CONTINUOUS INTERNET TELEMETRY24H DRIFT2,517 material changesacross 2,288 domains · -881 vs yesterdayDNS DRIFT16 domains changed DNS providertop destination cloudflare.com · -11 vs yesterdayEMAIL DRIFT5 domains switched email providertop destination google.com · -1 vs yesterdayCERT DRIFT5 domains switched issuing CA24h · -2 vs yesterdayNOW3,327 curated domains not answering-6,391 vs yesterdayERRORS10,916 responded with an errorlast probe · 5xx / 404 / 429 / 40324H DRIFT2,517 material changesacross 2,288 domains · -881 vs yesterdayDNS DRIFT16 domains changed DNS providertop destination cloudflare.com · -11 vs yesterdayEMAIL DRIFT5 domains switched email providertop destination google.com · -1 vs yesterdayCERT DRIFT5 domains switched issuing CA24h · -2 vs yesterdayNOW3,327 curated domains not answering-6,391 vs yesterdayERRORS10,916 responded with an errorlast probe · 5xx / 404 / 429 / 403

hellyhansen.com

Observed 2026-07-13T15:43:00.899Z (8h ago). Every field below was attested with an Ed25519 signature at scan time.

Guarded by a firewall
Runs onCloudflare
Email byMicrosoft 365
Also usesFacebook/MetaGoogle Search ConsoleAtlassian
5 subdomains · tranco_40k
Every line above is a signed observation. Check the math at the bottom of the page.
INFRASTRUCTURE MAPwhat hellyhansen.com actually stands on - every host below is a signed observation
hellyhansen.com
A / AAAA
151.101.65.124151.101.129.124151.101.193.124151.101.1.124
Cloudflareserves the site
NS
udns1.cscdns.netudns2.cscdns.uk
cscdns.net + cscdns.ukanswers its DNS
MX
hellyhansen-com.mail.protection.outlook.com
Microsoft 365receives its email

HTTPS probe

bot_blocked Blocked our probe (WAF / bot protection) 403 blocked by cloudflare - bot protection active
HTTP status403
Servercloudflare
TLS protocolHTTP/2
TLS issuernot observed
Behind Cloudflareyes
Response time98 ms
DNS resolutionNOERROR

Every field above is part of the same signed observation as the records below. Blank means not observed, never "none".

DNS Records

A 4

  • 151.101.65.124
  • 151.101.129.124
  • 151.101.193.124
  • 151.101.1.124

MX 1

  • 10hellyhansen-com.mail.protection.outlook.com

TXT 13

  • zscaler-verification-5016618-8132025-rV9cLww
  • v=spf1 include:%{ir}.%{v}.%{d}.spf.has.pphosted.com ~all
  • vercel-support=00214291
  • globalsign-domain-verification=zfCNvJt0iTcEchLrE0nrimsdl4h4m4zVTSJYOcrlcJ
  • 4yzyJRYOczWMOfG8LJ5ewiW6Un+5wPPAKbuXz5yzn6nrY+wwrdNd4mhjEbj/+wEaUtgapDyZGhh2bPme3V2sjQ==
  • globalsign-domain-verification=4_BF7EAsrPr5AIJss7FMgAcfPODPuiSSjcA128b7jF
  • adobe-idp-site-verification=036cdc5d-7453-46ce-8ac1-a1e550343540
  • facebook-domain-verification=bdzmgqc48squgtj3qcvrdlqkz8jges
  • google-site-verification=UqHe84xfnxq4osKtPPJsjy-vKPvZF0hwW8o_2eHE7cM
  • atlassian-domain-verification=XbSaxcVrKaaNdCVHnzkIsIA3fvXOikldtQFiEXPbjbE4ijO4Fig7owuCJcQxHn4p

NS 2

  • udns1.cscdns.net
  • udns2.cscdns.uk

SOA 1

  • udns1.cscdns.net hostmaster.cscdns.net

TLS Certificates (0)

None.

Subdomains (5)

The proof

Signed at scan time. Check the math yourself. Every line above is part of one signed observation. Re-hash it and check the Ed25519 signature in your own browser; nothing leaves your machine.

Verify this receipt

Put the receipt on your own site. A live badge showing what DomainDrift observes and signs for hellyhansen.com. It updates itself. It attests a signed observation - not that the site is safe.

DomainDrift signed-observation badge for hellyhansen.com <a href="https://domaindrift.io/t/hellyhansen.com"> <img src="https://domaindrift.io/badge/hellyhansen.com.svg" width="300" height="64" alt="DomainDrift signed observations for hellyhansen.com"> </a>

Ed25519 Receipt

Receipt ID
a77a1a41-7118-4d40-9b51-fc8edd40229f
Output Hash
904675f53b0f3ed80aa98b8f880558296f3680748cdfa7c5f20754cbe2e8d0a7
Signature
ed25519:1a11581171f0656bea8a041e6e35aa2b2730060946324d374968384df59d89a7abb435f39d0c1f9a61831f6119ede23a6be8fb5ba1fc7acad5e10eea8e1c240b
Public Key
ed25519:d610d74ef18f683e5beb859d241d5e67dff0c122e8928b06bec1c2476f4ba27b
Parent
(genesis)
Plane
fast
Verify this in your browser