cinestar.de

.de crawl

First seen 2026-04-17 · Last seen 2026-05-17 · ok HTTP/1.1 200 829 ms crawled 2026-05-11

DE · 195.192.157.90 · AS25291 SysEleven GmbH

Reputation 100/100

Classifying

HTML metadata

Title: Cinestar: So macht Kino Spaß!
Description: CineStar Kinos Deutschland: Kinofilme ✔ Tickets ✔ Trailer ✔ 3D Kino ✔ das aktuelle Kinoprogramm, sowie Infos zu Events & Stars finden Sie hier!
Language: de

Open Graph

url: https://www.cinestar.de/
title: Cinestar: So macht Kino Spaß!
description: CineStar Kinos Deutschland: Kinofilme ✔ Tickets ✔ Trailer ✔ 3D Kino ✔ das aktuelle Kinoprogramm, sowie Infos zu Events & Stars finden Sie hier!

Technology

Server: nginx

Third-party hosts loaded (2)

cdn.privacy-mgmt.com×1
my.hellobar.com×1

Social

Registration

Updated

2012-02-14

Name servers

ns21.routing.net.
ns22.routing.net.
ns8.routing.net.
ns9.routing.net.
ns.routing.net.

DNS records live

NS

ns.routing.net
ns21.routing.net
ns22.routing.net
ns3.routing.net
ns8.routing.net
ns9.routing.net

MX

10 mx16a.antispameurope.com
20 mx16b.antispameurope.com
30 mx16c.antispameurope.com
40 mx16d.antispameurope.com

TXT

MS=DE8514969903189FD3D956ADC023B6F207DA3800
apple-domain-verification=SXCQ5Va8K9UEVwc3

Email authentication strong

SPF

v=spf1 include:spf.hornetsecurity.com include:newsserver.cinestar.de a:cinestar.managed-otrs.com ip4:195.222.249.116 ip4:195.222.249.117 ip4:195.222.249.118  ip4:195.222.249.123 ip4:195.222.192.252 ip4:195.222.192.253 ip4:195.222.192.254 ~all

softfail (~all)

DMARC

v=DMARC1;p=quarantine;pct=30;rua=mailto:dmarc@cinestar.de

policy: quarantine · pct=30

DKIM

dkim: v=DKIM1; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1pvjJi6xdq6iOwTINdqfOM7bZhv/t93PFvz8+5zTygXISUETeDZ0IEs9nudum4KgaPcc4e25k7YSIeA3DGeFh…

selectors probed

Certificate (current)

Thawte TLS RSA CA G1

from 2025-10-27 to 2026-10-28

Expires in 162 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 60/100 Checked live page: https://www.cinestar.de/

present

strict-transport-security
content-security-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection
missing content type protection
missing Referrer Policy
missing Permissions Policy

Header values

content-security-policy: default-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' *.cinestar.de *.googletagmanager.com *.googleadservices.com *.googletagservices.com *.google.com *.google.de *.gstatic.com *.google-analytics.com gdpr.mandarin-medien.de *.ioam.de *.doubleclick.net bat.bing.com bat.bing.net *.facebook.com *.facebook.net *.googlesyndication.com gdpr.mandarin-medien.de *.spotify.com streaming.cinestar.de streaming.cinestar.sys11.stakkle.com:81 streaming1.cinestar.de streaming1.cinestar.de:81 ff-schlingel.de *.stroeerdigitalgroup.de *.doubleverify.com *.m6r.eu *.adagio.io *.adaptmx.com *.adbility-media.com *.addefend.com *.adform.com *.adition.com *.admanmedia.com *.adnami.io *.adnuntius.com *.adrule.net *.adtriba.com *.adup-tech.com *.advanced-store.com *.adyoulike.com *.agma-mmc.de *.amazon.com *.amobee.com *.appnexus.com *.audienceproject.com *.avantisteam.com *.bam-interactive.de *.bannernow.com *.bidswitch.com *.blis.com *.brightcom.com *.bttrads.com *.cloudtechnologies.pl *.communicationad
strict-transport-security: max-age=16368001, max-age=16368001