DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt

Certificate Information

Subject
CN=u399999.cc
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 18, 2026
Valid Until
May 19, 2026 88 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
83:AF:09:26:7E:3B:3E:90:6B:3B:EE:C0:F2:66:78:28:89:8C:67:81:DC:57:1D:AE:7B:28:C3:07:D0:19:2D:88
Alternative Names
89 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains
splashfinacial.com *.splashfinacial.com *.random.splashfinacial.com *.uat.splashfinacial.com *.wildcard.splashfinacial.com

Other domains in certificate

*.8joac.app-shld.top app-shld.top *.app-shld.top *.civoh.app-shld.top *.fdy0p.app-shld.top *.qk6fu.app-shld.top *.svzzq.app-shld.top
*.bitcoin.corgi.party corgi.party *.corgi.party *.dddd.corgi.party
eeslap.com *.eeslap.com *.random.eeslap.com *.wildcard.eeslap.com *.ww38.eeslap.com
*.4x85a2s02554m15a.futbolboliviano.online futbolboliviano.online *.futbolboliviano.online *.ww25.futbolboliviano.online
*.cpcalendars.jecb.org jecb.org *.jecb.org *.ww38.jecb.org
*.aff.masar.cc *.mail.masar.cc masar.cc *.masar.cc
*.gitlab.mobifone.org *.jenkins.mobifone.org mobifone.org *.mobifone.org *.sitemap.mobifone.org *.sitemaps.mobifone.org *.vhlkspud.mobifone.org *.vpn.mobifone.org *.www.mobifone.org *.ynouksef.mobifone.org
*.helpdesk.music75.com music75.com *.music75.com *.rdweb.music75.com
*.bmail.secureprocess.click *.cfa53bb6-b1d5-4d0a-b41a-cd73af210b1d.secureprocess.click *.cpanel.secureprocess.click *.ftp.secureprocess.click *.hm.secureprocess.click *.mail.secureprocess.click *.pop.secureprocess.click secureprocess.click *.secureprocess.click *.smtp.secureprocess.click *.webmail.secureprocess.click *.whm.secureprocess.click
*.api.service.cm *.b.service.cm *.cip.service.cm *.closomat.service.cm *.cnps.service.cm *.dns.service.cm *.hostmaster.service.cm *.jmx.service.cm *.ma.service.cm *.msh.service.cm *.natural.service.cm *.ogsi.service.cm *.opera.service.cm *.osgi.service.cm *.rhi.service.cm service.cm *.service.cm *.superset-test.service.cm *.tab.service.cm *.trink.service.cm *.ww25.service.cm *.ww38.service.cm *.www.service.cm *.xn--wstenrotimmo-dlb.service.cm
*.sitemap.u399999.cc u399999.cc *.u399999.cc *.www.u399999.cc
whatawonderfulworld.co *.whatawonderfulworld.co