91app.com
Net-Chinese Co., Ltd.
unsigned
Yes
91app.com is a domain that appears to be a mobile application platform, likely used for downloading and installing various apps. It has been registered since 2008 but lacks DNSSEC security, and its transfer is currently prohibited, raising some concerns about its security and ownership.
Data on this page is collected by cside's crawler, which monitors third-party scripts across the public web.
91App
Category: ecommerce
Description
91App is a Taiwan-based platform that provides solutions for retail stores.
AI Review
The vendor's scripts on 91app.com primarily gather extensive user interaction data for e-commerce applications, including tracking events such as page views and add-to-cart actions. Data collected is sent to third-party analytics platforms, notably Facebook and Google, which raises privacy concerns as this may contribute to user profiling and targeted advertising without explicit user awareness. While these scripts enhance user experience and optimize payment processes, they do not interact directly with sensitive payment information, positioning them favorably for PCI compliance. However, the broad scope of data collection during user interactions—even if not explicitly tied to payment details—highlights significant concerns regarding data minimization and user consent, particularly since users may be unaware of the extent of data sharing with these third parties. Although no alerts have been triggered recently, the reliance on external APIs to provide analytical insights creates an expanded attack surface that warrants ongoing scrutiny. The absence of alerts is reassuring but does not mitigate the need for stringent data management protocols. Ensuring the vendor's data practices are transparent and that they safeguard user privacy by limiting data retention and sharing will be critical.
Script hostnames
Enabled
91app.com is one of thousands of third-party scripts on the web.
Most sites run dozens of third-party scripts and can't say what each one does. cside monitors every script on your site and catches the ones that change or turn malicious.
| Hostname | Type | TTL | Priority | Content |
|---|---|---|---|---|
| 91app.com | NS | 172800 | ns-1238.awsdns-26.org. | |
| 91app.com | NS | 172800 | ns-1541.awsdns-00.co.uk. | |
| 91app.com | NS | 172800 | ns-257.awsdns-32.com. | |
| 91app.com | NS | 172800 | ns-941.awsdns-53.net. | |
| 91app.com | A | 13 | 192.0.78.221 | |
| 91app.com | A | 13 | 192.0.78.156 | |
| 91app.com | MX | 60 | 1 | smtp.google.com. |
| 91app.com | TXT | 300 | "1kfvo3ebxz" | |
| 91app.com | TXT | 300 | "E2XEBNB8BAE5FRQ2NMZLLHYCW9U855TOHG4OT8QA" | |
| 91app.com | TXT | 300 | "TICKET-9335" | |
| 91app.com | TXT | 300 | "apple-domain-verification=nHFLp2fx5XpuL1Di" | |
| 91app.com | TXT | 300 | "figma-domain-verification=0043666846f7b8455476d9f599fa2181c64a07c5491c94639d03f530477db649-1759310598" | |
| 91app.com | TXT | 300 | "google-site-verification=su3Fsh6pqxDUjURj8D2yzNMP5gug2QiM-5aKFAo8zVQ" | |
| 91app.com | TXT | 300 | "mongodb-site-verification=HudMrGaMgRHqq2FLpvMa3WHH6aGOlfkI" | |
| 91app.com | TXT | 300 | "trend-micro-v1-domain-verification.323c3a0c2058cb7ebf6b2fca62d51e44=94c4ded3-9be5-481a-ad87-10a73d239d49" | |
| 91app.com | TXT | 300 | "v=spf1 include:zcsend.net include:_spf.google.com include:amazonses.com include:zohomail.com include:transmail.net ip4:52.192.172.6 ~all" | |
| 91app.com | SOA | 900 | ns-941.awsdns-53.net. awsdns-hostmaster.amazon.com. 1 7200 900 1209600 86400 |
FAQ
Frequently Asked Questions
This domain is analyzed as part of cside's domain directory to identify third-party scripts and their purposes. The summary provides information about what services, tools, or scripts this domain hosts, helping website owners understand which third-party services are being loaded on their sites.
The risk score is calculated based on multiple security factors including SSL certificate validity, DNSSEC status, domain registration details, and historical security data. A higher score indicates lower risk, while a lower score suggests potential security concerns that should be investigated.
The SSL certificate information shows whether the domain uses HTTPS encryption, when the certificate was issued, when it expires, and who issued it. This helps verify the domain's security posture and identify potential certificate-related vulnerabilities that could affect your website's security.
Third-party script domains can be compromised or used maliciously. By monitoring domain information like registration details, SSL certificates, and DNS records, you can identify suspicious changes, expired certificates, or domains that may pose security risks to your website and users.
Domain information is regularly scanned and updated to provide the most current security intelligence. The last scanned timestamp shows when the most recent analysis was performed, ensuring you have up-to-date information about the domain's security status.
If you identify a high-risk domain loading scripts on your website, you should investigate why it's being used, verify its legitimacy, and consider removing or replacing it if it's not essential. Use cside's platform to monitor and block suspicious third-party scripts to protect your users from potential security threats.
Subscribe to our newsletter to get the full picture
Stay updated with our latest news, offers and blog posts. Subscribe for exclusive updates delivered straight to your inbox.
Your inbox stays chill, we pop in monthly.