indexo.dev

koeck.de

.de crawl

First seen 2026-05-09 · Last seen 2026-05-15 · ok HTTP/1.1 200 1117 ms crawled 2026-05-15

DE · 81.169.145.152 · AS6724 Strato GmbH

Reputation 100/100

Classifying

HTML metadata

Title
Thermalresort Köck Bad Füssing - 4* Hotel Inkl. Bademantelgang Therme
Description
Hotel Thermalresort Köck Bad Füssing mit einem neu erweiterten Bademantelgang und freuen uns Sie bei uns im Thermalresort Köck zu begrüßen.
Language
de-DE
Generator
WordPress 6.9.4
Canonical
https://koeck.de/
Translations
  • de
  • en
Feeds

Open Graph

url
https://koeck.de/
title
Thermalresort Köck Bad Füssing - 4* Hotel Inkl. Bademantelgang Therme
locale
de_DE
site name
4* Thermalresort Köck inkl. Bademantelgang zur Therme
description
Hotel Thermalresort Köck Bad Füssing mit einem neu erweiterten Bademantelgang und freuen uns Sie bei uns im Thermalresort Köck zu begrüßen.
updated time
2026-03-27T06:50:15+00:00

Technology

Server
Apache
CMS
WordPress
Analytics
  • Google Tag Manager

Third-party hosts loaded (2)

  • gmpg.org×1
  • www.googletagmanager.com×1

Social

Contact

Phone

Registration

Updated
2024-11-08
Name servers
  • docks04.rzone.de.
  • shades12.rzone.de.

DNS records live

NS
  • docks04.rzone.de
  • shades12.rzone.de
MX
  • 20 koeck-de.mail.protection.outlook.com
TXT
  • google-site-verification=4RX-9v3lktcbhEkfVjWUvUUCk7g9B4g4EUGyzlyXrXQ
  • MS=7DF991BA494F2DC0CB7E814ECCB5554F2391E40E

Email authentication strong

SPF
v=spf1 include:spf.protection.outlook.com include:_spf.strato.com -all
strict (-all)
DMARC
v=DMARC1;p=reject;
policy: reject (enforced)
DKIM
no key found at common selectors

Certificate (current)

Sectigo Public Server Authentication CA DV R36
from 2026-03-28 to 2026-10-13
Expires in 146 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 65/100 Checked live page: https://koeck.de/

present
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • weak frame protection
  • weak content type protection
Header values
referrer-policy
strict-origin-when-cross-origin, strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN, SAMEORIGIN
permissions-policy
geolocation=(), microphone=(), camera=(), geolocation=(), microphone=(), camera=()
x-content-type-options
nosniff, nosniff
content-security-policy
default-src 'self' https: data: 'unsafe-inline' 'unsafe-eval'; frame-ancestors 'self';, default-src 'self' https: data: 'unsafe-inline' 'unsafe-eval'; frame-ancestors 'self';

Links to (4)

Linked from (1)