Check DNS, Urls + Redirects, Certificates and Content of your Website




1. IP-Addresses

HostTypeIP-Addressis auth.∑ Queries∑ Timeout
sriflix.xyz
A
103.224.182.210
Beaumaris/Victoria/Australia (AU) - TRELLIAN
Hostname: lb-182-210.above.com
yes
1
0

AAAA

yes


www.sriflix.xyz
A
103.224.182.210
Beaumaris/Victoria/Australia (AU) - TRELLIAN
Hostname: lb-182-210.above.com
yes
1
0

AAAA

yes


*.sriflix.xyz
A
Name Error
yes



AAAA
Name Error
yes



CNAME
Name Error
yes



2. DNSSEC

Zone (*)DNSSEC - Informations

Zone: (root)
(root)
1 DS RR published



DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest 4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=



Status: Valid because published



2 DNSKEY RR found



Public Key with Algorithm 8, KeyTag 20326, Flags 257 (SEP = Secure Entry Point)



Public Key with Algorithm 8, KeyTag 26838, Flags 256



1 RRSIG RR to validate DNSKEY RR found



RRSIG-Owner (root), Algorithm: 8, 0 Labels, original TTL: 172800 sec, Signature-expiration: 11.08.2021, 00:00:00 +, Signature-Inception: 21.07.2021, 00:00:00 +, KeyTag 20326, Signer-Name: (root)



Status: Good - Algorithmus 8 and DNSKEY with KeyTag 20326 used to validate the DNSKEY RRSet



Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest "4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: xyz
xyz
2 DS RR in the parent zone found



DS with Algorithm 8, KeyTag 3599, DigestType 1 and Digest P6OyZPRdtfOL7erxqIt2qjGMLH8=



DS with Algorithm 8, KeyTag 3599, DigestType 2 and Digest uXM4abyEyGu1nRArpdprJ7IIhVIzKjnc1UvE6NZrBJk=



1 RRSIG RR to validate DS RR found



RRSIG-Owner xyz., Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 09.08.2021, 17:00:00 +, Signature-Inception: 27.07.2021, 16:00:00 +, KeyTag 26838, Signer-Name: (root)



Status: Good - Algorithmus 8 and DNSKEY with KeyTag 26838 used to validate the DS RRSet in the parent zone



3 DNSKEY RR found



Public Key with Algorithm 8, KeyTag 3599, Flags 257 (SEP = Secure Entry Point)



Public Key with Algorithm 8, KeyTag 12736, Flags 256



Public Key with Algorithm 8, KeyTag 55854, Flags 256



1 RRSIG RR to validate DNSKEY RR found



RRSIG-Owner xyz., Algorithm: 8, 1 Labels, original TTL: 3600 sec, Signature-expiration: 25.08.2021, 13:29:07 +, Signature-Inception: 26.07.2021, 21:23:51 +, KeyTag 3599, Signer-Name: xyz



Status: Good - Algorithmus 8 and DNSKEY with KeyTag 3599 used to validate the DNSKEY RRSet



Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 3599, DigestType 1 and Digest "P6OyZPRdtfOL7erxqIt2qjGMLH8=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone



Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 3599, DigestType 2 and Digest "uXM4abyEyGu1nRArpdprJ7IIhVIzKjnc1UvE6NZrBJk=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: sriflix.xyz
sriflix.xyz
0 DS RR in the parent zone found



DS-Query in the parent zone has a valid NSEC3 RR as result with the hashed query name "ua41adl8phj84ioho042pclifa1eiv8p" between the hashed NSEC3-owner "ua3a8apiosiepr1v20c5j2hoapkga2aq" and the hashed NextOwner "ua4dlqhloc484tjmcup5ai7joaffc62m". So the parent zone confirmes the not-existence of a DS RR.
Bitmap: NS, DS, RRSIG Validated: RRSIG-Owner ua3a8apiosiepr1v20c5j2hoapkga2aq.xyz., Algorithm: 8, 2 Labels, original TTL: 3600 sec, Signature-expiration: 06.08.2021, 22:25:26 +, Signature-Inception: 08.07.2021, 04:49:14 +, KeyTag 12736, Signer-Name: xyz



DS-Query in the parent zone sends valid NSEC3 RR with the Hash "1h97h2oec2juov8dlbbjj6i7ik26bm8d" as Owner. That's the Hash of "xyz" with the NextHashedOwnerName "1h9sp7n22537r92kkg4dno5r90tmhmcq". So that domain name is the Closest Encloser of "sriflix.xyz". Opt-Out: True.
Bitmap: NS, SOA, RRSIG, DNSKEY, NSEC3PARAM Validated: RRSIG-Owner 1h97h2oec2juov8dlbbjj6i7ik26bm8d.xyz., Algorithm: 8, 2 Labels, original TTL: 3600 sec, Signature-expiration: 04.08.2021, 22:54:06 +, Signature-Inception: 05.07.2021, 14:16:53 +, KeyTag 12736, Signer-Name: xyz



0 DNSKEY RR found




Zone: www.sriflix.xyz
www.sriflix.xyz
0 DS RR in the parent zone found


3. Name Servers

DomainNameserverNS-IP
www.sriflix.xyz
  ns1.above.com / pns02-san


  ns2.above.com / pns03-san

sriflix.xyz
  170.ns1.above.com / pns01-san
103.224.182.5
Beaumaris/Victoria/Australia (AU) - TRELLIAN


 
103.224.212.5
Beaumaris/Victoria/Australia (AU) - TRELLIAN


  170.ns2.above.com / pns03-san
103.224.182.6
Beaumaris/Victoria/Australia (AU) - TRELLIAN


 
103.224.212.6
Beaumaris/Victoria/Australia (AU) - TRELLIAN


  ns1.above.com / pns01-san
103.224.182.5
Beaumaris/Victoria/Australia (AU) - TRELLIAN


 
103.224.212.5
Beaumaris/Victoria/Australia (AU) - TRELLIAN


  ns2.above.com / pns03-san
103.224.182.6
Beaumaris/Victoria/Australia (AU) - TRELLIAN


 
103.224.212.6
Beaumaris/Victoria/Australia (AU) - TRELLIAN

xyz
  generationxyz.nic.xyz / JGAB-L6C9EK-PH9YUA


  ns0.centralnic.net


  x.nic.xyz / CEQY-QU41GH-6UZLZF


  y.nic.xyz / TAGD-KTE43F-5A9QX6


  z.nic.xyz / NRDT-75SODK-AB8TIQ


4. SOA-Entries


Domain:xyz
Zone-Name:
Primary:
Mail:
Serial:
Refresh:
Retry:
Expire:
TTL:
num Entries:1


Domain:xyz
Zone-Name:xyz
Primary:ns0.centralnic.net
Mail:hostmaster.centralnic.net
Serial:3000622036
Refresh:900
Retry:1800
Expire:6048000
TTL:3600
num Entries:4


Domain:sriflix.xyz
Zone-Name:sriflix.xyz
Primary:ns1.above.com
Mail:hostmaster.trellian.com
Serial:2021072801
Refresh:10800
Retry:3600
Expire:604800
TTL:3600
num Entries:6


Domain:sriflix.xyz
Zone-Name:sriflix.xyz
Primary:ns2.above.com
Mail:hostmaster.trellian.com
Serial:2021072801
Refresh:10800
Retry:3600
Expire:604800
TTL:3600
num Entries:2


Domain:www.sriflix.xyz
Zone-Name:www.sriflix.xyz
Primary:ns1.above.com
Mail:hostmaster.trellian.com
Serial:2021072801
Refresh:10800
Retry:3600
Expire:604800
TTL:3600
num Entries:1


Domain:www.sriflix.xyz
Zone-Name:www.sriflix.xyz
Primary:ns2.above.com
Mail:hostmaster.trellian.com
Serial:2021072801
Refresh:10800
Retry:3600
Expire:604800
TTL:3600
num Entries:1


5. Screenshots

Startaddress: https://sriflix.xyz/cgi-sys/suspendedpage.cgi, address used: https://sriflix.xyz/cgi-sys/suspendedpage.cgi, Screenshot created 2020-10-21 00:16:17 +00:0 url is insecure, certificate invalid

Mobil (412px x 732px)

613 milliseconds

Screenshot mobile - https://sriflix.xyz/cgi-sys/suspendedpage.cgi
Mobil + Landscape (732px x 412px)

462 milliseconds

Screenshot mobile landscape - https://sriflix.xyz/cgi-sys/suspendedpage.cgi
Screen (1280px x 1680px)

771 milliseconds

Screenshot Desktop - https://sriflix.xyz/cgi-sys/suspendedpage.cgi

Mobile- and other Chrome-Checks

widthheight
visual Viewport412732
content Size412732

Good: No horizontal scrollbar. Content-size width = visual Viewport width.

Chrome-Connection: secure. secure connection settings. The connection to this site is encrypted and authenticated using QUIC, X25519, and AES_128_GCM.

Chrome-Resources : secure. all served securely. All resources on this page are served securely.

6. Url-Checks


:

:
DomainnameHttp-StatusredirectSec.G
• http://sriflix.xyz/
103.224.182.210
302
http://ww6.sriflix.xyz/
0.367

Date: Tue, 27 Jul 2021 19:49:22 GMT
Server: Apache/2.4.25 (Debian)
Set-Cookie: __tad=1627415362.8001464; expires=Fri, 25-Jul-2031 19:49:22 GMT; Max-Age=315360000
Location: http://ww6.sriflix.xyz/
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8

• http://www.sriflix.xyz/
103.224.182.210
302
http://ww6.sriflix.xyz/
0.340

Date: Tue, 27 Jul 2021 19:49:22 GMT
Server: Apache/2.4.25 (Debian)
Set-Cookie: __tad=1627415362.8227056; expires=Fri, 25-Jul-2031 19:49:22 GMT; Max-Age=315360000
Location: http://ww6.sriflix.xyz/
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8

• http://ww6.sriflix.xyz/

200

Html is minified: 278.98 %
0.316

Server: openresty
Date: Tue, 27 Jul 2021 19:49:43 GMT
Content-Type: text/html
Content-Length: 2522
Last-Modified: Thu, 22 Jul 2021 16:58:18 GMT
ETag: "60f9a3aa-9da"
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_IkJWmofhWNJjfeGWusRJMM212dzgQbSM9skZ+LuF2BJDd1/SERtjWZ15xZ+a/dWOFilXS5mVg4NPjdIE3pDYpw
Set-Cookie: caf_ipaddr=85.215.2.227;Path=/;Max-Age=86400;,country=DE;Path=/;Max-Age=86400;,city="";Path=/;Max-Age=86400;,expiry_partner=;Path=/;Max-Age=86400;
Accept-Ranges: bytes
Via: 1.1 google
Connection: close

• https://sriflix.xyz/
103.224.182.210
302
http://ww6.sriflix.xyz/
5.680
F
Date: Tue, 27 Jul 2021 19:49:23 GMT
Server: Apache/2.4.25 (Debian)
Set-Cookie: __tad=1627415363.4984386; expires=Fri, 25-Jul-2031 19:49:23 GMT; Max-Age=315360000
Location: http://ww6.sriflix.xyz/
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8

• https://www.sriflix.xyz/
103.224.182.210
302
http://ww6.sriflix.xyz/
5.444
F
Date: Tue, 27 Jul 2021 19:49:30 GMT
Server: Apache/2.4.25 (Debian)
Set-Cookie: __tad=1627415370.2943855; expires=Fri, 25-Jul-2031 19:49:30 GMT; Max-Age=315360000
Location: http://ww6.sriflix.xyz/
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8

• http://sriflix.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
103.224.182.210
302
http://ww6.sriflix.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
0.344

Visible Content:
Date: Tue, 27 Jul 2021 19:49:36 GMT
Server: Apache/2.4.25 (Debian)
Set-Cookie: __tad=1627415376.2295096; expires=Fri, 25-Jul-2031 19:49:36 GMT; Max-Age=315360000
Location: http://ww6.sriflix.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8

• http://www.sriflix.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
103.224.182.210
302
http://ww6.sriflix.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
0.356

Visible Content:
Date: Tue, 27 Jul 2021 19:49:36 GMT
Server: Apache/2.4.25 (Debian)
Set-Cookie: __tad=1627415376.1689718; expires=Fri, 25-Jul-2031 19:49:36 GMT; Max-Age=315360000
Location: http://ww6.sriflix.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8

• http://ww6.sriflix.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
No GZip used - 1534 / 2522 - 60.82 % possible
Inline-JavaScript (∑/total): 4/1559 Inline-CSS (∑/total): 1/27
200

Html is minified: 278.98 %
0.200

Visible Content:
Info: Html-Content with meta and/or script, may be a problem creating a Letsencrypt certificate using http-01 validation
Server: openresty
Date: Tue, 27 Jul 2021 19:49:43 GMT
Content-Type: text/html
Content-Length: 2522
Last-Modified: Thu, 22 Jul 2021 16:58:11 GMT
ETag: "60f9a3a3-9da"
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_OWqJnkoN2gviinjXeV9NdV+ZaVq5hnya+KgumtM/trJv7wQXm/UEcdnrbzlB/0CFsrJIH+xSoUGM0te9rwDmTw
Set-Cookie: caf_ipaddr=85.215.2.227;Path=/;Max-Age=86400;,country=DE;Path=/;Max-Age=86400;,city="";Path=/;Max-Age=86400;,expiry_partner=;Path=/;Max-Age=86400;
Accept-Ranges: bytes
Via: 1.1 google
Connection: close

• https://103.224.182.210/
103.224.182.210 GZip used - 227 / 356 - 36.24 %
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0
200

Html is minified: 100.00 %
5.490
N
Certificate error: RemoteCertificateNameMismatch
small visible content (num chars: 21)
Click here to enter .
Date: Tue, 27 Jul 2021 19:49:37 GMT
Server: Apache/2.4.25 (Debian)
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 227
Connection: close
Content-Type: text/html; charset=UTF-8

7. Comments


1. General Results, most used to calculate the result

Aname "sriflix.xyz" is domain, public suffix is ".xyz", top-level-domain is ".xyz", top-level-domain-type is "generic", tld-manager is "XYZ.COM LLC", num .xyz-domains preloaded: 1125 (complete: 168171)
AGood: All ip addresses are public addresses
Warning: Only one ip address found: sriflix.xyz has only one ip address.
Warning: Only one ip address found: www.sriflix.xyz has only one ip address.
Warning: No ipv6 address found. Ipv6 is the future with a lot of new features. So every domain name should have an ipv6 address. See https://en.wikipedia.org/wiki/IPv6: sriflix.xyz has no ipv6 address.
Warning: No ipv6 address found. Ipv6 is the future with a lot of new features. So every domain name should have an ipv6 address. See https://en.wikipedia.org/wiki/IPv6: www.sriflix.xyz has no ipv6 address.
AGood: No asked Authoritative Name Server had a timeout
AGood - only one version with Http-Status 200
HSTS-Preload-Status: unknown. Domain never included in the Preload-list. Check https://hstspreload.org/ to learn some basics about the Google-Preload-List.
AGood: Some urls with http status 200/404 have a complete Content-Type header (MediaType / MediaSubType + correct charset):1 complete Content-Type - header (3 urls)
http://ww6.sriflix.xyz/


Url with incomplete Content-Type - header - missing charset
http://ww6.sriflix.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de


Url with incomplete Content-Type - header - missing charset
Bhttps://sriflix.xyz/ 103.224.182.210
302

Missing HSTS-Header
Bhttps://www.sriflix.xyz/ 103.224.182.210
302

Missing HSTS-Header
http://sriflix.xyz/ 103.224.182.210
302
__tad=1627415362.8001464; expires=Fri, 25-Jul-2031 19:49:22 GMT; Max-Age=315360000
Fatal: Cookie sent via http. Never send Cookies / Session-Cookies via http. If a user uses an insecure WLan and if the same cookie is used to managed the authenticated session, it's possible to hack that user. Same with HttpOnly - without https that's only decorative.
http://ww6.sriflix.xyz/
200
caf_ipaddr=85.215.2.227;Path=/;Max-Age=86400;
Fatal: Cookie sent via http. Never send Cookies / Session-Cookies via http. If a user uses an insecure WLan and if the same cookie is used to managed the authenticated session, it's possible to hack that user. Same with HttpOnly - without https that's only decorative.
http://ww6.sriflix.xyz/
200
country=DE;Path=/;Max-Age=86400;
Fatal: Cookie sent via http. Never send Cookies / Session-Cookies via http. If a user uses an insecure WLan and if the same cookie is used to managed the authenticated session, it's possible to hack that user. Same with HttpOnly - without https that's only decorative.
http://ww6.sriflix.xyz/
200
city="";Path=/;Max-Age=86400;
Fatal: Cookie sent via http. Never send Cookies / Session-Cookies via http. If a user uses an insecure WLan and if the same cookie is used to managed the authenticated session, it's possible to hack that user. Same with HttpOnly - without https that's only decorative.
http://ww6.sriflix.xyz/
200
expiry_partner=;Path=/;Max-Age=86400;
Fatal: Cookie sent via http. Never send Cookies / Session-Cookies via http. If a user uses an insecure WLan and if the same cookie is used to managed the authenticated session, it's possible to hack that user. Same with HttpOnly - without https that's only decorative.
http://www.sriflix.xyz/ 103.224.182.210
302
__tad=1627415362.8227056; expires=Fri, 25-Jul-2031 19:49:22 GMT; Max-Age=315360000
Fatal: Cookie sent via http. Never send Cookies / Session-Cookies via http. If a user uses an insecure WLan and if the same cookie is used to managed the authenticated session, it's possible to hack that user. Same with HttpOnly - without https that's only decorative.
http://sriflix.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 103.224.182.210
302
__tad=1627415376.2295096; expires=Fri, 25-Jul-2031 19:49:36 GMT; Max-Age=315360000
Fatal: Cookie sent via http. Never send Cookies / Session-Cookies via http. If a user uses an insecure WLan and if the same cookie is used to managed the authenticated session, it's possible to hack that user. Same with HttpOnly - without https that's only decorative.
http://ww6.sriflix.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
200
caf_ipaddr=85.215.2.227;Path=/;Max-Age=86400;
Fatal: Cookie sent via http. Never send Cookies / Session-Cookies via http. If a user uses an insecure WLan and if the same cookie is used to managed the authenticated session, it's possible to hack that user. Same with HttpOnly - without https that's only decorative.
http://ww6.sriflix.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
200
country=DE;Path=/;Max-Age=86400;
Fatal: Cookie sent via http. Never send Cookies / Session-Cookies via http. If a user uses an insecure WLan and if the same cookie is used to managed the authenticated session, it's possible to hack that user. Same with HttpOnly - without https that's only decorative.
http://ww6.sriflix.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
200
city="";Path=/;Max-Age=86400;
Fatal: Cookie sent via http. Never send Cookies / Session-Cookies via http. If a user uses an insecure WLan and if the same cookie is used to managed the authenticated session, it's possible to hack that user. Same with HttpOnly - without https that's only decorative.
http://ww6.sriflix.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
200
expiry_partner=;Path=/;Max-Age=86400;
Fatal: Cookie sent via http. Never send Cookies / Session-Cookies via http. If a user uses an insecure WLan and if the same cookie is used to managed the authenticated session, it's possible to hack that user. Same with HttpOnly - without https that's only decorative.
http://www.sriflix.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 103.224.182.210
302
__tad=1627415376.1689718; expires=Fri, 25-Jul-2031 19:49:36 GMT; Max-Age=315360000
Fatal: Cookie sent via http. Never send Cookies / Session-Cookies via http. If a user uses an insecure WLan and if the same cookie is used to managed the authenticated session, it's possible to hack that user. Same with HttpOnly - without https that's only decorative.
Bhttps://sriflix.xyz/ 103.224.182.210
302
__tad=1627415363.4984386; expires=Fri, 25-Jul-2031 19:49:23 GMT; Max-Age=315360000
Cookie sent via https, but not marked as secure
Bhttps://www.sriflix.xyz/ 103.224.182.210
302
__tad=1627415370.2943855; expires=Fri, 25-Jul-2031 19:49:30 GMT; Max-Age=315360000
Cookie sent via https, but not marked as secure
Bhttp://sriflix.xyz/ 103.224.182.210
302
__tad=1627415362.8001464; expires=Fri, 25-Jul-2031 19:49:22 GMT; Max-Age=315360000
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
Bhttp://ww6.sriflix.xyz/
200
caf_ipaddr=85.215.2.227;Path=/;Max-Age=86400;
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
Bhttp://ww6.sriflix.xyz/
200
country=DE;Path=/;Max-Age=86400;
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
Bhttp://ww6.sriflix.xyz/
200
city="";Path=/;Max-Age=86400;
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
Bhttp://ww6.sriflix.xyz/
200
expiry_partner=;Path=/;Max-Age=86400;
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
Bhttp://www.sriflix.xyz/ 103.224.182.210
302
__tad=1627415362.8227056; expires=Fri, 25-Jul-2031 19:49:22 GMT; Max-Age=315360000
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
Bhttps://sriflix.xyz/ 103.224.182.210
302
__tad=1627415363.4984386; expires=Fri, 25-Jul-2031 19:49:23 GMT; Max-Age=315360000
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
Bhttps://www.sriflix.xyz/ 103.224.182.210
302
__tad=1627415370.2943855; expires=Fri, 25-Jul-2031 19:49:30 GMT; Max-Age=315360000
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
Bhttp://sriflix.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 103.224.182.210
302
__tad=1627415376.2295096; expires=Fri, 25-Jul-2031 19:49:36 GMT; Max-Age=315360000
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
Bhttp://ww6.sriflix.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
200
caf_ipaddr=85.215.2.227;Path=/;Max-Age=86400;
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
Bhttp://ww6.sriflix.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
200
country=DE;Path=/;Max-Age=86400;
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
Bhttp://ww6.sriflix.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
200
city="";Path=/;Max-Age=86400;
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
Bhttp://ww6.sriflix.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
200
expiry_partner=;Path=/;Max-Age=86400;
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
Bhttp://www.sriflix.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 103.224.182.210
302
__tad=1627415376.1689718; expires=Fri, 25-Jul-2031 19:49:36 GMT; Max-Age=315360000
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
Fhttps://sriflix.xyz/ 103.224.182.210
302
http://ww6.sriflix.xyz/
Wrong redirect https - http - never redirect https to http
Fhttps://www.sriflix.xyz/ 103.224.182.210
302
http://ww6.sriflix.xyz/
Wrong redirect https - http - never redirect https to http
HFatal error: http result with http-status 200, no encryption. Add a redirect http ⇒ https, so every connection is secure. Perhaps in your port 80 vHost something like "RewriteEngine on" + "RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,QSA,R=permanent]" (two rows, without the "). Don't add this in your port 443 vHost, that would create a loop.
Ihttps://103.224.182.210/ 103.224.182.210
200

Content problems or problems with resources included - http links, files doesn't exist, different Content-Type definitions. Check the Html-Content - Part.
Ihttp://ww6.sriflix.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
200

Content problems or problems with resources included - http links, files doesn't exist, different Content-Type definitions. Not used to calculate the result because it's a http - check. But listed so you should fix it.
Nhttps://103.224.182.210/ 103.224.182.210
200

Error - Certificate isn't trusted, RemoteCertificateNameMismatch
Info: Checking all ip addresses of that domain without sending the hostname only one certificate found. Checking all ip addresses and sending the hostname only one certificate found. Both certificates are different. So that domain requires Server Name Indication (SNI), so the server is able to select the correct certificate.: Domain sriflix.xyz, 1 ip addresses.
Info: Checking all ip addresses of that domain without sending the hostname only one certificate found. Checking all ip addresses and sending the hostname only one certificate found. Both certificates are different. So that domain requires Server Name Indication (SNI), so the server is able to select the correct certificate.: Domain www.sriflix.xyz, 1 ip addresses.

2. Header-Checks (alpha, started 2022-10-23, may be buggy / incomplete)


3. DNS- and NameServer - Checks

AInfo:: 13 Root-climbing DNS Queries required to find all IPv4- and IPv6-Addresses of 4 Name Servers.
AInfo:: 13 Queries complete, 5 with IPv6, 8 with IPv4.
Warning: Only some DNS Queries done via ipv6. IPv6 is the future, so the name servers of your name servers should have ipv6 addresses.
Ok (4 - 8):: An average of 3.3 queries per domain name server required to find all ip addresses of all name servers.
AInfo:: 2 different Name Servers found: ns1.above.com, ns2.above.com, 2 Name Servers included in Delegation: ns1.above.com, ns2.above.com, 2 Name Servers included in 1 Zone definitions: ns1.above.com, ns2.above.com, 2 Name Servers listed in SOA.Primary: ns1.above.com, ns2.above.com.
Error: Different SOA.Primary Name Servers found, different SOA Definitions.: ns1.above.com,ns2.above.com.
AGood: SOA.Primary Name Server included in the delegation set.: ns1.above.com,ns2.above.com.
AGood: All Name Server Domain Names have a Public Suffix.
AGood: Minimal 2 different name servers (public suffix and public ip address) found: 4 different Name Servers found
Warning: No Name Server IPv6 address found. IPv6 is the future, so your name servers should be visible via IPv6.: 4 different Name Servers found
Warning: All Name Servers have the same Top Level Domain / Public Suffix. If there is a problem with that Top Level Domain, your domain may be affected. Better: Use Name Servers with different top level domains.: 4 Name Servers, 1 Top Level Domain: com
Warning: All Name Servers have the same domain name. If there is a problem with that domain name (or with the name servers of that domain name), your domain may be affected. Better: Use Name Servers with different domain names / different top level domains.: Only one domain name used: above.com
Warning: All Name Servers from the same Country / IP location.: 4 Name Servers, 1 Countries: AU
A
AInfo: Nameserver mit different domain names found. May be a problem with DNS-Updates
AGood: Nameserver supports TCP connections: 8 good Nameserver
AGood: Nameserver supports Echo Capitalization: 8 good Nameserver
AGood: Nameserver supports EDNS with max. 512 Byte Udp payload, message is smaller: 8 good Nameserver
Nameserver doesn't pass all EDNS-Checks: 170.ns1.above.com / 103.224.182.5: OP100: ok. FLAGS: ok. V1: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. V1OP100: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found, no OPT100 expected, no OPT100 found. V1FLAGS: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. DNSSEC: ok. V1DNSSEC: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. NSID: ok (pns01-san). COOKIE: ok. CLIENTSUBNET: ok.
Nameserver doesn't pass all EDNS-Checks: 170.ns1.above.com / 103.224.212.5: OP100: ok. FLAGS: ok. V1: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. V1OP100: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found, no OPT100 expected, no OPT100 found. V1FLAGS: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. DNSSEC: ok. V1DNSSEC: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. NSID: ok (pns02-san). COOKIE: ok. CLIENTSUBNET: ok.
Nameserver doesn't pass all EDNS-Checks: 170.ns2.above.com / 103.224.182.6: OP100: ok. FLAGS: ok. V1: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. V1OP100: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found, no OPT100 expected, no OPT100 found. V1FLAGS: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. DNSSEC: ok. V1DNSSEC: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. NSID: ok (pns03-san). COOKIE: ok. CLIENTSUBNET: ok.
Nameserver doesn't pass all EDNS-Checks: 170.ns2.above.com / 103.224.212.6: OP100: ok. FLAGS: ok. V1: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. V1OP100: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found, no OPT100 expected, no OPT100 found. V1FLAGS: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. DNSSEC: ok. V1DNSSEC: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. NSID: ok (pns04-san). COOKIE: ok. CLIENTSUBNET: ok.
Nameserver doesn't pass all EDNS-Checks: ns0.centralnic.net: OP100: no result. FLAGS: no result. V1: no result. V1OP100: no result. V1FLAGS: no result. DNSSEC: no result. V1DNSSEC: no result. NSID: no result. COOKIE: no result. CLIENTSUBNET: no result.
Nameserver doesn't pass all EDNS-Checks: ns1.above.com: OP100: ok. FLAGS: ok. V1: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. V1OP100: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found, no OPT100 expected, no OPT100 found. V1FLAGS: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. DNSSEC: ok. V1DNSSEC: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. NSID: ok (pns02-san). COOKIE: ok. CLIENTSUBNET: ok.
Nameserver doesn't pass all EDNS-Checks: ns1.above.com / 103.224.182.5: OP100: ok. FLAGS: ok. V1: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. V1OP100: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found, no OPT100 expected, no OPT100 found. V1FLAGS: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. DNSSEC: ok. V1DNSSEC: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. NSID: ok (pns01-san). COOKIE: ok. CLIENTSUBNET: ok.
Nameserver doesn't pass all EDNS-Checks: ns1.above.com / 103.224.212.5: OP100: ok. FLAGS: ok. V1: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. V1OP100: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found, no OPT100 expected, no OPT100 found. V1FLAGS: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. DNSSEC: ok. V1DNSSEC: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. NSID: ok (pns02-san). COOKIE: ok. CLIENTSUBNET: ok.
Nameserver doesn't pass all EDNS-Checks: ns2.above.com: OP100: ok. FLAGS: ok. V1: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. V1OP100: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found, no OPT100 expected, no OPT100 found. V1FLAGS: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. DNSSEC: ok. V1DNSSEC: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. NSID: ok (pns03-san). COOKIE: ok. CLIENTSUBNET: ok.
Nameserver doesn't pass all EDNS-Checks: ns2.above.com / 103.224.182.6: OP100: ok. FLAGS: ok. V1: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. V1OP100: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found, no OPT100 expected, no OPT100 found. V1FLAGS: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. DNSSEC: ok. V1DNSSEC: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. NSID: ok (pns03-san). COOKIE: ok. CLIENTSUBNET: ok.
Nameserver doesn't pass all EDNS-Checks: ns2.above.com / 103.224.212.6: OP100: ok. FLAGS: ok. V1: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. V1OP100: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found, no OPT100 expected, no OPT100 found. V1FLAGS: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. DNSSEC: ok. V1DNSSEC: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. NSID: ok (pns04-san). COOKIE: ok. CLIENTSUBNET: ok.
AGood: All SOA have the same Serial Number
Warning: No CAA entry with issue/issuewild found, every CAA can create a certificate. Read https://en.wikipedia.org/wiki/DNS_Certification_Authority_Authorization to learn some basics about the idea of CAA. Your name server must support such an entry. Not all dns providers support CAA entries.

4. Content- and Performance-critical Checks

http://ww6.sriflix.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
200

Warning: Not existing ACME-file, but Server sends 200, not 404 or redirect. May be a problem creating a Letsencrypt certificate. Checking /.well-known/acme-challenge/random-filename - a http status 404 - Not Found - is expected. If your server sends content and a http status 200, the validation file (87 bytes, token, dot and the hash of the public part of the account key) may be invisible, so Letsencrypt can't validate your domain. If it is an application that sends this content, perhaps create an exception, so /.well-known/acme-challenge sends raw files. Or create a redirect to another domain and / or port 443, but your Letsencrypt client must support such a solution. Certbot: Use webroot as authenticator - https://certbot.eff.org/docs/using.html Trouble creating a certificate? Use https://community.letsencrypt.org/ to ask.
AGood: No https + http status 200 with inline CSS / JavaScript found
AGood: Every https result with status 200 has a minified Html-Content with a quota lower then 110 %.
https://103.224.182.210/ 103.224.182.210
200

Warning: Https connections (Standard Port 443) found without support of the http/2 protocol via ALPN. Http/2 is the new Http-Version (old: http 1.1) with some important new features. Update your server software so http/2 is available. Only one TCP-connection per Server (that's a performance boost), Header-Compression and Server Pushs are available. Domain Sharding and Inline-CSS/Javascript shouldn't used with http/2.
http://ww6.sriflix.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
200

Critical: Some script Elements (type text/javascript) with a src-Attribute don't have a defer / async - Attribute. Loading and executing these JavaScripts blocks parsing and rendering the Html-Output. That's bad if your site is large or the connection is slow / mobile usage. Use "async" if the js file has only functions (so nothing is executed after parsing the file) or is independend. Use "defer" if the order of the scripts is important. All "defer" scripts are executed before the DOMContentLoaded event is fired. Check https://developer.mozilla.org/en-US/docs/Web/HTML/Element/script to see some details.: 3 script elements without defer/async.
Warning: CSS / JavaScript found without GZip support. Send these ressources with GZip. 1 external CSS / JavaScript files without GZip found - 2 with GZip, 3 complete
Warning: CSS / JavaScript files with a missing or too short Cache-Control header found. Browsers should cache and re-use these files. 0 external CSS / JavaScript files without Cache-Control-Header, 0 with Cache-Control, but no max-age, 1 with Cache-Control max-age too short (minimum 7 days), 2 with Cache-Control long enough, 3 complete.
AGood: All checked attribute values are enclosed in quotation marks (" or ').
AInfo: No img element found, no alt attribute checked
AGood: Domainname is not on the "Specially Designated Nationals And Blocked Persons List" (SDN). That's an US-list of individuals and companies owned or controlled by, or acting for or on behalf of, targeted countries. It also lists individuals, groups, and entities, such as terrorists and narcotics traffickers designated under programs that are not country-specific. Collectively, such individuals and companies are called "Specially Designated Nationals" or "SDNs." Their assets are blocked and U.S. persons are generally prohibited from dealing with them. So if a domain name is on that list, it's impossible to create a Letsencrypt certificate with that domain name. Check the list manual - https://www.treasury.gov/resource-center/sanctions/sdn-list/pages/default.aspx
AInfo: Different Server-Headers found
ADuration: 103453 milliseconds, 103.453 seconds


8. Connections

DomainIPPortCert.ProtocolKeyExchangeStrengthCipherStrengthHashAlgorithmOCSP stapling
Domain/KeyExchangeIP/StrengthPort/CipherCert./StrengthProtocol/HashAlgorithmOCSP stapling
sriflix.xyz
103.224.182.210
443
ok
Tls12
ECDH Ephermal
256
Aes256
256
Sha384
error checking OCSP stapling
ok
sriflix.xyz
103.224.182.210
443
ok
Tls12

ECDH Ephermal
256
Aes256
256
Sha384
error checking OCSP stapling
ok
no http/2 via ALPN 
SNI required
Tls.1.2
Tls.1.1
Tls.1.0
no http/2 via ALPN
SNI required
Tls.1.2
Tls.1.1
Tls.1.0
Chain - too much certificates, don't send root certificates
1CN=wholesalen95.com

2CN=R3, O=Let's Encrypt, C=US

3CN=ISRG Root X1, O=Internet Security Research Group, C=US


www.sriflix.xyz
103.224.182.210
443
ok
Tls12
ECDH Ephermal
256
Aes256
256
Sha384
error checking OCSP stapling
ok

www.sriflix.xyz
103.224.182.210
443
ok
Tls12

ECDH Ephermal
256
Aes256
256
Sha384
error checking OCSP stapling
ok
no http/2 via ALPN 
SNI required
Tls.1.2
Tls.1.1
Tls.1.0
no http/2 via ALPN
SNI required
Tls.1.2
Tls.1.1
Tls.1.0
Chain - too much certificates, don't send root certificates
1CN=wholesalen95.com

2CN=R3, O=Let's Encrypt, C=US

3CN=ISRG Root X1, O=Internet Security Research Group, C=US


103.224.182.210
103.224.182.210
443
name does not match
Tls12
ECDH Ephermal
256
Aes256
256
Sha384
error checking OCSP stapling
ok

103.224.182.210
103.224.182.210
443
name does not match
Tls12

ECDH Ephermal
256
Aes256
256
Sha384
error checking OCSP stapling
ok
no http/2 via ALPN 
Cert sent without SNI
Tls.1.2
Tls.1.1
Tls.1.0
no http/2 via ALPN
Cert sent without SNI
Tls.1.2
Tls.1.1
Tls.1.0
Chain - too much certificates, don't send root certificates
1CN=chamth4.club

2CN=R3, O=Let's Encrypt, C=US

3CN=ISRG Root X1, O=Internet Security Research Group, C=US


9. Certificates

1.
1.
CN=wholesalen95.com
19.06.2021
17.09.2021
442 days expired
*.blajar.xyz, *.dwnbeta.com, *.geeraassociation.com, *.movighar.com, *.patronbebek2.com, *.paydaypigeo5n.com, *.plaka-sandels.com, *.plametminecraft.com, *.planka-sandels.com, *.planks-sandels.com, *.play2win-casinos.com, *.playlotsosslots.com, *.poeirnhub.com, *.poker-seks.com, *.polaoid.com, *.porosoy.com, *.ppicsart.com, *.pr0perypal.com, *.prubias19.com, *.punktpreradovic.com, *.questcequunefonctionlapuissance0.com, *.raseelipadosanwebseriesonlineongotxx.com, *.ravonna.com, *.real-or-fake-4k-list.com, *.realestateexpressreward.com, *.realtysanmigueldeallende.com, *.sriflix.xyz, *.uniasmr.xyz, *.vertjapan.com, *.viralsun.xyz, *.viralxporo.com, *.wholesalen95.com, blajar.xyz, dwnbeta.com, geeraassociation.com, movighar.com, patronbebek2.com, paydaypigeo5n.com, plaka-sandels.com, plametminecraft.com, planka-sandels.com, planks-sandels.com, play2win-casinos.com, playlotsosslots.com, poeirnhub.com, poker-seks.com, polaoid.com, porosoy.com, ppicsart.com, pr0perypal.com, prubias19.com, punktpreradovic.com, questcequunefonctionlapuissance0.com, raseelipadosanwebseriesonlineongotxx.com, ravonna.com, real-or-fake-4k-list.com, realestateexpressreward.com, realtysanmigueldeallende.com, sriflix.xyz, uniasmr.xyz, vertjapan.com, viralsun.xyz, viralxporo.com, wholesalen95.com - 64 entries
1.
1.
CN=wholesalen95.com
19.06.2021

17.09.2021
442 days expired
*.blajar.xyz, *.dwnbeta.com, *.geeraassociation.com, *.movighar.com, *.patronbebek2.com, *.paydaypigeo5n.com, *.plaka-sandels.com, *.plametminecraft.com, *.planka-sandels.com, *.planks-sandels.com, *.play2win-casinos.com, *.playlotsosslots.com, *.poeirnhub.com, *.poker-seks.com, *.polaoid.com, *.porosoy.com, *.ppicsart.com, *.pr0perypal.com, *.prubias19.com, *.punktpreradovic.com, *.questcequunefonctionlapuissance0.com, *.raseelipadosanwebseriesonlineongotxx.com, *.ravonna.com, *.real-or-fake-4k-list.com, *.realestateexpressreward.com, *.realtysanmigueldeallende.com, *.sriflix.xyz, *.uniasmr.xyz, *.vertjapan.com, *.viralsun.xyz, *.viralxporo.com, *.wholesalen95.com, blajar.xyz, dwnbeta.com, geeraassociation.com, movighar.com, patronbebek2.com, paydaypigeo5n.com, plaka-sandels.com, plametminecraft.com, planka-sandels.com, planks-sandels.com, play2win-casinos.com, playlotsosslots.com, poeirnhub.com, poker-seks.com, polaoid.com, porosoy.com, ppicsart.com, pr0perypal.com, prubias19.com, punktpreradovic.com, questcequunefonctionlapuissance0.com, raseelipadosanwebseriesonlineongotxx.com, ravonna.com, real-or-fake-4k-list.com, realestateexpressreward.com, realtysanmigueldeallende.com, sriflix.xyz, uniasmr.xyz, vertjapan.com, viralsun.xyz, viralxporo.com, wholesalen95.com - 64 entries

KeyalgorithmRSA encryption (4096 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:03A65FE9AEF1F37AC65AF8A3668E43D4A2BA
Thumbprint:74AA6416CAC18CC1C67EBA3219BD5DA7EF31E212
SHA256 / Certificate:QWN+tnwPwS5TrxFL3mc6ncXtWUo0p8KFIXxJjG9rlio=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):fd3cba3735adc40ac308b154a5735cfe79ba15c119d55d07c5e8e73a22d3eeaa
SHA256 hex / Subject Public Key Information (SPKI):fd3cba3735adc40ac308b154a5735cfe79ba15c119d55d07c5e8e73a22d3eeaa
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:http://r3.o.lencr.org
OCSP - must staple:no
Certificate Transparency:yes
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)


2.
CN=R3, O=Let's Encrypt, C=US
04.09.2020
15.09.2025
expires in 1017 days


2.
CN=R3, O=Let's Encrypt, C=US
04.09.2020

15.09.2025
expires in 1017 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:00912B084ACF0C18A753F6D62E25A75F5A
Thumbprint:A053375BFE84E8B748782C7CEE15827A6AF5A405
SHA256 / Certificate:Z63RFmsCCuYbj1/JaBPATCqliZYHloZVcqPH5zdhPf0=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):8d02536c887482bc34ff54e41d2ba659bf85b341a0a20afadb5813dcfbcf286d
SHA256 hex / Subject Public Key Information (SPKI):8d02536c887482bc34ff54e41d2ba659bf85b341a0a20afadb5813dcfbcf286d
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Clientauthentifizierung (1.3.6.1.5.5.7.3.2), Serverauthentifizierung (1.3.6.1.5.5.7.3.1)


3.
CN=ISRG Root X1, O=Internet Security Research Group, C=US
04.06.2015
04.06.2035
expires in 4566 days


3.
CN=ISRG Root X1, O=Internet Security Research Group, C=US
04.06.2015

04.06.2035
expires in 4566 days


KeyalgorithmRSA encryption (4096 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:008210CFB0D240E3594463E0BB63828B00
Thumbprint:CABD2A79A1076A31F21D253635CB039D4329A5E8
SHA256 / Certificate:lrzsBiZJdvN0YHeazyjFp8/oo8Cq4RqP/O4FwL3fCMY=
SHA256 hex / Cert (DANE * 0 1):96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6
SHA256 hex / PublicKey (DANE * 1 1):0b9fa5a59eed715c26c1020c711b4f6ec42d58b0015e14337a39dad301c5afc3
SHA256 hex / Subject Public Key Information (SPKI):0b9fa5a59eed715c26c1020c711b4f6ec42d58b0015e14337a39dad301c5afc3
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:


2.
1.
CN=chamth4.club
28.05.2021
26.08.2021
464 days expired
*.17videos.com, *.aiimsexam.com, *.alldelight.com, *.alstyleapparel.com, *.altrvista.org, *.amazonfirestick.com, *.amazonvi.com, *.assistirdoramasonline.com, *.avaloncommunites.com, *.babycakesshop.com, *.best2u.info, *.careueducation.com, *.chamth4.club, *.corsiglia.com, *.cristhian.com, *.cutestate.com, *.dcfandme.com, *.dogemining.org, *.eastfap.com, *.everlybrothers.com, *.f1whowon.in, *.fullpdf.com, *.geoole.com, *.geveze.biz, *.hotmotail.com, *.insung.com, *.kakusuu.com, *.kuboyama.com, *.lahoradelospinguinos.com, *.lcupayments.com, *.lerock.com, *.maich.com, *.makeresumeonline.com, *.mitee.com, *.mp3olimpz.com, *.myinceststories.com, *.phonesapps.org, *.portaldesalud.com, *.pwnoutube.com, *.qualityfurnituremarket.com, *.realcountryonline.com, *.sellersgmc.com, *.storyvilleapparel.com, *.torrentz3.eu, *.twerkitup.com, *.watchtvseries.cc, *.wetaherchannel.com, *.wexoline.com, *.wsha.com, *.xpxx.com, 17videos.com, aiimsexam.com, alldelight.com, alstyleapparel.com, altrvista.org, amazonfirestick.com, amazonvi.com, assistirdoramasonline.com, avaloncommunites.com, babycakesshop.com, best2u.info, careueducation.com, chamth4.club, corsiglia.com, cristhian.com, cutestate.com, dcfandme.com, dogemining.org, eastfap.com, everlybrothers.com, f1whowon.in, fullpdf.com, geoole.com, geveze.biz, hotmotail.com, insung.com, kakusuu.com, kuboyama.com, lahoradelospinguinos.com, lcupayments.com, lerock.com, maich.com, makeresumeonline.com, mitee.com, mp3olimpz.com, myinceststories.com, phonesapps.org, portaldesalud.com, pwnoutube.com, qualityfurnituremarket.com, realcountryonline.com, sellersgmc.com, storyvilleapparel.com, torrentz3.eu, twerkitup.com, watchtvseries.cc, wetaherchannel.com, wexoline.com, wsha.com, xpxx.com - 100 entries
2.
1.
CN=chamth4.club
28.05.2021

26.08.2021
464 days expired
*.17videos.com, *.aiimsexam.com, *.alldelight.com, *.alstyleapparel.com, *.altrvista.org, *.amazonfirestick.com, *.amazonvi.com, *.assistirdoramasonline.com, *.avaloncommunites.com, *.babycakesshop.com, *.best2u.info, *.careueducation.com, *.chamth4.club, *.corsiglia.com, *.cristhian.com, *.cutestate.com, *.dcfandme.com, *.dogemining.org, *.eastfap.com, *.everlybrothers.com, *.f1whowon.in, *.fullpdf.com, *.geoole.com, *.geveze.biz, *.hotmotail.com, *.insung.com, *.kakusuu.com, *.kuboyama.com, *.lahoradelospinguinos.com, *.lcupayments.com, *.lerock.com, *.maich.com, *.makeresumeonline.com, *.mitee.com, *.mp3olimpz.com, *.myinceststories.com, *.phonesapps.org, *.portaldesalud.com, *.pwnoutube.com, *.qualityfurnituremarket.com, *.realcountryonline.com, *.sellersgmc.com, *.storyvilleapparel.com, *.torrentz3.eu, *.twerkitup.com, *.watchtvseries.cc, *.wetaherchannel.com, *.wexoline.com, *.wsha.com, *.xpxx.com, 17videos.com, aiimsexam.com, alldelight.com, alstyleapparel.com, altrvista.org, amazonfirestick.com, amazonvi.com, assistirdoramasonline.com, avaloncommunites.com, babycakesshop.com, best2u.info, careueducation.com, chamth4.club, corsiglia.com, cristhian.com, cutestate.com, dcfandme.com, dogemining.org, eastfap.com, everlybrothers.com, f1whowon.in, fullpdf.com, geoole.com, geveze.biz, hotmotail.com, insung.com, kakusuu.com, kuboyama.com, lahoradelospinguinos.com, lcupayments.com, lerock.com, maich.com, makeresumeonline.com, mitee.com, mp3olimpz.com, myinceststories.com, phonesapps.org, portaldesalud.com, pwnoutube.com, qualityfurnituremarket.com, realcountryonline.com, sellersgmc.com, storyvilleapparel.com, torrentz3.eu, twerkitup.com, watchtvseries.cc, wetaherchannel.com, wexoline.com, wsha.com, xpxx.com - 100 entries

KeyalgorithmRSA encryption (4096 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:0399E57A1413ACCC41D6BDA341AAB8F08EF4
Thumbprint:FACD31D77AC67FB231D2F9022BC89564D809BBA4
SHA256 / Certificate:2Y7104Q/l4ce9T9qoSLVT0qq/chK0QHi2m1968AgcyM=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):8e3e6e7a9fae20f275b9d7a6f9317cf0a379ca759f15fe60bba8479ea18dc455
SHA256 hex / Subject Public Key Information (SPKI):8e3e6e7a9fae20f275b9d7a6f9317cf0a379ca759f15fe60bba8479ea18dc455
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:http://r3.o.lencr.org
OCSP - must staple:no
Certificate Transparency:yes
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)


2.
CN=R3, O=Let's Encrypt, C=US
04.09.2020
15.09.2025
expires in 1017 days


2.
CN=R3, O=Let's Encrypt, C=US
04.09.2020

15.09.2025
expires in 1017 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:00912B084ACF0C18A753F6D62E25A75F5A
Thumbprint:A053375BFE84E8B748782C7CEE15827A6AF5A405
SHA256 / Certificate:Z63RFmsCCuYbj1/JaBPATCqliZYHloZVcqPH5zdhPf0=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):8d02536c887482bc34ff54e41d2ba659bf85b341a0a20afadb5813dcfbcf286d
SHA256 hex / Subject Public Key Information (SPKI):8d02536c887482bc34ff54e41d2ba659bf85b341a0a20afadb5813dcfbcf286d
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Clientauthentifizierung (1.3.6.1.5.5.7.3.2), Serverauthentifizierung (1.3.6.1.5.5.7.3.1)


3.
CN=ISRG Root X1, O=Internet Security Research Group, C=US
04.06.2015
04.06.2035
expires in 4566 days


3.
CN=ISRG Root X1, O=Internet Security Research Group, C=US
04.06.2015

04.06.2035
expires in 4566 days


KeyalgorithmRSA encryption (4096 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:008210CFB0D240E3594463E0BB63828B00
Thumbprint:CABD2A79A1076A31F21D253635CB039D4329A5E8
SHA256 / Certificate:lrzsBiZJdvN0YHeazyjFp8/oo8Cq4RqP/O4FwL3fCMY=
SHA256 hex / Cert (DANE * 0 1):96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6
SHA256 hex / PublicKey (DANE * 1 1):0b9fa5a59eed715c26c1020c711b4f6ec42d58b0015e14337a39dad301c5afc3
SHA256 hex / Subject Public Key Information (SPKI):0b9fa5a59eed715c26c1020c711b4f6ec42d58b0015e14337a39dad301c5afc3
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:



10. Last Certificates - Certificate Transparency Log Check

1. Source CertSpotter - active certificates (one check per day)

Small Code Update - wait one minute


2. Source crt.sh - old and new certificates, sometimes very slow - only certificates with "not after" > of the last months are listed

Small Code Update - wait one minute


11. Html-Content - Entries

Summary

No data found or small Code-update

Details

Small Code Update - wait one minute


12. Nameserver - IP-Adresses

Required Root-climbing DNS-Queries to find ip addresses of all Name Servers: 170.ns1.above.com, 170.ns2.above.com, ns1.above.com, ns2.above.com

QNr.DomainTypeNS used
1
com
NS
k.root-servers.net (2001:7fd::1)

Answer: a.gtld-servers.net, b.gtld-servers.net, c.gtld-servers.net, d.gtld-servers.net, e.gtld-servers.net, f.gtld-servers.net, g.gtld-servers.net, h.gtld-servers.net, i.gtld-servers.net, j.gtld-servers.net, k.gtld-servers.net, l.gtld-servers.net, m.gtld-servers.net
2
170.ns1.above.com
NS
e.gtld-servers.net (2001:502:1ca1::30)

Answer: ns1.trellian.com, ns2.trellian.com

Answer: ns1.trellian.com
103.224.182.4

Answer: ns2.trellian.com
103.224.212.4
3
170.ns2.above.com
NS
e.gtld-servers.net (2001:502:1ca1::30)

Answer: ns1.trellian.com, ns2.trellian.com

Answer: ns1.trellian.com
103.224.182.4

Answer: ns2.trellian.com
103.224.212.4
4
ns1.above.com
NS
e.gtld-servers.net (2001:502:1ca1::30)

Answer: ns1.trellian.com, ns2.trellian.com

Answer: ns1.trellian.com
103.224.182.4

Answer: ns2.trellian.com
103.224.212.4
5
ns2.above.com
NS
e.gtld-servers.net (2001:502:1ca1::30)

Answer: ns1.trellian.com, ns2.trellian.com

Answer: ns1.trellian.com
103.224.182.4

Answer: ns2.trellian.com
103.224.212.4
6
170.ns1.above.com: 103.224.182.5, 103.224.212.5
A
ns1.trellian.com (103.224.182.4)
7
170.ns1.above.com: No AAAA record found
AAAA
ns1.trellian.com (103.224.182.4)
8
170.ns2.above.com: 103.224.182.6, 103.224.212.6
A
ns1.trellian.com (103.224.182.4)
9
170.ns2.above.com: No AAAA record found
AAAA
ns1.trellian.com (103.224.182.4)
10
ns1.above.com: 103.224.182.5, 103.224.212.5
A
ns1.trellian.com (103.224.182.4)
11
ns1.above.com: No AAAA record found
AAAA
ns1.trellian.com (103.224.182.4)
12
ns2.above.com: 103.224.182.6, 103.224.212.6
A
ns1.trellian.com (103.224.182.4)
13
ns2.above.com: No AAAA record found
AAAA
ns1.trellian.com (103.224.182.4)


13. CAA - Entries

DomainnameflagNameValue∑ Queries∑ Timeout
www.sriflix.xyz
0

no CAA entry found
1
0
sriflix.xyz
0

no CAA entry found
1
0
xyz
0

no CAA entry found
1
0


14. TXT - Entries

DomainnameTXT EntryStatus∑ Queries∑ Timeout
sriflix.xyz
df67490d49f24b046be96d96a13e7022af781ed6
ok
1
0
sriflix.xyz
v=spf1 -all
ok
1
0
www.sriflix.xyz
df67490d49f24b046be96d96a13e7022af781ed6
ok
1
0
www.sriflix.xyz
v=spf1 -all
ok
1
0
_acme-challenge.sriflix.xyz

Name Error - The domain name does not exist
1
0
_acme-challenge.www.sriflix.xyz

Name Error - The domain name does not exist
1
0
_acme-challenge.sriflix.xyz.sriflix.xyz

Name Error - The domain name does not exist
1
0
_acme-challenge.www.sriflix.xyz.sriflix.xyz

Name Error - The domain name does not exist
1
0
_acme-challenge.www.sriflix.xyz.www.sriflix.xyz

Name Error - The domain name does not exist
1
0


15. DomainService - Entries (SSHFP Check is new - 2022-09-24, may be incomplete, alpha, some results are required)

No DomainServiceEntries entries found



16. Cipher Suites

No Ciphers found


17. Portchecks

No open Ports <> 80 / 443 found, so no additional Ports checked.



Permalink: https://check-your-website.server-daten.de/?i=50835c0f-ba87-4246-96df-f78b0e1f628e


Last Result: https://check-your-website.server-daten.de/?q=sriflix.xyz - 2021-07-27 21:48:16


Do you like this page? Support this tool, add a link on your page:

<a href="https://check-your-website.server-daten.de/?q=sriflix.xyz" target="_blank">Check this Site: sriflix.xyz</a>

Do you really want to support this project? Donate: Check-your-website, IBAN DE98 1001 0010 0575 2211 07, SWIFT/BIC PBNKDEFF, Euro