DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt

Certificate Information

Subject
CN=afftrack.store
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
January 14, 2026
Valid Until
April 14, 2026 53 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
EF:3D:38:E4:B5:7A:2A:9C:8E:DC:9C:96:B1:E4:AA:B8:3B:E2:08:3A:DA:B5:4C:FD:C1:29:16:87:1B:A7:A6:4C
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
xfinityactivate.com *.xfinityactivate.com *.demo.xfinityactivate.com

Other domains in certificate

12ftladder.com *.12ftladder.com *.ww25.12ftladder.com
afftrack.store *.afftrack.store *.www.afftrack.store
b2bespada.com *.b2bespada.com
belowtrip.com *.belowtrip.com
bidders.com.au *.bidders.com.au *.ww38.bidders.com.au
diamondsareforever.co.uk *.diamondsareforever.co.uk *.random.diamondsareforever.co.uk *.ww38.diamondsareforever.co.uk
digital-surprises.de *.digital-surprises.de
dillcheck.com *.dillcheck.com
*.0a8caf66-c7c6-11eb-bdea-b46e08cda458.eastbrooketrade.com eastbrooketrade.com *.eastbrooketrade.com *.store.eastbrooketrade.com
ebatproje.com *.ebatproje.com
framecraze.com *.framecraze.com
helmsmaninsuranceagency.xyz *.helmsmaninsuranceagency.xyz *.webdisk.helmsmaninsuranceagency.xyz *.ww25.helmsmaninsuranceagency.xyz
hindixxxvideos.net *.hindixxxvideos.net
hrwertrechner.de *.hrwertrechner.de
luis777.com *.luis777.com
malacolog.com *.malacolog.com
maynhom.com *.maynhom.com
minutopedu.com *.minutopedu.com
muhlenbrett.de *.muhlenbrett.de
pakfollower.com *.pakfollower.com
randmtornado9000hungary.com *.randmtornado9000hungary.com
respostascaptcha.com *.respostascaptcha.com
sacaa100.com *.sacaa100.com
sifangx.com *.sifangx.com
successbeta.com *.successbeta.com
sukroscorebattle.com *.sukroscorebattle.com
suryacomics.com *.suryacomics.com
tagrba.com *.tagrba.com
wikipedis.com *.wikipedis.com
*.bot.xcliv.xyz *.chat.xcliv.xyz *.demo.xcliv.xyz *.fireshif.xcliv.xyz *.hub.xcliv.xyz *.ibanews.xcliv.xyz *.lztimes.xcliv.xyz *.mv.xcliv.xyz *.norp.xcliv.xyz *.recipe.xcliv.xyz *.streamxx.xcliv.xyz *.test.xcliv.xyz *.ww25.xcliv.xyz xcliv.xyz *.xcliv.xyz *.xcrot.xcliv.xyz *.xxcrot.xcliv.xyz *.xyz.xcliv.xyz
zmslu.com *.zmslu.com