theguitardivision.com

HTML metadata

Title

The Guitar Division | The Authentic Builders' store

Description

The Guitar Division te donne rendez-vous avec l’excellence du monde de la guitare et de la basse. Pour les créateurs d'émotion, par les créateurs de passion.

Language

fr

Canonical

https://theguitardivision.com/fr/

Translations

en
fr

Open Graph

url: https://theguitardivision.com/fr/
title: The Guitar Division | The Authentic Builders' store
locale: fr
site name: The Guitar Division
description: The Guitar Division te donne rendez-vous avec l’excellence du monde de la guitare et de la basse. Pour les créateurs d'émotion, par les créateurs de passion.

Technology

Analytics

Google Analytics
Google Tag Manager

Ads

Google Ads
Google Ads (DoubleClick)

Third-party hosts loaded (5)

www.facebook.com×2
www.googletagmanager.com×2
googleads.g.doubleclick.net×1
www.google-analytics.com×1
www.googleadservices.com×1

Registration

Registrar

OVH sas

Created

2018-01-23

Expires

2028-01-23 613 days left

Updated

2025-10-28

Name servers

dns112.ovh.net
ns112.ovh.net

DNS records live

NS

dns112.ovh.net
ns112.ovh.net

MX

1 aspmx.l.google.com
10 alt3.aspmx.l.google.com
10 alt4.aspmx.l.google.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

Verified for

Google
Stripe

Email authentication partial

SPF

v=spf1 a mx ip4:5.135.139.26 include:mx.ovh.com include:_spf.google.com include:sendgrid.net ~all

softfail (~all)

DMARC

v=DMARC1; p=none

policy: none (monitoring only)

DKIM

s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAngV+HKCsnLhFqQT26LdXviL2otNYPbchWejsDBLA9mgowd4/gbtm3tARFaOOPIqIuajETuBtiAyrPXNsxN…
s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Qy/tx7jxlYaik3gXGdz4QrbLjhaiqXaVyCq0+rO2fBuyZr7PffEAzB+RsjdcpWrx5Z5Sz3Psv2qetq5Kw…

selectors probed

Certificate (current)

R12

from 2026-03-31 to 2026-06-29

Expires in 40 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://theguitardivision.com/fr/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: same-origin
x-frame-options: SAMEORIGIN
permissions-policy: fullscreen=()
x-content-type-options: nosniff
content-security-policy: default-src 'self' *.facebook.com *.facebook.net *.google.com *.sentry.io *.stripe.com *.google.fr *.redmoot.com *.youtube.com *.hsforms.com *.smartlook.cloud *.smartlook.com *.paypal.com maps.googleapis.com *.googleapis.com *.googletagmanager.com *.google-analytics.com;script-src 'self' 'unsafe-inline' 'unsafe-eval' *.stripe.com *.google.com *.hs-scripts.com m.stripe.network *.youtube.com *.redmoot.com *.google.fr *.facebook.com *.facebook.net *.smartlook.com *.smartlook.cloud *.paypal.com code.highcharts.com maps.googleapis.com *.googleapis.com *.google-analytics.com *.googleadservices.com googleads.g.doubleclick.net *.googletagmanager.com cdn.cresh.eu;style-src 'self' fonts.googleapis.com 'unsafe-inline';connect-src 'self' payment.cresh.eu maps.googleapis.com *.googleapis.com *.google-analytics.com *.smartlook.com *.smartlook.cloud *.redmoot.com *.paypal.com *.ingest.sentry.io *.stripe.com *.google.com m.stripe.network *.youtube.com *.google.fr *.facebook.com *.facebook.net code.hig
strict-transport-security: max-age=31536000; includeSubDomains

Links to (1)

redmoot.com×1

Linked from (1)

thrilltone.fr×1