yeyuai.net

.net crawl

First seen 2026-04-28 · Last seen 2026-05-19 · ok HTTP/1.1 200 1130 ms crawled 2026-05-06

US · 188.114.96.3 · AS13335 Cloudflare, Inc.

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title: 总榜 - 夜语AI角色排行榜
Description: 夜语AI总榜中最受欢迎的AI角色，发现热门AI聊天伙伴。
Language: zh-CN
Canonical: /explore/app?ranking=overall_rank

Open Graph

url: /explore/app?ranking=overall_rank
title: 总榜 - 夜语AI角色排行榜
description: 夜语AI总榜中最受欢迎的AI角色，发现热门AI聊天伙伴。

Technology

CDN: Cloudflare
CMS: Next.js

Third-party hosts loaded (2)

cdn.img-cdn.site×15
nr2.deepsese.net×2

Registration

Registrar

NameCheap, Inc.

Created

2026-04-07

Expires

2027-04-07 321 days left

Updated

2026-04-07

Name servers

tori.ns.cloudflare.com
weston.ns.cloudflare.com

DNS records live

NS

tori.ns.cloudflare.com
weston.ns.cloudflare.com

MX

10 eforward1.registrar-servers.com
10 eforward2.registrar-servers.com
10 eforward3.registrar-servers.com
15 eforward4.registrar-servers.com
20 eforward5.registrar-servers.com

Email authentication partial

SPF: v=spf1 include:spf.efwd.registrar-servers.com ~all
softfail (~all)
DMARC: not published
DKIM: no key found at common selectors

Certificate (current)

WE1

from 2026-04-07 to 2026-07-06

Expires in 46 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://yeyuai.net/explore/app/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: camera=(), microphone=(), geolocation=(), payment=(), usb=()
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://challenges.cloudflare.com https://accounts.google.com https://www.gstatic.com https://static.cloudflareinsights.com https://embed.tawk.to https://stats.ads-data.org https://telegram.org; style-src 'self' 'unsafe-inline' https:; font-src 'self' https: data:; img-src 'self' https: data: blob:; connect-src 'self' https://*.yeyu.ai https://*.dzmm.uk https://*.yeyu.pro https://*.yeyu.io wss://*.yeyu.io https://*.51wan.ai https://*.91wan.ai https://*.deepsese.net https://*.deepseek.net https://cdn.img-cdn.site wss://*.yeyu.ai wss://*.dzmm.uk https://challenges.cloudflare.com https://accounts.google.com https://www.googleapis.com https://oauth2.googleapis.com https://www.google.com https://cloudflareinsights.com https://stats.ads-data.org https://nr2.deepsese.net https://*.tawk.to wss://*.tawk.to https://*.workers.dev wss://*.workers.dev https://api.yeyu.io wss://api.yeyu.io; media-src 'self' https: blob:; worker-src
strict-transport-security: max-age=31536000; includeSubDomains