indexo.dev

molmove.pl

.pl crawl

First seen 2026-05-27 · Last seen 2026-05-30 · ok HTTP/1.1 200 1037 ms crawled 2026-05-30

NL · 20.4.131.85 · AS8075 Microsoft Corporation

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Customer Loyalty PL
Language
pl

Technology

Server
sfdcedge

DNS records live

NS
  • ns1-37.azure-dns.com
  • ns2-37.azure-dns.net
  • ns3-37.azure-dns.org
  • ns4-37.azure-dns.info
MX
  • 10 primary.emea.email.fireeyecloud.com
  • 20 alt1.emea.email.fireeyecloud.com
  • 30 alt2.emea.email.fireeyecloud.com
  • 40 alt3.emea.email.fireeyecloud.com
TXT
  • microsec-verification=4cd916a0-5ce1-4a64-8f67-f99619aea97a-2025-10-08
  • _netlock=663d9ed19c6318886df0cd1965d01f16f811a3c796d6aa1a34c9d642753b23ae
  • LU3NeB+F1cDneW/65IAWCHMdZDqo8INGl2/OxNox2dUhHWLAhsBOp7rsstA2u8r822jNV+plE8KWHJphr07VWg==
Verified for
  • Microsoft 365

Email authentication partial

SPF
v=spf1 +a +mx +ip4:171.31.0.121/32 +ip4:171.31.0.122/32 include:_spf.fireeyecloud.com include:spf.protection.outlook.com -all
strict (-all)
DMARC
v=DMARC1; p=none; fo=1; rua=mailto:dmarc_agg@mol.hu; ruf=mailto:dmarc_afrf@mol.hu
policy: none (monitoring only)
DKIM
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuacRFuX/hkQhKWToh4uaw4Z5X6YY0/n8kT4MpCDTBR/XccYW0+6/2t1wvrackLRI0keNqeatPXkYeVLwHt…
  • s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDXBanH8FKCywZx/6Hx8udw9R9MzSC5CGIVULKm3roTXcHbQxofXd0whbpoMxTuIq2AvBX4Qq8v4Fo7zEYkz9LGQU…
selectors probed

Certificate (current)

e-Szigno SSL CA 2014
from 2025-10-09 to 2026-11-09
Expires in 162 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.molmove.pl/s/?language=pl

present
  • strict-transport-security
  • content-security-policy
  • content-security-policy-report-only
  • x-frame-options
  • x-content-type-options
findings
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
upgrade-insecure-requests, frame-ancestors 'self'; report-uri /_/commcsp?disposition=enforce
strict-transport-security
max-age=63072000; includeSubDomains
content-security-policy-report-only
script-src 'unsafe-inline' 'self' https://payments.salesforce.com/ https://www.googleadservices.com https://stats.g.doubleclick.net https://checkoutshopper-test.adyen.com/ https://www.google.ad https://pal-test.adyen.com https://www.google.ch https://www.google-analytics.com/ https://googleads.g.doubleclick.net https://www.gstatic.com https://checkoutshopper-live.adyen.com/ https://*.adnxs.com https://cdn.content.aws-prod1-useast1.aws.sfdc.cl/ https://www.googletagmanager.com/ https://pwgapp.molmove.pl/ https://www.google.com https://connect.facebook.net https://pay.google.com https://tagmanager.google.com https://www.gstatic.com/recaptcha/ https://uip.canary.lwc.dev https://www.loteria.molmove.pl https://cdn.content.aws-dev2-uswest2.aws.sfdc.cl/ https://acdn.adnxs.com/dmp/up/pixie.js blob: https://www.google.com/recaptcha/ https://js.stripe.com/ https://www.googleapis.com https://*.googletagmanager.com import: https://*.google-analytics.com *.salesforce.com https://www.paypal.com/sdk/

Linked from (1)