indexo.dev

vnglimitedtimeoffer.com

.com crawl

First seen 2026-04-23 · Last seen 2026-05-14 · ok HTTP/1.1 200 12115 ms crawled 2026-05-17

US · 45.60.240.214 · AS19551 Incapsula Inc

Reputation 100/100

sector other type homepage

HTML metadata

Title
Virginia Natural Gas Limited Time Offer Site
Language
en

Technology

Server
Sucuri
CMS
Gatsby
Fonts
  • Google Fonts

Third-party hosts loaded (2)

  • fonts.googleapis.com×2
  • fonts.gstatic.com×1

Registration

Registrar
GoDaddy.com, LLC
Created
2025-11-21
Expires
2026-11-21 184 days left
Updated
2026-02-13
Name servers
  • southern1.scsnet.com
  • southern2.scsnet.com

DNS records live

NS
  • ns1.a0.impervasecuredns.net
  • ns1.a1.impervasecuredns.net
  • ns1.a2.impervasecuredns.net
MX
  • 10 mail.vnglimitedtimeoffer.com

Email authentication strong

SPF
v=spf1 +a +mx +ip4:209.87.149.209 include:relay.mailchannels.net
no all qualifier
DMARC
v=DMARC1; p=reject; aspf=r; fo=1; rua=mailto:dmarc_rua@emaildefense.proofpoint.com; ruf=mailto:dmarc_ruf@emaildefense.proofpoint.com
policy: reject (enforced)
DKIM
  • default: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvTVYZPnmBaH9gAKke62XG2hiqWi69vPfMCfnhfoWH7OPt3RH3N1UYwL/IdWE8Msv632th7DQMOoGwA…
selectors probed

Certificate (current)

GlobalSign Atlas R3 DV TLS CA 2026 Q1
from 2026-03-30 to 2026-06-28
Expires in 39 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://vnglimitedtimeoffer.com/default/welcome/

present
  • strict-transport-security
  • content-security-policy
  • content-security-policy-report-only
  • x-frame-options
  • x-content-type-options
findings
  • weak frame protection
  • weak content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN, SAMEORIGIN, SAMEORIGIN
x-content-type-options
nosniff, nosniff
content-security-policy
upgrade-insecure-requests;
strict-transport-security
max-age=31536000
content-security-policy-report-only
font-src fonts.gstatic.com use.typekit.net *.typekit.net *.gstatic.com data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.paypal.com *.authorize.net *.cardinalcommerce.com 3ds-secure.cardcomplete.com www.clicksafe.lloydstsb.com pay.activa-card.com *.wirecard.com acs.sia.eu *.touchtechpayments.com www.securesuite.co.uk rsa3dsauth.com *.monzo.com *.arcot.com *.wlp-acs.com * 'self' 'unsafe-inline'; frame-ancestors *.certcapture.com *.authorize.net 'self'; frame-src fast.amc.demdex.net *.adobe.com bid.g.doubleclick.net *.youtube.com *.youtube-nocookie.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.paypal.com www.san

Linked from (1)