indexo.dev

vscpa.com

.com crawl

First seen 2026-06-03 · Last seen 2026-06-04 · ok HTTP/1.1 200 2100 ms crawled 2026-06-03

US · 54.221.219.77 · AS14618 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Virginia Society of CPAs
Language
en

Technology

Server
Caddy
Stack
PHP
Fonts
  • Google Fonts

Third-party hosts loaded (3)

  • fonts.googleapis.com×2
  • cdnjs.cloudflare.com×1
  • fonts.gstatic.com×1

Social

Contact

Email
Phone

Registration

Registrar
DomainSpot LLC
Created
1996-05-01
Expires
2027-05-02 331 days left
Updated
2018-04-25
Name servers
  • ns1.domaindiscover.com
  • ns2.domaindiscover.com

DNS records live

NS
  • ns1.domaindiscover.com
  • ns2.domaindiscover.com
MX
  • 0 vscpa-com.mail.eo.outlook.com
TXT
  • eeo2sjfl7r9go6jdkc7p24gqa2
  • MS=7DD7591A184DE62F47E956F081B63C9C658F1C7D
  • lcdwAgRSZ/Lsh3xSlIMsTE27/ifQREAJWK1DomLePWoddkItYbae3iKRjdw0TQ70bLIUm3bbEQEi9R4mUqtwaA==
Verified for
  • Google

Email authentication strong

SPF
v=spf1 a mx ip4:50.251.114.200/29 ip4:207.159.90.16/28 ip4:208.72.56.0/22 ip4:64.39.51.0/24 ip6:2602:ffb8::/36 include:spf.protection.outlook.com include:mailgun.org include:msgfocus.com include:amazonses.com -all
strict (-all)
DMARC
v=DMARC1; p=reject; pct=100; fo=1; ri=3600; aspf=r; rua=mailto:26b1085@dmarc.mailgun.org,mailto:4bb856e1@inbox.ondmarc.com,mailto:jsyer@vscpa.com; ruf=mailto:26b1085@dmarc.mailgun.org,mailto:4bb856e1@inbox.ondmarc.com;
policy: reject (enforced)
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC+2QTNtJ3XPmS39Sw9YYWuw+875sp67INxOImczPFfrqgxhXHVaj77fVxyHdmEMPmmQarc//a8EcCLJZz2Hc…
  • k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCkf8QM/8q5z9IqdIaYC/pUBgRwQizmOE3Thpu2/DwC3E0OhuwzKRQ8C3idmC7gUWBaGVOHjCbwuicDCaHnyJYbkjn9AZn…
selectors probed

Certificate (current)

E7
from 2026-05-06 to 2026-08-04
Expires in 60 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://www.vscpa.com/

present
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
geolocation=(), microphone=()
x-content-type-options
nosniff
content-security-policy
default-src 'self' 'unsafe-inline' 'unsafe-eval' https://addsearch.com https://*.addsearch.com https://www.canva.com https://cdnjs.cloudflare.com https://*.cdn2.hubspot.net https://*.cookiebot.com https://*.facebook.net https://feathr.co https://*.feathr.co https://www.formilla.com https://*.flickr.com https://online.flippingbook.com https://*.flmngr.com https://forms.office.com https://google.com https://googleads.g.doubleclick.net https://*.google.com https://*.googleadservices.com https://*.googleapis.com https://*.google-analytics.com https://*.googletagmanager.com https://*.gstatic.com https://*.highroadsolution.com https://*.hotjar.com https://*.hsforms.net https://*.hs-analytics.net https://*.hs-collectedforms.net https://js.hs-banner.com https://*.hs-scripts.com https://*.hubspotusercontent.com https://*.hubspot.com https://insights.aicpa.org https://widget.intercom.io https://snap.licdn.com https://*.issuu.com https://*.ads.linkedin.com https://*.magnetmail.net https://*.marke

Links to (11)

Linked from (2)