indexo.dev

allergandirect.com

.com crawl

First seen 2026-05-03 · Last seen 2026-05-15 · ok HTTP/1.1 200 4011 ms crawled 2026-05-10

US · 159.180.132.176 · AS62763 AbbVie, Inc.

Reputation 75/100 wrong cert

Classifying

HTML metadata

Title
Customer Selection Page
Description
AllerganDirect
Language
EN-US

Technology

CDN
Cloudflare
Analytics
  • Cloudflare Insights
  • Google Tag Manager
Fonts
  • Adobe Fonts

Third-party hosts loaded (6)

  • use.typekit.net×2
  • 110007965.collect.igodigital.com×1
  • cdn.cquotient.com×1
  • static.cloudflareinsights.com×1
  • www.google.com×1
  • www.googletagmanager.com×1

Contact

Phone

Registration

Registrar
MarkMonitor Inc.
Created
2008-06-04
Expires
2027-06-04 380 days left
Updated
2026-05-03
Name servers
  • ns1.abbviedns.com
  • ns2.abbviedns.com
  • ns3.abbviedns.com
  • ns4.abbviedns.com

DNS records live

NS
  • ns1.abbviedns.com
  • ns2.abbviedns.com
  • ns3.abbviedns.com
  • ns4.abbviedns.com
TXT
  • 620798acecee469c8e8a6b36e8b2f543
  • _fszsbmcjz1oxfk61f3u98o2wyit8auy
  • google-site-verification=lhzc35CmYhQsrGt9Mi5nj5OKfZUrXmUqU-UlOcaczzM

Email authentication no MX

SPF
v=spf1 include:_u.allergandirect.com._spf.smart.ondmarc.com -all
strict (-all)
DMARC
v=DMARC1; p=quarantine; fo=1; ri=3600; rua=mailto:4a915a0c@inbox.ondmarc.com; ruf=mailto:4a915a0c@inbox.ondmarc.com
policy: quarantine
DKIM
no key found at common selectors

Certificate (current) wrong cert

DigiCert Global G2 TLS RSA SHA256 2020 CA1
from 2026-02-23 to 2027-03-17
Expires in 301 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.allergandirect.com/en_US/login

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • short HSTS max-age
  • weak frame protection
Header values
referrer-policy
SAME-ORIGIN
x-frame-options
SAME-ORIGIN
permissions-policy
display-capture=(self), document-domain=(self), encrypted-media=(self), execution-while-not-rendered=(self), fullscreen=(self), geolocation=(self), microphone=(self), payment=(self), picture-in-picture=(self), sync-xhr=(self), web-share=(self), xr-spatial-tracking=(self)
x-content-type-options
nosniff
content-security-policy
frame-ancestors 'self' www.chasepaymentechhostedpay-var.com www.chasepaymentechhostedpay.com
strict-transport-security
max-age=90; includeSubDomains

Links to (3)

Linked from (2)