indexo.dev

windstreamhosting.com

.com dns

First seen 2026-05-02 · Last seen 2026-05-16 · ok HTTP/1.1 200 2093 ms crawled 2026-05-09

CA · 64.29.155.178 · AS30447 Internet Names For Business Inc.

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
Windstream Domain Services
Description
Windstream Hosting provides Website Hosting, Email Hosting, DNS Hosting, Domain Registration, Sitelock Website Security, Fax to Email Services.
Language
en

Registration

Registrar
Tucows Domains Inc.
Created
2006-06-13
Expires
2026-06-13 25 days left
Updated
2025-05-15
Name servers
  • ns5-auth.windstream.net
  • ns6-auth.windstream.net
  • ns7-auth.windstream.net
  • ns8-auth.windstream.net

DNS records live

NS
  • ns5-auth.windstream.net
  • ns6-auth.windstream.net
  • ns7-auth.windstream.net
  • ns8-auth.windstream.net
MX
  • 10 mx1c25.carrierzone.com
  • 100 mx2c25.carrierzone.com
  • 110 mx3c25.carrierzone.com
  • 120 mx4c25.carrierzone.com
TXT
  • ppe-f8c0d48838b1a78f4722

Email authentication weak

SPF
v=spf1 ip4:69.49.97.0/24 ip4:209.235.140.0/24 ip4:64.29.147.0/24 ip4:64.29.145.0/24 ip4:64.29.144.240/29 ip4:209.235.143.8/29 include:spfcorpmr.carrierzone.com include:spfappmr.carrierzone.com a:dispatch-us.ppe-hosted.com ~all
softfail (~all)
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

Sectigo Public Server Authentication CA DV R36
from 2025-06-19 to 2026-06-20
Expires in 32 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://windstreamhosting.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self'; allow * 'unsafe-eval' 'unsafe-inline'; script-src * 'unsafe-inline' 'unsafe-eval' *.windstreamhosting.com *.google-analytics.com *.googleapis.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; *.windstreamhosting.com;font-src 'self' https://fonts.gstatic.com data:
strict-transport-security
max-age=31536000; includeSubDomains; preload

Links to (1)