donate2.com

.com crawl

First seen 2026-04-13 · Last seen 2026-05-07 · ok HTTP/1.1 200 1487 ms crawled 2026-05-07

US · 162.159.134.42 · AS13335 Cloudflare, Inc.

Reputation 100/100

Classifying

HTML metadata

Title: 2Account – Donate2 | Stream2 | Flex2
Language: en-US
Generator: WordPress 6.9.4
Canonical: https://www.donate2.com/

Technology

CDN: Cloudflare
CMS: WordPress

Analytics

Google Tag Manager

Fonts

Adobe Fonts

Third-party hosts loaded (5)

www.googletagmanager.com×3
cdn-cookieyes.com×1
kit.fontawesome.com×1
use.typekit.net×1
www.google.com×1

Social

Contact

Email

hello@donate2.com

Registration

Registrar

Network Solutions, LLC

Created

2012-02-11

Expires

2027-02-11 268 days left

Updated

2025-12-13

Name servers

ns-1384.awsdns-45.org
ns-1656.awsdns-15.co.uk
ns-494.awsdns-61.com
ns-841.awsdns-41.net

DNS records live

NS

ns-1384.awsdns-45.org
ns-1656.awsdns-15.co.uk
ns-494.awsdns-61.com
ns-841.awsdns-41.net

MX

1 aspmx.l.google.com
10 alt3.aspmx.l.google.com
10 alt4.aspmx.l.google.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

TXT

google-site-verification=jc_NUKpVv1OtunV0oAjksIcwWm93yyd-tyMiiqVNs40
stripe-verification=ad57fac2e5b2eb7ad301f0f0d14e7e63d502bd9879af9bcefa5686f831f64d84

Email authentication strong

SPF

v=spf1 include:_spf.google.com include:amazonses.com include:emsd1.com -all

strict (-all)

DMARC

v=DMARC1; p=quarantine; sp=quarantine; rua=mailto:re+545b1134b6ea@inbound.dmarcdigests.com; pct=100

policy: quarantine · sp=quarantine

DKIM

google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjDUr40E2QK8tvEu60XOkHRt57EGZD+8TLnZy3ZsUXohEkrDP74kDrsbY2AYvI4itNchP02b+C2nTB3…

selectors probed

Certificate (current)

WE1

from 2026-04-22 to 2026-07-21

Expires in 63 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://www.donate2.com/

present

strict-transport-security
content-security-policy
x-content-type-options
referrer-policy
permissions-policy

findings

short HSTS max-age
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection

Header values

referrer-policy: strict-origin-when-cross-origin
permissions-policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), usb=()
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' data: 'unsafe-inline' 'unsafe-eval' https://*; style-src 'self' 'unsafe-inline' https://*; img-src 'self' data: https://*; font-src 'self' data: https://fonts.gstatic.com https://use.fontawesome.com https://use.typekit.net https://ka-p.fontawesome.com; connect-src 'self' https://*; object-src 'none'; frame-src 'self' https://players.brightcove.net https://youtube.com https://www.youtube.com https://www.google.com https://brightcove.net https://www.brightcove.net; frame-ancestors 'self'; worker-src 'self' blob:;
strict-transport-security: max-age=604800; includeSubDomains; preload

Links to (4)

Linked from (1)

lynch2.com×2