certo-card.ch Review
certo-card.ch Review
| Titletag | Descriptiontag | language |
|---|
| Cashback Kreditkarte – Certo! One | |
German |
| Ip adress | 212.243.147.200 | Nameserver | ns2.hostpoint.ch
ns.hostpoint.ch
ns3.hostpoint.ch |
Status code | 200 |
robots.txt
N/A
HTTP/1.0 301 Moved Permanently
Location: https://certo-card.ch/
Connection: Keep-Alive
Content-Length: 0
HTTP/1.1 301 Moved Permanently
Date: Fri, 22 Aug 2025 06:40:11 GMT
Set-Cookie: eeacbe31196c32689669a87df15ce60b=37cd41c670ef07437f51716cb8521515; Path=/; Secure; HttpOnly; samesite=None
content-type: text/html; charset=UTF-8
X-Frame-Options: SAMEORIGIN
x-xss-protection: mode=block
Location: /one/de/?
Access-Control-Allow-Origin: https://certo-card.cembra.ch
Content-Security-Policy: default-src 'self'; style-src 'self' 'unsafe-inline' https://optimize.google.com https://fonts.googleapis.com https://static.hotjar.com https://script.hotjar.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.licdn.com https://bat.bing.com https://storage.googleapis.com https://*.cookielaw.org https://bat.bing.com/ https://*.google-analytics.com https://*.analytics.google.com https://www.googleoptimize.com https://optimize.google.com https://www.googletagmanager.com https://www.googleadservices.com https://track.adform.net https://googleads.g.doubleclick.net https://s2.adform.net https://connect.facebook.net https://*.mynsystems.com https://*.serversidegraphics.com https://uk.personalcard.net https://static.hotjar.com https://cdn.exactag.com https://m.exactag.com https://script.hotjar.com https://*.google.de https://tc.cembra.ch https://*.googlesyndication.com https://www.google.com; img-src 'self' data: blob: https://*.doubleclick.net https://*.linkedin.com https://*.googlesyndication.com https://*.cookielaw.org https://www.facebook.com https://bat.bing.com/ https://www.google.com https://www.google.ch https://www.google.de https://www.google-analytics.com https://ib.adnxs.com https://*.serversidegraphics.com https://www.gstatic.com https://www.googletagmanager.com https://uk.personalcard.net https://www.cembra.ch https://googleads.g.doubleclick.net https://optimize.google.com https://tc.cembra.ch https://*.fls.doubleclick.net https://static.hotjar.com https://script.hotjar.com; connect-src 'self' https://*.google.ch/ https://*.googlesyndication.com https://*.doubleclick.net https://*.onetrust.com https://*.cookielaw.org https://bat.bing.com/ https://*.google.com https://adservice.google.com/ https://www.cembra.ch https://*.google-analytics.com https://*.analytics.google.com https://region1.google-analytics.com https://stats.g.doubleclick.net https://*.mynsystems.com https://*.serversidegraphics.com https://uk.personalcard.net https://analytics.google.com https://*.hotjar.com https://www.lacmp.net https://*.google.de wss://*.hotjar.com https://*.hotjar.io; frame-src 'self' https://*.doubleclick.net https://*.mynsystems.com https://www.google.com https://vars.hotjar.com https://www.google.ch https://optimize.google.com https://*.googlesyndication.com; font-src 'self' https://uk.personalcard.net https://script.hotjar.com;
x-content-type-options: nosniff
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Connection: close
HTTP/1.1 200 OK
Date: Fri, 22 Aug 2025 06:40:12 GMT
Set-Cookie: PHPSESSID=tp0fu49spa55h931a45qp8398a; Domain=.certo-card.ch; Path=/; Secure; HttpOnly
Set-Cookie: eeacbe31196c32689669a87df15ce60b=3fc9725ce4f818dbf260ab4c73650b95; Path=/; Secure; HttpOnly; samesite=None
X-Frame-Options: SAMEORIGIN
content-type: text/html; charset=UTF-8
x-xss-protection: mode=block
Access-Control-Allow-Origin: *
access-control-allow-methods: PUT, POST, GET, OPTIONS, DELETE
Content-Security-Policy: default-src 'self'; style-src 'self' 'unsafe-inline' https://optimize.google.com https://fonts.googleapis.com https://static.hotjar.com https://script.hotjar.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.licdn.com https://bat.bing.com https://storage.googleapis.com https://*.cookielaw.org https://bat.bing.com/ https://*.google-analytics.com https://*.analytics.google.com https://www.googleoptimize.com https://optimize.google.com https://www.googletagmanager.com https://www.googleadservices.com https://track.adform.net https://googleads.g.doubleclick.net https://s2.adform.net https://connect.facebook.net https://*.mynsystems.com https://*.serversidegraphics.com https://uk.personalcard.net https://static.hotjar.com https://cdn.exactag.com https://m.exactag.com https://script.hotjar.com https://*.google.de https://tc.cembra.ch https://*.googlesyndication.com https://www.google.com; img-src 'self' data: blob: https://*.doubleclick.net https://*.linkedin.com https://*.googlesyndication.com https://*.cookielaw.org https://www.facebook.com https://bat.bing.com/ https://www.google.com https://www.google.ch https://www.google.de https://www.google-analytics.com https://ib.adnxs.com https://*.serversidegraphics.com https://www.gstatic.com https://www.googletagmanager.com https://uk.personalcard.net https://www.cembra.ch https://googleads.g.doubleclick.net https://optimize.google.com https://tc.cembra.ch https://*.fls.doubleclick.net https://static.hotjar.com https://script.hotjar.com; connect-src 'self' https://*.google.ch/ https://*.googlesyndication.com https://*.doubleclick.net https://*.onetrust.com https://*.cookielaw.org https://bat.bing.com/ https://*.google.com https://adservice.google.com/ https://www.cembra.ch https://*.google-analytics.com https://*.analytics.google.com https://region1.google-analytics.com https://stats.g.doubleclick.net https://*.mynsystems.com https://*.serversidegraphics.com https://uk.personalcard.net https://analytics.google.com https://*.hotjar.com https://www.lacmp.net https://*.google.de wss://*.hotjar.com https://*.hotjar.io; frame-src 'self' https://*.doubleclick.net https://*.mynsystems.com https://www.google.com https://vars.hotjar.com https://www.google.ch https://optimize.google.com https://*.googlesyndication.com; font-src 'self' https://uk.personalcard.net https://script.hotjar.com;
access-control-max-age: 1000
x-content-type-options: nosniff
access-control-allow-headers: X-Requested-With, Content-Type, Origin, Cache-Control, Pragma, Authorization, Accept, Accept-Encoding, X-File-Name
access-control-allow-credentials: true
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Connection: close