|Site title||My World@Mail.Ru: stay in touch with your classmates and friends|
|Date first seen||April 2010|
|Netcraft Risk Rating||0/10|
|Netblock Owner||Mail.Ru Services|
|IP address||22.214.171.124 (VirusTotal)|
|IPv6 address||Not Present|
|Hosting company||Mail.ru Group|
|Top Level Domain||Russian Federation (.ru)|
|DNS Security Extensions||unknown|
|0.0.0.0-255.255.255.255||N/A||IANA-BLK||The whole IPv4 address space|
|↳ 126.96.36.199-188.8.131.52||Netherlands||94-RIPE||RIPE Network Coordination Centre|
|↳ 184.108.40.206-220.127.116.11||Russian Federation||RU-NETBRIDGE-20080731|
|↳ 18.104.22.168-22.214.171.124||Russian Federation||MAILRU-FRONT||Mail.Ru Services|
|↳ 126.96.36.199||Russian Federation||MAILRU-FRONT||Mail.Ru Services|
|Organisational unit||Not Present|
|Subject Alternative Name||*.my.mail.ru, my.mail.ru|
|Validity period||From May 6 2020 to Jul 6 2022 (26 months)|
|Public key algorithm||rsaEncryption|
|Public key length||2048|
|Perfect Forward Secrecy||Yes|
|Next Protocol Negotiation||http/1.1|
|Supported TLS Extensions||RFC4366 server name, RFC5746 renegotiation info, RFC4492 EC point formats, RFC5077 session ticket, Next Protocol Negotiation|
|Issuing organisation||DigiCert Inc|
|Issuer common name||GeoTrust RSA CA 2018|
|Issuer location||Not Present|
|Issuer state||Not Present|
|Certificate Revocation Lists||
|Public Key Hash||13a4b72bceac28fec80822b29aafe366716a9005a197725d9003b8a32c95cfec|
|OCSP servers||http://status.geotrust.com - 99.85% uptime in the past 24 hours
|OCSP stapling response||No response received|
Signed Certificate Timestamps (SCTs)
|Certificate||Google Argon 2022
|Certificate||DigiCert Yeti 2022
|Certificate||Cloudflare Nimbus 2022
This site does not support the SSL version 3 protocol.
The site offered the Heartbeat TLS extension prior to the Heartbleed disclosure, but is using a new certificate and no longer offers Heartbeat.
This test does not exploit the Heartbleed vulnerability but uses information from conventional HTTPS requests. More information about Heartbleed detection.
SSL Certificate Chain
|Common name||DigiCert Global Root CA|
|Validity period||From 2006-11-10 to 2031-11-10|
|Common name||GeoTrust RSA CA 2018|
|Validity period||From 2017-11-06 to 2027-11-06|
Sender Policy Framework
A host's Sender Policy Framework (SPF) describes who can send mail on its behalf. This is done by publishing an SPF record containing a series of rules. Each rule consists of a qualifier followed by a specification of which domains to apply this qualifier to. For more information please see open-spf.org.
Warning: It appears that this host does not have an SPF record. There may be an SPF record on mail.ru: Check the site report.
Setting up an SPF record helps prevent the delivery of forged emails from your domain. Please note that an SPF record will only protect the domain it is added to and not any mail-enabled subdomains. It is recommended to add an SPF record to any subdomain with an MX record.
DMARC (Domain-based Message Authentication, Reporting and Conformance) is a mechanism for domain owners to indicate how mail purporting to originate from their domain should be authenticated. It builds on SPF and DKIM, providing a method to set policy and to give reporting of failures. For more information please see dmarc.org.
Raw DMARC record:
|p=reject||Requested handling policy||Reject: emails that fail the DMARC mechanism check should be rejected. Rejection SHOULD occur during the SMTP transaction.|
|rua=mailto:email@example.com,mailto:firstname.lastname@example.org||Reporting URI(s) for aggregate email@example.com, firstname.lastname@example.org|
|ruf=mailto:email@example.com||Reporting URI(s) for failure firstname.lastname@example.org|
|fo=1||Failure reporting options||Generate a DMARC failure report if any underlying authentication mechanism failed to produce an aligned "pass" result.|
Site Technology (fetched 6 days ago)
Includes all the main technologies that Netcraft detects as running on the server such as PHP.
Technology Description Popular sites using this technology CGI Applications The Common Gateway Interface (CGI) is a standard method for web server software to delegate the generation of web content to executable files www.drudgereport.com, www.nab.com.au, www.gnu.org SSL A cryptographic protocol providing communication security over the Internet login.microsoftonline.com Perl Perl is a high-level, general-purpose, interpreted, dynamic programming language www.schneier.com, www.dianomi.com, www.bahn.de
Client-Side Scripting Frameworks
Frameworks or libraries allow for easier development of applications by providing an Application Program Interface (API) or a methodology to follow whilst developing.
Web analytics is the measurement, collection, analysis and reporting of internet data for purposes of understanding and optimizing web usage.
A character encoding system consists of a code that pairs each character from a given repertoire with something else such as a bit pattern, sequence of natural numbers, octets, or electrical pulses in order to facilitate the transmission of data (generally numbers or text) through telecommunication networks or for data storage.
HTTP compression is a capability that can be built into web servers and web clients to make better use of available bandwidth, and provide greater transmission speeds between both.
Web Browser Targeting
Web browser targeting enables software applications to make use of specific functions of the browser as well as optimizing the application for specific browser versions.
Technology Description Popular sites using this technology Document Compatibility Mode A meta-tag used in Internet Explorer 8 to enable compatibility mode www.yahoo.com, teams.microsoft.com, player.vimeo.com X-Content-Type-Options Browser MIME type sniffing is disabled www.googleadservices.com, medium.com, disqus.com X-Frame-Options Deny Prevents the web page being embedded in a frame www.mozilla.org, www.virustotal.com, twitter.com X-XSS-Protection Reporting Cross-site scripting attempts are reported www.netflix.com, www.shopify.com, netflix.com Content Security Policy Report Report attacks in the browser www.repubblica.it, www.okcupid.com, www.wellsfargo.com X-XSS-Protection Block Block pages on which cross-site scripting is detected vars.hotjar.com, discordapp.com, accounts.google.com
A Document Type Declaration, or DOCTYPE, is an instruction that associates a particular SGML or XML document (for example, a webpage) with a Document Type Definition (DTD).
Cascading Style Sheets (CSS) is a style sheet language used for describing the presentation semantics (the look and formatting) of a document written in a markup language (such as XHTML).
Technology Description Popular sites using this technology External Styles defined within an external CSS file www.w3schools.com, www.paypal.com, www.linkedin.com CSS Media Query No description www.msn.com, www.booking.com, www.arco.co.uk Embedded Styles defined within a webpage www.bankofamerica.com, www.walmart.com, www.amazon.co.uk