indexo.dev

fitandwin.ch

.ch crawl

First seen 2026-05-30 · Last seen 2026-05-31 · ok HTTP/1.1 200 559 ms crawled 2026-05-31

US · 18.165.122.128 · AS16509 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
fit & win : FitLine - Ganzheitliche Ernährungslösungen für mehr Energie und Wohlbefinden
Description
Entdecke innovative Premium-Mikronährstoffprodukte für deine Gesundheit, Fitness und Schönheit - ganzheitlich wirksam von innen und aussen.
Language
de
Generator
Contens
Canonical
https://www.fitandwin.ch/home

Open Graph

url
https://www.fitandwin.ch/home
title
fit & win : FitLine - Ganzheitliche Ernährungslösungen für mehr Energie und Wohlbefinden
description
Entdecke innovative Premium-Mikronährstoffprodukte für deine Gesundheit, Fitness und Schönheit - ganzheitlich wirksam von innen und aussen.

Technology

CDN
Amazon CloudFront
jQuery
3.7.1
Analytics
  • Google Tag Manager

Third-party hosts loaded (2)

  • cdn.cookiehub.eu×1
  • www.googletagmanager.com×1

Social

Contact

Phone

DNS records live

NS
  • ns-1253.awsdns-28.org
  • ns-1967.awsdns-53.co.uk
  • ns-31.awsdns-03.com
  • ns-760.awsdns-31.net
MX
  • 0 fitandwin-ch.mail.protection.outlook.com

Email authentication strong

SPF
v=spf1 include:spf.protection.outlook.com include:spf.creanet.ch include:cemsc.net -all
strict (-all)
DMARC
v=DMARC1;p=quarantine;adkim=s;aspf=s
policy: quarantine
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyH+h8ofCzaQ1Z+aDad25aR2aLw1ibFdnosiXjv3ra9m9fWY4Nczk8lFudTVy1HeBDm7YSa/ktMb2Qa…
selectors probed

Certificate (current)

Amazon RSA 2048 M04
from 2025-10-25 to 2026-11-23
Expires in 175 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.fitandwin.ch/home

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
geolocation=(), microphone=()
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'self' 'strict-dynamic' 'nonce-5E66757B0C5D42DDB2AF1C34E96E4CD4' https://cookiehub.net https://cdn.cookiehub.eu https://www.google.com https://www.googletagmanager.com; style-src 'self' 'unsafe-inline' https://cookiehub.net https://cdn.cookiehub.eu https://*.privacybee.io; img-src 'self' data: https://www.google-analytics.com https://bw.creanet.ch; frame-src 'self' https://www.google.com https://*.youtube.com https://*.youtu.be https://www.youtube-nocookie.com https://bw.creanet.ch; frame-ancestors https://*.creanet.ch; font-src 'self'; form-action 'self'; connect-src 'self' https://region1.google-analytics.com https://*.cookiehub.net https://*.privacybee.io
strict-transport-security
max-age=31536000

Links to (14)

Linked from (1)