surprisefactory.com

.com crawl

First seen 2026-05-24 · Last seen 2026-05-31 · ok HTTP/1.1 200 7260 ms crawled 2026-05-29

US · 172.67.69.126 · AS13335 Cloudflare, Inc.

Reputation 89/100 weak security headers dmarc monitor-only

Classifying

HTML metadata

Title

Super originele cadeaus: Origineel cadeau geven? Dé Cadeau TOP 10

Description

SurpriseFactory is de enige plek voor een écht origineel cadeau. Kies uit de beste (met zorg geselecteerde) super originele belevenis cadeaus

Language

Canonical

https://www.surprisefactory.com/nl-nl/

Translations

nl ×2
fr

Open Graph

url: https://www.surprisefactory.com/nl-nl/
title: Super originele cadeaus: Origineel cadeau geven? Dé Cadeau TOP 10
locale: nl_NL
site name: SurpriseFactory
description: SurpriseFactory is de enige plek voor een écht origineel cadeau. Kies uit de beste (met zorg geselecteerde) super originele belevenis cadeaus

Technology

CDN: Cloudflare

Third-party hosts loaded (1)

unpkg.com×2

Social

Contact

Phone

+31 (0)10-458 58 10

Address

Kanaalweg 33, 2903 LR, Capelle aan den IJssel, Nederland

Registration

Registrar

Hosting Concepts B.V. d/b/a Registrar.eu

Created

2000-07-07

Expires

2026-07-07 36 days left

Updated

2025-10-30

Name servers

aragorn.ns.cloudflare.com
karsyn.ns.cloudflare.com

DNS records live

NS

aragorn.ns.cloudflare.com
karsyn.ns.cloudflare.com

MX

0 surprisefactory-com.mail.protection.outlook.com
10 mail.surprisefactory.com

TXT

jf89n3x548011f4v1hw5t9fxmm5yxj70

Verified for

Google
Microsoft 365

Email authentication partial

SPF

v=spf1 include:spf.protection.outlook.com include:spf.perplex.hosting -all

strict (-all)

DMARC

v=DMARC1; p=none; sp=none; rua=mailto:watchdog1@watchdog.kevlarr.io; adkim=r; aspf=r;

policy: none (monitoring only) · sp=none

DKIM

selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC+Jt88Dh5waS3lDtAijomZLWyIfaUQWG4cbG7dfF8QBBxaFvFA22wgfXtrxjEgqBbIzTN5isUE08ITQ1328c…

selectors probed

Certificate (current)

WE1

from 2026-05-14 to 2026-08-12

Expires in 73 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 45/100 Checked live page: https://www.surprisefactory.com/nl-nl/

present

content-security-policy

findings

missing HSTS
CSP allows unsafe inline scripts/styles
missing frame protection
missing content type protection
missing Referrer Policy
missing Permissions Policy

Header values

content-security-policy: worker-src blob: 'self';font-src data: 'self';img-src data: https://a.basemaps.cartocdn.com/ https://b.basemaps.cartocdn.com/ https://bat.bing.com/ https://bat.bing.net/ https://c.basemaps.cartocdn.com/ https://d.basemaps.cartocdn.com/ https://data.surprisefactory.com/ https://fonts.gstatic.com https://googleads.g.doubleclick.net/ https://img.sct.eu1.usercentrics.eu/ https://region1.analytics.google.com/ https://stats.g.doubleclick.net https://www.google.com/ https://www.google.nl/ https://www.googletagmanager.com/ 'self';script-src https://bat.bing.com/ https://consent.cookiebot.com https://consent.cookiebot.eu/ https://consentcdn.cookiebot.eu/ https://d5yoctgpv4cpx.cloudfront.net/RUM-BA39526AEC/v4-www.surprisefactory.com.js https://data.surprisefactory.com/ https://googleads.g.doubleclick.net/ https://scripts.clarity.ms/ https://unpkg.com/ https://www.clarity.ms https://www.google.com/ https://www.googletagmanager.com/ https://www.gstatic.com 'self' 'unsafe-eval' 'unsafe-inline';conn