Check DNS, Urls + Redirects, Certificates and Content of your Website

...

skip EDNS-Check

skip Content-Check

check links

Content problems - mixed content, missing files etc.

Checked:
09.06.2025 20:08:02

Older results

I - 22.01.2023 18:52:10

B - 20.11.2022 12:20:48

I - 06.11.2022 16:07:52

B - 13.10.2022 21:48:48

B - 10.10.2022 13:57:21

O - 11.11.2021 17:16:59

O - 06.06.2021 00:20:10

O - 02.05.2021 17:39:47

O - 27.04.2021 20:16:30

O - 26.04.2021 17:40:33

1. IP-Addresses

Host	Type	IP-Address	is auth.	∑ Queries	∑ Timeout
priceline.com	A	151.101.2.186 San Francisco/California/United States (US) - Fastly, Inc. No Hostname found	yes	1	0
	A	151.101.66.186 San Francisco/California/United States (US) - Fastly, Inc. No Hostname found	yes	1	0
	A	151.101.130.186 San Francisco/California/United States (US) - Fastly, Inc. No Hostname found	yes	1	0
	A	151.101.194.186 San Francisco/California/United States (US) - Fastly, Inc. No Hostname found	yes	1	0
	AAAA		yes
www.priceline.com	CNAME	www.priceline.com.cdn.cloudflare.net	yes	1	0
	A	104.18.24.202 Toronto/Ontario/Canada (CA) - Cloudflare, Inc. No Hostname found	yes
	A	104.18.25.202 Toronto/Ontario/Canada (CA) - Cloudflare, Inc. No Hostname found	yes
*.priceline.com	A	Name Error	yes
	AAAA	Name Error	yes
	CNAME	Name Error	yes

2. DNSSEC

Zone (*)	DNSSEC - Informations

Zone: (root)
(root)	1 DS RR published


	DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest 4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=


	• Status: Valid because published


	3 DNSKEY RR found


	Public Key with Algorithm 8, KeyTag 20326, Flags 257 (SEP = Secure Entry Point)


	Public Key with Algorithm 8, KeyTag 38696, Flags 257 (SEP = Secure Entry Point)


	Public Key with Algorithm 8, KeyTag 53148, Flags 256


	1 RRSIG RR to validate DNSKEY RR found


	RRSIG-Owner (root), Algorithm: 8, 0 Labels, original TTL: 172800 sec, Signature-expiration: 21.06.2025, 00:00:00 +, Signature-Inception: 31.05.2025, 00:00:00 +, KeyTag 20326, Signer-Name: (root)


	• Status: Good - Algorithmus 8 and DNSKEY with KeyTag 20326 used to validate the DNSKEY RRSet


	• Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest "4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: com
com	1 DS RR in the parent zone found


	DS with Algorithm 13, KeyTag 19718, DigestType 2 and Digest isuwzSj0ElCoCkkTiUJNNBUi2Uaw2gwCkfLT13HXgFo=


	1 RRSIG RR to validate DS RR found


	RRSIG-Owner com., Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 22.06.2025, 17:00:00 +, Signature-Inception: 09.06.2025, 16:00:00 +, KeyTag 53148, Signer-Name: (root)


	• Status: Good - Algorithmus 8 and DNSKEY with KeyTag 53148 used to validate the DS RRSet in the parent zone


	2 DNSKEY RR found


	Public Key with Algorithm 13, KeyTag 19718, Flags 257 (SEP = Secure Entry Point)


	Public Key with Algorithm 13, KeyTag 40097, Flags 256


	1 RRSIG RR to validate DNSKEY RR found


	RRSIG-Owner com., Algorithm: 13, 1 Labels, original TTL: 86400 sec, Signature-expiration: 16.06.2025, 14:02:35 +, Signature-Inception: 01.06.2025, 13:57:35 +, KeyTag 19718, Signer-Name: com


	• Status: Good - Algorithmus 13 and DNSKEY with KeyTag 19718 used to validate the DNSKEY RRSet


	• Status: Valid Chain of trust. Parent-DS with Algorithm 13, KeyTag 19718, DigestType 2 and Digest "isuwzSj0ElCoCkkTiUJNNBUi2Uaw2gwCkfLT13HXgFo=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: priceline.com
priceline.com	0 DS RR in the parent zone found


	DS-Query in the parent zone has a valid NSEC3 RR as result with the hashed query name "m3ob3vt2jfsm17sd5bsnbl0ac532ihhn" between the hashed NSEC3-owner "m3ob0f9uq0ttuion2d2saofdangmagep" and the hashed NextOwner "m3ob51tmagnmi939ocl37pv1fbb7b4v6". So the parent zone confirmes the not-existence of a DS RR. Bitmap: NS, DS, RRSIG Validated: RRSIG-Owner m3ob0f9uq0ttuion2d2saofdangmagep.com., Algorithm: 13, 2 Labels, original TTL: 900 sec, Signature-expiration: 15.06.2025, 02:18:34 +, Signature-Inception: 08.06.2025, 01:08:34 +, KeyTag 40097, Signer-Name: com


	DS-Query in the parent zone sends valid NSEC3 RR with the Hash "ck0pojmg874ljref7efn8430qvit8bsm" as Owner. That's the Hash of "com" with the NextHashedOwnerName "ck0q3udg8cekkae7rukpgct1dvssh8ll". So that domain name is the Closest Encloser of "priceline.com". Opt-Out: True. Bitmap: NS, SOA, RRSIG, DNSKEY, NSEC3PARAM Validated: RRSIG-Owner ck0pojmg874ljref7efn8430qvit8bsm.com., Algorithm: 13, 2 Labels, original TTL: 900 sec, Signature-expiration: 16.06.2025, 00:26:00 +, Signature-Inception: 08.06.2025, 23:16:00 +, KeyTag 40097, Signer-Name: com


	0 DNSKEY RR found




Zone: www.priceline.com
www.priceline.com	0 DS RR in the parent zone found

Zone: (root)
(root)	1 DS RR published


	DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest 4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=


	• Status: Valid because published


	3 DNSKEY RR found


	Public Key with Algorithm 8, KeyTag 20326, Flags 257 (SEP = Secure Entry Point)


	Public Key with Algorithm 8, KeyTag 38696, Flags 257 (SEP = Secure Entry Point)


	Public Key with Algorithm 8, KeyTag 53148, Flags 256


	1 RRSIG RR to validate DNSKEY RR found


	RRSIG-Owner (root), Algorithm: 8, 0 Labels, original TTL: 172800 sec, Signature-expiration: 21.06.2025, 00:00:00 +, Signature-Inception: 31.05.2025, 00:00:00 +, KeyTag 20326, Signer-Name: (root)


	• Status: Good - Algorithmus 8 and DNSKEY with KeyTag 20326 used to validate the DNSKEY RRSet


	• Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest "4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: net
net	1 DS RR in the parent zone found


	DS with Algorithm 13, KeyTag 37331, DigestType 2 and Digest LwvsLW95370dCP0ho6+S0OOaS57x4/QRH/8oJJDaRTs=


	1 RRSIG RR to validate DS RR found


	RRSIG-Owner net., Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 22.06.2025, 17:00:00 +, Signature-Inception: 09.06.2025, 16:00:00 +, KeyTag 53148, Signer-Name: (root)


	• Status: Good - Algorithmus 8 and DNSKEY with KeyTag 53148 used to validate the DS RRSet in the parent zone


	2 DNSKEY RR found


	Public Key with Algorithm 13, KeyTag 37331, Flags 257 (SEP = Secure Entry Point)


	Public Key with Algorithm 13, KeyTag 45412, Flags 256


	1 RRSIG RR to validate DNSKEY RR found


	RRSIG-Owner net., Algorithm: 13, 1 Labels, original TTL: 86400 sec, Signature-expiration: 16.06.2025, 14:10:35 +, Signature-Inception: 01.06.2025, 14:05:35 +, KeyTag 37331, Signer-Name: net


	• Status: Good - Algorithmus 13 and DNSKEY with KeyTag 37331 used to validate the DNSKEY RRSet


	• Status: Valid Chain of trust. Parent-DS with Algorithm 13, KeyTag 37331, DigestType 2 and Digest "LwvsLW95370dCP0ho6+S0OOaS57x4/QRH/8oJJDaRTs=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: cloudflare.net
cloudflare.net	1 DS RR in the parent zone found


	DS with Algorithm 13, KeyTag 2371, DigestType 2 and Digest kPcQoQfaUe14El0wpocEzzwDCK/QG/zXBX1L0Dtixos=


	1 RRSIG RR to validate DS RR found


	RRSIG-Owner cloudflare.net., Algorithm: 13, 2 Labels, original TTL: 86400 sec, Signature-expiration: 14.06.2025, 02:57:52 +, Signature-Inception: 07.06.2025, 01:47:52 +, KeyTag 45412, Signer-Name: net


	• Status: Good - Algorithmus 13 and DNSKEY with KeyTag 45412 used to validate the DS RRSet in the parent zone


	2 DNSKEY RR found


	Public Key with Algorithm 13, KeyTag 2371, Flags 257 (SEP = Secure Entry Point)


	Public Key with Algorithm 13, KeyTag 34505, Flags 256


	1 RRSIG RR to validate DNSKEY RR found


	RRSIG-Owner cloudflare.net., Algorithm: 13, 2 Labels, original TTL: 3600 sec, Signature-expiration: 27.07.2025, 08:03:59 +, Signature-Inception: 27.05.2025, 08:03:59 +, KeyTag 2371, Signer-Name: cloudflare.net


	• Status: Good - Algorithmus 13 and DNSKEY with KeyTag 2371 used to validate the DNSKEY RRSet


	• Status: Valid Chain of trust. Parent-DS with Algorithm 13, KeyTag 2371, DigestType 2 and Digest "kPcQoQfaUe14El0wpocEzzwDCK/QG/zXBX1L0Dtixos=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: cdn.cloudflare.net
cdn.cloudflare.net	0 DS RR in the parent zone found


	DS-Query in the parent zone has a valid NSEC RR as result with the domain name between the NSEC-Owner "cdn.cloudflare.net" and the NextOwner "\000.cdn.cloudflare.net". So the parent zone confirmes the non-existence of a DS RR. Bitmap: A, 13, MX, TXT, AAAA, LOC, SRV, NAPTR, CERT, SSHFP, RRSIG, NSEC, TLSA, 53, HIP, 61, 64, 65, URI, CAA


	0 DNSKEY RR found




Zone: com.cdn.cloudflare.net
com.cdn.cloudflare.net	0 DS RR in the parent zone found


	DS-Query in the parent zone has a valid NSEC RR as result with the domain name between the NSEC-Owner "com.cdn.cloudflare.net" and the NextOwner "\000.com.cdn.cloudflare.net". So the parent zone confirmes the non-existence of a DS RR. Bitmap: A, 13, MX, TXT, AAAA, LOC, SRV, NAPTR, CERT, SSHFP, RRSIG, NSEC, TLSA, 53, HIP, 61, 64, 65, URI, CAA


	0 DNSKEY RR found




Zone: priceline.com.cdn.cloudflare.net
priceline.com.cdn.cloudflare.net	0 DS RR in the parent zone found


	DS-Query in the parent zone has a valid NSEC RR as result with the domain name between the NSEC-Owner "priceline.com.cdn.cloudflare.net" and the NextOwner "\000.priceline.com.cdn.cloudflare.net". So the parent zone confirmes the non-existence of a DS RR. Bitmap: A, 13, MX, TXT, AAAA, LOC, SRV, NAPTR, CERT, SSHFP, RRSIG, NSEC, TLSA, 53, HIP, 61, 64, 65, URI, CAA


	0 DNSKEY RR found




Zone: www.priceline.com.cdn.cloudflare.net
www.priceline.com.cdn.cloudflare.net	0 DS RR in the parent zone found


	DS-Query in the parent zone has a valid NSEC RR as result with the domain name between the NSEC-Owner "www.priceline.com.cdn.cloudflare.net" and the NextOwner "\000.www.priceline.com.cdn.cloudflare.net". So the parent zone confirmes the non-existence of a DS RR. Bitmap: A, 13, MX, TXT, AAAA, LOC, SRV, NAPTR, CERT, SSHFP, RRSIG, NSEC, TLSA, 53, HIP, 61, 64, 65, URI, CAA


	0 DNSKEY RR found





	RRSIG Type 1 validates the A - Result: 104.18.24.202 104.18.25.202 Validated: RRSIG-Owner www.priceline.com.cdn.cloudflare.net., Algorithm: 13, 6 Labels, original TTL: 300 sec, Signature-expiration: 10.06.2025, 19:08:54 +, Signature-Inception: 08.06.2025, 17:08:54 +, KeyTag 34505, Signer-Name: cloudflare.net


	CNAME-Query sends a valid NSEC RR as result with the query name "www.priceline.com.cdn.cloudflare.net" equal the NSEC-owner "www.priceline.com.cdn.cloudflare.net" and the NextOwner "\000.www.priceline.com.cdn.cloudflare.net". So the zone confirmes the not-existence of that CNAME RR, but the existence of that query name (minimal one RR with that name exists). Bitmap: A, 13, MX, TXT, AAAA, LOC, SRV, NAPTR, CERT, SSHFP, RRSIG, NSEC, TLSA, 53, HIP, 61, 64, 65, URI, CAA Validated: RRSIG-Owner www.priceline.com.cdn.cloudflare.net., Algorithm: 13, 6 Labels, original TTL: 1800 sec, Signature-expiration: 10.06.2025, 19:08:54 +, Signature-Inception: 08.06.2025, 17:08:54 +, KeyTag 34505, Signer-Name: cloudflare.net


	Status: Good. NoData-Proof required and found.


	TXT-Query sends a valid NSEC RR as result with the query name "www.priceline.com.cdn.cloudflare.net" equal the NSEC-owner "www.priceline.com.cdn.cloudflare.net" and the NextOwner "\000.www.priceline.com.cdn.cloudflare.net". So the zone confirmes the not-existence of that TXT RR, but the existence of that query name (minimal one RR with that name exists). Bitmap: A, 13, MX, AAAA, LOC, SRV, NAPTR, CERT, SSHFP, RRSIG, NSEC, TLSA, 53, HIP, 61, 64, 65, URI, CAA Validated: RRSIG-Owner www.priceline.com.cdn.cloudflare.net., Algorithm: 13, 6 Labels, original TTL: 1800 sec, Signature-expiration: 10.06.2025, 19:08:54 +, Signature-Inception: 08.06.2025, 17:08:54 +, KeyTag 34505, Signer-Name: cloudflare.net


	Status: Good. NoData-Proof required and found.


	AAAA-Query sends a valid NSEC RR as result with the query name "www.priceline.com.cdn.cloudflare.net" equal the NSEC-owner "www.priceline.com.cdn.cloudflare.net" and the NextOwner "\000.www.priceline.com.cdn.cloudflare.net". So the zone confirmes the not-existence of that AAAA RR, but the existence of that query name (minimal one RR with that name exists). Bitmap: A, 13, MX, TXT, LOC, SRV, NAPTR, CERT, SSHFP, RRSIG, NSEC, TLSA, 53, HIP, 61, 64, 65, URI, CAA Validated: RRSIG-Owner www.priceline.com.cdn.cloudflare.net., Algorithm: 13, 6 Labels, original TTL: 1800 sec, Signature-expiration: 10.06.2025, 19:08:54 +, Signature-Inception: 08.06.2025, 17:08:54 +, KeyTag 34505, Signer-Name: cloudflare.net


	Status: Good. NoData-Proof required and found.


	TLSA-Query (_443._tcp.www.priceline.com.cdn.cloudflare.net) sends a valid NSEC RR as result with the query name "_443._tcp.www.priceline.com.cdn.cloudflare.net" equal the NSEC-owner "_443._tcp.www.priceline.com.cdn.cloudflare.net" and the NextOwner "\000._443._tcp.www.priceline.com.cdn.cloudflare.net". So the zone confirmes the not-existence of that TLSA RR, but the existence of that query name (minimal one RR with that name exists). Bitmap: A, 13, MX, TXT, AAAA, LOC, SRV, NAPTR, CERT, SSHFP, RRSIG, NSEC, 53, HIP, 61, 64, 65, URI, CAA Validated: RRSIG-Owner _443._tcp.www.priceline.com.cdn.cloudflare.net., Algorithm: 13, 8 Labels, original TTL: 1800 sec, Signature-expiration: 10.06.2025, 19:08:54 +, Signature-Inception: 08.06.2025, 17:08:54 +, KeyTag 34505, Signer-Name: cloudflare.net


	Status: Good. NoData-Proof required and found.


	CAA-Query sends a valid NSEC RR as result with the query name "www.priceline.com.cdn.cloudflare.net" equal the NSEC-owner "www.priceline.com.cdn.cloudflare.net" and the NextOwner "\000.www.priceline.com.cdn.cloudflare.net". So the zone confirmes the not-existence of that CAA RR, but the existence of that query name (minimal one RR with that name exists). Bitmap: A, 13, MX, TXT, AAAA, LOC, SRV, NAPTR, CERT, SSHFP, RRSIG, NSEC, TLSA, 53, HIP, 61, 64, 65, URI Validated: RRSIG-Owner www.priceline.com.cdn.cloudflare.net., Algorithm: 13, 6 Labels, original TTL: 1800 sec, Signature-expiration: 10.06.2025, 19:08:54 +, Signature-Inception: 08.06.2025, 17:08:54 +, KeyTag 34505, Signer-Name: cloudflare.net


	Status: Good. NoData-Proof required and found.

3. Name Servers

Domain	Nameserver	NS-IP
priceline.com	• dns1.p09.nsone.net / ns1dns-mrs01-1269-5309-0	198.51.44.9 Toronto/Ohio/United States (US) - NSONE Inc	•
	•	2620:4d:4000:6259:7:9:0:1 New York/United States (US) - NSONE Inc	•
	• dns2.p09.nsone.net / ns1dns-fra03-086f065c-5c48-479f-87c7-22044973fd0f-5302-0	198.51.45.9 Kimball/Nebraska/United States (US) - NSONE Inc	•
	•	2a00:edc0:6259:7:9::2 Amsterdam/North Holland/The Netherlands (NL) - NS1	•
	• dns3.p09.nsone.net / ns1dns-mrs01-1269-5319-0	198.51.44.73 Toronto/Ohio/United States (US) - NSONE Inc	•
	•	2620:4d:4000:6259:7:9:0:3 New York/United States (US) - NSONE Inc	•
	• dns4.p09.nsone.net / ns1dns-fra03-1836f9f0-c622-421a-97fc-9fcde5e7135b-5302-0	198.51.45.73 Kimball/Nebraska/United States (US) - NSONE Inc	•
	•	2a00:edc0:6259:7:9::4 Amsterdam/North Holland/The Netherlands (NL) - NS1	•
com	• a.gtld-servers.net / nnn1-par6		•
	• b.gtld-servers.net / nnn1-eltxl1		•
	• c.gtld-servers.net / nnn1-par6		•
	• d.gtld-servers.net / nnn1-par6		•
	• e.gtld-servers.net / nnn1-par6		•
	• f.gtld-servers.net / nnn1-defra-4		•
	• g.gtld-servers.net / nnn1-defra-4		•
	• h.gtld-servers.net / nnn1-defra-4		•
	• i.gtld-servers.net / nnn1-defra-4		•
	• j.gtld-servers.net / nnn1-frmrs-2		•
	• k.gtld-servers.net / nnn1-frmrs-2		•
	• l.gtld-servers.net / nnn1-frmrs-2		•
	• m.gtld-servers.net / nnn1-frmrs-2		•

www.priceline.com.cdn.cloudflare.net	• ns1.cloudflare.net / 67m104	173.245.59.31 Toronto/Ontario/Canada (CA) - Cloudflare, Inc.	•
	•	2400:cb00:2049:1::adf5:3b1f San Francisco/California/United States (US) - CLOUDFLARE	•
priceline.com.cdn.cloudflare.net	• ns1.cloudflare.net / 67m113	173.245.59.31 Toronto/Ontario/Canada (CA) - Cloudflare, Inc.	•
	•	2400:cb00:2049:1::adf5:3b1f San Francisco/California/United States (US) - CLOUDFLARE	•
com.cdn.cloudflare.net	• ns1.cloudflare.net / 67m110	173.245.59.31 Toronto/Ontario/Canada (CA) - Cloudflare, Inc.	•
	•	2400:cb00:2049:1::adf5:3b1f San Francisco/California/United States (US) - CLOUDFLARE	•
cdn.cloudflare.net	• ns1.cloudflare.net / 67m115	173.245.59.31 Toronto/Ontario/Canada (CA) - Cloudflare, Inc.	•
	•	2400:cb00:2049:1::adf5:3b1f San Francisco/California/United States (US) - CLOUDFLARE	•
cloudflare.net	• ns1.cloudflare.net / 67m48	173.245.59.31 Toronto/Ontario/Canada (CA) - Cloudflare, Inc.	•
	•	2400:cb00:2049:1::adf5:3b1f San Francisco/California/United States (US) - CLOUDFLARE	•
	• ns2.cloudflare.net / 67m99	198.41.222.131 Toronto/Ontario/Canada (CA) - Cloudflare, Inc.	•
	•	2400:cb00:2049:1::c629:de83 San Francisco/California/United States (US) - CLOUDFLARE	•
	• ns3.cloudflare.net / 67m115	198.41.222.31 Toronto/Ontario/Canada (CA) - Cloudflare, Inc.	•
	•	2400:cb00:2049:1::c629:de1f San Francisco/California/United States (US) - CLOUDFLARE	•
	• ns4.cloudflare.net / 67m104	198.41.223.131 Toronto/Ontario/Canada (CA) - Cloudflare, Inc.	•
	•	2400:cb00:2049:1::c629:df83 San Francisco/California/United States (US) - CLOUDFLARE	•
	• ns5.cloudflare.net / 67m62	198.41.223.31 Toronto/Ontario/Canada (CA) - Cloudflare, Inc.	•
	•	2400:cb00:2049:1::c629:df1f San Francisco/California/United States (US) - CLOUDFLARE	•
net	• a.gtld-servers.net / nnn1-par6		•
	• b.gtld-servers.net / nnn1-eltxl1		•
	• c.gtld-servers.net / nnn1-par6		•
	• d.gtld-servers.net / nnn1-par6		•
	• e.gtld-servers.net / nnn1-par6		•
	• f.gtld-servers.net / nnn1-defra-4		•
	• g.gtld-servers.net / nnn1-defra-4		•
	• h.gtld-servers.net / nnn1-defra-4		•
	• i.gtld-servers.net / nnn1-defra-4		•
	• j.gtld-servers.net / nnn1-frmrs-2		•
	• k.gtld-servers.net / nnn1-frmrs-2		•
	• l.gtld-servers.net / nnn1-frmrs-2		•
	• m.gtld-servers.net / nnn1-frmrs-2		•

4. SOA-Entries

Domain:	com
Zone-Name:	com
Primary:	a.gtld-servers.net
Mail:	nstld.verisign-grs.com
Serial:	1749492462
Refresh:	1800
Retry:	900
Expire:	604800
TTL:	900
num Entries:	7

Domain:	com
Zone-Name:	com
Primary:	a.gtld-servers.net
Mail:	nstld.verisign-grs.com
Serial:	1749492472
Refresh:	1800
Retry:	900
Expire:	604800
TTL:	900
num Entries:	6

Domain:	priceline.com
Zone-Name:	priceline.com
Primary:	dns1.p09.nsone.net
Mail:	hostmaster.nsone.net
Serial:	1655998558
Refresh:	43200
Retry:	7200
Expire:	1209600
TTL:	86400
num Entries:	8


Domain:	net
Zone-Name:	net
Primary:	a.gtld-servers.net
Mail:	nstld.verisign-grs.com
Serial:	1749492472
Refresh:	1800
Retry:	900
Expire:	604800
TTL:	900
num Entries:	6

Domain:	net
Zone-Name:	net
Primary:	a.gtld-servers.net
Mail:	nstld.verisign-grs.com
Serial:	1749492487
Refresh:	1800
Retry:	900
Expire:	604800
TTL:	900
num Entries:	7

Domain:	cloudflare.net
Zone-Name:	cloudflare.net
Primary:	ns1.cloudflare.net
Mail:	dns.cloudflare.com
Serial:	2374524868
Refresh:	10000
Retry:	2400
Expire:	604800
TTL:	1800
num Entries:	10

Domain:	cdn.cloudflare.net
Zone-Name:	cloudflare.net
Primary:	ns1.cloudflare.net
Mail:	dns.cloudflare.com
Serial:	2374524868
Refresh:	10000
Retry:	2400
Expire:	604800
TTL:	1800
num Entries:	2

Domain:	com.cdn.cloudflare.net
Zone-Name:	cloudflare.net
Primary:	ns1.cloudflare.net
Mail:	dns.cloudflare.com
Serial:	2374524868
Refresh:	10000
Retry:	2400
Expire:	604800
TTL:	1800
num Entries:	2

Domain:	priceline.com.cdn.cloudflare.net
Zone-Name:	cloudflare.net
Primary:	ns1.cloudflare.net
Mail:	dns.cloudflare.com
Serial:	2374524868
Refresh:	10000
Retry:	2400
Expire:	604800
TTL:	1800
num Entries:	2

Domain:	www.priceline.com.cdn.cloudflare.net
Zone-Name:	cloudflare.net
Primary:	ns1.cloudflare.net
Mail:	dns.cloudflare.com
Serial:	2374524868
Refresh:	10000
Retry:	2400
Expire:	604800
TTL:	1800
num Entries:	2

5. Screenshots

Startaddress: https://www.priceline.com/, address used: https://www.priceline.com/, Screenshot created 2025-06-09 20:12:37 +00:0

Mobil (412px x 732px)

1089 milliseconds

Screenshot mobile - https://www.priceline.com/

Mobil + Landscape (732px x 412px)

1221 milliseconds

Screenshot mobile landscape - https://www.priceline.com/

Screen (1280px x 1680px)

1276 milliseconds

Screenshot Desktop - https://www.priceline.com/

Mobile- and other Chrome-Checks

	width	height
visual Viewport	396	732
content Size	396	992

Good: No horizontal scrollbar. Content-size width = visual Viewport width.

6. Url-Checks

show header:

Domainname	Http-Status	redirect	Sec.	G
• http://priceline.com/ 151.101.2.186	307	https://priceline.com/	0.057	A
Connection: close
Server: Varnish
Retry-After: 0
Location: https://priceline.com/
Accept-Ranges: bytes
Date: Mon, 09 Jun 2025 18:10:16 GMT
Via: 1.1 varnish
X-Served-By: cache-mrs1050098-MRS
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1749492616.242449,VS0,VE0
x-pcln-request-id: d78750a8dbb40901da2992d003d8c887
WSHeader: cdn=MRS
Alt-Svc: h3=":443",h3-29=":443",h3-27=":443"
Content-Length: 0

• http://priceline.com/ 151.101.66.186	307	https://priceline.com/	0.057	A
Connection: close
Server: Varnish
Retry-After: 0
Location: https://priceline.com/
Accept-Ranges: bytes
Date: Mon, 09 Jun 2025 18:10:16 GMT
Via: 1.1 varnish
X-Served-By: cache-mrs10564-MRS
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1749492616.309477,VS0,VE0
x-pcln-request-id: 1d4d11316dfa63c9d74facb81d1120a5
WSHeader: cdn=MRS
Alt-Svc: h3=":443",h3-29=":443",h3-27=":443"
Content-Length: 0

• http://priceline.com/ 151.101.130.186	307	https://priceline.com/	0.060	A
Connection: close
Server: Varnish
Retry-After: 0
Location: https://priceline.com/
Accept-Ranges: bytes
Date: Mon, 09 Jun 2025 18:10:16 GMT
Via: 1.1 varnish
X-Served-By: cache-mrs10582-MRS
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1749492616.082317,VS0,VE0
x-pcln-request-id: 90b1bb77e62bfbdcfcd68ed2e2eb270b
WSHeader: cdn=MRS
Alt-Svc: h3=":443",h3-29=":443",h3-27=":443"
Content-Length: 0

• http://priceline.com/ 151.101.194.186	307	https://priceline.com/	0.066	A
Connection: close
Server: Varnish
Retry-After: 0
Location: https://priceline.com/
Accept-Ranges: bytes
Date: Mon, 09 Jun 2025 18:10:16 GMT
Via: 1.1 varnish
X-Served-By: cache-mrs10520-MRS
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1749492616.161614,VS0,VE0
x-pcln-request-id: 3323177ffd7d9f2426d325420942b2e5
WSHeader: cdn=MRS
Alt-Svc: h3=":443",h3-29=":443",h3-27=":443"
Content-Length: 0

• http://www.priceline.com/ 104.18.24.202	301	https://www.priceline.com/ Html is minified: 109.15 %	0.050
Date: Mon, 09 Jun 2025 18:10:16 GMT
Connection: keep-alive
Cache-Control: max-age=3600
Location: https://www.priceline.com/
Set-Cookie: __cf_bm=GbGrjHLXSKCvuk8WmyBRkm.ovEqf2Jc8625OtJl8.oQ-1749492616-1.0.1.1-ZUjpMYri6kvrHniptwMa9vjGBI5yyjSGSZfZ5jCZNzzSLGE5mv9ovyctuRxY65E2861s1xTLYpcQvbXJx6Q7T_O8KJGcExg2bWVQI1A.EDiiBRKr1SftfGTEn2RKvupd; path=/; expires=Mon, 09-Jun-25 18:40:16 GMT; domain=.priceline.com; HttpOnly
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 94d295b46c09eec2-WAW
Content-Type: text/html
Content-Length: 167
Expires: Mon, 09 Jun 2025 19:10:16 GMT

• http://www.priceline.com/ 104.18.25.202	301	https://www.priceline.com/ Html is minified: 109.15 %	0.034
Date: Mon, 09 Jun 2025 18:10:16 GMT
Connection: keep-alive
Cache-Control: max-age=3600
Location: https://www.priceline.com/
Set-Cookie: __cf_bm=S5mofpoqVqP8et4hhs_Tk0sptTFJL7LBSPhAvpC_KFk-1749492616-1.0.1.1-HCQSzqiPzEwhcJuzQHlMIDy_KZ.L_2pCCaQkzj2LEbEQ9a0ERwf9mdq43d49I8m6sYzS5uMVON4Ib2a30VtfEPKN8Vuvoh.aBMKpJ7QRmhz2uJB7a501LhNwy2UDKT9R; path=/; expires=Mon, 09-Jun-25 18:40:16 GMT; domain=.priceline.com; HttpOnly
Report-To: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=MCWz15QEmxN75QRzCf48mM04LrVSw.W3mkZMXdlQiI0-1749492616-1.0.1.1-wbxXxCtNA224QJLVzAhJknHU78xIIQZCW_3TxrI0J1B.WtXAn36kk5CWSGGQD5TIJMVfTQrcLONuSegPGKau2cKyb9h18WGZnuSqnhTZGarhj4bEqAMMMqbnWMSSdzQBEGeu_ax70pQi_dQgfMgRIA891dfD1ZaYV4_xhFOOIW8"}],"group":"cf-csp-endpoint","max_age":86400}
Content-Security-Policy-Report-Only: script-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=MCWz15QEmxN75QRzCf48mM04LrVSw.W3mkZMXdlQiI0-1749492616-1.0.1.1-wbxXxCtNA224QJLVzAhJknHU78xIIQZCW_3TxrI0J1B.WtXAn36kk5CWSGGQD5TIJMVfTQrcLONuSegPGKau2cKyb9h18WGZnuSqnhTZGarhj4bEqAMMMqbnWMSSdzQBEGeu_ax70pQi_dQgfMgRIA891dfD1ZaYV4_xhFOOIW8; report-to cf-csp-endpoint
Vary: Accept-Encoding
Server: cloudflare
Cf-Ray: 94d295b4bae6e507-TXL
Content-Type: text/html
Content-Length: 167
Expires: Mon, 09 Jun 2025 19:10:16 GMT

• https://priceline.com/ 151.101.2.186	301	https://www.priceline.com/	6.796	A
Connection: close
Server: Varnish
Retry-After: 0
Location: https://www.priceline.com/
Accept-Ranges: bytes
Date: Mon, 09 Jun 2025 18:10:34 GMT
Via: 1.1 varnish
X-Served-By: cache-mrs1050092-MRS
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1749492634.176602,VS0,VE0
x-pcln-request-id: c675747dcd82dd761aa281b25b6e5573
WSHeader: cdn=MRS
Strict-Transport-Security: max-age=31536000; includeSubDomains
Alt-Svc: h3=":443",h3-29=":443",h3-27=":443"
Content-Length: 0

• https://priceline.com/ 151.101.66.186	301	https://www.priceline.com/	6.790	A
Connection: close
Server: Varnish
Retry-After: 0
Location: https://www.priceline.com/
Accept-Ranges: bytes
Date: Mon, 09 Jun 2025 18:10:42 GMT
Via: 1.1 varnish
X-Served-By: cache-mrs1050114-MRS
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1749492643.701965,VS0,VE0
x-pcln-request-id: cbf45c746b7024330639138c8677d3ce
WSHeader: cdn=MRS
Strict-Transport-Security: max-age=31536000; includeSubDomains
Alt-Svc: h3=":443",h3-29=":443",h3-27=":443"
Content-Length: 0

• https://priceline.com/ 151.101.130.186	301	https://www.priceline.com/	7.053	A
Connection: close
Server: Varnish
Retry-After: 0
Location: https://www.priceline.com/
Accept-Ranges: bytes
Date: Mon, 09 Jun 2025 18:10:16 GMT
Via: 1.1 varnish
X-Served-By: cache-mrs10524-MRS
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1749492617.652829,VS0,VE0
x-pcln-request-id: bd2f56515123a8ef3bc742978332390b
WSHeader: cdn=MRS
Strict-Transport-Security: max-age=31536000; includeSubDomains
Alt-Svc: h3=":443",h3-29=":443",h3-27=":443"
Content-Length: 0

• https://priceline.com/ 151.101.194.186	301	https://www.priceline.com/	6.800	A
Connection: close
Server: Varnish
Retry-After: 0
Location: https://www.priceline.com/
Accept-Ranges: bytes
Date: Mon, 09 Jun 2025 18:10:25 GMT
Via: 1.1 varnish
X-Served-By: cache-mrs1050087-MRS
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1749492625.474992,VS0,VE0
x-pcln-request-id: 56c3dd9d386aa5664117b46383a11d43
WSHeader: cdn=MRS
Strict-Transport-Security: max-age=31536000; includeSubDomains
Alt-Svc: h3=":443",h3-29=":443",h3-27=":443"
Content-Length: 0

• https://www.priceline.com/ 104.18.24.202 gzip used - 5138 / 11863 - 56.69 % Inline-JavaScript (∑/total): 2/1353 Inline-CSS (∑/total): 1/627	403	Html is minified: 115.69 % Other inline scripts (∑/total): 0/0	3.386	I
Forbidden
Date: Mon, 09 Jun 2025 18:10:51 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 94d2968dcc6f451c-TXL
CF-Cache-Status: DYNAMIC
Retry-After: 0
Set-Cookie: _pxhd=ax20a958CS7ZFxpptXiq9l2i-ngEVbOaXzAhFR7Qoi31TUbYyLl-drwC54aQNoZP5a3mwW/vGMFAWjcQrS7Haw==:f0PNvGtYIroz3berFVSXobWQdOXU6mf3HlhByNLK59Fy-M4AImXXIGOgS0RKoSDc/WhMm/OMEGYQleuksDp3hqVk49XZ/UBlfKmGv6M4Vg4=; Expires=Tue, 09 Jun 2026 18:10:51 GMT; path=/;,__cf_bm=vwKzlFxMCJyXKFheIB.R_vxUQvkFfY4_mVmicG3Ytro-1749492651-1.0.1.1-nXsUYDgg7cAUQZ5HJdfpaOyxP5Ek1353nOVD6xATS1Tryfg2JjsPh1Tw_gOYCrx44frj2wbaERHsx9gi2t76y2Eb_HcOJelShnYpb7OLWixzb_JpWDkfpRUT5sY3GDJx; path=/; expires=Mon, 09-Jun-25 18:40:51 GMT; domain=.priceline.com; HttpOnly; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Via: 1.1 varnish
wsheader: (null) cdn=RTM
X-Cache: MISS
x-cache-hits: 0
x-pcln-request-id: 7d7c4971fe6990ef4652b5f01acf25e0
x-served-by: cache-rtm-ehrd2290028-RTM
x-timer: S1749492651.201849,VS0,VE60
Vary: Accept-Encoding
Server: cloudflare
Content-Type: text/html
Content-Encoding: gzip
Content-Length: 5138

• https://www.priceline.com/ 104.18.25.202 gzip used - 5138 / 11863 - 56.69 % Inline-JavaScript (∑/total): 2/1353 Inline-CSS (∑/total): 1/627	403	Html is minified: 115.69 % Other inline scripts (∑/total): 0/0	3.210	I
Forbidden
Date: Mon, 09 Jun 2025 18:10:57 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 94d296b42b13eeaf-WAW
CF-Cache-Status: DYNAMIC
Retry-After: 0
Set-Cookie: _pxhd=EAxmgHMfZpqBrx7ZdeTcgmVQbYm6iqw-JCLg77L-is0A5I2tNFlusJ8cd9246R2aJeUfl6lTSdte9SOtrGykCg==:U/EE76RO9aw47GlE-2ijU6YcB5mK45zWhgVNaD3RDQNG3IGefdx58OmulMjhKuwaTmKdO1jkFNpytoJBgpXpf8-Hl5scq4GOHy8GafWJzB4=; Expires=Tue, 09 Jun 2026 18:10:57 GMT; path=/;,__cf_bm=Brp5shemlxRhzjnynulRvSE3jLh2QeP3xN0m8gx7rxc-1749492657-1.0.1.1-kjzslKLH2QVHpJAgvKz1N2u2RD59N75BSYPGfiBNMcL57nRvkD.gIOwTQzgBvlM7pM8Sf3gxpc3ayCHDyqBcKe_HBasr_92V5tqsBeIHRAdRX7uwubG3uiIGlSBsbrtR; path=/; expires=Mon, 09-Jun-25 18:40:57 GMT; domain=.priceline.com; HttpOnly; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Via: 1.1 varnish
wsheader: (null) cdn=VIE
X-Cache: MISS
x-cache-hits: 0
x-pcln-request-id: 7838bcd298775e4d50c83835a125d0a5
x-served-by: cache-vie6339-VIE
x-timer: S1749492657.325983,VS0,VE59
Vary: Accept-Encoding
Server: cloudflare
Content-Type: text/html
Content-Encoding: gzip
Content-Length: 5138

• http://priceline.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 151.101.2.186	307	https://priceline.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	0.060	A
Visible Content:
Connection: close
Server: Varnish
Retry-After: 0
Location: https://priceline.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Accept-Ranges: bytes
Date: Mon, 09 Jun 2025 18:11:04 GMT
Via: 1.1 varnish
X-Served-By: cache-mrs10575-MRS
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1749492665.881421,VS0,VE0
x-pcln-request-id: 520c9fc781e556b3b89d744c8c9f8685
WSHeader: cdn=MRS
Alt-Svc: h3=":443",h3-29=":443",h3-27=":443"
Content-Length: 0

• http://priceline.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 151.101.66.186	307	https://priceline.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	0.060	A
Visible Content:
Connection: close
Server: Varnish
Retry-After: 0
Location: https://priceline.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Accept-Ranges: bytes
Date: Mon, 09 Jun 2025 18:11:05 GMT
Via: 1.1 varnish
X-Served-By: cache-mrs10534-MRS
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1749492666.887967,VS0,VE0
x-pcln-request-id: 5fd575fcf18f20f08b5394d5dee99582
WSHeader: cdn=MRS
Alt-Svc: h3=":443",h3-29=":443",h3-27=":443"
Content-Length: 0

• http://priceline.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 151.101.130.186	307	https://priceline.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	0.057	A
Visible Content:
Connection: close
Server: Varnish
Retry-After: 0
Location: https://priceline.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Accept-Ranges: bytes
Date: Mon, 09 Jun 2025 18:11:03 GMT
Via: 1.1 varnish
X-Served-By: cache-mrs10566-MRS
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1749492663.181998,VS0,VE0
x-pcln-request-id: abb7a038b40badc025da4b9217a8c54e
WSHeader: cdn=MRS
Alt-Svc: h3=":443",h3-29=":443",h3-27=":443"
Content-Length: 0

• http://priceline.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 151.101.194.186	307	https://priceline.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	0.060	A
Visible Content:
Connection: close
Server: Varnish
Retry-After: 0
Location: https://priceline.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Accept-Ranges: bytes
Date: Mon, 09 Jun 2025 18:11:04 GMT
Via: 1.1 varnish
X-Served-By: cache-mrs10528-MRS
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1749492664.033107,VS0,VE0
x-pcln-request-id: 76cab593f75a97de3d0b5c6594463c30
WSHeader: cdn=MRS
Alt-Svc: h3=":443",h3-29=":443",h3-27=":443"
Content-Length: 0

• http://www.priceline.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 104.18.24.202	307	https://www.priceline.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	0.067
Visible Content:
Date: Mon, 09 Jun 2025 18:11:06 GMT
Connection: keep-alive
Location: https://www.priceline.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
CF-Ray: 94d296eeff6deec2-WAW
CF-Cache-Status: DYNAMIC
Retry-After: 0
Accept-Ranges: bytes
Via: 1.1 varnish
WSHeader: cdn=VIE
X-Cache: HIT
X-Cache-Hits: 0
x-pcln-request-id: 1f66b9b8d8e965bcef6add9eab52c138
X-Served-By: cache-vie6349-VIE
X-Timer: S1749492667.752850,VS0,VE0
Set-Cookie: __cf_bm=a9oUOsBbu4mmhtVkZQMKR_gHXoIcx.sv68GqIYNmo7g-1749492666-1.0.1.1-5ftbZWeIaETGIlxbMG3EfCyNxkPE4uWwBdxAXSdr6eaM2EURZwJbV1GiU0_MPWyHcL9LQpiKlg4AihDcUrKYo4Asq3zY_t3H6.2NVNlejhOovVXJg12QNtNt0J9Y0WIy; path=/; expires=Mon, 09-Jun-25 18:41:06 GMT; domain=.priceline.com; HttpOnly
Vary: Accept-Encoding
Server: cloudflare
Content-Length: 0

• http://www.priceline.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 104.18.25.202	307	https://www.priceline.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	0.066
Visible Content:
Date: Mon, 09 Jun 2025 18:11:07 GMT
Connection: keep-alive
Server: cloudflare
Location: https://www.priceline.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Cf-Ray: 94d296f44893e507-TXL
Cf-Cache-Status: DYNAMIC
Retry-After: 0
Accept-Ranges: bytes
Via: 1.1 varnish
Wsheader: cdn=RTM
X-Cache: HIT
X-Cache-Hits: 0
X-Pcln-Request-Id: beb8c5d47d56b8f9f8e69c1680a1a529
X-Served-By: cache-rtm-ehrd2290038-RTM
X-Timer: S1749492668.610163,VS0,VE0
Set-Cookie: __cf_bm=cNhdsXSvAte_lLI_A3kJSpg3V63abQ0l4cQtZEzINnY-1749492667-1.0.1.1-790LcBNNnQXnUlCJ5TOCK_f5shl6tPQhoHvbY90CLa6AyR6jaXnwohWBaO5b7o0QHOtlYW.xQkbXiXqoJ9xx5elLUWrpsBgmjTBU8YaHdskNKaCCXu4a0xt1mMKiJGql; path=/; expires=Mon, 09-Jun-25 18:41:07 GMT; domain=.priceline.com; HttpOnly
Vary: Accept-Encoding
Content-Length: 0

• https://priceline.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	301	https://www.priceline.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	6.836	A
Visible Content:
Connection: close
Server: Varnish
Retry-After: 0
Location: https://www.priceline.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Accept-Ranges: bytes
Date: Mon, 09 Jun 2025 18:11:43 GMT
Via: 1.1 varnish
X-Served-By: cache-mrs10522-MRS
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1749492703.453443,VS0,VE1
x-pcln-request-id: 0f45fbcc9acedab635f835418d0f104b
WSHeader: cdn=MRS
Strict-Transport-Security: max-age=31536000; includeSubDomains
Alt-Svc: h3=":443",h3-29=":443",h3-27=":443"
Content-Length: 0

• https://www.priceline.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de gzip used - 1198 / 3335 - 64.08 % Inline-JavaScript (∑/total): 1/131 Inline-CSS (∑/total): 0/0	404	Html is minified: 224.58 % Other inline scripts (∑/total): 0/0	3.393	B
Not Found
Visible Content:
Date: Mon, 09 Jun 2025 18:11:53 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 94d2981129d76a78-TXL
CF-Cache-Status: DYNAMIC
Retry-After: 0
Set-Cookie: _pxhd=F7lBqhGB13QQndjKqdtSK2VoifCp3FI8uZ6HrbZYmcxvMF6RLS-K8qe62Gy-2BiE7y3pGlNxkG9fs-5fLKtH8Q==:gJ8eeytWBQFjzFdaUhSr7fMsCLdm7-iWbeLawoSBN2TF72iYxxKd4dQ0tGIgaV8m9OSdqtraJ0tBxyJxv2ZYkSdARk3IftWvwuws0jtQflU=; Expires=Tue, 09 Jun 2026 18:11:53 GMT; path=/;,__cf_bm=te0fiH8qv60TF5dTZ9SV0wnp3RTeEr_ZZ4lsp_HDHNM-1749492713-1.0.1.1-c95.wzQZMfpT60E4u65Zyu0JepUER8nhwHDIPntk.12uofNITCi.DYBslXxybMTH2xpCNgWsGz.a86P9poyFdrUF_kkVSeDdNaWGEBeIar1abZlQMdyqk.Ki3yMoiC0v; path=/; expires=Mon, 09-Jun-25 18:41:53 GMT; domain=.priceline.com; HttpOnly; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Via: 1.1 varnish
wsheader: (null) cdn=RTM
X-Cache: MISS
x-cache-hits: 0
x-pcln-request-id: 468d2469255db8b5c4711ce2932fc757
x-served-by: cache-rtm-ehrd2290044-RTM
x-timer: S1749492713.201037,VS0,VE158
Vary: Accept-Encoding
Server: cloudflare
Content-Type: text/html
Content-Encoding: gzip
Content-Length: 1198

• https://104.18.24.202/ 104.18.24.202	-103		0.060	P
SecureConnectionError (3, 0x80131501). The SSL connection could not be established, see inner exception. Authentication failed because the remote party sent a TLS alert: 'HandshakeFailure'. (FF: SSL_ERROR_NO_CYPHER_OVERLAP)

• https://104.18.25.202/ 104.18.25.202	-103		0.047	P
SecureConnectionError (3, 0x80131501). The SSL connection could not be established, see inner exception. Authentication failed because the remote party sent a TLS alert: 'HandshakeFailure'. (FF: SSL_ERROR_NO_CYPHER_OVERLAP)

• https://151.101.2.186/ 151.101.2.186	421	Html is minified: 102.11 %	6.910	N
Misdirected Request
Certificate error: RemoteCertificateNameMismatch
Connection: keep-alive
x-served-by: cache-mrs10544
Content-Length: 291
Content-Type: text/plain; charset=utf-8

• https://151.101.66.186/ 151.101.66.186	421	Html is minified: 102.11 %	6.883	N
Misdirected Request
Certificate error: RemoteCertificateNameMismatch
Connection: keep-alive
x-served-by: cache-mrs10577
Content-Length: 291
Content-Type: text/plain; charset=utf-8

• https://151.101.130.186/ 151.101.130.186	421	Html is minified: 102.11 %	6.870	N
Misdirected Request
Certificate error: RemoteCertificateNameMismatch
Connection: keep-alive
x-served-by: cache-mrs10533
Content-Length: 291
Content-Type: text/plain; charset=utf-8

• https://151.101.194.186/ 151.101.194.186	421	Html is minified: 102.11 %	6.887	N
Misdirected Request
Certificate error: RemoteCertificateNameMismatch
Connection: keep-alive
x-served-by: cache-mrs1050087
Content-Length: 291
Content-Type: text/plain; charset=utf-8

7. Comments

	1. General Results, most used to calculate the result
A	name "priceline.com" is domain, public suffix is ".com", top-level-domain is ".com", top-level-domain-type is "generic", tld-manager is "VeriSign Global Registry Services", num .com-domains preloaded: 105960 (complete: 271405)
A	Good: All ip addresses are public addresses
A	Good: Minimal 2 ip addresses per domain name found: priceline.com has 4 different ip addresses (authoritative).
A	Good: Minimal 2 ip addresses per domain name found: www.priceline.com has 2 different ip addresses (authoritative).
	Warning: No ipv6 address found. Ipv6 is the future with a lot of new features. So every domain name should have an ipv6 address. See https://en.wikipedia.org/wiki/IPv6: priceline.com has no ipv6 address.
	Warning: No ipv6 address found. Ipv6 is the future with a lot of new features. So every domain name should have an ipv6 address. See https://en.wikipedia.org/wiki/IPv6: www.priceline.com has no ipv6 address.
A	Good: No asked Authoritative Name Server had a timeout
	HSTS-Preload-Status: unknown. Domain never included in the Preload-list. Check https://hstspreload.org/ to learn some basics about the Google-Preload-List.
A	Good: Some urls with http status 200/404 have a complete Content-Type header (MediaType / MediaSubType + correct charset):0 complete Content-Type - header (3 urls)
	https://www.priceline.com/ 104.18.24.202			Url with incomplete Content-Type - header - missing charset
	https://www.priceline.com/ 104.18.25.202			Url with incomplete Content-Type - header - missing charset
	https://www.priceline.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de			Url with incomplete Content-Type - header - missing charset
A	http://priceline.com/ 151.101.2.186	307	https://priceline.com/	Correct redirect http - https with the same domain name
A	http://priceline.com/ 151.101.66.186	307	https://priceline.com/	Correct redirect http - https with the same domain name
A	http://priceline.com/ 151.101.130.186	307	https://priceline.com/	Correct redirect http - https with the same domain name
A	http://priceline.com/ 151.101.194.186	307	https://priceline.com/	Correct redirect http - https with the same domain name
	http://www.priceline.com/ 104.18.24.202	301	__cf_bm=GbGrjHLXSKCvuk8WmyBRkm.ovEqf2Jc8625OtJl8.oQ-1749492616-1.0.1.1-ZUjpMYri6kvrHniptwMa9vjGBI5yyjSGSZfZ5jCZNzzSLGE5mv9ovyctuRxY65E2861s1xTLYpcQvbXJx6Q7T_O8KJGcExg2bWVQI1A.EDiiBRKr1SftfGTEn2RKvupd; path=/; expires=Mon, 09-Jun-25 18:40:16 GMT; domain=.priceline.com; HttpOnly	Fatal: Cookie sent via http. Never send Cookies / Session-Cookies via http. If a user uses an insecure WLan and if the same cookie is used to managed the authenticated session, it's possible to hack that user. Same with HttpOnly - without https that's only decorative.
	http://www.priceline.com/ 104.18.25.202	301	__cf_bm=S5mofpoqVqP8et4hhs_Tk0sptTFJL7LBSPhAvpC_KFk-1749492616-1.0.1.1-HCQSzqiPzEwhcJuzQHlMIDy_KZ.L_2pCCaQkzj2LEbEQ9a0ERwf9mdq43d49I8m6sYzS5uMVON4Ib2a30VtfEPKN8Vuvoh.aBMKpJ7QRmhz2uJB7a501LhNwy2UDKT9R; path=/; expires=Mon, 09-Jun-25 18:40:16 GMT; domain=.priceline.com; HttpOnly	Fatal: Cookie sent via http. Never send Cookies / Session-Cookies via http. If a user uses an insecure WLan and if the same cookie is used to managed the authenticated session, it's possible to hack that user. Same with HttpOnly - without https that's only decorative.
	http://www.priceline.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 104.18.24.202	307	__cf_bm=a9oUOsBbu4mmhtVkZQMKR_gHXoIcx.sv68GqIYNmo7g-1749492666-1.0.1.1-5ftbZWeIaETGIlxbMG3EfCyNxkPE4uWwBdxAXSdr6eaM2EURZwJbV1GiU0_MPWyHcL9LQpiKlg4AihDcUrKYo4Asq3zY_t3H6.2NVNlejhOovVXJg12QNtNt0J9Y0WIy; path=/; expires=Mon, 09-Jun-25 18:41:06 GMT; domain=.priceline.com; HttpOnly	Fatal: Cookie sent via http. Never send Cookies / Session-Cookies via http. If a user uses an insecure WLan and if the same cookie is used to managed the authenticated session, it's possible to hack that user. Same with HttpOnly - without https that's only decorative.
	http://www.priceline.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 104.18.25.202	307	__cf_bm=cNhdsXSvAte_lLI_A3kJSpg3V63abQ0l4cQtZEzINnY-1749492667-1.0.1.1-790LcBNNnQXnUlCJ5TOCK_f5shl6tPQhoHvbY90CLa6AyR6jaXnwohWBaO5b7o0QHOtlYW.xQkbXiXqoJ9xx5elLUWrpsBgmjTBU8YaHdskNKaCCXu4a0xt1mMKiJGql; path=/; expires=Mon, 09-Jun-25 18:41:07 GMT; domain=.priceline.com; HttpOnly	Fatal: Cookie sent via http. Never send Cookies / Session-Cookies via http. If a user uses an insecure WLan and if the same cookie is used to managed the authenticated session, it's possible to hack that user. Same with HttpOnly - without https that's only decorative.
B	https://www.priceline.com/ 104.18.24.202	403	_pxhd=ax20a958CS7ZFxpptXiq9l2i-ngEVbOaXzAhFR7Qoi31TUbYyLl-drwC54aQNoZP5a3mwW/vGMFAWjcQrS7Haw==:f0PNvGtYIroz3berFVSXobWQdOXU6mf3HlhByNLK59Fy-M4AImXXIGOgS0RKoSDc/WhMm/OMEGYQleuksDp3hqVk49XZ/UBlfKmGv6M4Vg4=; Expires=Tue, 09 Jun 2026 18:10:51 GMT; path=/;	Cookie sent via https, but not marked as secure
B	https://www.priceline.com/ 104.18.25.202	403	_pxhd=EAxmgHMfZpqBrx7ZdeTcgmVQbYm6iqw-JCLg77L-is0A5I2tNFlusJ8cd9246R2aJeUfl6lTSdte9SOtrGykCg==:U/EE76RO9aw47GlE-2ijU6YcB5mK45zWhgVNaD3RDQNG3IGefdx58OmulMjhKuwaTmKdO1jkFNpytoJBgpXpf8-Hl5scq4GOHy8GafWJzB4=; Expires=Tue, 09 Jun 2026 18:10:57 GMT; path=/;	Cookie sent via https, but not marked as secure
B	https://www.priceline.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	404	_pxhd=F7lBqhGB13QQndjKqdtSK2VoifCp3FI8uZ6HrbZYmcxvMF6RLS-K8qe62Gy-2BiE7y3pGlNxkG9fs-5fLKtH8Q==:gJ8eeytWBQFjzFdaUhSr7fMsCLdm7-iWbeLawoSBN2TF72iYxxKd4dQ0tGIgaV8m9OSdqtraJ0tBxyJxv2ZYkSdARk3IftWvwuws0jtQflU=; Expires=Tue, 09 Jun 2026 18:11:53 GMT; path=/;	Cookie sent via https, but not marked as secure
B	http://www.priceline.com/ 104.18.24.202	301	__cf_bm=GbGrjHLXSKCvuk8WmyBRkm.ovEqf2Jc8625OtJl8.oQ-1749492616-1.0.1.1-ZUjpMYri6kvrHniptwMa9vjGBI5yyjSGSZfZ5jCZNzzSLGE5mv9ovyctuRxY65E2861s1xTLYpcQvbXJx6Q7T_O8KJGcExg2bWVQI1A.EDiiBRKr1SftfGTEn2RKvupd; path=/; expires=Mon, 09-Jun-25 18:40:16 GMT; domain=.priceline.com; HttpOnly	Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
B	http://www.priceline.com/ 104.18.25.202	301	__cf_bm=S5mofpoqVqP8et4hhs_Tk0sptTFJL7LBSPhAvpC_KFk-1749492616-1.0.1.1-HCQSzqiPzEwhcJuzQHlMIDy_KZ.L_2pCCaQkzj2LEbEQ9a0ERwf9mdq43d49I8m6sYzS5uMVON4Ib2a30VtfEPKN8Vuvoh.aBMKpJ7QRmhz2uJB7a501LhNwy2UDKT9R; path=/; expires=Mon, 09-Jun-25 18:40:16 GMT; domain=.priceline.com; HttpOnly	Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
B	https://www.priceline.com/ 104.18.24.202	403	_pxhd=ax20a958CS7ZFxpptXiq9l2i-ngEVbOaXzAhFR7Qoi31TUbYyLl-drwC54aQNoZP5a3mwW/vGMFAWjcQrS7Haw==:f0PNvGtYIroz3berFVSXobWQdOXU6mf3HlhByNLK59Fy-M4AImXXIGOgS0RKoSDc/WhMm/OMEGYQleuksDp3hqVk49XZ/UBlfKmGv6M4Vg4=; Expires=Tue, 09 Jun 2026 18:10:51 GMT; path=/;	Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
B	https://www.priceline.com/ 104.18.25.202	403	_pxhd=EAxmgHMfZpqBrx7ZdeTcgmVQbYm6iqw-JCLg77L-is0A5I2tNFlusJ8cd9246R2aJeUfl6lTSdte9SOtrGykCg==:U/EE76RO9aw47GlE-2ijU6YcB5mK45zWhgVNaD3RDQNG3IGefdx58OmulMjhKuwaTmKdO1jkFNpytoJBgpXpf8-Hl5scq4GOHy8GafWJzB4=; Expires=Tue, 09 Jun 2026 18:10:57 GMT; path=/;	Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
B	http://www.priceline.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 104.18.24.202	307	__cf_bm=a9oUOsBbu4mmhtVkZQMKR_gHXoIcx.sv68GqIYNmo7g-1749492666-1.0.1.1-5ftbZWeIaETGIlxbMG3EfCyNxkPE4uWwBdxAXSdr6eaM2EURZwJbV1GiU0_MPWyHcL9LQpiKlg4AihDcUrKYo4Asq3zY_t3H6.2NVNlejhOovVXJg12QNtNt0J9Y0WIy; path=/; expires=Mon, 09-Jun-25 18:41:06 GMT; domain=.priceline.com; HttpOnly	Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
B	http://www.priceline.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 104.18.25.202	307	__cf_bm=cNhdsXSvAte_lLI_A3kJSpg3V63abQ0l4cQtZEzINnY-1749492667-1.0.1.1-790LcBNNnQXnUlCJ5TOCK_f5shl6tPQhoHvbY90CLa6AyR6jaXnwohWBaO5b7o0QHOtlYW.xQkbXiXqoJ9xx5elLUWrpsBgmjTBU8YaHdskNKaCCXu4a0xt1mMKiJGql; path=/; expires=Mon, 09-Jun-25 18:41:07 GMT; domain=.priceline.com; HttpOnly	Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
B	https://www.priceline.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	404	_pxhd=F7lBqhGB13QQndjKqdtSK2VoifCp3FI8uZ6HrbZYmcxvMF6RLS-K8qe62Gy-2BiE7y3pGlNxkG9fs-5fLKtH8Q==:gJ8eeytWBQFjzFdaUhSr7fMsCLdm7-iWbeLawoSBN2TF72iYxxKd4dQ0tGIgaV8m9OSdqtraJ0tBxyJxv2ZYkSdARk3IftWvwuws0jtQflU=; Expires=Tue, 09 Jun 2026 18:11:53 GMT; path=/;	Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
C	Error - no version with Http-Status 200
H	Fatal error: No https - result with http-status 200, no encryption
I	https://www.priceline.com/ 104.18.24.202	403		Content problems or problems with resources included - http links, files doesn't exist, different Content-Type definitions. Check the Html-Content - Part.
I	https://www.priceline.com/ 104.18.25.202	403		Content problems or problems with resources included - http links, files doesn't exist, different Content-Type definitions. Check the Html-Content - Part.
M	https://www.priceline.com/ 104.18.24.202	403		Misconfiguration - main pages should never send http status 400 - 499
M	https://www.priceline.com/ 104.18.25.202	403		Misconfiguration - main pages should never send http status 400 - 499
M	https://151.101.2.186/ 151.101.2.186	421		Misconfiguration - main pages should never send http status 400 - 499
M	https://151.101.66.186/ 151.101.66.186	421		Misconfiguration - main pages should never send http status 400 - 499
M	https://151.101.130.186/ 151.101.130.186	421		Misconfiguration - main pages should never send http status 400 - 499
M	https://151.101.194.186/ 151.101.194.186	421		Misconfiguration - main pages should never send http status 400 - 499
N	https://151.101.2.186/ 151.101.2.186	421		Error - Certificate isn't trusted, RemoteCertificateNameMismatch
N	https://151.101.66.186/ 151.101.66.186	421		Error - Certificate isn't trusted, RemoteCertificateNameMismatch
N	https://151.101.130.186/ 151.101.130.186	421		Error - Certificate isn't trusted, RemoteCertificateNameMismatch
N	https://151.101.194.186/ 151.101.194.186	421		Error - Certificate isn't trusted, RemoteCertificateNameMismatch
A	Good: More then one ip address per domain name found, checking all ip addresses the same http status and the same certificate found: Domain priceline.com, 4 ip addresses.
A	Good: More then one ip address per domain name found, checking all ip addresses the same http status and the same certificate found: Domain www.priceline.com, 2 ip addresses.
	Info: Checking all ip addresses of that domain without sending the hostname only one certificate found. Checking all ip addresses and sending the hostname only one certificate found. Both certificates are the same. So that domain doesn't require Server Name Indication (SNI), it's the primary certificate of that set of ip addresses.: Domain priceline.com, 4 ip addresses, 1 different http results.
	Info: Checking the ip addresses of that domain name not exact one certificate found. So it's impossible to check if that domain requires Server Name Indication (SNI).: Domain www.priceline.com, 2 ip addresses.
B	No _mta-sts TXT record found (mta-sts: Mail Transfer Agent Strict Transport Security - see RFC 8461). Read the result of server-daten.de (Url-Checks, Comments, Connections and DomainServiceRecords) to see a complete definition. Domainname: _mta-sts.priceline.com
	2. Header-Checks
F	www.priceline.com 104.18.24.202	Content-Security-Policy		Critical: Missing Header:
F	www.priceline.com 104.18.24.202	X-Content-Type-Options		Critical: Missing Header:
F	www.priceline.com 104.18.24.202	Referrer-Policy		Critical: Missing Header:
F	www.priceline.com 104.18.24.202	Permissions-Policy		Critical: Missing Header:
B	www.priceline.com 104.18.24.202	Cross-Origin-Embedder-Policy		Info: Missing Header
B	www.priceline.com 104.18.24.202	Cross-Origin-Opener-Policy		Info: Missing Header
B	www.priceline.com 104.18.24.202	Cross-Origin-Resource-Policy		Info: Missing Header
F	www.priceline.com 104.18.25.202	Content-Security-Policy		Critical: Missing Header:
F	www.priceline.com 104.18.25.202	X-Content-Type-Options		Critical: Missing Header:
F	www.priceline.com 104.18.25.202	Referrer-Policy		Critical: Missing Header:
F	www.priceline.com 104.18.25.202	Permissions-Policy		Critical: Missing Header:
B	www.priceline.com 104.18.25.202	Cross-Origin-Embedder-Policy		Info: Missing Header
B	www.priceline.com 104.18.25.202	Cross-Origin-Opener-Policy		Info: Missing Header
B	www.priceline.com 104.18.25.202	Cross-Origin-Resource-Policy		Info: Missing Header
	3. DNS- and NameServer - Checks
A	Info:: 13 Root-climbing DNS Queries required to find all IPv4- and IPv6-Addresses of 4 Name Servers.
A	Info:: 13 Queries complete, 13 with IPv6, 0 with IPv4.
A	Good: All DNS Queries done via IPv6.
	Ok (4 - 8):: An average of 3.3 queries per domain name server required to find all ip addresses of all name servers.
A	Info:: 4 different Name Servers found: dns1.p09.nsone.net, dns2.p09.nsone.net, dns3.p09.nsone.net, dns4.p09.nsone.net, 4 Name Servers included in Delegation: dns1.p09.nsone.net, dns2.p09.nsone.net, dns3.p09.nsone.net, dns4.p09.nsone.net, 4 Name Servers included in 1 Zone definitions: dns1.p09.nsone.net, dns2.p09.nsone.net, dns3.p09.nsone.net, dns4.p09.nsone.net, 1 Name Servers listed in SOA.Primary: dns1.p09.nsone.net.
A	Good: Only one SOA.Primary Name Server found.: dns1.p09.nsone.net.
A	Good: SOA.Primary Name Server included in the delegation set.: dns1.p09.nsone.net.
A	Good: Consistency between delegation and zone. The set of NS records served by the authoritative name servers must match those proposed for the delegation in the parent zone. Ordered list of name servers: dns1.p09.nsone.net, dns2.p09.nsone.net, dns3.p09.nsone.net, dns4.p09.nsone.net
A	Good: All Name Server Domain Names have a Public Suffix.
A	Good: All Name Server Domain Names ending with a Public Suffix have minimal one IPv4- or IPv6 address.
A	Good: All Name Server ip addresses are public.
A	Good: Minimal 2 different name servers (public suffix and public ip address) found: 4 different Name Servers found
A	Good: All name servers have ipv4- and ipv6-addresses.: 4 different Name Servers found
	Warning: All Name Servers have the same Top Level Domain / Public Suffix. If there is a problem with that Top Level Domain, your domain may be affected. Better: Use Name Servers with different top level domains.: 4 Name Servers, 1 Top Level Domain: net
	Warning: All Name Servers have the same domain name. If there is a problem with that domain name (or with the name servers of that domain name), your domain may be affected. Better: Use Name Servers with different domain names / different top level domains.: Only one domain name used: nsone.net
A	Good: Name servers with different Country locations found: 4 Name Servers, 2 Countries: NL, US
A	Info: Ipv4-Subnet-list: 4 Name Servers, 1 different subnets (first Byte): 198., 1 different subnets (first two Bytes): 198.51., 2 different subnets (first three Bytes): 198.51.44., 198.51.45.
A	Good: Name Server IPv4-addresses from different subnet found:
A	Info: IPv6-Subnet-list: 4 Name Servers with IPv6, 2 different subnets (first block): 2620:, 2a00:, 2 different subnets (first two blocks): 2620:004d:, 2a00:edc0:, 2 different subnets (first three blocks): 2620:004d:4000:, 2a00:edc0:6259:, 2 different subnets (first four blocks): 2620:004d:4000:6259:, 2a00:edc0:6259:0007:
A	Good: Name Server IPv6 addresses from different subnets found.
A	Good: Nameserver supports TCP connections: 8 good Nameserver
A	Good: Nameserver supports Echo Capitalization: 8 good Nameserver
A	Good: Nameserver supports EDNS with max. 512 Byte Udp payload, message is smaller: 8 good Nameserver
A	Good: Nameserver has passed 10 EDNS-Checks (OP100, FLAGS, V1, V1OP100, V1FLAGS, DNSSEC, V1DNSSEC, NSID, COOKIE, CLIENTSUBNET): 8 good Nameserver
A	Good: All SOA have the same Serial Number
	Warning: No CAA entry with issue/issuewild found, every CAA can create a certificate. Read https://en.wikipedia.org/wiki/DNS_Certification_Authority_Authorization to learn some basics about the idea of CAA. Your name server must support such an entry. Not all dns providers support CAA entries.
	4. Content- and Performance-critical Checks
A	Good: All checks /.well-known/acme-challenge/random-filename without redirects answer with the expected http status 404 - Not Found. Creating a Letsencrypt certificate via http-01 challenge should work. If it doesn't work: Check your vHost configuration (apachectl -S, httpd -S, nginx -T). Every combination of port and ServerName / ServerAlias (Apache) or Server (Nginx) must be unique. Merge duplicated entries in one vHost. If you use an IIS, extensionless files must be allowed in the /.well-known/acme-challenge subdirectory. Create a web.config in that directory. Content: <configuration><system.webServer><staticContent><mimeMap fileExtension="." mimeType="text/plain" /></staticContent></system.webServer></configuration>. If you have a redirect http ⇒ https, that's ok, Letsencrypt follows such redirects to port 80 / 443 (same or other server). There must be a certificate. But the certificate may be expired, self signed or with a not matching domain name. Checking the validation file Letsencrypt ignores such certificate errors. Trouble creating a certificate? Use https://community.letsencrypt.org/ to ask.
	https://www.priceline.com/ 104.18.24.202	403		Critical: Some script Elements (type text/javascript) with a src-Attribute don't have a defer / async - Attribute. Loading and executing these JavaScripts blocks parsing and rendering the Html-Output. That's bad if your site is large or the connection is slow / mobile usage. Use "async" if the js file has only functions (so nothing is executed after parsing the file) or is independend. Use "defer" if the order of the scripts is important. All "defer" scripts are executed before the DOMContentLoaded event is fired. Check https://developer.mozilla.org/en-US/docs/Web/HTML/Element/script to see some details.: 2 script elements without defer/async.
	https://www.priceline.com/ 104.18.25.202	403		Critical: Some script Elements (type text/javascript) with a src-Attribute don't have a defer / async - Attribute. Loading and executing these JavaScripts blocks parsing and rendering the Html-Output. That's bad if your site is large or the connection is slow / mobile usage. Use "async" if the js file has only functions (so nothing is executed after parsing the file) or is independend. Use "defer" if the order of the scripts is important. All "defer" scripts are executed before the DOMContentLoaded event is fired. Check https://developer.mozilla.org/en-US/docs/Web/HTML/Element/script to see some details.: 2 script elements without defer/async.
A	Good: All CSS / JavaScript files are sent compressed (gzip, deflate, br checked). That reduces the content of the files. 4 external CSS / JavaScript files found
A	Good: All images with internal compression not compressed. Some Images (.png, .jpg, .jpeg, .webp, .gif) are already compressed, so an additional compression isn't helpful. 1 images (type image/png, image/jpg, image/jpeg, image/webp, image/gif) found without additional Compression. Not required because these images are already compressed
	Warning: CSS / JavaScript files with a missing or too short Cache-Control header found. Browsers should cache and re-use these files. 0 external CSS / JavaScript files without Cache-Control-Header, 0 with Cache-Control, but no max-age, 6 with Cache-Control max-age too short (minimum 7 days), 0 with Cache-Control long enough, 6 complete.
	Warning: Images with a missing or too short Cache-Control header found. Browsers should cache and re-use these files. 0 image files without Cache-Control-Header, 0 with Cache-Control, but no max-age, 1 with Cache-Control max-age too short (minimum 7 days), 0 with Cache-Control long enough, 1 complete.
A	Good: All checked attribute values are enclosed in quotation marks (" or ').
A	Good: All img-elements have a valid alt-attribute.: 1 img-elements found.
A	Good: Domainname is not on the "Specially Designated Nationals And Blocked Persons List" (SDN). That's an US-list of individuals and companies owned or controlled by, or acting for or on behalf of, targeted countries. It also lists individuals, groups, and entities, such as terrorists and narcotics traffickers designated under programs that are not country-specific. Collectively, such individuals and companies are called "Specially Designated Nationals" or "SDNs." Their assets are blocked and U.S. persons are generally prohibited from dealing with them. So if a domain name is on that list, it's impossible to create a Letsencrypt certificate with that domain name. Check the list manual - https://www.treasury.gov/resource-center/sanctions/sdn-list/pages/default.aspx
	https://www.priceline.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	404	3.393 seconds	Warning: 404 needs more then one second
A	Info: Different Server-Headers found
A	Duration: 282960 milliseconds, 282.960 seconds

8. Connections

Domain

Port

Cert.

Protocol

KeyExchange

Strength

Cipher

Strength

HashAlgorithm

OCSP stapling

Domain/KeyExchange

IP/Strength

Port/Cipher

Cert./Strength

Protocol/HashAlgorithm

OCSP stapling

priceline.com

151.101.2.186

443

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

supported

priceline.com

151.101.2.186

443

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

supported

http/2 via ALPN supported
No SNI required - domain included in main certificate

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported
No SNI required - domain included in main certificate

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

priceline.com

151.101.66.186

443

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

supported

priceline.com

151.101.66.186

443

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

supported

http/2 via ALPN supported
No SNI required - domain included in main certificate

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported
No SNI required - domain included in main certificate

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

priceline.com

151.101.130.186

443

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

supported

priceline.com

151.101.130.186

443

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

supported

http/2 via ALPN supported
No SNI required - domain included in main certificate

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported
No SNI required - domain included in main certificate

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

priceline.com

151.101.194.186

443

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

supported

priceline.com

151.101.194.186

443

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

supported

http/2 via ALPN supported
No SNI required - domain included in main certificate

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported
No SNI required - domain included in main certificate

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

www.priceline.com

104.18.24.202

443

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

supported

www.priceline.com

104.18.24.202

443

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

supported

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=*.priceline.com, O=Priceline.com LLC, L=Norwalk, C=US, ST=Connecticut
	2	CN=GeoTrust TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US

www.priceline.com

104.18.25.202

443

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

supported

www.priceline.com

104.18.25.202

443

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

supported

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=*.priceline.com, O=Priceline.com LLC, L=Norwalk, C=US, ST=Connecticut
	2	CN=GeoTrust TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US

priceline.com

443

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

supported

priceline.com

443

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

supported

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

www.priceline.com

443

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

supported

www.priceline.com

443

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

supported

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=*.priceline.com, O=Priceline.com LLC, L=Norwalk, C=US, ST=Connecticut
	2	CN=GeoTrust TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US

151.101.2.186

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

supported

151.101.2.186

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

supported

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

151.101.66.186

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

supported

151.101.66.186

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

supported

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

151.101.130.186

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

supported

151.101.130.186

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

supported

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

151.101.194.186

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

supported

151.101.194.186

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

supported

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

9. Certificates

CN=www.priceline.com

27.09.2024

29.10.2025
expires in 129 days

www.priceline.com, *.pclncdn.com, *.priceline.com, pclncdn.com, priceline.com - 5 entries

CN=www.priceline.com

27.09.2024

29.10.2025
expires in 129 days

www.priceline.com, *.pclncdn.com, *.priceline.com, pclncdn.com, priceline.com - 5 entries

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	01F1919EF1693B547F1B2CA0E1350369
Thumbprint:	C5B731FE5DC15B6BEABCE24B408A150736586B8D
SHA256 / Certificate:	2sT6O4Wp/CHm6JpfnIWSx4nwwWiqGx7FiTI3oRYpYJw=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	a99fd573e6ffadfc66237a6fbc0718850cdc0b9e29d39384221ffe2d8b50e9df
SHA256 hex / Subject Public Key Information (SPKI):	a99fd573e6ffadfc66237a6fbc0718850cdc0b9e29d39384221ffe2d8b50e9df (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:	http://ocsp.globalsign.com/ca/gsatlasr3dvtlsca2024q3
OCSP - must staple:	no
Certificate Transparency:	yes
Enhanced Key Usage:	Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)

CN=GlobalSign Atlas R3 DV TLS CA 2024 Q3, O=GlobalSign nv-sa, C=BE

17.04.2024

17.04.2026
expires in 299 days

CN=GlobalSign Atlas R3 DV TLS CA 2024 Q3, O=GlobalSign nv-sa, C=BE

17.04.2024

17.04.2026
expires in 299 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	0080E56AC5E23D4BAFC30E257C9702B7FF
Thumbprint:	9CA78B9F6B56DB20E9AADF380891410FC979FD1D
SHA256 / Certificate:	XwxjNtMYvQtG4YMlFJczYMmCkwH0ukKkAqU6WpQhYg4=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	253ae9b745e1020f55e06c26b0186fc2438550f070aadb40cd0bd0fe16c81e17
SHA256 hex / Subject Public Key Information (SPKI):
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:	http://ocsp2.globalsign.com/rootr3
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:	Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)

CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R3

18.03.2009

18.03.2029
expires in 1365 days

CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R3

18.03.2009

18.03.2029
expires in 1365 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	04000000000121585308A2
Thumbprint:	D69B561148F01C77C54578C10926DF5B856976AD
SHA256 / Certificate:	y7Ui17fxJ61qAROGW98c1BAufQdZr2NafPRyDcljxTs=
SHA256 hex / Cert (DANE * 0 1):	cbb522d7b7f127ad6a0113865bdf1cd4102e7d0759af635a7cf4720dc963c53b
SHA256 hex / PublicKey (DANE * 1 1):	706bb1017c855c59169bad5c1781cf597f12d2cad2f63d1a4aa37493800ffb80
SHA256 hex / Subject Public Key Information (SPKI):	706bb1017c855c59169bad5c1781cf597f12d2cad2f63d1a4aa37493800ffb80
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

CN=*.priceline.com, O=Priceline.com LLC, L=Norwalk, S=Connecticut, C=US

26.02.2025

30.03.2026
expires in 281 days

*.priceline.com, priceline.com - 2 entries

CN=*.priceline.com, O=Priceline.com LLC, L=Norwalk, S=Connecticut, C=US

26.02.2025

30.03.2026
expires in 281 days

*.priceline.com, priceline.com - 2 entries

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	0E179A83316A5652EE0CDAA7C0D959C0
Thumbprint:	1F63E219064465530DE38A74150B657B572A8B4D
SHA256 / Certificate:	AcqCrvnToEw/W+vVT0kc4c6IeAg2/gMEmBPCYLn2mSo=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	0324bb90849fda48f5118b19bb4f8c63dcbffe15029eb2aeb149edaea8ffed2a
SHA256 hex / Subject Public Key Information (SPKI):	0324bb90849fda48f5118b19bb4f8c63dcbffe15029eb2aeb149edaea8ffed2a (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:	http://status.geotrust.com
OCSP - must staple:	no
Certificate Transparency:	yes
Enhanced Key Usage:	Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)

CN=GeoTrust TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US

02.11.2017

02.11.2027
expires in 863 days

CN=GeoTrust TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US

02.11.2017

02.11.2027
expires in 863 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	0D07782A133FC6F9A57296E131FFD179
Thumbprint:	8B3C5B9B867D4BE46D1CB5A01D45D67DC8E94082
SHA256 / Certificate:	wG4wf3z8HTL6cqTAM8h7kAGa8hbwd11kl4ouymyKIw4=
SHA256 hex / Cert (DANE * 0 1):	c06e307f7cfc1d32fa72a4c033c87b90019af216f0775d64978a2eca6c8a230e
SHA256 hex / PublicKey (DANE * 1 1):	4831b9a2b12ff225fa30d7a7200c5af2740536944e07febe965b197571d936ab
SHA256 hex / Subject Public Key Information (SPKI):	4831b9a2b12ff225fa30d7a7200c5af2740536944e07febe965b197571d936ab
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:	http://ocsp.digicert.com
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:	Server Authentication (1.3.6.1.5.5.7.3.1), Client Authentication (1.3.6.1.5.5.7.3.2)

CN=DigiCert Global Root G2, OU=www.digicert.com, O=DigiCert Inc, C=US

01.08.2013

15.01.2038
expires in 4590 days

CN=DigiCert Global Root G2, OU=www.digicert.com, O=DigiCert Inc, C=US

01.08.2013

15.01.2038
expires in 4590 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	033AF1E6A711A9A0BB2864B11D09FAE5
Thumbprint:	DF3C24F9BFD666761B268073FE06D1CC8D4F82A4
SHA256 / Certificate:	yzzLt2Ax5eATj43TmiP53kf/w15DwRRM6ifUalqxy18=
SHA256 hex / Cert (DANE * 0 1):	cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f
SHA256 hex / PublicKey (DANE * 1 1):	8bb593a93be1d0e8a822bb887c547890c3e706aad2dab76254f97fb36b82fc26
SHA256 hex / Subject Public Key Information (SPKI):	8bb593a93be1d0e8a822bb887c547890c3e706aad2dab76254f97fb36b82fc26
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

10. Last Certificates - Certificate Transparency Log Check

1. Source CertSpotter - active certificates (one check per day)

Issuer				last 7 days	active	num Certs
CN=GeoTrust TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US				0	1	2
CN=GlobalSign Atlas R3 DV TLS CA 2024 Q3, O=GlobalSign nv-sa, C=BE				0	1	1
CN=GlobalSign Atlas R3 DV TLS CA 2022 Q1, O=GlobalSign nv-sa, C=BE				0	0	1
CN=GlobalSign Atlas R3 DV TLS CA 2022 Q4, O=GlobalSign nv-sa, C=BE				0	0	1

CertSpotter-Id	Issuer	not before	not after	Domain names	LE-Duplicate	next LE
9633886554 leaf cert	CN=GeoTrust TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US	2025-02-26 00:00:00	2026-03-29 23:59:59	*.priceline.com, priceline.com - 2 entries
8275384065 leaf cert	CN=GlobalSign Atlas R3 DV TLS CA 2024 Q3, O=GlobalSign nv-sa, C=BE	2024-09-27 11:03:19	2025-10-29 11:03:18	.pclncdn.com, .priceline.com, pclncdn.com, priceline.com, www.priceline.com - 5 entries
4379750671 precert	CN=GlobalSign Atlas R3 DV TLS CA 2022 Q4, O=GlobalSign nv-sa, C=BE	2022-11-04 15:42:31	2023-12-06 15:42:30	.pclncdn.com, .priceline.com, pclncdn.com, priceline.com, www.priceline.com - 5 entries
3403690986 precert	CN=GeoTrust TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US	2022-02-07 00:00:00	2023-03-10 23:59:59	*.priceline.com, priceline.com - 2 entries
3374456291 precert	CN=GlobalSign Atlas R3 DV TLS CA 2022 Q1, O=GlobalSign nv-sa, C=BE	2022-01-31 14:47:28	2023-03-04 14:47:27	.pclncdn.com, .priceline.com, pclncdn.com, priceline.com, www.priceline.com - 5 entries

2. Source crt.sh - old and new certificates, sometimes very slow - only certificates with "not after" > of the last months are listed

Issuer				last 7 days	active	num Certs
CN=GlobalSign Atlas R3 DV TLS CA 2024 Q3, O=GlobalSign nv-sa, C=BE				0	1	1
CN=GeoTrust TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US				0	0	1
CN=GlobalSign Atlas R3 DV TLS CA 2022 Q4, O=GlobalSign nv-sa, C=BE				0	0	1

CRT-Id	Issuer	not before	not after	Domain names	LE-Duplicate	next LE
15072551079 leaf cert	CN=GlobalSign Atlas R3 DV TLS CA 2024 Q3, O=GlobalSign nv-sa, C=BE	2024-09-27 09:03:19	2025-10-29 10:03:18	.pclncdn.com, .priceline.com, pclncdn.com, priceline.com, www.priceline.com 5 entries
16445826634 leaf cert	CN=GeoTrust TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US	2024-02-25 23:00:00	2025-03-28 22:59:59	*.priceline.com, priceline.com 2 entries
7902273935 precert	CN=GlobalSign Atlas R3 DV TLS CA 2022 Q4, O=GlobalSign nv-sa, C=BE	2022-11-04 14:42:31	2023-12-06 14:42:30	.pclncdn.com, .priceline.com, pclncdn.com, priceline.com, www.priceline.com 5 entries

11. Html-Content - Entries

Summary

							Subresource Integrity (SRI)
Domainname	HtmlElement	rel/property	∑	∑ size	∑ problems	∑ int.	∑ ext.	∑ Origin poss.	∑ SRI ParseErrors	∑ SRI valid	∑ SRI missing
https://www.priceline.com/ 104.18.24.202	a		1		0			0	0	0
	link	stylesheet	1	585 Bytes	0	0	1	1	0	0	-1
	meta	other	2		0			0	0	0
	script		2	364,853 Bytes	1	1	1	1	0	0	-1
https://www.priceline.com/ 104.18.25.202	a		1		0			0	0	0
	link	stylesheet	1	585 Bytes	0	0	1	1	0	0	-1
	meta	other	2		0			0	0	0
	script		2	364,201 Bytes	1	1	1	1	0	0	-1

Details (currently limited to 500 rows - some problems with spam users)

Domainname	Html-Element	name/equiv/ property/rel	href/src/content	HttpStatus	∑	Status
https://www.priceline.com/ 104.18.24.202	a		https://www.priceline.com/				1	ok
								ok


	link	stylesheet	https://fonts.googleapis.com/css?family=Montserrat:500,700		200		1	ok
				text/css; charset=utf-8 X-Content-Type-Options nosniff found				ok
				Compression (gzip): 585/3634 Bytes
	Server-Header Access-Control-Allow-Origin: *			Cross-Origin Resource Sharing (CORS) supported
	missing crossorigin=anonymous\|use-credentials and integrity - attribute, possible hash-values: sha256-LL4qov4y2fwSFdpFDRnGyvVh8YzoEH/3wHlzGnOYlVo= sha384-lpEsfVjPSgZebbSVIoLdOx+ijm251Dt8T3Xi4FKkkD0untuApCGBZvHge91ebS7K sha512-NhAFKxQYEt2xBzv7wFDz7Bz+jDplQGyqfBtbCkVyRm9wFKf5sCy54doHnc1WocAa7IMBmSuBnN3Gu+adtMQ4iw== <link rel="stylesheet" href="https://fonts.googleapis.com/css?family=Montserrat:500,700" crossorigin="anonymous" integrity="sha256-LL4qov4y2fwSFdpFDRnGyvVh8YzoEH/3wHlzGnOYlVo=" />

	meta	charset	utf-8				1	ok
								ok


	meta	viewport	width=device-width, initial-scale=1				1	ok
								ok


	script				200		1	ok
	Missing defer / async attribute.			text/html; charset=utf-8 missing X-Content-Type-Options nosniff				ok
	Cache-Control: no-store, must-revalidate, no-cache, max-age=0, private - max-age too short.			103589 Bytes
	local SRI possible, possible hash-values: sha256-Bj0Z/Tg3qjH0EqeyDg8MzAvl7gZa/39gEx1DpCbmYTY= sha384-aGK23QYhyyUZ3UaAQzDLsHPEx8PL1+Xx416jkUzZ18atwsdTPgQpWc3tjbLtckMO sha512-ihzjhHTv4xPam7qiqL5drBAO8wvoqc+COPd8rM6cpCD0dj9pz5MufNj6pPsOIS89sBX2LR2SCyZPAy1iW30Qdg== <script crossorigin="anonymous" integrity="sha256-Bj0Z/Tg3qjH0EqeyDg8MzAvl7gZa/39gEx1DpCbmYTY=" />

	script	src	//captcha.perimeterx.net/PX9aTjSd0n/captcha.js?a=c&u=13a1dc16-455d-11f0-8b27-540064e08168&v=&m=0		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript; charset=UTF-8 missing X-Content-Type-Options nosniff		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: max-age=600 - max-age too short.			Compression (gzip): 261264/567771 Bytes
	ETag: "9a974743f0dc55a92b6bf68a80571876"
	Server-Header Access-Control-Allow-Origin: *			Cross-Origin Resource Sharing (CORS) supported
	missing crossorigin=anonymous\|use-credentials and integrity - attribute, possible hash-values: sha256-3vlhefWlXf4FZCAEuEKnZHnp2c1wsnyX6Py4HBd40Ec= sha384-2IceMIysoL5SpvsGaztGB7bs5DpS7BsorlYx94VIoAUG4x0XKSsKGhnek9CZYRjI sha512-arVLqelqXqWR9xHxpdAXM8bzWQyOF2Hu/cCpao/NGjK7+TaWZ7oAtXpNyeuIUWHQuszKyLzOqBppdzoH37XyKg== <script src="//captcha.perimeterx.net/PX9aTjSd0n/captcha.js?a=c&u=13a1dc16-455d-11f0-8b27-540064e08168&v=&m=0" crossorigin="anonymous" integrity="sha256-3vlhefWlXf4FZCAEuEKnZHnp2c1wsnyX6Py4HBd40Ec=" />

104.18.25.202	a		https://www.priceline.com/				1	ok
								ok


	link	stylesheet	https://fonts.googleapis.com/css?family=Montserrat:500,700		200		1	ok
				text/css; charset=utf-8 X-Content-Type-Options nosniff found				ok
				Compression (gzip): 585/3634 Bytes
	Server-Header Access-Control-Allow-Origin: *			Cross-Origin Resource Sharing (CORS) supported
	missing crossorigin=anonymous\|use-credentials and integrity - attribute, possible hash-values: sha256-LL4qov4y2fwSFdpFDRnGyvVh8YzoEH/3wHlzGnOYlVo= sha384-lpEsfVjPSgZebbSVIoLdOx+ijm251Dt8T3Xi4FKkkD0untuApCGBZvHge91ebS7K sha512-NhAFKxQYEt2xBzv7wFDz7Bz+jDplQGyqfBtbCkVyRm9wFKf5sCy54doHnc1WocAa7IMBmSuBnN3Gu+adtMQ4iw== <link rel="stylesheet" href="https://fonts.googleapis.com/css?family=Montserrat:500,700" crossorigin="anonymous" integrity="sha256-LL4qov4y2fwSFdpFDRnGyvVh8YzoEH/3wHlzGnOYlVo=" />

	meta	charset	utf-8				1	ok
								ok


	meta	viewport	width=device-width, initial-scale=1				1	ok
								ok


	script				200		1	ok
	Missing defer / async attribute.			text/html; charset=utf-8 missing X-Content-Type-Options nosniff				ok
	Cache-Control: no-store, must-revalidate, no-cache, max-age=0, private - max-age too short.			102937 Bytes
	local SRI possible, possible hash-values: sha256-SVECSfv1Dcg1Kph4rarNNnMJrYmYF8Q0yJpucz/sN2I= sha384-JFSf2/vxU8k8aDzFp1402Fw7CHbubGph8xSzUfGOAcXEemldH1mwksp8i3UFgWk6 sha512-esXb1bK5zw59dY6X/WnZirDB+NYNeDmcoK0tZ522YepXGqxVnCk1CA4AVUF6P44kKSVPevqAaYGx0qsS8WIycg== <script crossorigin="anonymous" integrity="sha256-SVECSfv1Dcg1Kph4rarNNnMJrYmYF8Q0yJpucz/sN2I=" />

	script	src	//captcha.perimeterx.net/PX9aTjSd0n/captcha.js?a=c&u=17485e6c-455d-11f0-8c88-a272e07dd773&v=&m=0		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript; charset=UTF-8 missing X-Content-Type-Options nosniff		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: max-age=600 - max-age too short.			Compression (gzip): 261264/567771 Bytes
	ETag: "9a974743f0dc55a92b6bf68a80571876"
	Server-Header Access-Control-Allow-Origin: *			Cross-Origin Resource Sharing (CORS) supported
	missing crossorigin=anonymous\|use-credentials and integrity - attribute, possible hash-values: sha256-3vlhefWlXf4FZCAEuEKnZHnp2c1wsnyX6Py4HBd40Ec= sha384-2IceMIysoL5SpvsGaztGB7bs5DpS7BsorlYx94VIoAUG4x0XKSsKGhnek9CZYRjI sha512-arVLqelqXqWR9xHxpdAXM8bzWQyOF2Hu/cCpao/NGjK7+TaWZ7oAtXpNyeuIUWHQuszKyLzOqBppdzoH37XyKg== <script src="//captcha.perimeterx.net/PX9aTjSd0n/captcha.js?a=c&u=17485e6c-455d-11f0-8c88-a272e07dd773&v=&m=0" crossorigin="anonymous" integrity="sha256-3vlhefWlXf4FZCAEuEKnZHnp2c1wsnyX6Py4HBd40Ec=" />

12. Html-Parsing via https://validator.w3.org/nu/

No https result http status 200 and Content-Type text/html or text/xml found, no Html-Parsing - Check

13. Nameserver - IP-Adresses

Required Root-climbing DNS-Queries to find ip addresses of all Name Servers: dns1.p09.nsone.net, dns2.p09.nsone.net, dns3.p09.nsone.net, dns4.p09.nsone.net

QNr.	Domain	Type	NS used
1	net	NS	d.root-servers.net (2001:500:2d::d)
	Answer: a.gtld-servers.net, b.gtld-servers.net, c.gtld-servers.net, d.gtld-servers.net, e.gtld-servers.net, f.gtld-servers.net, g.gtld-servers.net, h.gtld-servers.net, i.gtld-servers.net, j.gtld-servers.net, k.gtld-servers.net, l.gtld-servers.net, m.gtld-servers.net
2	dns1.p09.nsone.net	NS	a.gtld-servers.net (2001:503:a83e::2:30)
	Answer: dns1.p01.nsone.net, dns2.p01.nsone.net, dns3.p01.nsone.net, dns4.p01.nsone.net
	Answer: dns1.p01.nsone.net 198.51.44.1, 2620:4d:4000:6259:7:1:0:1
	Answer: dns2.p01.nsone.net 198.51.45.1, 2a00:edc0:6259:7:1::2
	Answer: dns3.p01.nsone.net 198.51.44.65, 2620:4d:4000:6259:7:1:0:3
	Answer: dns4.p01.nsone.net 198.51.45.65, 2a00:edc0:6259:7:1::4
3	dns2.p09.nsone.net	NS	a.gtld-servers.net (2001:503:a83e::2:30)
	Answer: dns1.p01.nsone.net, dns2.p01.nsone.net, dns3.p01.nsone.net, dns4.p01.nsone.net
	Answer: dns1.p01.nsone.net 198.51.44.1, 2620:4d:4000:6259:7:1:0:1
	Answer: dns2.p01.nsone.net 198.51.45.1, 2a00:edc0:6259:7:1::2
	Answer: dns3.p01.nsone.net 198.51.44.65, 2620:4d:4000:6259:7:1:0:3
	Answer: dns4.p01.nsone.net 198.51.45.65, 2a00:edc0:6259:7:1::4
4	dns3.p09.nsone.net	NS	a.gtld-servers.net (2001:503:a83e::2:30)
	Answer: dns1.p01.nsone.net, dns2.p01.nsone.net, dns3.p01.nsone.net, dns4.p01.nsone.net
	Answer: dns1.p01.nsone.net 198.51.44.1, 2620:4d:4000:6259:7:1:0:1
	Answer: dns2.p01.nsone.net 198.51.45.1, 2a00:edc0:6259:7:1::2
	Answer: dns3.p01.nsone.net 198.51.44.65, 2620:4d:4000:6259:7:1:0:3
	Answer: dns4.p01.nsone.net 198.51.45.65, 2a00:edc0:6259:7:1::4
5	dns4.p09.nsone.net	NS	a.gtld-servers.net (2001:503:a83e::2:30)
	Answer: dns1.p01.nsone.net, dns2.p01.nsone.net, dns3.p01.nsone.net, dns4.p01.nsone.net
	Answer: dns1.p01.nsone.net 198.51.44.1, 2620:4d:4000:6259:7:1:0:1
	Answer: dns2.p01.nsone.net 198.51.45.1, 2a00:edc0:6259:7:1::2
	Answer: dns3.p01.nsone.net 198.51.44.65, 2620:4d:4000:6259:7:1:0:3
	Answer: dns4.p01.nsone.net 198.51.45.65, 2a00:edc0:6259:7:1::4
6	dns1.p09.nsone.net: 198.51.44.9	A	dns1.p01.nsone.net (2620:4d:4000:6259:7:1:0:1)
7	dns1.p09.nsone.net: 2620:4d:4000:6259:7:9:0:1	AAAA	dns1.p01.nsone.net (2620:4d:4000:6259:7:1:0:1)
8	dns2.p09.nsone.net: 198.51.45.9	A	dns1.p01.nsone.net (2620:4d:4000:6259:7:1:0:1)
9	dns2.p09.nsone.net: 2a00:edc0:6259:7:9::2	AAAA	dns1.p01.nsone.net (2620:4d:4000:6259:7:1:0:1)
10	dns3.p09.nsone.net: 198.51.44.73	A	dns1.p01.nsone.net (2620:4d:4000:6259:7:1:0:1)
11	dns3.p09.nsone.net: 2620:4d:4000:6259:7:9:0:3	AAAA	dns1.p01.nsone.net (2620:4d:4000:6259:7:1:0:1)
12	dns4.p09.nsone.net: 198.51.45.73	A	dns1.p01.nsone.net (2620:4d:4000:6259:7:1:0:1)
13	dns4.p09.nsone.net: 2a00:edc0:6259:7:9::4	AAAA	dns1.p01.nsone.net (2620:4d:4000:6259:7:1:0:1)

14. CAA - Entries

Domainname	flag	Value	∑ Queries
www.priceline.com.cdn.cloudflare.net	0	no CAA entry found	1
priceline.com.cdn.cloudflare.net	0	no CAA entry found	1
com.cdn.cloudflare.net	0	no CAA entry found	1
cdn.cloudflare.net	0	no CAA entry found	1
www.priceline.com			1
cloudflare.net	0	no CAA entry found	1
priceline.com	0	no CAA entry found	1
com	0	no CAA entry found	1
net	0	no CAA entry found	1

15. TXT - Entries

Domainname	TXT Entry	Status	∑ Queries
priceline.com	_globalsign-domain-verification=_DTYj9iKqf__nkPpBwjJVg_9CzDcJKUBoxIJO9EYF_	ok	1
priceline.com	_globalsign-domain-verification=IG4UdrI9gc_SVSE132aTagdWhxkvONdbIBhHhhcMlP	ok	1
priceline.com	_globalsign-domain-verification=pM4waB1d-vwp7nQSwWBrzKIDDeSCHMtyojFZnW37S8	ok	1
priceline.com	adobe-idp-site-verification=f4d7d106b08f3d43656b490aab93912b27cfa252306e75e1051dce0e89d3b044	ok	1
priceline.com	apple-domain-verification=OCfaeQUuKDDImtbX	ok	1
priceline.com	atlassian-domain-verification=Wx6HsTNGfCzO15kBSyKijXn7rzM5g4Mh6Fw07IFADOCob4Z+dKDAopr2DV0nXmbD	ok	1
priceline.com	DirectFedAuthUrl=https://priceline.okta.com/app/priceline_verintsamlscimnew_1/exkzgiwvqeoJHGiYL1t7/sso/saml	ok	1
priceline.com	docker-verification=aa3612ef-e974-4bcd-934f-2408011cabcd	ok	1
priceline.com	docusign=1296c554-1adb-41e9-b7db-4f3777be9829	ok	1
priceline.com	docusign=1bb6e18c-cccf-4592-8c1d-6190f06df776	ok	1
priceline.com	facebook-domain-verification=t0l95cn2rpykm95vayz64iuqbv004c	ok	1
priceline.com	fastly-domain-delegation-827472-2024114	ok	1
priceline.com	globalsign-domain-verification=TQFwNXX-22Rp3iu0w0iSSZOGHlgyojpElPrhqwzgaH	ok	1
priceline.com	google-site-verification=JJNkX77nL6dAMVuls-zpKHgO8rvnpaDyQuAJl5BWiYk	ok	1
priceline.com	google-site-verification=OLMej70fs5Zqkd78hQ4IGoWUru-uX4g3BEtkFM4Bmv0	ok	1
priceline.com	jamf-site-verification=6DkQKYNnxowLiNP5gmcmmg	ok	1
priceline.com	miro-verification=1103909054ca605b0d9ef52258e1020d38d0001c	ok	1
priceline.com	mongodb-site-verification=8HmFGrXgplpfzF5FONcuSO8KVeq3Re3q	ok	1
priceline.com	mongodb-site-verification=GE62R7AkMx396fwhSZKpFwyzL6Ool2Xd	ok	1
priceline.com	MS=ms81463263	ok	1
priceline.com	new-relic-domain-verification=2d57dc35b8f24f7a84ef8f92fc286ba0	ok	1
priceline.com	NVI3tENK5r3UPDEBODCkGN+My3QG4Mk5P4qxw767Mp0Gmw/ZY8meARdn978W+zeDSA/YvY5S4aviBz3BNYES1A==	ok	1
priceline.com	onetrust-domain-verification=ba4577c363b94ff78ef385a0f256b910	ok	1
priceline.com	onetrust-domain-verification=c6d4986cf1cb47698374f9a05f7d5bb0	ok	1
priceline.com	openai-domain-verification=dv-3oKtXm0suEtU14GqMjks7IXh	ok	1
priceline.com	openai-domain-verification=dv-Lc2tAhXoJcG5UGBsqdwP9Ci1	ok	1
priceline.com	smartsheet-site-validation=3cXV1QdzwZSNB626WE2_--zhCF38CRoD	ok	1
priceline.com	v=spf1 include:priceline-spf.priceline.com include:priceline-sendgrid.priceline.com include:priceline-sendgrid1.priceline.com include:_spf.atlassian.net include:_spf.google.com include:7304094.spf08.hubspotemail.net ip4:66.159.248.25 ip4:66.159.239.250 ~a ll	ok	1
www.priceline.com			1
_acme-challenge.priceline.com			1
_acme-challenge.www.priceline.com		Name Error - The domain name does not exist	1
www.priceline.com.cdn.cloudflare.net		ok	1
_acme-challenge.priceline.com.priceline.com		Name Error - The domain name does not exist	1
_acme-challenge.www.priceline.com.priceline.com		Name Error - The domain name does not exist	1
_acme-challenge.www.priceline.com.www.priceline.com		Name Error - The domain name does not exist	1
_acme-challenge.www.priceline.com.cdn.cloudflare.net		missing entry or wrong length	1
_acme-challenge.www.priceline.com.cdn.cloudflare.net.priceline.com.cdn.cloudflare.net		perhaps wrong	1
_acme-challenge.www.priceline.com.cdn.cloudflare.net.www.priceline.com.cdn.cloudflare.net		perhaps wrong	1

16. DomainService - Entries

Type		Domain	Pref	Value	DNS-error	num Answers	Status
MX		priceline.com	10	mxa-001adf01.gslb.pphosted.com	0	2	ok
	A			66.159.239.250	0	1	ok
	CNAME				0	0	ok
MX		priceline.com	10	mxb-001adf01.gslb.pphosted.com	0	2	ok
	A			66.159.239.250	0	1	ok
	CNAME				0	0	ok
SPF	TXT	priceline.com		v=spf1 include:priceline-spf.priceline.com include:priceline-sendgrid.priceline.com include:priceline-sendgrid1.priceline.com include:_spf.atlassian.net include:_spf.google.com include:7304094.spf08.hubspotemail.net ip4:66.159.248.25 ip4:66.159.239.250 ~all			ok
	TXT	priceline-spf.priceline.com		v=spf1 ip4:64.6.30.30/32 ip4:64.6.23.104/32 -all			ok
	TXT	priceline-sendgrid.priceline.com		v=spf1 ip4:208.115.214.0/24 ip4:74.63.202.0/24 ip4:75.126.200.128/27 ip4:75.126.253.0/24 ip4:67.228.50.32/27 ip4:174.36.80.208/28 ip4:174.36.92.96/27 ip4:69.162.98.0/24 ip4:74.63.194.0/24 ip4:74.63.234.0/24 -all			ok
	TXT	priceline-sendgrid1.priceline.com		v=spf1 ip4:74.63.235.0/24 ip4:192.254.116.89/32 ip4:208.117.56.98/32 ip4:208.117.57.101/32 ip4:208.117.57.106/32 ip4:208.117.57.112/32 ip4:208.117.57.117/32 -all			ok
	TXT	_spf.atlassian.net		v=spf1 ip4:167.89.0.0/17 ip4:168.245.0.0/17 include:amazonses.com -all			ok
	TXT	_spf.google.com		v=spf1 include:_netblocks.google.com include:_netblocks2.google.com include:_netblocks3.google.com ~all			ok
	TXT	7304094.spf08.hubspotemail.net		v=spf1 ip4:3.93.157.0/24 ip4:3.210.190.0/24 ip4:18.208.124.128/25 ip4:54.174.52.0/24 ip4:54.174.57.0/24 ip4:54.174.59.0/24 ip4:54.174.60.0/23 ip4:54.174.63.0/24 ip4:108.179.144.0/20 ip4:139.180.17.0/24 ip4:141.193.184.32/27 ip4:141.193.184.64/26 ip4:141.193.184.128/25 ip4:141.193.185.32/27 ip4:141.193.185.64/26 ip4:141.193.185.128/25 ip4:143.244.80.0/20 ip4:158.247.16.0/20 ip4:216.139.64.0/19 -all			ok
	TXT	amazonses.com		v=spf1 ip4:199.255.192.0/22 ip4:199.127.232.0/22 ip4:54.240.0.0/18 ip4:69.169.224.0/20 ip4:23.249.208.0/20 ip4:23.251.224.0/19 ip4:76.223.176.0/20 ip4:54.240.64.0/18 ip4:76.223.128.0/19 ip4:216.221.160.0/19 ip4:206.55.144.0/20 ip4:24.110.64.0/18 -all			ok
	TXT	_netblocks.google.com		v=spf1 ip4:64.233.160.0/19 ip4:66.102.0.0/20 ip4:66.249.80.0/20 ip4:72.14.192.0/18 ip4:74.125.0.0/16 ip4:108.177.8.0/21 ip4:173.194.0.0/16 ip4:209.85.128.0/17 ip4:216.58.192.0/19 ip4:216.239.32.0/19 ~all			ok
	TXT	_netblocks2.google.com		v=spf1 ip6:2001:4860:4000::/36 ip6:2404:6800:4000::/36 ip6:2607:f8b0:4000::/36 ip6:2800:3f0:4000::/36 ip6:2a00:1450:4000::/36 ip6:2c0f:fb50:4000::/36 ~all			ok
	TXT	_netblocks3.google.com		v=spf1 ip4:172.217.0.0/19 ip4:172.217.32.0/20 ip4:172.217.128.0/19 ip4:172.217.160.0/20 ip4:172.217.192.0/19 ip4:172.253.56.0/21 ip4:172.253.112.0/20 ip4:108.177.96.0/19 ip4:130.211.0.0/22 ~all			ok
_dmarc	TXT	_dmarc.priceline.com		v=DMARC1;p=quarantine;pct=100;rua=mailto:dmarcstats@priceline.com;ruf=mailto:dmarcmessages@priceline.com			ok

17. Cipher Suites

Skipped, CDN used or too many ip addresses

18. Portchecks

No open Ports <> 80 / 443 found, so no additional Ports checked.

Permalink: https://check-your-website.server-daten.de/?i=28acb3ab-a720-48a1-96bd-214b0d2f9c38

Last Result: https://check-your-website.server-daten.de/?q=priceline.com - 2025-06-09 20:08:02

Do you like this page? Support this tool, add a link on your page:

<a href="https://check-your-website.server-daten.de/?q=priceline.com" target="_blank">Check this Site: priceline.com</a>

Do you really want to support this project? Donate: Check-your-website, IBAN DE98 1001 0010 0575 2211 07, SWIFT/BIC PBNKDEFF, Euro

QR-Code of this page - https://check-your-website.server-daten.de/?d=priceline.com

Check DNS, Urls + Redirects, Certificates and Content of your Website

Older results

1. IP-Addresses

2. DNSSEC

3. Name Servers

4. SOA-Entries

5. Screenshots

Mobile- and other Chrome-Checks

6. Url-Checks

7. Comments

1. General Results, most used to calculate the result

2. Header-Checks

3. DNS- and NameServer - Checks

4. Content- and Performance-critical Checks

8. Connections

9. Certificates

10. Last Certificates - Certificate Transparency Log Check

1. Source CertSpotter - active certificates (one check per day)

2. Source crt.sh - old and new certificates, sometimes very slow - only certificates with "not after" > of the last months are listed

11. Html-Content - Entries

Summary

Details (currently limited to 500 rows - some problems with spam users)

12. Html-Parsing via https://validator.w3.org/nu/

13. Nameserver - IP-Adresses

14. CAA - Entries

15. TXT - Entries

16. DomainService - Entries

17. Cipher Suites

18. Portchecks