indexo.dev

lehvoss-nutrition.com

.com crawl

First seen 2026-04-13 · Last seen 2026-05-07 · ok HTTP/1.1 200 2997 ms crawled 2026-05-07

FR · 188.165.64.162 · AS16276 OVH SAS

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
Home - LEHVOSS Nutrition
Description
The Nutritional Division source, approve and distribute active ingredients mainly to the Health Food Supplement and Food industries.
Language
en-gb
Generator
Joomla! - Open Source Content Management

Technology

CMS
Joomla

Third-party hosts loaded (1)

  • www.1a3c9a8ebcc58dac607cdcc47329d03d-gdprlock×1

Registration

Registrar
united-domains GmbH
Created
2019-04-23
Expires
2027-04-23 337 days left
Updated
2026-04-24
Name servers
  • ns.udag.de
  • ns.udag.net
  • ns.udag.org

DNS records live

NS
  • ns.udag.de
  • ns.udag.net
  • ns.udag.org
MX
  • 10 smx00.udag.de
  • 10 smx01.udag.de
TXT
  • v=DKIM1;s=email;t=s;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDBy6lvK4Lxg9h1yc99GyuXIev2ku3EIep3f/dlXfbAl/y0Hx4KBO1dmyOKQYAzU/MSJ9X3+dBaUjnwNVu4t5P4VJlqrcZGJJRYGPvOyba6OlpxgXL1ayDKGIrEPq9EXJruHgPzWq3eeizwx2SRoNCKn1qQV639WB6dD/wIf9hPywIDAQAB

Email authentication partial

SPF
v=spf1 mx include:_spf.mailhub.it a ~all
softfail (~all)
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

R13
from 2026-03-15 to 2026-06-13
Expires in 23 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.lehvoss-nutrition.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • weak frame protection
  • weak content type protection
Header values
referrer-policy
no-referrer-when-downgrade
x-frame-options
SAMEORIGIN;
permissions-policy
geolocation=(*), midi=(*), camera=(*), usb=(*), magnetometer=(*), accelerometer=(*), vr=(*), speaker=(*), ambient-light-sensor=(*), gyroscope=(*), microphone=(*)
x-content-type-options
nosniff;
content-security-policy
default-src 'self' api.acymailing.com web.aisle7.net *.googleapis.com *.gstatic.com *.google-analytics.com www.youtube.com *.youtube.com www.youtube-nocookie.com www.google.com/recaptcha/ img.youtube.com stackpath.bootstrapcdn.com maxcdn.bootstrapcdn.com player.vimeo.com *.vimeocdn.com *.ytimg.com www.google.com/jsapi code.jquery.com *.googletagmanager.com tagassistant.google.com translate.google.com; style-src 'self' 'unsafe-inline' api.acymailing.com web.aisle7.net *.googleapis.com *.gstatic.com *.google-analytics.com www.youtube.com *.youtube.com www.youtube-nocookie.com www.google.com/recaptcha/ img.youtube.com stackpath.bootstrapcdn.com maxcdn.bootstrapcdn.com player.vimeo.com *.vimeocdn.com *.ytimg.com www.google.com/jsapi code.jquery.com *.googletagmanager.com tagassistant.google.com translate.google.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' api.acymailing.com web.aisle7.net *.googleapis.com *.gstatic.com *.google-analytics.com www.youtube.com *.youtube.com www.you
strict-transport-security
max-age=31536000; includeSubDomains;

Links to (5)

Linked from (1)