mercaden-dorsten.de

.de crawl

First seen 2026-04-22 · Last seen 2026-05-12 · ok HTTP/1.1 200 4971 ms crawled 2026-05-16

DE · 87.118.88.120 · AS31103 Keyweb AG

Reputation 100/100

Classifying

HTML metadata

Title

Mercaden Dorsten

Description

Egal ob Mode, Beauty, Food, Dekoartikel oder Elektronik. Bei uns finden Sie Alles. Einkaufen in Dorsten- lassen Sie sich inspirieren.

Language

Generator

WordPress 6.9.4

Canonical

https://mercaden-dorsten.de/

Feeds

Open Graph

url: https://mercaden-dorsten.de/
title: Mercaden Dorsten
locale: de_DE
site name: Mercaden Dorsten
description: Egal ob Mode, Beauty, Food, Dekoartikel oder Elektronik. Bei uns finden Sie Alles. Einkaufen in Dorsten- lassen Sie sich inspirieren.

Technology

Server: nginx
CMS: WordPress

Third-party hosts loaded (1)

gmpg.org×1

Social

Contact

Phone

+4936438674416

Address

MERCADEN DorstenWestwall 6146282 Dorsten

Registration

Updated

2025-08-22

Name servers

ns2.km37733.keymachine.de.
ns.km37733.keymachine.de.

DNS records live

NS

ns.km37733.keymachine.de
ns2.km37733.keymachine.de

MX

10 mx01.saller-bau.com

Email authentication strong

SPF

v=spf1 ip4:87.118.88.120 include:spf.protection.outlook.com -all

strict (-all)

DMARC

v=DMARC1; p=quarantine; adkim=s; aspf=s

policy: quarantine

DKIM

default: v=DKIM1; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAufV7lbJ7Vxn1qU1L23REgYth84CKgvZXi/nO/DytwXYYcuOsi+NeV9YAnH0m+j3R8afkBS84SNE02j7FK/3Ik…

selectors probed

Certificate (current)

R13

from 2026-04-20 to 2026-07-19

Expires in 59 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://mercaden-dorsten.de/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: geolocation=(), microphone=(), camera=()
x-content-type-options: nosniff
content-security-policy: default-src 'self' https: data: blob:; base-uri 'self'; form-action 'self'; frame-ancestors 'self'; upgrade-insecure-requests; object-src 'none'; worker-src 'self' blob:; child-src 'self' blob:; img-src 'self' https: data: blob: i.ytimg.com s.ytimg.com *.google.com *.gstatic.com *.googleapis.com *.googleusercontent.com www.gstatic.com *.paypal.com *.paypalobjects.com s3.amazonaws.com *.s3.amazonaws.com s3.*.amazonaws.com; font-src 'self' https: data: fonts.gstatic.com; style-src 'self' https: 'unsafe-inline' fonts.googleapis.com; script-src 'self' https: 'unsafe-inline' 'unsafe-eval' blob: www.youtube.com www.youtube-nocookie.com *.google.com *.gstatic.com *.googleapis.com www.google.com www.gstatic.com www.recaptcha.net www.googletagmanager.com www.google-analytics.com *.paypal.com *.paypalobjects.com login.live.com login.microsoftonline.com; frame-src 'self' www.youtube.com www.youtube-nocookie.com *.google.com www.google.com www.recaptcha.net *.paypal.com login.live.com login.micros
strict-transport-security: max-age=31536000; includeSubDomains; preload

Links to (2)

facebook.com×2
instagram.com×2

Linked from (1)

meindorsten.de×2