veltins-megachance.de

.de crawl

First seen 2026-04-11 · Last seen 2026-05-19 · ok HTTP/1.1 200 177 ms crawled 2026-05-18

DE · 194.6.226.58 · AS206293 proIO GmbH

Reputation 100/100

Classifying

HTML metadata

Title: VELTINS Megachance
Language: de

Technology

Server: Apache

Registration

Updated

2019-01-10

Name servers

ns17.knipp.net.
ns2.knipp.de.
ns3.knipp.de.

DNS records live

NS

ns17.knipp.net
ns2.knipp.de
ns3.knipp.de

Email authentication no MX

SPF: not published
DMARC: not published
DKIM: no key found at common selectors

Certificate (current)

RapidSSL TLS RSA CA G1

from 2026-01-26 to 2027-01-29

Expires in 253 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://veltins-megachance.de/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy: accelerometer=(),autoplay=(),camera=(),display-capture=(),encrypted-media=(),fullscreen=(),geolocation=(),gyroscope=(),magnetometer=(),microphone=(),midi=(),payment=(),picture-in-picture=(),publickey-credentials-get=(),screen-wake-lock=(),sync-xhr=(self),usb=(),xr-spatial-tracking=()
x-content-type-options: nosniff
content-security-policy: base-uri 'self';script-src 'self' 'nonce-wxN1lrmwRLcEr5NU25kPRCz0VTugvdckUebLCmf2' *.google-analytics.com *.analytics.google.com *.g.doubleclick.net *.google.com pagead2.googlesyndication.com *.googletagmanager.com *.googleadservices.com connect.facebook.net widget.moin.ai;style-src 'self' 'unsafe-inline' *.googletagmanager.com *.googleapis.com widget.moin.ai;form-action 'self' www.facebook.com;img-src 'self' data: *.google-analytics.com *.analytics.google.com *.g.doubleclick.net *.google.com pagead2.googlesyndication.com *.googletagmanager.com *.googleadservices.com *.gstatic.com www.facebook.com widget.moin.ai media.moin.ai;object-src 'none';connect-src 'self' *.google-analytics.com *.analytics.google.com *.g.doubleclick.net *.google.com pagead2.googlesyndication.com *.googletagmanager.com *.googleadservices.com www.facebook.com www.veltins.de widget.moin.ai api.moin.ai wss://bot.moin.ai glitchtip-ftyj07vidu0hwetcdrpl95n7.vesch.de;default-src 'self';font-src 'self' *.gstatic.com widg
strict-transport-security: max-age=31536000; includeSubDomains

Linked from (2)

veltins.de×4
12gewinn.de×1