indexo.dev

xcgear.com

.com crawl

First seen 2026-04-12 · Last seen 2026-05-20 · ok HTTP/1.1 200 1593 ms crawled 2026-05-20

US · 34.74.140.236 · AS396982 Google LLC

Reputation 89/100 weak security headers dmarc monitor-only

sector automotive type ecommerce

HTML metadata

Title
Dirt Bike Handlebar Mounts and Foot Pegs - XCGEAR
Description
Race-proven vibration reduction bar mounts and foot pegs for dirt bikes.
Language
en-US
Generator
Elementor 4.0.2; features: additional_custom_breakpoints; settings: css_print_method-external, google_font-enabled, font_display-auto
Canonical
https://xcgear.com/
Feeds

Open Graph

url
https://xcgear.com/
title
Home
locale
en_US
site name
XCGEAR
description
Race-proven vibration reduction bar mounts and foot pegs for dirt bikes.

Technology

Server
nginx
CMS
WordPress 4.0.2 outdated (current 6.8)
jQuery
3.7.1
Analytics
  • Google Tag Manager

Third-party hosts loaded (3)

  • stats.wp.com×2
  • gmpg.org×1
  • www.googletagmanager.com×1

Social

Contact

Email

Registration

Registrar
Launchpad.com Inc.
Created
2011-04-20
Expires
2027-04-20 333 days left
Updated
2026-04-05
Name servers
  • ns1.datamartinc.org
  • ns2.datamartinc.org

DNS records live

NS
  • ns1.datamartinc.org
  • ns2.datamartinc.org
MX
  • 1 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
Verified for
  • Google

Email authentication partial

SPF
v=spf1 ip4:162.241.143.138 ip4:162.214.12.159 ip4:34.74.140.236 +a +mx +ip4:198.57.133.111 ~all
softfail (~all)
DMARC
v=DMARC1; p=none;
policy: none (monitoring only)
DKIM
  • default: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzSZ82SPXE6Mk8wCG91A6d7k0ZoKdj7wXHwoQhsARcBlDIJzXvLNFkjmec/xzJlK2ZrmYPtgMMrJHHd…
selectors probed

Certificate (current)

R12
from 2026-04-28 to 2026-07-27
Expires in 66 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 35/100 Checked live page: https://xcgear.com/

present
  • permissions-policy
findings
  • missing HSTS
  • missing Content Security Policy
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
Header values
permissions-policy
private-state-token-redemption=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com"), private-state-token-issuance=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com")

Links to (5)

Linked from (1)