aia.de

.de crawl

First seen 2026-04-15 · Last seen 2026-05-17 · ok HTTP/1.1 200 1342 ms crawled 2026-05-09

DE · 188.34.185.167 · AS24940 Hetzner Online GmbH

Reputation 62/100 listed in spam blocklist weak security headers no dmarc policy

Classifying

HTML metadata

Title: Berufshaftpflichtversicherung für Architekten & Ingenieure | Versicherungsmakler: AIA
Description: Wir beraten Architekten und Ingenieure zu Berufshaftpflicht und weiteren beruflichen sowie privaten Versicherungen. Von Architekten für Architekten und Ingenieure.
Language: de
Canonical: https://www.aia.de/

Open Graph

title: AIA
description: Wir beraten Architekten und Ingenieure zu Berufshaftpflicht und weiteren beruflichen sowie privaten Versicherungen. Von Architekten für Architekten und Ingenieure.

Technology

Server: nginx

Social

Contact

Email

werbewiderruf@aia.de

Phone

+49211493650

Registration

Updated

2026-01-06

Name servers

helium.ns.hetzner.de.
hydrogen.ns.hetzner.com.
oxygen.ns.hetzner.com.

DNS records live

NS

helium.ns.hetzner.de
hydrogen.ns.hetzner.com
oxygen.ns.hetzner.com

MX

10 aesgfau.in.tmes.trendmicro.eu

TXT

MS=1BEDE12F897BB282D1CEF0DF2D7BE68E9FA8C53C
atlassian-sending-domain-verification=78ba57f0-a688-4af3-b683-be6504d1bcd4
tmes=dd504f778b72f62cadbf93f65a9e32f0

Verified for

Microsoft
Microsoft 365

Email authentication weak

SPF

v=spf1 mx ip4:88.198.91.82/32 ip4:142.132.186.52/32 ip4:88.99.36.23 ip6:2a01:4f8:c013:f2b0::1 ip6:2a01:4f8:c012:a64d::1/64 ip6:2a01:4f8:1c17:f5cc::1/64 include:spf.tmes.trendmicro.com include:_spf.getresponse.com include:amazonses.com include:spf.protection.outlook.com include:spf-de.emailsignatures365.com -all

strict (-all)

DMARC

not published

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4qZh1/yA/EEN27IJMXcYhvUQOZDihxHBuhXJAC1GUPh13Eyti/hKAnnHdKpPVRRxueNQwyoD64flk3…

selectors probed

Certificate (current)

Sectigo Public Server Authentication CA DV R36

from 2025-07-23 to 2026-08-24

Expires in 95 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://www.aia.de/

present

content-security-policy

findings

missing HSTS
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection
missing content type protection
missing Referrer Policy
missing Permissions Policy

Header values

content-security-policy: default-src 'self'; script-src 'nonce-LXfpaiZHHNnZWX2Xxnbr7SQyvkulgOydBr2TNFcyc5TT_dj2PND_xw' 'strict-dynamic' 'report-sample'; style-src-attr 'unsafe-inline' 'report-sample'; img-src 'self' data: *.ytimg.com *.vimeocdn.com https://*.google-analytics.com https://*.googletagmanager.com https://*.podigee-cdn.net/ https://stats.g.doubleclick.net https://*.google.de https://*.google.com https://*.google.ad https://*.google.ae https://*.google.com.af https://*.google.com.ag https://*.google.al https://*.google.am https://*.google.co.ao https://*.google.com.ar https://*.google.as https://*.google.at https://*.google.com.au https://*.google.az https://*.google.ba https://*.google.com.bd https://*.google.be https://*.google.bf https://*.google.bg https://*.google.com.bh https://*.google.bi https://*.google.bj https://*.google.com.bn https://*.google.com.bo https://*.google.com.br https://*.google.bs https://*.google.bt https://*.google.co.bw https://*.google.by https://*.google.com.bz https://

Links to (2)

instagram.com×2
linkedin.com×2