CONTINUOUS INTERNET TELEMETRY24H DRIFT1,719 material changesacross 1,519 domains · +297 vs yesterdayDNS DRIFT6 domains changed DNS providertop destination parity.domains · -15 vs yesterdayEMAIL DRIFT3 domains switched email providertop destination outlook.com · -2 vs yesterdayNOW922 curated domains not answering+212 vs yesterdayERRORS4,293 responded with an errorlast probe · 5xx / 404 / TLSTHROTTLED7,849 throttled or blocked our scanner429 rate-limit / 403 bot-blockMOVERtiktok.comDMARC enforcement downgraded: p=reject → no DMARC record24H DRIFT1,719 material changesacross 1,519 domains · +297 vs yesterdayDNS DRIFT6 domains changed DNS providertop destination parity.domains · -15 vs yesterdayEMAIL DRIFT3 domains switched email providertop destination outlook.com · -2 vs yesterdayNOW922 curated domains not answering+212 vs yesterdayERRORS4,293 responded with an errorlast probe · 5xx / 404 / TLSTHROTTLED7,849 throttled or blocked our scanner429 rate-limit / 403 bot-blockMOVERtiktok.comDMARC enforcement downgraded: p=reject → no DMARC record

haz.de

Observed 2026-07-17T13:50:15.377106389+00:00 (17h ago). Every field below was attested with an Ed25519 signature at scan time.

Guarded by a firewall
Runs onVodafone
Email byMicrosoft 365
Secured byLet's Encrypt
Also usesGoogle Search Console
tranco_40k
Every line above is a signed observation. Check the math at the bottom of the page.
INFRASTRUCTURE MAPwhat haz.de actually stands on - every host below is a signed observation
haz.de
A / AAAA
193.30.60.245
Vodafoneserves the site
NS
secondary004.dtag.netns0.niedersachsen.compns.dtag.de
dtag.net + niedersachsen.com + moreanswers its DNS
MX
haz-de.mail.protection.outlook.com
Microsoft 365receives its email
TLS
haz.de
Let's Encryptissued its certificate

DNS Records

A 1

  • 193.30.60.245

MX 1

  • 10haz-de.mail.protection.outlook.com

TXT 9

  • adobe-idp-site-verification=f5a5ce24e15ee89925ff406d50cc90dfbea29bc77c42d157e66826549b953833
  • google-site-verification=b3t_nQIr7PsY1PcjRDqJNE7VnIT6riKxnxAbcxHB9jU
  • brevo-code:83cb93e1e911841c9e0767e88e194cc4
  • hdm1bFFidDZG4d9FTo/ZWtB+3qHk1PbkFT3/izjtJxmBp3YOOnghr5yq7uyp8zVNSQHWgHA3iTorATjjB2/ZLA==
  • v=spf1 include:spf.protection.outlook.com include:spf.gutenberg-rz.de include:spf.pushwoosh.io include:spf.agnitas.de include:amazonses.com ip4:85.13.130.119 ip4:85.13.138.46 ~all
  • amazonses:mPoh/dJ2MN+u3yEE7/PXHekTruCnMUxqJpvWMNtKJo8=
  • google-site-verification=R13PahLQexF6Q_vhQE5zvnwT9phUop0wOTq3u_43FBI
  • MS=ms91011798
  • v=DMARC1; p=none; sp=none; rua=mailto:dmarc-report@haz.de; fo=1; ri=604800;

NS 3

  • secondary004.dtag.net
  • ns0.niedersachsen.com
  • pns.dtag.de

SOA 1

  • ns0.niedersachsen.com dns.gutenberg-rz.de

TLS Certificates (2)

Common NameIssuerExpires
haz.de C=US, O=Let's Encrypt, CN=R12 Wed, 19 Aug 2026 21:54:11 +0000
R12 C=US, O=Internet Security Research Group, CN=ISRG Root X1 Fri, 12 Mar 2027 23:59:59 +0000

Subdomains (0)

None observed.

The proof

Signed at scan time. Check the math yourself. Every line above is part of one signed observation. Re-hash it and check the Ed25519 signature in your own browser; nothing leaves your machine.

Verify this receipt

Put the receipt on your own site. A live badge showing what DomainDrift observes and signs for haz.de. It updates itself. It attests a signed observation - not that the site is safe.

DomainDrift signed-observation badge for haz.de <a href="https://domaindrift.io/t/haz.de"> <img src="https://domaindrift.io/badge/haz.de.svg" width="300" height="64" alt="DomainDrift signed observations for haz.de"> </a>

Ed25519 Receipt

Receipt ID
d0d6d0f2-2b6f-47b8-bdf9-267404415cb3
Output Hash
6ea1ca35b5b189a529f1389c81f81cc78aaecc6565c91eda026efc39e8cbb3a3
Signature
ed25519:4eeed401bf21a06fc60994e5acb32b5a9c29dd5b83064ee682c00c2cac765414c4238c25e012c1541a720658cfe9421e85ef5e72db2529c5e5607243ec348a02
Public Key
ed25519:178c3bd0f57d9d64b83cc4630753381e1a465005a2bbba3d032371f24af0bfd8
Parent
(genesis)
Plane
fast
Verify this in your browser