autoval.es

.es crawl

First seen 2026-04-17 · Last seen 2026-05-12 · ok HTTP/1.1 200 1666 ms crawled 2026-05-12

ES · 82.223.245.237 · AS8560 IONOS SE

Reputation 94/100 dmarc monitor-only

sector automotive type homepage

HTML metadata

Title: Autoval, Concesionario VOLKSWAGEN, AUDI, VOLKSWAGEN COMERCIALES en Valencia
Description: Concesionario Oficial VOLKSWAGEN, AUDI, VOLKSWAGEN COMERCIALES en Valencia. Vehículos nuevos, de ocasión, segundamano y servicio de taller, recambios y accesorios originales.
Language: es

Technology

Analytics

Google Tag Manager

Cookie consent

OneTrust

Third-party hosts loaded (4)

recursos.motorflash.com×38
fotos.estaticosmf.com×8
cdn.cookielaw.org×1
www.googletagmanager.com×1

Social

DNS records live

NS

ns1.porscheinformatik.com
ns2.porscheinformatik.com

MX

10 autoval-es.mail.protection.outlook.com

TXT

asap-site-verification-2084b5b0-8a7e-4594-86cc-20d581048fa7
atlassian-domain-verification=yLRzT4QAUQld6nhGEkrkS0aPLdR8iEa8aavP/YIWhV9XncZQXezXhaLjnDEwZr4c

Email authentication partial

SPF

v=spf1 ip4:188.40.169.122 ip4:212.68.72.114 include:spf.porsche.co.at include:mx249261.internex.at include:mx247964.internex.at include:spf.protection.outlook.com include:cust-spf.exacttarget.com include:_spf.salesforce.com -all

strict (-all)

DMARC

v=DMARC1; p=none; pct=100; rua=mailto:dmarc-aggregatereport@porscheinformatik.com; ruf=mailto:dmarc-forensikreport@porscheinformatik.com

policy: none (monitoring only)

DKIM

default: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDS2NOs0V+julakvRec1k00D8gUGLoLB58dagGMtRAbkcHxTCIJ1UZgANAawmPOjAoT+vpNDlpDkj52yaat2F…
selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3euKD95ZRbAkEz4V5DuDp/el9N/fBUltC+vUbyFenkW5AyNAQ148Q0vE3r4r0YuSJhzCF0u5XrbudP…

selectors probed

Certificate (current)

from 2026-04-17 to 2026-07-16

Expires in 58 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.autoval.es/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options

findings

CSP allows unsafe inline scripts/styles
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src https: 'self'; style-src https: 'unsafe-inline'; script-src https: 'unsafe-inline';
strict-transport-security: max-age=63072000; includeSubDomains; preload