indexo.dev

shopto.net

.net crawl

First seen 2026-04-11 · Last seen 2026-05-19 · ok HTTP/1.1 200 3437 ms crawled 2026-05-19

US · 18.165.122.2 · AS16509 Amazon.com, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Buy and Pre-order video games, Consoles, Digital Download, PlayStation, Microsoft, Nintendo, home entertainment, TVs, laptops, tablets. ✓Free UK Delivery | ShopTo.net
Language
en
Canonical
https://www.shopto.net
Translations
  • de
  • en
  • es
  • fr
  • it
  • pt

Technology

CDN
Amazon CloudFront
Server
Apache
Analytics
  • Google Tag Manager
Ads
  • Meta Pixel
Third-party hosts loaded (16)
  • js.braintreegateway.com×7
  • www.googletagmanager.com×3
  • cdnjs.cloudflare.com×2
  • pay.google.com×2
  • widget.trustpilot.com×2
  • www.facebook.com×2
  • angus.finance-calculator.co.uk×1
  • connect.facebook.net×1
  • js.klarna.com×1
  • shopto.de×1
  • www.dwin1.com×1
  • www.google.com×1
  • www.gstatic.com×1
  • www.paypal.com×1
  • www.paypalobjects.com×1
  • www.youtube.com×1

Social

Contact

Phone

Registration

Registrar
CSL Computer Service Langenbach GmbH d/b/a joker.com
Created
2005-12-06
Expires
2027-12-06 564 days left
Updated
2025-01-26
Name servers
  • ns-1227.awsdns-25.org
  • ns-1980.awsdns-55.co.uk
  • ns-349.awsdns-43.com
  • ns-957.awsdns-55.net

DNS records live

NS
  • ns-1227.awsdns-25.org
  • ns-1980.awsdns-55.co.uk
  • ns-349.awsdns-43.com
  • ns-957.awsdns-55.net
MX
  • 1 shopto-net.mail.protection.outlook.com
  • 50 mail.shopto.net
  • 500 mailing.shopto.net
TXT
  • v=DMARC1; p=none; rua=mailto:it@shopto.net;
Verified for
  • Google

Email authentication partial

SPF
v=spf1 include:_spf.mailersend.net include:spf1.shopto.net include:spf2.shopto.net -all
strict (-all)
DMARC
v=DMARC1; p=none
policy: none (monitoring only)
DKIM
  • k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…
  • s1: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDRtDNSz0gSHy9D0iUmUokAoiC1wKRD9u25MlhhVxqBwMgW+VODxZnBcRCOdviQIEZ2A0hBCukWR8tgLqyP3AdA9G…
  • s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDObkhC+N4A6zLhcKLYd23vel/KN12JZwhAt9Fwk2DheeZa5Vm2jdrTvG6PM/jkmuAFo6NVOs8XoByLrE2+GFmZko…
selectors probed

Certificate (current)

Sectigo Public Server Authentication CA DV R36
from 2025-06-11 to 2026-07-13
Expires in 53 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.shopto.net/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • missing Permissions Policy
Header values
referrer-policy
no-referrer-when-downgrade
x-frame-options
sameorigin
x-content-type-options
nosniff
content-security-policy
default-src 'self' https:;connect-src 'self' https: wss: blob:;font-src 'self' data: https:;img-src 'self' blob: data: https:;script-src 'self' 'unsafe-eval' 'unsafe-inline' https:;script-src-elem 'self' 'unsafe-eval' 'unsafe-inline' https:;style-src 'self' 'unsafe-inline' https:;frame-src 'self' https:;frame-ancestors 'self' https:;object-src 'none';
strict-transport-security
max-age=31536000; includeSubDomains; preload, max-age=31536000

Links to (8)

Linked from (2)