indexo.dev

trucool.com

.com crawl

First seen 2026-05-11 · Last seen 2026-05-17 · ok HTTP/1.1 200 16300 ms crawled 2026-05-17

DE · 178.13.113.30 · AS3209 Vodafone GmbH

Reputation 100/100

Classifying

HTML metadata

Title
Tru-Cool thermal products. Tru-Cool. Drive Hard. Rest Easy.
Description
Extend the life of your transmission and avoid costly repairs with Tru-Cool® transmission and engine coolers. Keep your operating temperatures low, even in harsh conditions, and protect the vehicle you rely on.

Technology

Server
Microsoft-IIS

Registration

Registrar
Network Solutions, LLC
Created
2004-05-26
Expires
2029-05-26 1103 days left
Updated
2026-04-22
Name servers
  • ns1-32.azure-dns.com
  • ns2-32.azure-dns.net
  • ns3-32.azure-dns.org
  • ns4-32.azure-dns.info

DNS records live

NS
  • ns1-32.azure-dns.com
  • ns2-32.azure-dns.net
  • ns3-32.azure-dns.org
  • ns4-32.azure-dns.info

Email authentication no MX

SPF
v=spf1 -all
strict (-all)
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

R12
from 2026-05-10 to 2026-08-08
Expires in 81 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.trucool.com/EN/Home.aspx

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
  • cross-origin-opener-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
accelerometer=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(self), geolocation=(self), microphone=()
x-content-type-options
nosniff
content-security-policy
default-src 'self' dana.newsletter.mg-l.com; style-src 'self' 'unsafe-inline'; script-src 'self' 'nonce-e57b592a64-1e73-9b13-1779013417' 'unsafe-inline' 'unsafe-hashes' *.google-analytics.com *.analytics.google.com *.googletagmanager.com reinz.portal.mg-l.de; connect-src 'self' spicerparts.com *.google-analytics.com *.analytics.google.com *.googletagmanager.com *.g.doubleclick.net *.google.com; img-src 'self' dana.newsletter.mg-l.com *.google-analytics.com *.analytics.google.com *.googletagmanager.com *.g.doubleclick.net *.google.com; frame-src 'self' www.youtube-nocookie.com www.youtube.com www.google.com reinz.portal.mg-l.de dana.newsletter.mg-l.com ows-cdn.tecdoc.net;object-src 'none';base-uri 'self'; frame-ancestors 'self' dana.newsletter.mg-l.com; form-action 'self' dana.newsletter.mg-l.com;
strict-transport-security
max-age=31536000; includeSubDomains
cross-origin-opener-policy
same-origin-allow-popups

Links to (4)

Linked from (3)