indexo.dev

mv4you.de

.de crawl

First seen 2026-04-19 · Last seen 2026-05-18 · ok HTTP/1.1 200 1260 ms crawled 2026-05-13

DE · 45.136.29.18 · AS197540 netcup GmbH

Reputation 94/100 dmarc monitor-only

sector other type homepage

HTML metadata

Title
Startseite - mv4you
Language
de

Technology

Server
Apache
Analytics
  • Google Tag Manager

Third-party hosts loaded (3)

  • ta57f6673.emailsys1a.net×2
  • cc.werk3.de×1
  • www.googletagmanager.com×1

Social

Contact

Email
Phone

Registration

Updated
2026-02-17
Name servers
  • a.ns14.net.
  • b.ns14.net.
  • c.ns14.net.
  • d.ns14.net.

DNS records live

NS
  • a.ns14.net
  • b.ns14.net
  • c.ns14.net
  • d.ns14.net
MX
  • 10 mv4you-de.mail.protection.outlook.com
TXT
  • MS=ms89854601

Email authentication partial

SPF
v=spf1 a ip4:85.220.154.175 include:spf.rapidmail.de include:spf.protection.outlook.com -all
strict (-all)
DMARC
v=DMARC1; p=none; rua=mailto:dmarc@werk3.de; ruf=mailto:dmarc@werk3.de; fo=0:1;
policy: none (monitoring only)
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnF/ZOXQmvvaVbTlvLN6uQUlxYD/vY51F4rTPtnA1eVC2RMztIRkslLuiBsAmTBCbDtW06u4QaxU806…
  • selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw3R61YBfkfex1PDgtbGqpZhbpt6DZSE64ywIYdq16XYm8Z6EGWvw/jDA0FFAfc4LUnmGlMMkFk8rR4…
selectors probed

Certificate (current)

R12
from 2026-05-01 to 2026-07-30
Expires in 71 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://mv4you.de/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • short HSTS max-age
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • weak frame protection
  • weak content type protection
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN, SAMEORIGIN
permissions-policy
accelerometer=(), autoplay=(self), camera=(), encrypted-media=(), fullscreen=(self), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(self), usb=()
x-content-type-options
nosniff, nosniff
content-security-policy
default-src 'self' *.werk3.de; style-src 'unsafe-inline' 'self' *.werk3.de;script-src 'unsafe-inline' 'unsafe-eval' 'self' *.cloudflare.com *.sharethis.com *.googleapis.com *.googletagmanager.com *.werk3.de *.doubleclick.net;worker-src 'self' blob:;img-src 'self' blob: *.gstatic.com *.ytimg.com *.googleapis.com *.sharethis.com *.werk3.de *.vimeocdn.com *.google.com *.google.de data:; frame-src 'self' localhost *.youtube-nocookie.com *.werk3.de *.emailsys2a.net *.emailsys1a.net *.vimeo.com *.googletagmanager.com; connect-src 'self' *.sharethis.com *.googleapis.com *.werk3.de
strict-transport-security
max-age=2592000; includeSubDomains

Links to (10)

Linked from (5)