indexo.dev

stada.at

.at crawl

First seen 2026-05-25 · Last seen 2026-05-31 · ok HTTP/1.1 200 7991 ms crawled 2026-05-29

NL · 98.64.90.203 · AS8075 Microsoft Corporation

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
Unser Auftrag - Ihre Gesundheit | STADA
Description
STADA Österreich bietet neben zahlreichen verschreibungspflichtigen Generika auch rezeptfreie Markenprodukte wie Grippostad C, Solarvit oder Ladival.
Language
de-AT
Canonical
https://www.stada.at/

Open Graph

url
https://www.stada.at/
title
Unser Auftrag - Ihre Gesundheit | STADA
site name
STADA
description
STADA Österreich bietet neben zahlreichen verschreibungspflichtigen Generika auch rezeptfreie Markenprodukte wie Grippostad C, Solarvit oder Ladival.

Technology

CDN
Cloudflare
Analytics
  • Google Tag Manager

Third-party hosts loaded (1)

  • www.googletagmanager.com×1

Social

Contact

Phone

DNS records live

NS
  • ns1.easyname.eu
  • ns2.easyname.eu
MX
  • 0 stada-at.mail.protection.outlook.com
TXT
Show 5 TXT records
  • knowbe4-site-verification=b8e40aa6659fb5f105483dc72a3caec8
  • amazon-business-verification=0b8259333b6576ab9bbcd8ae59655bad21e47de4e1b369ece29a34b7521a8e25
  • dtm-domain-verification=1L9r3c0IeCKvatNNIxvEtExeqNkZE1un8vNGhV4eqo4
  • adobe-sign-verification=d34b88ae25d71c388b1fd7ded36d16
  • 87l3ai950mvhci29ucvlmaf2g1
Verified for
  • Apple
  • GlobalSign
  • Google
  • Microsoft 365
  • OneTrust
  • TeamViewer

Email authentication weak

SPF
v=spf1 a mx ip4:91.118.74.212 ip4:195.34.187.36 include:spf.protection.outlook.com include:spf.mlwrx.com include:mailing.sagedpw.at include:spf.toscom.at -all
strict (-all)
DMARC
not published
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArqLJQ5yk+LdrcqhvdUeXesxr/TM/bQxx7czAYqfgr5N0RUmfYDuL/hv305wtVM4jE/3Hb5AFKt+9qO…
selectors probed

Certificates

Loading certificate

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.stada.at/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
strict-origin
x-frame-options
sameorigin
x-content-type-options
nosniff
content-security-policy
default-src 'self'; connect-src *; font-src 'self' d2lbli1oysth1h.cloudfront.net use.typekit.net data:; frame-src 'self' *.usercentrics.eu *.google.com *.youtube.com *.youtube-nocookie.com *.vimeo.com login.doccheck.com; img-src 'self' d2lbli1oysth1h.cloudfront.net *.juicer.io dashboard.umbraco.org *.usercentrics.eu maps.gstatic.com maps.googleapis.com img.youtube.com data:; media-src *; object-src *; script-src 'self' d2lbli1oysth1h.cloudfront.net ajax.aspnetcdn.com *.usercentrics.eu maps.googleapis.com *.google.com *.gstatic.com *.googletagmanager.com *.google-analytics.com *.youtube.com 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline'; manifest-src 'self' d2lbli1oysth1h.cloudfront.net;
strict-transport-security
max-age=31536000; preload

Links to (11)

Linked from (9)