indexo.dev

zo-shop.ch

.ch crawl

First seen 2026-05-30 · Last seen 2026-05-31 · ok HTTP/1.1 200 1238 ms crawled 2026-05-31

CH · 185.193.245.65 · AS62035 Byteworks GmbH

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
zo-shop.ch - der Onlineshop der Zürcher Oberland Medien AG
Description
Der Onlineshop für das Zürcher Oberland: Bücher, Kalender und mehr. Faire Preise ✓ schneller Versand ✓ top Kundenservice.
Language
de
Canonical
https://www.zo-shop.ch

Technology

Server
nginx
CMS
Gatsby
Analytics
  • Google Tag Manager

Third-party hosts loaded (1)

  • www.googletagmanager.com×2

DNS records live

NS
  • ns1.hostserv.eu
  • ns2.hostserv.eu
  • ns3.hostserv.eu
MX
  • 0 zoshop-ch0e.j-v1.mx.microsoft
TXT
  • tmes=f65bdaef33aaddb578c268f25e8e5974
Verified for
  • Google
  • Microsoft 365

Email authentication partial

SPF
v=spf1 a mx ip4:62.2.134.164 ip4:62.2.134.184 ip4:185.193.245.23 ip4:185.193.245.65 ip4:62.2.134.174 ip4:157.143.106.226 include:spf.tmes.trendmicro.com include:spf.protection.outlook.com -all
strict (-all)
DMARC
v=DMARC1; p=none
policy: none (monitoring only)
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy7Td649kXwxdlvhUTJeB6VNH+PRhdW3kyhTzzUVN3TFJ6bmHzX0sipybmRQTOuKWt+TJWY43MsKq96…
selectors probed

Certificate (current)

R12
from 2026-04-17 to 2026-07-16
Expires in 45 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 65/100 Checked live page: https://www.zo-shop.ch/

present
  • strict-transport-security
  • content-security-policy-report-only
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • missing Content Security Policy
  • weak frame protection
  • weak content type protection
  • missing Permissions Policy
Header values
referrer-policy
no-referrer-when-downgrade
x-frame-options
SAMEORIGIN, SAMEORIGIN
x-content-type-options
nosniff, nosniff
strict-transport-security
max-age=31536000; includeSubDomains; preload
content-security-policy-report-only
font-src www.paypalobjects.com fonts.gstatic.com use.typekit.net *.typekit.net *.gstatic.com data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.paypal.com 'self' 'unsafe-inline'; frame-ancestors 'self'; frame-src fast.amc.demdex.net *.adobe.com bid.g.doubleclick.net *.youtube.com *.youtube-nocookie.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.paypal.com www.sandbox.paypal.com pilot-payflowlink.paypal.com www.paypalobjects.com player.vimeo.com https://www.google.com/recaptcha/ *.braintreegateway.com *.paypal.com google.com *.google.com 'self' 'unsafe-inline'; img-src data: assets.adobedtm.com amcglobal.sc.omtrd

Links to (1)

Linked from (1)