bonarea-assegura.com

.com crawl

First seen 2026-04-23 · Last seen 2026-05-17 · ok HTTP/1.1 200 8255 ms crawled 2026-05-17

DE · 18.156.16.255 · AS16509 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title: bonÀrea Assegura

Technology

Analytics

Google Tag Manager

Cookie consent

OneTrust

Fonts

Google Fonts

Third-party hosts loaded (4)

cdn.cookielaw.org×1
cdnjs.cloudflare.com×1
fonts.googleapis.com×1
www.googletagmanager.com×1

Social

Contact

Phone

Address

Traspalau, 825210 Guissona (Lleida)

Registration

Registrar

SW Hosting & Communications Technologies SL dba Serveisweb

Created

2017-03-03

Expires

2027-03-03 286 days left

Updated

2026-02-27

Name servers

ns1.cag.es
ns2.cag.es

DNS records live

NS

ns1.cag.es
ns2.cag.es

MX

10 eu-esec-02.heimdalsecurity.com
20 eu-esec-01.heimdalsecurity.com

Email authentication strong

SPF: v=spf1 include:spf-esec.heimdalsecurity.com ip4:195.77.119.4/32 -all
strict (-all)
DMARC: v=DMARC1; p=quarantine; rua=mailto:dmarc_agg@vali.email;
policy: quarantine
DKIM: no key found at common selectors

Certificate (current)

R12

from 2026-05-11 to 2026-08-09

Expires in 80 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://bonarea-assegura.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'none'; connect-src 'self' https://*.bonarea-agrupa.com https://*.onetrust.com https://*.cookielaw.org https://*.windows.net https://*.google.com https://*.doubleclick.net https://*.facebook.com https://*.google-analytics.com https://*.googleapis.com; font-src *; frame-src https://www.google.com https://*.youtube.com; img-src 'self' data: https://*.bonarea-assegura.com https://*.bonarea-agrupa.com https://*.googleapis.com https://*.gstatic.com https://*.cookielaw.org https://*.google-analytics.com https://*.google.com https://*.google.es https://*.googletagmanager.com https://*.windows.net; script-src 'self' 'unsafe-inline' https://*.bonarea-agrupa.com https://*.googleapis.com https://*.cookielaw.org https://*.cloudflare.com https://*.google-analytics.com https://*.google.com https://*.googletagmanager.com https://*.gstatic.com; style-src 'self' 'unsafe-inline' https://*.bonarea-agrupa.com https://fonts.googleapis.com/ https://cdnjs.cloudflare.com
strict-transport-security: max-age=31536000; includeSubDomains; preload