, 1 ip addresses.
Info: Checking all ip addresses of that domain without sending the hostname only one certificate found. Checking all ip addresses and sending the hostname only one certificate found. Both certificates are different. So that domain requires Server Name Indication (SNI), so the server is able to select the correct certificate.: Domain www.mzlive.eu, 1 ip addresses.
BNo _mta-sts TXT record found (mta-sts: Mail Transfer Agent Strict Transport Security - see RFC 8461). Read the result of server-daten.de (Url-Checks, Comments, Connections and DomainServiceRecords) to see a complete definition. Domainname: _mta-sts.mzlive.eu

2. Header-Checks (alpha, started 2022-10-23, may be buggy / incomplete)

Amzlive.eu 194.204.39.49
X-Content-Type-Options
Ok: Header without syntax errors found: nosniff
A
Referrer-Policy
Ok: Header without syntax errors found: strict-origin-when-cross-origin
A
X-Frame-Options
Ok: Header without syntax errors found: sameorigin
B

Info: Header is deprecated. May not longer work in modern browsers. sameorigin. Better solution: Use a Content-Security-Policy Header with a frame-ancestors directive. DENY - use 'none', SAMEORIGIN - use 'self'. If you want to allow some domains to frame your page, add these urls.
A
X-Xss-Protection
Ok: Header without syntax errors found: 1; mode=block
B

Info: Header is deprecated. May not longer work in modern browsers. 1; mode=block
Fmzlive.eu 194.204.39.49
Content-Security-Policy
Critical: Missing Header:
Fmzlive.eu 194.204.39.49
Permissions-Policy
Critical: Missing Header:

3. DNS- and NameServer - Checks

AInfo:: 4 Root-climbing DNS Queries required to find all IPv4- and IPv6-Addresses of 3 Name Servers.
AInfo:: 4 Queries complete, 4 with IPv6, 0 with IPv4.
AGood: All DNS Queries done via IPv6.
AGood: Some ip addresses of name servers found with the minimum of two DNS Queries. One to find the TLD-Zone, one to ask the TLD-Zone.ns.elkdata.ee (194.106.101.162), ns3.elkdata.net (195.222.17.113), ns2.elkdata.ee (194.106.101.163)
AGood (1 - 3.0):: An average of 1.3 queries per domain name server required to find all ip addresses of all name servers.
AInfo:: 3 different Name Servers found: ns.elkdata.ee, ns2.elkdata.ee, ns3.elkdata.net, 3 Name Servers included in Delegation: ns.elkdata.ee, ns2.elkdata.ee, ns3.elkdata.net, 3 Name Servers included in 1 Zone definitions: ns.elkdata.ee, ns2.elkdata.ee, ns3.elkdata.net, 1 Name Servers listed in SOA.Primary: ns.elkdata.ee.
AGood: Only one SOA.Primary Name Server found.: ns.elkdata.ee.
AGood: SOA.Primary Name Server included in the delegation set.: ns.elkdata.ee.
AGood: Consistency between delegation and zone. The set of NS records served by the authoritative name servers must match those proposed for the delegation in the parent zone. Ordered list of name servers: ns.elkdata.ee, ns2.elkdata.ee, ns3.elkdata.net
AGood: All Name Server Domain Names have a Public Suffix.
AGood: All Name Server Domain Names ending with a Public Suffix have minimal one IPv4- or IPv6 address.
AGood: All Name Server ip addresses are public.
AGood: Minimal 2 different name servers (public suffix and public ip address) found: 3 different Name Servers found
AGood: Some Name Servers have IPv6 addresses: 1 Name Servers with IPv6 found (2 Name Servers without IPv6)
AGood: Name servers with different Top Level Domains / Public Suffix List entries found: 3 Name Servers, 2 Top Level Domains: ee, net
AGood: Name Servers with different domain names found.: 2 different Domains found
Warning: All Name Servers from the same Country / IP location.: 3 Name Servers, 1 Countries: EE
AInfo: Ipv4-Subnet-list: 3 Name Servers, 2 different subnets (first Byte): 194., 195., 2 different subnets (first two Bytes): 194.106., 195.222., 2 different subnets (first three Bytes): 194.106.101., 195.222.17.
AGood: Name Server IPv4-addresses from different subnet found:
AInfo: IPv6-Subnet-list: 1 Name Servers with IPv6, 1 different subnets (first block): 2001:, 1 different subnets (first two blocks): 2001:0ad0:, 1 different subnets (first three blocks): 2001:0ad0:0105:, 1 different subnets (first four blocks): 2001:0ad0:0105:0189:
Fatal: All Name Server IPv6 addresses from the same subnet.
AGood: Nameserver supports TCP connections: 4 good Nameserver
AGood: Nameserver supports Echo Capitalization: 4 good Nameserver
AGood: Nameserver supports EDNS with max. 512 Byte Udp payload, message is smaller: 4 good Nameserver
AGood: Nameserver has passed 10 EDNS-Checks (OP100, FLAGS, V1, V1OP100, V1FLAGS, DNSSEC, V1DNSSEC, NSID, COOKIE, CLIENTSUBNET): 4 good Nameserver
Nameserver doesn't pass all EDNS-Checks: be.dns.eu: OP100: ok. FLAGS: ok. V1: ok. V1OP100: ok. V1FLAGS: ok. DNSSEC: ok. V1DNSSEC: ok. NSID: ok. COOKIE: SOA expected, but NOT found, NOERR expected, BADVER found, Version 0 expectend and found. CLIENTSUBNET: ok.
Nameserver doesn't pass all EDNS-Checks: si.dns.eu: OP100: ok. FLAGS: ok. V1: ok. V1OP100: ok. V1FLAGS: ok. DNSSEC: ok. V1DNSSEC: ok. NSID: ok. COOKIE: SOA expected, but NOT found, NOERR expected, BADVER found, Version 0 expectend and found. CLIENTSUBNET: ok.
AGood: All SOA have the same Serial Number
AGood: CAA entries found, creating certificate is limited: letsencrypt.org is allowed to create certificates

4. Content- and Performance-critical Checks

AGood: All checks /.well-known/acme-challenge/random-filename without redirects answer with the expected http status 404 - Not Found. Creating a Letsencrypt certificate via http-01 challenge should work. If it doesn't work: Check your vHost configuration (apachectl -S, httpd -S, nginx -T). Every combination of port and ServerName / ServerAlias (Apache) or Server (Nginx) must be unique. Merge duplicated entries in one vHost. If you use an IIS, extensionless files must be allowed in the /.well-known/acme-challenge subdirectory. Create a web.config in that directory. Content: <configuration><system.webServer><staticContent><mimeMap fileExtension="." mimeType="text/plain" /></staticContent></system.webServer></configuration>. If you have a redirect http ⇒ https, that's ok, Letsencrypt follows such redirects to port 80 / 443 (same or other server). There must be a certificate. But the certificate may be expired, self signed or with a not matching domain name. Checking the validation file Letsencrypt ignores such certificate errors. Trouble creating a certificate? Use https://community.letsencrypt.org/ to ask.
AGood: Every https result with status 200 supports GZip.
https://mzlive.eu/ 194.204.39.49
200

Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
https://www.mrstuudio.ee
200

Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
AGood: Every https connection via port 443 supports the http/2 protocol via ALPN.
AGood: Some script Elements (type text/javascript) with a src-Attribute have a defer / async - Attribute. So loading and executing these JavaScripts doesn't block parsing and rendering the Html-Output.
https://mzlive.eu/ 194.204.39.49
200

Critical: Some script Elements (type text/javascript) with a src-Attribute don't have a defer / async - Attribute. Loading and executing these JavaScripts blocks parsing and rendering the Html-Output. That's bad if your site is large or the connection is slow / mobile usage. Use "async" if the js file has only functions (so nothing is executed after parsing the file) or is independend. Use "defer" if the order of the scripts is important. All "defer" scripts are executed before the DOMContentLoaded event is fired. Check https://developer.mozilla.org/en-US/docs/Web/HTML/Element/script to see some details.: 5 script elements without defer/async.
AGood: All CSS / JavaScript files are sent with GZip. That reduces the content of the files. 9 external CSS / JavaScript files found
AGood: All images with internal compression not sent via GZip. Images (.png, .jpg) are already compressed, so an additional GZip isn't helpful. 1 images (type image/png, image/jpg) found without additional GZip. Not required because these images are already compressed
Warning: CSS / JavaScript files with a missing or too short Cache-Control header found. Browsers should cache and re-use these files. 0 external CSS / JavaScript files without Cache-Control-Header, 0 with Cache-Control, but no max-age, 2 with Cache-Control max-age too short (minimum 7 days), 7 with Cache-Control long enough, 9 complete.
AGood: All images are sent with a long Cache-Control header (minimum 7 days). So the browser can reuse these files, no download is required. 1 image files with long Cache-Control max-age found
AGood: All checked attribute values are enclosed in quotation marks (" or ').
AGood: All img-elements have a valid alt-attribute.: 1 img-elements found.
AGood: Domainname is not on the "Specially Designated Nationals And Blocked Persons List" (SDN). That's an US-list of individuals and companies owned or controlled by, or acting for or on behalf of, targeted countries. It also lists individuals, groups, and entities, such as terrorists and narcotics traffickers designated under programs that are not country-specific. Collectively, such individuals and companies are called "Specially Designated Nationals" or "SDNs." Their assets are blocked and U.S. persons are generally prohibited from dealing with them. So if a domain name is on that list, it's impossible to create a Letsencrypt certificate with that domain name. Check the list manual - https://www.treasury.gov/resource-center/sanctions/sdn-list/pages/default.aspx
ADuration: 741030 milliseconds, 741.030 seconds


8. Connections

DomainIPPortCert.ProtocolKeyExchangeStrengthCipherStrengthHashAlgorithmOCSP stapling
Domain/KeyExchangeIP/StrengthPort/CipherCert./StrengthProtocol/HashAlgorithmOCSP stapling
mzlive.eu
194.204.39.49
443
ok
Tls12
ECDH Ephermal
255
Aes128
128
Sha256
not supported
ok
mzlive.eu
194.204.39.49
443
ok
Tls12

ECDH Ephermal
255
Aes128
128
Sha256
not supported
ok
http/2 via ALPN supported 
SNI required
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
http/2 via ALPN supported
SNI required
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
Chain - too much certificates, don't send root certificates
1CN=mzlive.eu

2CN=R3, O=Let's Encrypt, C=US

3CN=ISRG Root X1, O=Internet Security Research Group, C=US


www.mzlive.eu
194.204.39.49
443
ok
Tls12
ECDH Ephermal
255
Aes128
128
Sha256
not supported
ok

www.mzlive.eu
194.204.39.49
443
ok
Tls12

ECDH Ephermal
255
Aes128
128
Sha256
not supported
ok
http/2 via ALPN supported 
SNI required
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
http/2 via ALPN supported
SNI required
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
Chain - too much certificates, don't send root certificates
1CN=mzlive.eu

2CN=R3, O=Let's Encrypt, C=US

3CN=ISRG Root X1, O=Internet Security Research Group, C=US


194.204.39.49
194.204.39.49
443
name does not match
Tls12
ECDH Ephermal
255
Aes128
128
Sha256
not supported
ok

194.204.39.49
194.204.39.49
443
name does not match
Tls12

ECDH Ephermal
255
Aes128
128
Sha256
not supported
ok
http/2 via ALPN supported 
Cert sent without SNI
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
http/2 via ALPN supported
Cert sent without SNI
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
Chain - too much certificates, don't send root certificates
1CN=orc.mrstuudio.ee

2CN=R3, O=Let's Encrypt, C=US

3CN=ISRG Root X1, O=Internet Security Research Group, C=US


www.mrstuudio.ee
www.mrstuudio.ee
443
ok
Tls12
ECDH Ephermal
255
Aes128
128
Sha256
not supported
ok

www.mrstuudio.ee
www.mrstuudio.ee
443
ok
Tls12

ECDH Ephermal
255
Aes128
128
Sha256
not supported
ok
http/2 via ALPN supported 
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
http/2 via ALPN supported
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
Chain - too much certificates, don't send root certificates
1CN=www.mrstuudio.ee

2CN=R3, O=Let's Encrypt, C=US

3CN=ISRG Root X1, O=Internet Security Research Group, C=US


mzlive.eu
194.204.39.49
25
name does not match
Tls12
ECDH Ephermal
255
Aes256
256
Sha384
not supported
ok

mzlive.eu
194.204.39.49
25
name does not match
Tls12

ECDH Ephermal
255
Aes256
256
Sha384
not supported
ok
 
Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2

Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2
Chain - too much certificates, don't send root certificates
1CN=mrstuudio.ee

2CN=R3, O=Let's Encrypt, C=US

3CN=ISRG Root X1, O=Internet Security Research Group, C=US


mzlive.eu
194.204.39.49
587
name does not match
Tls12
ECDH Ephermal
255
Aes256
256
Sha384
not supported
ok

mzlive.eu
194.204.39.49
587
name does not match
Tls12

ECDH Ephermal
255
Aes256
256
Sha384
not supported
ok
 
Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2

Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2
Chain - too much certificates, don't send root certificates
1CN=mrstuudio.ee

2CN=R3, O=Let's Encrypt, C=US

3CN=ISRG Root X1, O=Internet Security Research Group, C=US


mzlive.eu
194.204.39.49
993
name does not match
Tls12
ECDH Ephermal
255
Aes256
256
Sha384
not supported
ok

mzlive.eu
194.204.39.49
993
name does not match
Tls12

ECDH Ephermal
255
Aes256
256
Sha384
not supported
ok
 
Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2

Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2
Chain - too much certificates, don't send root certificates
1CN=mrstuudio.ee

2CN=R3, O=Let's Encrypt, C=US

3CN=ISRG Root X1, O=Internet Security Research Group, C=US


www.mzlive.eu
194.204.39.49
25
name does not match
Tls12
ECDH Ephermal
255
Aes256
256
Sha384
not supported
ok

www.mzlive.eu
194.204.39.49
25
name does not match
Tls12

ECDH Ephermal
255
Aes256
256
Sha384
not supported
ok
 
Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2

Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2
Chain - too much certificates, don't send root certificates
1CN=mrstuudio.ee

2CN=R3, O=Let's Encrypt, C=US

3CN=ISRG Root X1, O=Internet Security Research Group, C=US


www.mzlive.eu
194.204.39.49
587
name does not match
Tls12
ECDH Ephermal
255
Aes256
256
Sha384
not supported
ok

www.mzlive.eu
194.204.39.49
587
name does not match
Tls12

ECDH Ephermal
255
Aes256
256
Sha384
not supported
ok
 
Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2

Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2
Chain - too much certificates, don't send root certificates
1CN=mrstuudio.ee

2CN=R3, O=Let's Encrypt, C=US

3CN=ISRG Root X1, O=Internet Security Research Group, C=US


www.mzlive.eu
194.204.39.49
993
name does not match
Tls12
ECDH Ephermal
255
Aes256
256
Sha384
not supported
ok

www.mzlive.eu
194.204.39.49
993
name does not match
Tls12

ECDH Ephermal
255
Aes256
256
Sha384
not supported
ok
 
Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2

Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2
Chain - too much certificates, don't send root certificates
1CN=mrstuudio.ee

2CN=R3, O=Let's Encrypt, C=US

3CN=ISRG Root X1, O=Internet Security Research Group, C=US


9. Certificates

1.
1.
CN=mzlive.eu
21.04.2023
20.07.2023
expires in 46 days
mzlive.eu, www.mzlive.eu - 2 entries
1.
1.
CN=mzlive.eu
21.04.2023

20.07.2023
expires in 46 days
mzlive.eu, www.mzlive.eu - 2 entries

KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:035F9EE749CEB5698C4C09AFB03A5E763CB6
Thumbprint:756C5783B78FCB84797CE2119D3747894071EC9B
SHA256 / Certificate:q2tG4bfK7z+13wY8saJ7JbvIBkazYFA8Ep2wEn2Le0k=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):41d6b8668c74b70f6649ba1df0260b2f6e694b2c439a6cf6c7ff93aa69dff998
SHA256 hex / Subject Public Key Information (SPKI):41d6b8668c74b70f6649ba1df0260b2f6e694b2c439a6cf6c7ff93aa69dff998 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:http://r3.o.lencr.org
OCSP - must staple:no
Certificate Transparency:yes
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)


2.
CN=R3, O=Let's Encrypt, C=US
04.09.2020
15.09.2025
expires in 834 days


2.
CN=R3, O=Let's Encrypt, C=US
04.09.2020

15.09.2025
expires in 834 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:00912B084ACF0C18A753F6D62E25A75F5A
Thumbprint:A053375BFE84E8B748782C7CEE15827A6AF5A405
SHA256 / Certificate:Z63RFmsCCuYbj1/JaBPATCqliZYHloZVcqPH5zdhPf0=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):8d02536c887482bc34ff54e41d2ba659bf85b341a0a20afadb5813dcfbcf286d
SHA256 hex / Subject Public Key Information (SPKI):8d02536c887482bc34ff54e41d2ba659bf85b341a0a20afadb5813dcfbcf286d
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Clientauthentifizierung (1.3.6.1.5.5.7.3.2), Serverauthentifizierung (1.3.6.1.5.5.7.3.1)


3.
CN=ISRG Root X1, O=Internet Security Research Group, C=US
04.06.2015
04.06.2035
expires in 4383 days


3.
CN=ISRG Root X1, O=Internet Security Research Group, C=US
04.06.2015

04.06.2035
expires in 4383 days


KeyalgorithmRSA encryption (4096 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:008210CFB0D240E3594463E0BB63828B00
Thumbprint:CABD2A79A1076A31F21D253635CB039D4329A5E8
SHA256 / Certificate:lrzsBiZJdvN0YHeazyjFp8/oo8Cq4RqP/O4FwL3fCMY=
SHA256 hex / Cert (DANE * 0 1):96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6
SHA256 hex / PublicKey (DANE * 1 1):0b9fa5a59eed715c26c1020c711b4f6ec42d58b0015e14337a39dad301c5afc3
SHA256 hex / Subject Public Key Information (SPKI):0b9fa5a59eed715c26c1020c711b4f6ec42d58b0015e14337a39dad301c5afc3
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:


2.
1.
CN=orc.mrstuudio.ee
21.04.2023
20.07.2023
expires in 46 days
orc.mrstuudio.ee - 1 entry
2.
1.
CN=orc.mrstuudio.ee
21.04.2023

20.07.2023
expires in 46 days
orc.mrstuudio.ee - 1 entry

KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:046761530F25E6E86543D1D493B01A4D1A58
Thumbprint:A9315BD7BAD3C80D1092F5B0BC17FDF6AE3B3D0C
SHA256 / Certificate:ScY7jj09viG7L87K5plYDJ1MyvnvUxobsfUDuekx7as=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):1e78ed7bd5704c972a2576a97538296684a845fe5038c7f1d30ecf010dcf29d8
SHA256 hex / Subject Public Key Information (SPKI):1e78ed7bd5704c972a2576a97538296684a845fe5038c7f1d30ecf010dcf29d8 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:http://r3.o.lencr.org
OCSP - must staple:no
Certificate Transparency:yes
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)


2.
CN=R3, O=Let's Encrypt, C=US
04.09.2020
15.09.2025
expires in 834 days


2.
CN=R3, O=Let's Encrypt, C=US
04.09.2020

15.09.2025
expires in 834 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:00912B084ACF0C18A753F6D62E25A75F5A
Thumbprint:A053375BFE84E8B748782C7CEE15827A6AF5A405
SHA256 / Certificate:Z63RFmsCCuYbj1/JaBPATCqliZYHloZVcqPH5zdhPf0=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):8d02536c887482bc34ff54e41d2ba659bf85b341a0a20afadb5813dcfbcf286d
SHA256 hex / Subject Public Key Information (SPKI):8d02536c887482bc34ff54e41d2ba659bf85b341a0a20afadb5813dcfbcf286d
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Clientauthentifizierung (1.3.6.1.5.5.7.3.2), Serverauthentifizierung (1.3.6.1.5.5.7.3.1)


3.
CN=ISRG Root X1, O=Internet Security Research Group, C=US
04.06.2015
04.06.2035
expires in 4383 days


3.
CN=ISRG Root X1, O=Internet Security Research Group, C=US
04.06.2015

04.06.2035
expires in 4383 days


KeyalgorithmRSA encryption (4096 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:008210CFB0D240E3594463E0BB63828B00
Thumbprint:CABD2A79A1076A31F21D253635CB039D4329A5E8
SHA256 / Certificate:lrzsBiZJdvN0YHeazyjFp8/oo8Cq4RqP/O4FwL3fCMY=
SHA256 hex / Cert (DANE * 0 1):96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6
SHA256 hex / PublicKey (DANE * 1 1):0b9fa5a59eed715c26c1020c711b4f6ec42d58b0015e14337a39dad301c5afc3
SHA256 hex / Subject Public Key Information (SPKI):0b9fa5a59eed715c26c1020c711b4f6ec42d58b0015e14337a39dad301c5afc3
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:


3.
1.
CN=www.mrstuudio.ee
21.04.2023
20.07.2023
expires in 46 days
mrstuudio.ee, www.mrstuudio.ee - 2 entries
3.
1.
CN=www.mrstuudio.ee
21.04.2023

20.07.2023
expires in 46 days
mrstuudio.ee, www.mrstuudio.ee - 2 entries

KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:0324305A1405E505D13971B7641C75584079
Thumbprint:4E4805F7BC8FE6B0FB6B4449C34A20D9387B3420
SHA256 / Certificate:i1a5W3Fw1xX5WwI349TrPLzLpbvLUbwQqFuB9YyFkcc=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):b5171e56fecf679606ac37b1d7c2d35db27c300b5f4656575646f9625f2bfe1a
SHA256 hex / Subject Public Key Information (SPKI):b5171e56fecf679606ac37b1d7c2d35db27c300b5f4656575646f9625f2bfe1a (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:http://r3.o.lencr.org
OCSP - must staple:no
Certificate Transparency:yes
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)


2.
CN=R3, O=Let's Encrypt, C=US
04.09.2020
15.09.2025
expires in 834 days


2.
CN=R3, O=Let's Encrypt, C=US
04.09.2020

15.09.2025
expires in 834 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:00912B084ACF0C18A753F6D62E25A75F5A
Thumbprint:A053375BFE84E8B748782C7CEE15827A6AF5A405
SHA256 / Certificate:Z63RFmsCCuYbj1/JaBPATCqliZYHloZVcqPH5zdhPf0=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):8d02536c887482bc34ff54e41d2ba659bf85b341a0a20afadb5813dcfbcf286d
SHA256 hex / Subject Public Key Information (SPKI):8d02536c887482bc34ff54e41d2ba659bf85b341a0a20afadb5813dcfbcf286d
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Clientauthentifizierung (1.3.6.1.5.5.7.3.2), Serverauthentifizierung (1.3.6.1.5.5.7.3.1)


3.
CN=ISRG Root X1, O=Internet Security Research Group, C=US
04.06.2015
04.06.2035
expires in 4383 days


3.
CN=ISRG Root X1, O=Internet Security Research Group, C=US
04.06.2015

04.06.2035
expires in 4383 days


KeyalgorithmRSA encryption (4096 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:008210CFB0D240E3594463E0BB63828B00
Thumbprint:CABD2A79A1076A31F21D253635CB039D4329A5E8
SHA256 / Certificate:lrzsBiZJdvN0YHeazyjFp8/oo8Cq4RqP/O4FwL3fCMY=
SHA256 hex / Cert (DANE * 0 1):96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6
SHA256 hex / PublicKey (DANE * 1 1):0b9fa5a59eed715c26c1020c711b4f6ec42d58b0015e14337a39dad301c5afc3
SHA256 hex / Subject Public Key Information (SPKI):0b9fa5a59eed715c26c1020c711b4f6ec42d58b0015e14337a39dad301c5afc3
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:


4.
1.
CN=mrstuudio.ee
25.03.2023
24.06.2023
expires in 20 days
mrstuudio.ee, orc.mrstuudio.ee - 2 entries
4.
1.
CN=mrstuudio.ee
25.03.2023

24.06.2023
expires in 20 days
mrstuudio.ee, orc.mrstuudio.ee - 2 entries

KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:04CE1D11231F3AE6FD23C272B7DEF3A60B35
Thumbprint:4609126415C243075C13847B51EA981C6D911502
SHA256 / Certificate:6I+/DkN8zMZd1ojEXopXqRlzz8hCX2GCH6F0YyhAXOA=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):50dcd9b1e113122684ec285cf118c2cd042c84deeca9acdb7a85dfc1f4d7641d
SHA256 hex / Subject Public Key Information (SPKI):50dcd9b1e113122684ec285cf118c2cd042c84deeca9acdb7a85dfc1f4d7641d (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:http://r3.o.lencr.org
OCSP - must staple:no
Certificate Transparency:yes
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)


2.
CN=R3, O=Let's Encrypt, C=US
04.09.2020
15.09.2025
expires in 834 days


2.
CN=R3, O=Let's Encrypt, C=US
04.09.2020

15.09.2025
expires in 834 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:00912B084ACF0C18A753F6D62E25A75F5A
Thumbprint:A053375BFE84E8B748782C7CEE15827A6AF5A405
SHA256 / Certificate:Z63RFmsCCuYbj1/JaBPATCqliZYHloZVcqPH5zdhPf0=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):8d02536c887482bc34ff54e41d2ba659bf85b341a0a20afadb5813dcfbcf286d
SHA256 hex / Subject Public Key Information (SPKI):8d02536c887482bc34ff54e41d2ba659bf85b341a0a20afadb5813dcfbcf286d
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Clientauthentifizierung (1.3.6.1.5.5.7.3.2), Serverauthentifizierung (1.3.6.1.5.5.7.3.1)


3.
CN=ISRG Root X1, O=Internet Security Research Group, C=US
04.06.2015
04.06.2035
expires in 4383 days


3.
CN=ISRG Root X1, O=Internet Security Research Group, C=US
04.06.2015

04.06.2035
expires in 4383 days


KeyalgorithmRSA encryption (4096 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:008210CFB0D240E3594463E0BB63828B00
Thumbprint:CABD2A79A1076A31F21D253635CB039D4329A5E8
SHA256 / Certificate:lrzsBiZJdvN0YHeazyjFp8/oo8Cq4RqP/O4FwL3fCMY=
SHA256 hex / Cert (DANE * 0 1):96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6
SHA256 hex / PublicKey (DANE * 1 1):0b9fa5a59eed715c26c1020c711b4f6ec42d58b0015e14337a39dad301c5afc3
SHA256 hex / Subject Public Key Information (SPKI):0b9fa5a59eed715c26c1020c711b4f6ec42d58b0015e14337a39dad301c5afc3
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:



10. Last Certificates - Certificate Transparency Log Check

1. Source CertSpotter - active certificates (one check per day)

Issuerlast 7 daysactivenum Certs
CN=R3, O=Let's Encrypt, C=US
0
1
1

CertSpotter-IdIssuernot beforenot afterDomain namesLE-Duplicatenext LE
5120572194
leaf cert
CN=R3, O=Let's Encrypt, C=US
2023-04-21 15:16:13
2023-07-20 15:16:12
mzlive.eu, www.mzlive.eu - 2 entries



2. Source crt.sh - old and new certificates, sometimes very slow - only certificates with "not after" > of the last months are listed

Issuerlast 7 daysactivenum Certs
CN=R3, O=Let's Encrypt, C=US
0 /0 new
1
14

CRT-IdIssuernot beforenot afterDomain namesLE-Duplicatenext LE
9214586732
leaf cert
CN=R3, O=Let's Encrypt, C=US
2023-04-21 13:16:13
2023-07-20 13:16:12
mzlive.eu, www.mzlive.eu
2 entries


8769793019
leaf cert
CN=R3, O=Let's Encrypt, C=US
2023-02-20 11:58:25
2023-05-21 10:58:24
mzlive.eu, www.mzlive.eu
2 entries


8266133160
leaf cert
CN=R3, O=Let's Encrypt, C=US
2022-12-22 04:55:02
2023-03-22 04:55:01
mzlive.eu, www.mzlive.eu
2 entries


7816497012
leaf cert
CN=R3, O=Let's Encrypt, C=US
2022-10-22 20:35:47
2023-01-20 21:35:46
mzlive.eu, www.mzlive.eu
2 entries


7440549676
precert
CN=R3, O=Let's Encrypt, C=US
2022-08-30 18:45:04
2022-11-28 19:45:03
mzlive.eu, www.mzlive.eu
2 entries


7041934707
leaf cert
CN=R3, O=Let's Encrypt, C=US
2022-07-01 09:28:03
2022-09-29 09:28:02
mzlive.eu, www.mzlive.eu
2 entries


7041920867
leaf cert
CN=R3, O=Let's Encrypt, C=US
2022-07-01 09:24:44
2022-09-29 09:24:43
mzlive.eu
1 entries


7029161789
leaf cert
CN=R3, O=Let's Encrypt, C=US
2022-06-29 09:07:01
2022-09-27 09:07:00
mzlive.eu, www.mzlive.eu
2 entries


7029146778
leaf cert
CN=R3, O=Let's Encrypt, C=US
2022-06-29 09:03:17
2022-09-27 09:03:16
dev.mzlive.eu, mzlive.eu, www.mzlive.eu
3 entries


6788839103
precert
CN=R3, O=Let's Encrypt, C=US
2022-05-23 19:01:14
2022-08-21 19:01:13
dev.mzlive.eu, mzlive.eu, www.mzlive.eu, zone.mzlive.eu
4 entries


6407102482
precert
CN=R3, O=Let's Encrypt, C=US
2022-03-24 20:48:42
2022-06-22 19:48:41
dev.mzlive.eu, mzlive.eu, www.mzlive.eu, zone.mzlive.eu
4 entries


6156032660
leaf cert
CN=R3, O=Let's Encrypt, C=US
2022-02-10 08:54:28
2022-05-11 07:54:27
dev.mzlive.eu, mzlive.eu, static.mzlive.eu, www.mzlive.eu, zone.mzlive.eu
5 entries


5787232740
leaf cert
CN=R3, O=Let's Encrypt, C=US
2021-12-12 08:59:30
2022-03-12 08:59:29
dev.mzlive.eu, mzlive.eu, static.mzlive.eu, www.mzlive.eu, zone.mzlive.eu
5 entries


5405929509
leaf cert
CN=R3, O=Let's Encrypt, C=US
2021-10-13 06:29:37
2022-01-11 07:29:36
dev.mzlive.eu, mzlive.eu, static.mzlive.eu, www.mzlive.eu, zone.mzlive.eu
5 entries



11. Html-Content - Entries

Summary

Subresource Integrity (SRI)
DomainnameHtmlElementrel/property∑ size∑ problems∑ int.∑ ext.∑ Origin poss.∑ SRI ParseErrors∑ SRI valid∑ SRI missing
https://mzlive.eu/
194.204.39.49
a

33

0


0
0
0


form

3

0


0
0
0


img

1
7,315 Bytes
0
1
0
0
0
0


link
dns-prefetch
1

0


0
0
0


link
stylesheet
3
9,897 Bytes
0
2
1
1
0
0
-1

link
other
7
14,889 Bytes
0
5
0
0
0
0


meta
og
8
30,824 Bytes
0
2
0
0
0
0


meta
other
6
170 Bytes
0
1
0
0
0
0


script

6
259,940 Bytes
0
3
3
1
0
0
-1

Details

DomainnameHtml-Elementname/equiv/ property/relhref/src/contentHttpStatusmsgStatus
https://mzlive.eu/
194.204.39.49
a

/


1
ok








a

/calculator/


1
ok








a

/changelog/


1
ok








a

/currency-converter/


1
ok








a

/league/world/div1.1/


1
ok








a

/league/world/div1.2/


1
ok








a

/league/world/div1.3/


1
ok








a

/league/world/Top-Series/


1
ok








a

/leagues/


2
ok








a

/players/


3
ok








a

/players/u18/


2
ok








a

/players/u21/


2
ok








a

/players/u23/


2
ok








a

/status/


1
ok








a

/tactics-converter/


1
ok








a

/teams/


3
ok








a

/teams/u18/


2
ok








a

/teams/u21/


2
ok








a

/teams/u23/


2
ok








a

https://www.managerzone.com


1
ok








a

https://www.managerzone.com/?p=profile&uid=2666072


1
ok








a

https://www.managerzone.com/?p=profile&uid=5387669


1
ok








form




3
ok








img
src
/images/match-url.png
200

1
ok
alt: MZ Live Project Match URL Exampleimage/png, X-Content-Type-Options nosniff found

Cache-Control: max-age=2592000 with long duration found.
No GZip - 7315 Bytes






link
apple-touch-icon
/favicons/apple-touch-icon.png
200

1
ok
image/png, X-Content-Type-Options nosniff found

Cache-Control: max-age=2592000 with long duration found.
No GZip - 3861 Bytes






link
dns-prefetch
//fonts.googleapis.com


1
ok








link
icon
/favicons/favicon-16x16.png
200

1
ok
image/png, X-Content-Type-Options nosniff found

Cache-Control: max-age=2592000 with long duration found.
No GZip - 662 Bytes






link
icon
/favicons/favicon-32x32.png
200

1
ok
image/png, X-Content-Type-Options nosniff found

Cache-Control: max-age=2592000 with long duration found.
No GZip - 1245 Bytes






link
manifest
/favicons/manifest.json


1
ok








link
mask-icon
/favicons/safari-pinned-tab.svg
200

1
ok
image/svg+xml, X-Content-Type-Options nosniff found

Cache-Control: max-age=2592000 with long duration found.
GZip: 1715/3325 Bytes






link
preconnect
https://fonts.gstatic.com


1
ok








link
shortcut icon
/favicons/favicon.ico
200

1
ok
image/vnd.microsoft.icon, X-Content-Type-Options nosniff found

No GZip - 7406 Bytes






link
stylesheet
/styles/cookieconsent.min.css?v=1666481550
200

1
ok
text/css, X-Content-Type-Options nosniff found

Cache-Control: max-age=2592000 - with long duration found.
GZip: 1209/4064 Bytes




local SRI possible, possible hash-values:

sha256-ebN46PPB/s45oUcqLn2SCrgOtYgVJaFiLZ26qVSqI8M=
sha384-AJ82o1PQz2xMlVWjJ+IdPSfyCVS/nJeYbLcpPhm/cEPrewaEdaYkaG6LCsquvogf
sha512-OR8Euhmq4gV888iCkbNer/K4vFpUJ1WEmQrlUqhl/WgjDF2ysVzYnbkM4r+g4KN5B0cYYrQ4D0uvPzb2cFoQVg==

<link rel="stylesheet" href="/styles/cookieconsent.min.css?v=1666481550" crossorigin="anonymous" integrity="sha256-ebN46PPB/s45oUcqLn2SCrgOtYgVJaFiLZ26qVSqI8M=" />




link
stylesheet
/styles/mzlive.css?v=1677444229
200

1
ok
text/css, X-Content-Type-Options nosniff found

Cache-Control: max-age=2592000 - with long duration found.
GZip: 8688/43586 Bytes




local SRI possible, possible hash-values:

sha256-X1vNZMmlgeXJNuhq1IHHEmtJdxLMuczkxggRtfVxfaY=
sha384-fRMPO3m1mxVBxtXCjR9rZQUAilD0JBhTVSlYzLsa3OXfiBkf4IZaXWBxA+FiCRPv
sha512-crYPMdqBkT6A3YBuwXoggmqRD2Oh5FtFHCWLNnvLyZ04i10tmFjksHy1pXs1BRIdDnwC/s4YVIrshwsy8XSOjg==

<link rel="stylesheet" href="/styles/mzlive.css?v=1677444229" crossorigin="anonymous" integrity="sha256-X1vNZMmlgeXJNuhq1IHHEmtJdxLMuczkxggRtfVxfaY=" />



Content loaded via url("...")

../fonts/icomoon.eot?q9juaw1
../fonts/icomoon.eot?q9juaw#iefix1
../fonts/icomoon.svg?q9juaw#icomoon1
../fonts/icomoon.ttf?q9juaw1
../fonts/icomoon.woff?q9juaw1
../images/kristofferson-silverfox.jpg1
../images/kylie-sven-opossum.jpg1

link
stylesheet
https://fonts.googleapis.com/css?family=Rokkitt:400,600
200

1
ok
text/css; charset=utf-8, X-Content-Type-Options nosniff found

GZip: 202/398 Bytes




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-0o+talIjJWO+pNw2iZJvm0a20sXLkE1Ir7AcF9aracc=
sha384-OOXTa3700K9BsEdHJaW38JXXXv+M2IUNYkEg+DRcgSLhvAHz/TWhFL3swrQh36Cz
sha512-ZUQiifIsKY+hjpLDdaG5+gbRsTNegB8U2hLCHlv/1VUlhZRvDGqDitYVvRELEcKB7uWdPIJpu+kczUH+76LCRQ==

<link rel="stylesheet" href="https://fonts.googleapis.com/css?family=Rokkitt:400,600" crossorigin="anonymous" integrity="sha256-0o+talIjJWO+pNw2iZJvm0a20sXLkE1Ir7AcF9aracc=" />



Content loaded via url("...")

https://fonts.gstatic.com/s/rokkitt/v34/qFdb35qfgYFjGy5hukqqhw5XeRgdi1oscKDMGbo.ttf1
https://fonts.gstatic.com/s/rokkitt/v34/qFdb35qfgYFjGy5hukqqhw5XeRgdi1ryd6DMGbo.ttf1

meta

UTF-8


1
ok








meta
og:description
MZ Live Project provides statistical data for ManagerZone leagues, teams and players and our Match Results feature can be used to instantly see match results.


1
ok








meta
og:image
https://mzlive.eu/images/mzlive-1200x630.png
200

1
ok
image/png, X-Content-Type-Options nosniff found

Cache-Control: max-age=2592000 with long duration found.
No GZip - 24011 Bytes






meta
og:image:height
630


1
ok








meta
og:image:width
1200


1
ok








meta
og:locale
en_GB


1
ok








meta
og:title
MZ Live Project | ManagerZone statistics site [ MZLive ]


1
ok








meta
og:type
website


1
ok








meta
og:url
https://mzlive.eu/
200

1
ok
text/html; charset=UTF-8, X-Content-Type-Options nosniff found

6813 Bytes






meta
description
MZ Live Project provides statistical data for ManagerZone leagues, teams and players and our Match Results feature can be used to instantly see match results.


1
ok








meta
google-site-verification
k1HGknDF7T2UF_ujUsVO420wTcCdIg2FnRN_tdlyqZM


1
ok








meta
msapplication-config
/favicons/browserconfig.xml
200

1
ok
text/xml, X-Content-Type-Options nosniff found

170 Bytes






meta
theme-color
#ffa550


1
ok








meta
viewport
width=device-width, initial-scale=1, maximum-scale=1


1
ok








script
src
/scripts/mzlive.js?v=1670499179
200

1
ok
Missing defer / async attribute. application/javascript, X-Content-Type-Options nosniff found

Cache-Control: max-age=2592000 - with long duration found.
GZip: 2364/7630 Bytes




local SRI possible, possible hash-values:

sha256-R8gKNuymroqWRu2XDearMdOXvbYxasShn3rbL9+jhqE=
sha384-211URc9ikGjYDuDOyzzte0/B9YzfFKoW51Qk6UFs3wVSVyvCFW05AX7CriQdmXgs
sha512-Pr9MtMOzp8rlVrcnY7zJcA5+iY44+OmOuXtwDmrth8Fd/DuADokF8fbWOXaRUHA5jRs8Gnn6YnsH1n6T4tJbqQ==

<script src="/scripts/mzlive.js?v=1670499179" crossorigin="anonymous" integrity="sha256-R8gKNuymroqWRu2XDearMdOXvbYxasShn3rbL9+jhqE=" />




script
src
/scripts/mzlive-bundle.min.js?v=1666481558
200

1
ok
Missing defer / async attribute. application/javascript, X-Content-Type-Options nosniff found

Cache-Control: max-age=2592000 - with long duration found.
GZip: 46058/192824 Bytes




local SRI possible, possible hash-values:

sha256-lSASEd6RhAokz94TTzdB4XtZwqHHUe6ge3ZOs8YL0gs=
sha384-2oJC2cwLaV7hv3eHke9zNZdI7nsuvBihp38iwvGFiETHA9Iqq9x8dhZZLAm0+XXb
sha512-JZ5cslLd7YBRTF3uFcNR/u9wvFsjMmGHks3Q10DkWUnmgeAz1z9zgWz/7tEtpNBlw1atZstVJD49mXwKjp+FoQ==

<script src="/scripts/mzlive-bundle.min.js?v=1666481558" crossorigin="anonymous" integrity="sha256-lSASEd6RhAokz94TTzdB4XtZwqHHUe6ge3ZOs8YL0gs=" />




script
src
/scripts/prototype.js?v=1666481550
200

1
ok
Missing defer / async attribute. application/javascript, X-Content-Type-Options nosniff found

Cache-Control: max-age=2592000 - with long duration found.
GZip: 46025/199803 Bytes




local SRI possible, possible hash-values:

sha256-Rrx8e4U79pqwsWUVNFP3wehL9pgv6K22JFCIpfPeg2A=
sha384-UMMEM11r0EqZNKWl1NnkWxCEtyWhw2UYJgUAgJGkFW+g007xJcJOTycBT5LIoyKQ
sha512-9Sxlz9DC2Z4SewnMV2jzeYr/N0psEmZRQAUk5cUpE3fLY2Ml32VsprA9PsKj+kT7OGUn+VZRstS+Z0bbtpH46g==

<script src="/scripts/prototype.js?v=1666481550" crossorigin="anonymous" integrity="sha256-Rrx8e4U79pqwsWUVNFP3wehL9pgv6K22JFCIpfPeg2A=" />




script
src
https://code.highcharts.com/stock/10.1/highcharts-more.js
200

1
ok
Missing defer / async attribute. text/javascript, missing X-Content-Type-Options nosniff

Cache-Control: public, max-age=157680000 - with long duration found.
GZip: 30395/99120 Bytes




Server-Header Access-Control-Allow-Origin: not found
Cross-Origin Resource Sharing (CORS) not supported



script
src
https://code.highcharts.com/stock/10.1/highstock.js
200

1
ok
Missing defer / async attribute. text/javascript, missing X-Content-Type-Options nosniff

Cache-Control: public, max-age=157680000 - with long duration found.
GZip: 135098/406253 Bytes




Server-Header Access-Control-Allow-Origin: not found
Cross-Origin Resource Sharing (CORS) not supported



script
src
https://www.googletagmanager.com/gtag/js?id=G-JVVTCV23GZ
200

1
ok
async attribute found application/javascript; charset=UTF-8, missing X-Content-Type-Options nosniff

Cache-Control: private, max-age=900 - max-age too short.
GZip: 79907/229017 Bytes




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-qMVGmAQ0Fjn76Jrh3eg2p4Az4OiA5aTlQW78MAg7WqM=
sha384-92I/Q/PU1/fVfIS9IT43E7KaTXrYiF8/dUnZIqEnZOImfjB3KFyM2YBMEvVtZnDB
sha512-hnzDTRMO+d9oAOrSrhRcLdLoa2EZ3MdjLtb818uM+2uRttcqFevx3CeWcvbzL9rFSWAFYIiOWThB2hDgmL4avA==

<script src="https://www.googletagmanager.com/gtag/js?id=G-JVVTCV23GZ" crossorigin="anonymous" integrity="sha256-qMVGmAQ0Fjn76Jrh3eg2p4Az4OiA5aTlQW78MAg7WqM=" />




12. Nameserver - IP-Adresses

Required Root-climbing DNS-Queries to find ip addresses of all Name Servers: ns.elkdata.ee, ns2.elkdata.ee, ns3.elkdata.net

QNr.DomainTypeNS used
1
ee
NS
l.root-servers.net (2001:500:9f::42)

Answer: b.tld.ee, e.tld.ee, ee.aso.ee, ee.eenet.ee, ns.tld.ee
2
ns.elkdata.ee: 194.106.101.162
NS
b.tld.ee (2001:67c:1010:28::53)

Answer: ns2.elkdata.ee
194.106.101.163
3
net
NS
d.root-servers.net (2001:500:2d::d)

Answer: a.gtld-servers.net, b.gtld-servers.net, c.gtld-servers.net, d.gtld-servers.net, e.gtld-servers.net, f.gtld-servers.net, g.gtld-servers.net, h.gtld-servers.net, i.gtld-servers.net, j.gtld-servers.net, k.gtld-servers.net, l.gtld-servers.net, m.gtld-servers.net
4
ns3.elkdata.net: 195.222.17.113
NS
a.gtld-servers.net (2001:503:a83e::2:30)


13. CAA - Entries

DomainnameflagNameValue∑ Queries∑ Timeout
www.mzlive.eu
32773
issue
letsencrypt.org
1
0

32773
iodef
mailto:reio@mzlive.eu
1
0
mzlive.eu
32773
issue
letsencrypt.org
1
0

32773
iodef
mailto:reio@mzlive.eu
1
0
eu
0

no CAA entry found
1
0


14. TXT - Entries

DomainnameTXT EntryStatus∑ Queries∑ Timeout
mzlive.eu
google-site-verification=k1HGknDF7T2UF_ujUsVO420wTcCdIg2FnRN_tdlyqZM
ok
1
0
mzlive.eu
v=spf1 mx a -all
ok
1
0
www.mzlive.eu
google-site-verification=k1HGknDF7T2UF_ujUsVO420wTcCdIg2FnRN_tdlyqZM
ok
1
0
www.mzlive.eu
v=spf1 mx a -all
ok
1
0
_acme-challenge.mzlive.eu

Name Error - The domain name does not exist
1
0
_acme-challenge.www.mzlive.eu

Name Error - The domain name does not exist
1
0
_acme-challenge.mzlive.eu.mzlive.eu

Name Error - The domain name does not exist
1
0
_acme-challenge.www.mzlive.eu.mzlive.eu

Name Error - The domain name does not exist
1
0
_acme-challenge.www.mzlive.eu.www.mzlive.eu

Name Error - The domain name does not exist
1
0


15. DomainService - Entries (SSHFP Check is new - 2022-09-24, may be incomplete, alpha, some results are required)

TypeDomainPrefValueDNS-errornum AnswersStatusDescription
MX

mzlive.eu
5
orc.mrstuudio.ee
0
1
ok


A


194.204.39.49
0
1
ok


CNAME



0
0
ok

_dmarc
TXT
_dmarc.mzlive.eu

v=DMARC1; p=none; pct=100; rua=mailto:re+si5tsoswbd4@dmarc.postmarkapp.com; sp=none; aspf=r;
0
1
ok



16. Cipher Suites

DomainIPPortCipher (OpenSsl / IANA)
mzlive.eu
194.204.39.49
25
ECDHE-RSA-CHACHA20-POLY1305
(Secure)
TLSv1.2
0xCC,0xA8
FS
9 Ciphers, 73.65 sec
TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
ECDH
RSA
CHACHA20/POLY1305(256)
AEAD



ECDHE-RSA-AES256-GCM-SHA384
(Secure)
TLSv1.2
0xC0,0x30
FS

TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
ECDH
RSA
AESGCM(256)
AEAD



ECDHE-ARIA256-GCM-SHA384
(Secure)
TLSv1.2
0xC0,0x61
FS

TLS_ECDHE_RSA_WITH_ARIA_256_GCM_SHA384
ECDH
RSA
ARIAGCM(256)
AEAD



ECDHE-RSA-AES128-GCM-SHA256
(Secure)
TLSv1.2
0xC0,0x2F
FS

TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
ECDH
RSA
AESGCM(128)
AEAD



ECDHE-ARIA128-GCM-SHA256
(Secure)
TLSv1.2
0xC0,0x60
FS

TLS_ECDHE_RSA_WITH_ARIA_128_GCM_SHA256
ECDH
RSA
ARIAGCM(128)
AEAD



ECDHE-RSA-AES256-SHA384
(Weak)
TLSv1.2
0xC0,0x28
FS

TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
ECDH
RSA
AES(256)
SHA384



ECDHE-RSA-AES128-SHA256
(Weak)
TLSv1.2
0xC0,0x27
FS

TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
ECDH
RSA
AES(128)
SHA256



ECDHE-RSA-AES256-SHA
(Weak)
TLSv1
0xC0,0x14
FS

TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
ECDH
RSA
AES(256)
SHA1



ECDHE-RSA-AES128-SHA
(Weak)
TLSv1
0xC0,0x13
FS

TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
ECDH
RSA
AES(128)
SHA1


443
ECDHE-RSA-CHACHA20-POLY1305
(Secure)
TLSv1.2
0xCC,0xA8
FS
7 Ciphers, 48.77 sec
TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
ECDH
RSA
CHACHA20/POLY1305(256)
AEAD



ECDHE-RSA-AES256-GCM-SHA384
(Secure)
TLSv1.2
0xC0,0x30
FS

TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
ECDH
RSA
AESGCM(256)
AEAD



DHE-RSA-AES256-GCM-SHA384
(Secure)
TLSv1.2
0x00,0x9F
FS

TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
DH
RSA
AESGCM(256)
AEAD



ECDHE-RSA-AES128-GCM-SHA256
(Secure)
TLSv1.2
0xC0,0x2F
FS

TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
ECDH
RSA
AESGCM(128)
AEAD



DHE-RSA-AES128-GCM-SHA256
(Secure)
TLSv1.2
0x00,0x9E
FS

TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
DH
RSA
AESGCM(128)
AEAD



ECDHE-RSA-AES256-SHA384
(Weak)
TLSv1.2
0xC0,0x28
FS

TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
ECDH
RSA
AES(256)
SHA384



ECDHE-RSA-AES128-SHA256
(Weak)
TLSv1.2
0xC0,0x27
FS

TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
ECDH
RSA
AES(128)
SHA256


587
ECDHE-RSA-CHACHA20-POLY1305
(Secure)
TLSv1.2
0xCC,0xA8
FS
9 Ciphers, 74.21 sec
TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
ECDH
RSA
CHACHA20/POLY1305(256)
AEAD



ECDHE-RSA-AES256-GCM-SHA384
(Secure)
TLSv1.2
0xC0,0x30
FS

TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
ECDH
RSA
AESGCM(256)
AEAD



ECDHE-ARIA256-GCM-SHA384
(Secure)
TLSv1.2
0xC0,0x61
FS

TLS_ECDHE_RSA_WITH_ARIA_256_GCM_SHA384
ECDH
RSA
ARIAGCM(256)
AEAD



ECDHE-RSA-AES128-GCM-SHA256
(Secure)
TLSv1.2
0xC0,0x2F
FS

TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
ECDH
RSA
AESGCM(128)
AEAD



ECDHE-ARIA128-GCM-SHA256
(Secure)
TLSv1.2
0xC0,0x60
FS

TLS_ECDHE_RSA_WITH_ARIA_128_GCM_SHA256
ECDH
RSA
ARIAGCM(128)
AEAD



ECDHE-RSA-AES256-SHA384
(Weak)
TLSv1.2
0xC0,0x28
FS

TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
ECDH
RSA
AES(256)
SHA384



ECDHE-RSA-AES128-SHA256
(Weak)
TLSv1.2
0xC0,0x27
FS

TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
ECDH
RSA
AES(128)
SHA256



ECDHE-RSA-AES256-SHA
(Weak)
TLSv1
0xC0,0x14
FS

TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
ECDH
RSA
AES(256)
SHA1



ECDHE-RSA-AES128-SHA
(Weak)
TLSv1
0xC0,0x13
FS

TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
ECDH
RSA
AES(128)
SHA1


993
ECDHE-RSA-CHACHA20-POLY1305
(Secure)
TLSv1.2
0xCC,0xA8
FS
22 Ciphers, 95.96 sec
TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
ECDH
RSA
CHACHA20/POLY1305(256)
AEAD



ECDHE-RSA-AES256-GCM-SHA384
(Secure)
TLSv1.2
0xC0,0x30
FS

TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
ECDH
RSA
AESGCM(256)
AEAD



DHE-RSA-ARIA256-GCM-SHA384
(Secure)
TLSv1.2
0xC0,0x53
FS

TLS_DHE_RSA_WITH_ARIA_256_GCM_SHA384
DH
RSA
ARIAGCM(256)
AEAD



DHE-RSA-CHACHA20-POLY1305
(Secure)
TLSv1.2
0xCC,0xAA
FS

TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
DH
RSA
CHACHA20/POLY1305(256)
AEAD



DHE-RSA-AES256-GCM-SHA384
(Secure)
TLSv1.2
0x00,0x9F
FS

TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
DH
RSA
AESGCM(256)
AEAD



ECDHE-ARIA256-GCM-SHA384
(Secure)
TLSv1.2
0xC0,0x61
FS

TLS_ECDHE_RSA_WITH_ARIA_256_GCM_SHA384
ECDH
RSA
ARIAGCM(256)
AEAD



DHE-RSA-AES256-CCM8
(Secure)
TLSv1.2
0xC0,0xA3
FS

TLS_DHE_RSA_WITH_AES_256_CCM_8
DH
RSA
AESCCM8(256)
AEAD



DHE-RSA-AES256-CCM
(Secure)
TLSv1.2
0xC0,0x9F
FS

TLS_DHE_RSA_WITH_AES_256_CCM
DH
RSA
AESCCM(256)
AEAD



ECDHE-RSA-AES128-GCM-SHA256
(Secure)
TLSv1.2
0xC0,0x2F
FS

TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
ECDH
RSA
AESGCM(128)
AEAD



DHE-RSA-ARIA128-GCM-SHA256
(Secure)
TLSv1.2
0xC0,0x52
FS

TLS_DHE_RSA_WITH_ARIA_128_GCM_SHA256
DH
RSA
ARIAGCM(128)
AEAD



DHE-RSA-AES128-GCM-SHA256
(Secure)
TLSv1.2
0x00,0x9E
FS

TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
DH
RSA
AESGCM(128)
AEAD



ECDHE-ARIA128-GCM-SHA256
(Secure)
TLSv1.2
0xC0,0x60
FS

TLS_ECDHE_RSA_WITH_ARIA_128_GCM_SHA256
ECDH
RSA
ARIAGCM(128)
AEAD



DHE-RSA-AES128-CCM8
(Secure)
TLSv1.2
0xC0,0xA2
FS

TLS_DHE_RSA_WITH_AES_128_CCM_8
DH
RSA
AESCCM8(128)
AEAD



DHE-RSA-AES128-CCM
(Secure)
TLSv1.2
0xC0,0x9E
FS

TLS_DHE_RSA_WITH_AES_128_CCM
DH
RSA
AESCCM(128)
AEAD



ECDHE-RSA-AES256-SHA384
(Weak)
TLSv1.2
0xC0,0x28
FS

TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
ECDH
RSA
AES(256)
SHA384



DHE-RSA-AES256-SHA256
(Weak)
TLSv1.2
0x00,0x6B
FS

TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
DH
RSA
AES(256)
SHA256



ECDHE-RSA-AES128-SHA256
(Weak)
TLSv1.2
0xC0,0x27
FS

TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
ECDH
RSA
AES(128)
SHA256



DHE-RSA-AES128-SHA256
(Weak)
TLSv1.2
0x00,0x67
FS

TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
DH
RSA
AES(128)
SHA256



ECDHE-RSA-AES256-SHA
(Weak)
TLSv1
0xC0,0x14
FS

TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
ECDH
RSA
AES(256)
SHA1



ECDHE-RSA-AES128-SHA
(Weak)
TLSv1
0xC0,0x13
FS

TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
ECDH
RSA
AES(128)
SHA1



DHE-RSA-AES256-SHA
(Weak)
SSLv3
0x00,0x39
FS

TLS_DHE_RSA_WITH_AES_256_CBC_SHA
DH
RSA
AES(256)
SHA1



DHE-RSA-AES128-SHA
(Weak)
SSLv3
0x00,0x33
FS

TLS_DHE_RSA_WITH_AES_128_CBC_SHA
DH
RSA
AES(128)
SHA1
www.mzlive.eu
194.204.39.49
25
ECDHE-RSA-CHACHA20-POLY1305
(Secure)
TLSv1.2
0xCC,0xA8
FS
9 Ciphers, 74.26 sec
TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
ECDH
RSA
CHACHA20/POLY1305(256)
AEAD



ECDHE-RSA-AES256-GCM-SHA384
(Secure)
TLSv1.2
0xC0,0x30
FS

TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
ECDH
RSA
AESGCM(256)
AEAD



ECDHE-ARIA256-GCM-SHA384
(Secure)
TLSv1.2
0xC0,0x61
FS

TLS_ECDHE_RSA_WITH_ARIA_256_GCM_SHA384
ECDH
RSA
ARIAGCM(256)
AEAD



ECDHE-RSA-AES128-GCM-SHA256
(Secure)
TLSv1.2
0xC0,0x2F
FS

TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
ECDH
RSA
AESGCM(128)
AEAD



ECDHE-ARIA128-GCM-SHA256
(Secure)
TLSv1.2
0xC0,0x60
FS

TLS_ECDHE_RSA_WITH_ARIA_128_GCM_SHA256
ECDH
RSA
ARIAGCM(128)
AEAD



ECDHE-RSA-AES256-SHA384
(Weak)
TLSv1.2
0xC0,0x28
FS

TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
ECDH
RSA
AES(256)
SHA384



ECDHE-RSA-AES128-SHA256
(Weak)
TLSv1.2
0xC0,0x27
FS

TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
ECDH
RSA
AES(128)
SHA256



ECDHE-RSA-AES256-SHA
(Weak)
TLSv1
0xC0,0x14
FS

TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
ECDH
RSA
AES(256)
SHA1



ECDHE-RSA-AES128-SHA
(Weak)
TLSv1
0xC0,0x13
FS

TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
ECDH
RSA
AES(128)
SHA1


443
ECDHE-RSA-CHACHA20-POLY1305
(Secure)
TLSv1.2
0xCC,0xA8
FS
7 Ciphers, 49.20 sec
TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
ECDH
RSA
CHACHA20/POLY1305(256)
AEAD



ECDHE-RSA-AES256-GCM-SHA384
(Secure)
TLSv1.2
0xC0,0x30
FS

TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
ECDH
RSA
AESGCM(256)
AEAD



DHE-RSA-AES256-GCM-SHA384
(Secure)
TLSv1.2
0x00,0x9F
FS

TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
DH
RSA
AESGCM(256)
AEAD



ECDHE-RSA-AES128-GCM-SHA256
(Secure)
TLSv1.2
0xC0,0x2F
FS

TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
ECDH
RSA
AESGCM(128)
AEAD



DHE-RSA-AES128-GCM-SHA256
(Secure)
TLSv1.2
0x00,0x9E
FS

TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
DH
RSA
AESGCM(128)
AEAD



ECDHE-RSA-AES256-SHA384
(Weak)
TLSv1.2
0xC0,0x28
FS

TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
ECDH
RSA
AES(256)
SHA384



ECDHE-RSA-AES128-SHA256
(Weak)
TLSv1.2
0xC0,0x27
FS

TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
ECDH
RSA
AES(128)
SHA256


587
ECDHE-RSA-CHACHA20-POLY1305
(Secure)
TLSv1.2
0xCC,0xA8
FS
9 Ciphers, 74.13 sec
TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
ECDH
RSA
CHACHA20/POLY1305(256)
AEAD



ECDHE-RSA-AES256-GCM-SHA384
(Secure)
TLSv1.2
0xC0,0x30
FS

TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
ECDH
RSA
AESGCM(256)
AEAD



ECDHE-ARIA256-GCM-SHA384
(Secure)
TLSv1.2
0xC0,0x61
FS

TLS_ECDHE_RSA_WITH_ARIA_256_GCM_SHA384
ECDH
RSA
ARIAGCM(256)
AEAD



ECDHE-RSA-AES128-GCM-SHA256
(Secure)
TLSv1.2
0xC0,0x2F
FS

TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
ECDH
RSA
AESGCM(128)
AEAD



ECDHE-ARIA128-GCM-SHA256
(Secure)
TLSv1.2
0xC0,0x60
FS

TLS_ECDHE_RSA_WITH_ARIA_128_GCM_SHA256
ECDH
RSA
ARIAGCM(128)
AEAD



ECDHE-RSA-AES256-SHA384
(Weak)
TLSv1.2
0xC0,0x28
FS

TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
ECDH
RSA
AES(256)
SHA384



ECDHE-RSA-AES128-SHA256
(Weak)
TLSv1.2
0xC0,0x27
FS

TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
ECDH
RSA
AES(128)
SHA256



ECDHE-RSA-AES256-SHA
(Weak)
TLSv1
0xC0,0x14
FS

TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
ECDH
RSA
AES(256)
SHA1



ECDHE-RSA-AES128-SHA
(Weak)
TLSv1
0xC0,0x13
FS

TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
ECDH
RSA
AES(128)
SHA1


993
ECDHE-RSA-CHACHA20-POLY1305
(Secure)
TLSv1.2
0xCC,0xA8
FS
22 Ciphers, 94.11 sec
TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
ECDH
RSA
CHACHA20/POLY1305(256)
AEAD



ECDHE-RSA-AES256-GCM-SHA384
(Secure)
TLSv1.2
0xC0,0x30
FS

TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
ECDH
RSA
AESGCM(256)
AEAD



DHE-RSA-ARIA256-GCM-SHA384
(Secure)
TLSv1.2
0xC0,0x53
FS

TLS_DHE_RSA_WITH_ARIA_256_GCM_SHA384
DH
RSA
ARIAGCM(256)
AEAD



DHE-RSA-CHACHA20-POLY1305
(Secure)
TLSv1.2
0xCC,0xAA
FS

TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
DH
RSA
CHACHA20/POLY1305(256)
AEAD



DHE-RSA-AES256-GCM-SHA384
(Secure)
TLSv1.2
0x00,0x9F
FS

TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
DH
RSA
AESGCM(256)
AEAD



ECDHE-ARIA256-GCM-SHA384
(Secure)
TLSv1.2
0xC0,0x61
FS

TLS_ECDHE_RSA_WITH_ARIA_256_GCM_SHA384
ECDH
RSA
ARIAGCM(256)
AEAD



DHE-RSA-AES256-CCM8
(Secure)
TLSv1.2
0xC0,0xA3
FS

TLS_DHE_RSA_WITH_AES_256_CCM_8
DH
RSA
AESCCM8(256)
AEAD



DHE-RSA-AES256-CCM
(Secure)
TLSv1.2
0xC0,0x9F
FS

TLS_DHE_RSA_WITH_AES_256_CCM
DH
RSA
AESCCM(256)
AEAD



ECDHE-RSA-AES128-GCM-SHA256
(Secure)
TLSv1.2
0xC0,0x2F
FS

TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
ECDH
RSA
AESGCM(128)
AEAD



DHE-RSA-ARIA128-GCM-SHA256
(Secure)
TLSv1.2
0xC0,0x52
FS

TLS_DHE_RSA_WITH_ARIA_128_GCM_SHA256
DH
RSA
ARIAGCM(128)
AEAD



DHE-RSA-AES128-GCM-SHA256
(Secure)
TLSv1.2
0x00,0x9E
FS

TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
DH
RSA
AESGCM(128)
AEAD



ECDHE-ARIA128-GCM-SHA256
(Secure)
TLSv1.2
0xC0,0x60
FS

TLS_ECDHE_RSA_WITH_ARIA_128_GCM_SHA256
ECDH
RSA
ARIAGCM(128)
AEAD



DHE-RSA-AES128-CCM8
(Secure)
TLSv1.2
0xC0,0xA2
FS

TLS_DHE_RSA_WITH_AES_128_CCM_8
DH
RSA
AESCCM8(128)
AEAD



DHE-RSA-AES128-CCM
(Secure)
TLSv1.2
0xC0,0x9E
FS

TLS_DHE_RSA_WITH_AES_128_CCM
DH
RSA
AESCCM(128)
AEAD



ECDHE-RSA-AES256-SHA384
(Weak)
TLSv1.2
0xC0,0x28
FS

TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
ECDH
RSA
AES(256)
SHA384



DHE-RSA-AES256-SHA256
(Weak)
TLSv1.2
0x00,0x6B
FS

TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
DH
RSA
AES(256)
SHA256



ECDHE-RSA-AES128-SHA256
(Weak)
TLSv1.2
0xC0,0x27
FS

TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
ECDH
RSA
AES(128)
SHA256



DHE-RSA-AES128-SHA256
(Weak)
TLSv1.2
0x00,0x67
FS

TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
DH
RSA
AES(128)
SHA256



ECDHE-RSA-AES256-SHA
(Weak)
TLSv1
0xC0,0x14
FS

TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
ECDH
RSA
AES(256)
SHA1



ECDHE-RSA-AES128-SHA
(Weak)
TLSv1
0xC0,0x13
FS

TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
ECDH
RSA
AES(128)
SHA1



DHE-RSA-AES256-SHA
(Weak)
SSLv3
0x00,0x39
FS

TLS_DHE_RSA_WITH_AES_256_CBC_SHA
DH
RSA
AES(256)
SHA1



DHE-RSA-AES128-SHA
(Weak)
SSLv3
0x00,0x33
FS

TLS_DHE_RSA_WITH_AES_128_CBC_SHA
DH
RSA
AES(128)
SHA1


17. Portchecks

DomainIPPortDescriptionResultAnswer
mzlive.eu
194.204.39.49
21
FTP



mzlive.eu
194.204.39.49
21
FTP



mzlive.eu
194.204.39.49
22
SSH



mzlive.eu
194.204.39.49
22
SSH



mzlive.eu
194.204.39.49
25
SMTP
open
220 orc.mrstuudio.ee ESMTP OpenSMTPD

Answer EHLO: 250-orc.mrstuudio.ee Hello intern.server-daten.de [85.215.2.227], pleased to meet you 250-8BITMIME 250-ENHANCEDSTATUSCODES 250-SIZE 104857600 250-DSN 250-STARTTLS 250 HELP

Answer AUTH LOGIN: (no AUTH option found)

Mail certificate is invalid
mzlive.eu
194.204.39.49
25
SMTP
open
220 orc.mrstuudio.ee ESMTP OpenSMTPD
Mail certificate is invalid
Answer EHLO: 250-orc.mrstuudio.ee Hello intern.server-daten.de [85.215.2.227], pleased to meet you 250-8BITMIME 250-ENHANCEDSTATUSCODES 250-SIZE 104857600 250-DSN 250-STARTTLS 250 HELP Good: STARTTLS found
Excellent: No unencrypted login possible
Mail From: openrelay-test@check-your-website.server-daten.de
RCPT TO: openrelay-result@check-your-website.server-daten.de
Excellent: Server want's Renegotiating after sending the RCPT TO - Command, no open relay after STARTTLS
mzlive.eu
194.204.39.49
53
DNS



mzlive.eu
194.204.39.49
53
DNS



mzlive.eu
194.204.39.49
110
POP3



mzlive.eu
194.204.39.49
110
POP3



mzlive.eu
194.204.39.49
143
IMAP



mzlive.eu
194.204.39.49
143
IMAP



mzlive.eu
194.204.39.49
465
SMTP (encrypted)



mzlive.eu
194.204.39.49
465
SMTP (encrypted)



mzlive.eu
194.204.39.49
587
SMTP (encrypted, submission)
open
220 orc.mrstuudio.ee ESMTP OpenSMTPD

Answer EHLO: 250-orc.mrstuudio.ee Hello intern.server-daten.de [85.215.2.227], pleased to meet you 250-8BITMIME 250-ENHANCEDSTATUSCODES 250-SIZE 104857600 250-DSN 250-STARTTLS 250 HELP

Answer AUTH LOGIN: (no AUTH option found)

Mail certificate is invalid
mzlive.eu
194.204.39.49
587
SMTP (encrypted, submission)
open
220 orc.mrstuudio.ee ESMTP OpenSMTPD
Mail certificate is invalid
Answer EHLO: 250-orc.mrstuudio.ee Hello intern.server-daten.de [85.215.2.227], pleased to meet you 250-8BITMIME 250-ENHANCEDSTATUSCODES 250-SIZE 104857600 250-DSN 250-STARTTLS 250 HELP Good: STARTTLS found
Excellent: No unencrypted login possible
Mail From: openrelay-test@check-your-website.server-daten.de
530 5.5.1 Invalid command: Must issue an AUTH command first
RCPT TO: openrelay-result@check-your-website.server-daten.de
Excellent: No open relay after STARTTLS
mzlive.eu
194.204.39.49
993
IMAP (encrypted)
open
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE SPECIAL-USE LITERAL+ AUTH=PLAIN] Dovecot ready.
Mail certificate is invalid
mzlive.eu
194.204.39.49
993
IMAP (encrypted)
open
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE SPECIAL-USE LITERAL+ AUTH=PLAIN] Dovecot ready.
Mail certificate is invalid
mzlive.eu
194.204.39.49
995
POP3 (encrypted)



mzlive.eu
194.204.39.49
995
POP3 (encrypted)



mzlive.eu
194.204.39.49
1433
MS SQL



mzlive.eu
194.204.39.49
1433
MS SQL



mzlive.eu
194.204.39.49
2082
cPanel (http)



mzlive.eu
194.204.39.49
2082
cPanel (http)



mzlive.eu
194.204.39.49
2083
cPanel (https)



mzlive.eu
194.204.39.49
2083
cPanel (https)



mzlive.eu
194.204.39.49
2086
WHM (http)



mzlive.eu
194.204.39.49
2086
WHM (http)



mzlive.eu
194.204.39.49
2087
WHM (https)



mzlive.eu
194.204.39.49
2087
WHM (https)



mzlive.eu
194.204.39.49
2089
cPanel Licensing



mzlive.eu
194.204.39.49
2089
cPanel Licensing



mzlive.eu
194.204.39.49
2095
cPanel Webmail (http)



mzlive.eu
194.204.39.49
2095
cPanel Webmail (http)



mzlive.eu
194.204.39.49
2096
cPanel Webmail (https)



mzlive.eu
194.204.39.49
2096
cPanel Webmail (https)



mzlive.eu
194.204.39.49
2222
DirectAdmin (http)



mzlive.eu
194.204.39.49
2222
DirectAdmin (http)



mzlive.eu
194.204.39.49
2222
DirectAdmin (https)



mzlive.eu
194.204.39.49
2222
DirectAdmin (https)



mzlive.eu
194.204.39.49
3306
mySql



mzlive.eu
194.204.39.49
3306
mySql



mzlive.eu
194.204.39.49
5224
Plesk Licensing



mzlive.eu
194.204.39.49
5224
Plesk Licensing



mzlive.eu
194.204.39.49
5432
PostgreSQL



mzlive.eu
194.204.39.49
5432
PostgreSQL



mzlive.eu
194.204.39.49
8080
Ookla Speedtest (http)



mzlive.eu
194.204.39.49
8080
Ookla Speedtest (http)



mzlive.eu
194.204.39.49
8080
Ookla Speedtest (https)



mzlive.eu
194.204.39.49
8080
Ookla Speedtest (https)



mzlive.eu
194.204.39.49
8083
VestaCP http



mzlive.eu
194.204.39.49
8083
VestaCP http



mzlive.eu
194.204.39.49
8083
VestaCP https



mzlive.eu
194.204.39.49
8083
VestaCP https



mzlive.eu
194.204.39.49
8443
Plesk Administration (https)



mzlive.eu
194.204.39.49
8443
Plesk Administration (https)



mzlive.eu
194.204.39.49
8447
Plesk Installer + Updates



mzlive.eu
194.204.39.49
8447
Plesk Installer + Updates



mzlive.eu
194.204.39.49
8880
Plesk Administration (http)



mzlive.eu
194.204.39.49
8880
Plesk Administration (http)



mzlive.eu
194.204.39.49
10000
Webmin (http)
open
http://194.204.39.49:10000/
Http-Status: -14
Timeout - The operation has timed out

mzlive.eu
194.204.39.49
10000
Webmin (http)
open
http://194.204.39.49:10000/
Http-Status: -14
Timeout - The operation has timed out

mzlive.eu
194.204.39.49
10000
Webmin (https)
open
https://194.204.39.49:10000/
Http-Status: -14
Timeout - The operation has timed out

mzlive.eu
194.204.39.49
10000
Webmin (https)
open
https://194.204.39.49:10000/
Http-Status: -14
Timeout - The operation has timed out

www.mzlive.eu
194.204.39.49
21
FTP



www.mzlive.eu
194.204.39.49
21
FTP



www.mzlive.eu
194.204.39.49
22
SSH



www.mzlive.eu
194.204.39.49
22
SSH



www.mzlive.eu
194.204.39.49
25
SMTP
open
220 orc.mrstuudio.ee ESMTP OpenSMTPD

Answer EHLO: 250-orc.mrstuudio.ee Hello intern.server-daten.de [85.215.2.227], pleased to meet you 250-8BITMIME 250-ENHANCEDSTATUSCODES 250-SIZE 104857600 250-DSN 250-STARTTLS 250 HELP

Answer AUTH LOGIN: (no AUTH option found)

Mail certificate is invalid
www.mzlive.eu
194.204.39.49
25
SMTP
open
220 orc.mrstuudio.ee ESMTP OpenSMTPD
Mail certificate is invalid
Answer EHLO: 250-orc.mrstuudio.ee Hello intern.server-daten.de [85.215.2.227], pleased to meet you 250-8BITMIME 250-ENHANCEDSTATUSCODES 250-SIZE 104857600 250-DSN 250-STARTTLS 250 HELP Good: STARTTLS found
Excellent: No unencrypted login possible
Mail From: openrelay-test@check-your-website.server-daten.de
RCPT TO: openrelay-result@check-your-website.server-daten.de
Excellent: Server want's Renegotiating after sending the RCPT TO - Command, no open relay after STARTTLS
www.mzlive.eu
194.204.39.49
53
DNS



www.mzlive.eu
194.204.39.49
53
DNS



www.mzlive.eu
194.204.39.49
110
POP3



www.mzlive.eu
194.204.39.49
110
POP3



www.mzlive.eu
194.204.39.49
143
IMAP



www.mzlive.eu
194.204.39.49
143
IMAP



www.mzlive.eu
194.204.39.49
465
SMTP (encrypted)



www.mzlive.eu
194.204.39.49
465
SMTP (encrypted)



www.mzlive.eu
194.204.39.49
587
SMTP (encrypted, submission)
open
220 orc.mrstuudio.ee ESMTP OpenSMTPD

Answer EHLO: 250-orc.mrstuudio.ee Hello intern.server-daten.de [85.215.2.227], pleased to meet you 250-8BITMIME 250-ENHANCEDSTATUSCODES 250-SIZE 104857600 250-DSN 250-STARTTLS 250 HELP

Answer AUTH LOGIN: (no AUTH option found)

Mail certificate is invalid
www.mzlive.eu
194.204.39.49
587
SMTP (encrypted, submission)
open
220 orc.mrstuudio.ee ESMTP OpenSMTPD
Mail certificate is invalid
Answer EHLO: 250-orc.mrstuudio.ee Hello intern.server-daten.de [85.215.2.227], pleased to meet you 250-8BITMIME 250-ENHANCEDSTATUSCODES 250-SIZE 104857600 250-DSN 250-STARTTLS 250 HELP Good: STARTTLS found
Excellent: No unencrypted login possible
Mail From: openrelay-test@check-your-website.server-daten.de
530 5.5.1 Invalid command: Must issue an AUTH command first
RCPT TO: openrelay-result@check-your-website.server-daten.de
Excellent: No open relay after STARTTLS
www.mzlive.eu
194.204.39.49
993
IMAP (encrypted)
open
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE SPECIAL-USE LITERAL+ AUTH=PLAIN] Dovecot ready.
Mail certificate is invalid
www.mzlive.eu
194.204.39.49
993
IMAP (encrypted)
open
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE SPECIAL-USE LITERAL+ AUTH=PLAIN] Dovecot ready.
Mail certificate is invalid
www.mzlive.eu
194.204.39.49
995
POP3 (encrypted)



www.mzlive.eu
194.204.39.49
995
POP3 (encrypted)



www.mzlive.eu
194.204.39.49
1433
MS SQL



www.mzlive.eu
194.204.39.49
1433
MS SQL



www.mzlive.eu
194.204.39.49
2082
cPanel (http)



www.mzlive.eu
194.204.39.49
2082
cPanel (http)



www.mzlive.eu
194.204.39.49
2083
cPanel (https)



www.mzlive.eu
194.204.39.49
2083
cPanel (https)



www.mzlive.eu
194.204.39.49
2086
WHM (http)



www.mzlive.eu
194.204.39.49
2086
WHM (http)



www.mzlive.eu
194.204.39.49
2087
WHM (https)



www.mzlive.eu
194.204.39.49
2087
WHM (https)



www.mzlive.eu
194.204.39.49
2089
cPanel Licensing



www.mzlive.eu
194.204.39.49
2089
cPanel Licensing



www.mzlive.eu
194.204.39.49
2095
cPanel Webmail (http)



www.mzlive.eu
194.204.39.49
2095
cPanel Webmail (http)



www.mzlive.eu
194.204.39.49
2096
cPanel Webmail (https)



www.mzlive.eu
194.204.39.49
2096
cPanel Webmail (https)



www.mzlive.eu
194.204.39.49
2222
DirectAdmin (http)



www.mzlive.eu
194.204.39.49
2222
DirectAdmin (http)



www.mzlive.eu
194.204.39.49
2222
DirectAdmin (https)



www.mzlive.eu
194.204.39.49
2222
DirectAdmin (https)



www.mzlive.eu
194.204.39.49
3306
mySql



www.mzlive.eu
194.204.39.49
3306
mySql



www.mzlive.eu
194.204.39.49
5224
Plesk Licensing



www.mzlive.eu
194.204.39.49
5224
Plesk Licensing



www.mzlive.eu
194.204.39.49
5432
PostgreSQL



www.mzlive.eu
194.204.39.49
5432
PostgreSQL



www.mzlive.eu
194.204.39.49
8080
Ookla Speedtest (http)



www.mzlive.eu
194.204.39.49
8080
Ookla Speedtest (http)



www.mzlive.eu
194.204.39.49
8080
Ookla Speedtest (https)



www.mzlive.eu
194.204.39.49
8080
Ookla Speedtest (https)



www.mzlive.eu
194.204.39.49
8083
VestaCP http



www.mzlive.eu
194.204.39.49
8083
VestaCP http



www.mzlive.eu
194.204.39.49
8083
VestaCP https



www.mzlive.eu
194.204.39.49
8083
VestaCP https



www.mzlive.eu
194.204.39.49
8443
Plesk Administration (https)



www.mzlive.eu
194.204.39.49
8443
Plesk Administration (https)



www.mzlive.eu
194.204.39.49
8447
Plesk Installer + Updates



www.mzlive.eu
194.204.39.49
8447
Plesk Installer + Updates



www.mzlive.eu
194.204.39.49
8880
Plesk Administration (http)



www.mzlive.eu
194.204.39.49
8880
Plesk Administration (http)



www.mzlive.eu
194.204.39.49
10000
Webmin (http)
open
http://194.204.39.49:10000/
Http-Status: -14
Timeout - The operation has timed out

www.mzlive.eu
194.204.39.49
10000
Webmin (http)
open
http://194.204.39.49:10000/
Http-Status: -14
Timeout - The operation has timed out

www.mzlive.eu
194.204.39.49
10000
Webmin (https)
open
https://194.204.39.49:10000/
Http-Status: -14
Timeout - The operation has timed out

www.mzlive.eu
194.204.39.49
10000
Webmin (https)
open
https://194.204.39.49:10000/
Http-Status: -14
Timeout - The operation has timed out



Permalink: https://check-your-website.server-daten.de/?i=8b089501-6678-40a5-86a6-4183d6120358


Last Result: https://check-your-website.server-daten.de/?q=mzlive.eu - 2023-05-26 11:07:58


Do you like this page? Support this tool, add a link on your page:

<a href="https://check-your-website.server-daten.de/?q=mzlive.eu" target="_blank">Check this Site: mzlive.eu</a>

Do you really want to support this project? Donate: Check-your-website, IBAN DE98 1001 0010 0575 2211 07, SWIFT/BIC PBNKDEFF, Euro