中文

Website Security Scanner

Comprehensive security check · Vulnerability scan · Threat intel · SSL analysis

Home Scan List Scoring
unext.jp
Scan Time: 2026-05-21 07:54:11
Re-scan
25
Low Risk
2026-05-21 07:54:11

Security Issues Found

  • ⚠️[LOW] 服务器信息泄露
  • ⚠️[MEDIUM] 缺少 HTTP 安全头

Recommendations

  • 💡添加 DMARC 记录增强邮件安全
  • 💡配置 Web 服务器添加这些安全头
  • 💡移除或修改 Server/X-Powered-By 响应头

🌐Domain Info

Targetunext.jp
Registeredunext.jp
TLD.jp

🛡️Threat Intelligence (7 platforms)

BlacklistNot Blacklisted
Malware0
Phishing0
Abuse Score0/100

🐛Vulnerabilities Found (2)

MEDIUM缺少 HTTP 安全头
缺少以下安全头: Content-Security-Policy, Permissions-Policy
Fix: 配置 Web 服务器添加这些安全头
LOW服务器信息泄露
响应头泄露服务器信息: Server: U-NEXT
Fix: 移除或修改 Server/X-Powered-By 响应头

🔌Open Ports (2)

80
http
443
https

🌐DNS Records

A: 103.140.112.155
MX: 5 alt1.aspmx.l.google.com.
MX: 5 alt2.aspmx.l.google.com.
MX: 10 aspmx2.googlemail.com.
MX: 1 aspmx.l.google.com.
MX: 10 aspmx3.googlemail.com.
NS: unext-ns11.nxtsvc.com.
NS: unext-ns10.nxtsvc.com.
NS: unext-ns12.nxtsvc.com.
TXT: "v=spf1 include:_spf.google.com include:spf-bma.mpme.jp include:spf.eco-serv.jp include:cust-spf.exacttarget.com include:mx-spf.unext.jp ~all"
TXT: "anthropic-domain-verification-0x1fd1=jgiGTEJNui1CqbDZs27SLPch2"
TXT: "google-site-verification=hOwcILGU8CzOStXWVyN-qdwG--jGQ3q21Iv2xUKe8Bo"
TXT: "facebook-domain-verification=9zc8t4ad7rbpr4cp7pn8y2cpgi3v4l"
TXT: "atlassian-domain-verification=Rmq0zh/atpMpLlL1cQARt0wYgw63zDweHL8iMbpEE5H01zrYE2gNe5J9emAUW80C"
TXT: "google-site-verification=aSaf8nQXhGTZGxjbKJdlKU6i4oSkkCwyFScnMzi6dX0"
TXT: "o2Crr8+rexeBijskL9QKcbbLckgAv54aI+ikjCyVQqI="
TXT: "_globalsign-domain-verification=5Mg9CBuqRVKcfV2fJxPm_pX1zQ0o76QEssli3pPkw6"
TXT: "atlassian-domain-verification=jHoi1ZUJX3LSCNUfyMfWeSuT18LRVaSgqb3c1903oEYmXLvNarWCRjuentbT3J98"
TXT: "google-site-verification=qNf8-GUuhECZ2784UUifr-tpIAbuCdprYsg0-X-G-7I"
TXT: "google-site-verification=kSeyApT-1hAPk7Ipt2L2ggVYUg1RQC16ZRwkCTGgnRQ"
SOA: unext-ns10.nxtsvc.com. root.unext.jp. 2026052001 10800 3600 3600000 3600

📋HTTP Headers

X-Frame-Options: sameorigin
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
Referrer-Policy: no-referrer-when-downgrade
Server: U-NEXT