indexo.dev

vixa.co.uk

.uk crawl

First seen 2026-04-15 · Last seen 2026-05-07 · ok HTTP/1.1 200 1672 ms crawled 2026-05-10

US · 104.18.19.237 · AS13335 Cloudflare, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Car Health Assistant | Don't let car troubles ruin your day
Description
Simplify car care - just plug in the device and get personalised insights to your phone, with proactive alerts if Vixa detects an issue. No guesswork, no surprises, no interruptions.
Language
en
Canonical
https://vixa.co.uk

Open Graph

title
Car Health Assistant | Don't let car troubles ruin your day
description
Simplify car care - just plug in the device and get personalised insights to your phone, with proactive alerts if Vixa detects an issue. No guesswork, no surprises, no interruptions.

Technology

CDN
Cloudflare
CMS
Next.js
Analytics
  • Google Analytics
  • Google Tag Manager

Third-party hosts loaded (3)

  • images.ctfassets.net×13
  • www.google-analytics.com×1
  • www.googletagmanager.com×1

Contact

Phone

Registration

Registrar
Nom-IQ Limited t/a Com Laude
Created
2016-05-12
Expires
2027-05-12 357 days left
Updated
2026-03-28
Name servers
  • dns1.comlaude-dns.com.
  • dns2.comlaude-dns.net.
  • dns3.comlaude-dns.co.uk.
  • dns4.comlaude-dns.eu.

DNS records live

NS
  • dns1.comlaude-dns.com
  • dns2.comlaude-dns.net
  • dns3.comlaude-dns.co.uk
  • dns4.comlaude-dns.eu
MX
  • 0 vixa-co-uk.mail.protection.outlook.com
TXT
  • MS=ms24161695
  • google-site-verification=C3wzRfxFzL9ncu2YoUwIK6TLFTTDteRvVS8VDPefTaU

Email authentication strong

SPF
v=spf1 include:spf.protection.outlook.com include:mailgun.org ~all
softfail (~all)
DMARC
v=DMARC1; p=reject; pct=100; fo=1; ri=3600; rua=mailto:d0ab8d67@inbox.ondmarc.com; ruf=mailto:d0ab8d67@inbox.ondmarc.com;
policy: reject (enforced)
DKIM
no key found at common selectors

Certificate (current)

WE1
from 2026-03-30 to 2026-06-28
Expires in 39 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://vixa.co.uk/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
same-origin, strict-origin-when-cross-origin
x-frame-options
deny
x-content-type-options
nosniff
content-security-policy
base-uri 'self'; default-src 'self'; object-src 'self'; style-src 'self' 'unsafe-inline'; connect-src 'self' https://api.vixa.co.uk https://api.digital.theaa.com https://*.jscrambler.com https://api.uk.exponea.com https://*.posthog.com https://the.sciencebehindecommerce.com https://*.reddit.com https://www.redditstatic.com https://www.facebook.com https://api.stripe.com https://maps.googleapis.com https://bat.bing.com https://*.onetrust.com https://*.analytics.google.com https://google.com https://*.google.com https://google.co.uk https://*.google.co.uk https://*.google-analytics.com https://*.googlesyndication.com https://*.doubleclick.net/ https://analytics.tiktok.com https://analytics-ipv6.tiktokw.us https://ads.tiktok.com; frame-src 'self' bytedance: sslocal: https://www.googletagmanager.com/ https://td.doubleclick.net https://connect-js.stripe.com https://js.stripe.com; script-src 'self' 'nonce-OGY4N2EwN2EtY2RjYS00YWE5LTkyYzctNjY3MjBmNzhmYTUw' 'strict-dynamic' https://*.jscrambler
strict-transport-security
max-age=15552000; includeSubDomains

Links to (2)

Linked from (1)