indexo.dev

mobiviseudaolafoes.pt

.pt crawl

First seen 2026-05-27 · Last seen 2026-05-27 · ok HTTP/1.1 200 542 ms crawled 2026-05-30

PT · 185.240.248.99 · AS39384 Dream Fusion - IT Services, Lda

Reputation 100/100

Classifying

HTML metadata

Title
MobiViseuDãoLafões

Technology

Server
Kestrel
jQuery
3.6.4
Fonts
  • Google Fonts

Third-party hosts loaded (4)

  • cdnjs.cloudflare.com×12
  • fonts.googleapis.com×2
  • main.transdev-widget.pages.dev×1
  • maps.googleapis.com×1

DNS records live

NS
  • nsw10.wtservers.com
  • nsw9.wtservers.com
MX
  • 10 mail.mobiviseudaolafoes.pt

Email authentication strong

SPF
v=spf1 +a +mx +include:spf.redewt.net -all
strict (-all)
DMARC
v=DMARC1; p=quarantine; adkim=s; aspf=s
policy: quarantine
DKIM
  • default: v=DKIM1; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnOazK9D75xl5P7w9NPCr8jPb+Oi9gtpLxFOUlSktybw96ZdnHhnHliiclDV+uhbjsDAIG5fHNPmyMHc3zCLqm…
selectors probed

Certificate (current)

R12
from 2026-05-24 to 2026-08-22
Expires in 82 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 65/100 Checked live page: https://mobiviseudaolafoes.pt/

present
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'none';connect-src 'self' https://maps.googleapis.com https://vdl.elevensystems.pt https://mobiviseudaolafoes.pt https://cxppusa1formui01cdnsa01-endpoint.azureedge.net https://assets-eur.mkt.dynamics.com https://public-eur.mkt.dynamics.com https://mycrmprod.crm4.dynamics.com https://6fdaf3d30195ed01a36cc0eaf68205.50.environment.api.powerplatform.com/ https://agent-server-transdev-staging.devupgraide.com wss://agent-server-transdev-staging.devupgraide.com;img-src 'self' https://vdl.elevensystems.pt https://mobiviseudaolafoes.pt https://main.transdev-widget.pages.dev https://maps.gstatic.com https://maps.googleapis.com blob: data:;font-src 'self' https://fonts.googleapis.com https://fonts.gstatic.com https://cdnjs.cloudflare.com;style-src 'self' 'unsafe-inline' https://cdnjs.cloudflare.com https://fonts.googleapis.com;frame-ancestors 'self';frame-src 'self' https://www.google.com;script-src 'self' 'strict-dynamic' 'nonce-5wTi7qCa9+bvym8+eXklwLPG957rNH9A7mS6OA3QAgo=';

Links to (5)

Linked from (1)