indexo.dev

btv-bank.ch

.ch crawl

First seen 2026-05-27 · Last seen 2026-05-27 · ok HTTP/1.1 200 791 ms crawled 2026-05-30

AT · 193.138.123.184 · AS28960 3 Banken IT GmbH

Reputation 100/100

Classifying

HTML metadata

Title
BTV Vier Länder Bank AG – die Bank mit Geist und Haltung
Description
Willkommen bei der BTV Vier Länder Bank AG. Mit Expertise & Erfahrung begleiten wir Firmen- und Privatkund*innen in Deutschland. ► Jetzt informieren
Language
de
Canonical
https://btv.athttps://btv-bank.ch/

Open Graph

title
BTV VIER LÄNDER BANK – die Bank mit Geist und Haltung
description
Willkommen bei der Bank für Tirol und Vorarlberg. Mit Expertise & Erfahrung begleiten wir Firmen- und Privatkund*innen in Deutschland. ► Jetzt informieren

Technology

CMS
Nuxt

Third-party hosts loaded (1)

  • btv.athttps×1

Social

Contact

Email
Phone

DNS records live

NS
  • dns1.a1.net
  • dns2.a1.net
  • dns3.a1.net
MX
  • 10 mlgw1.3banken.net
  • 20 mlgw9.3banken.net
Verified for
  • Cisco
  • GlobalSign
  • Meta
  • Microsoft 365

Email authentication strong

SPF
v=spf1 mx -all
strict (-all)
DMARC
v=DMARC1; p=quarantine; fo=1; ri=86400; rua=mailto:rua-dmarc@3bankenit.at; ruf=mailto:ruf-dmarc@3bankenit.at
policy: quarantine
DKIM
  • dkim: v=DKIM1; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCg5r6/NwWC+N94YxxsfaRB8fu3w1K4W3GbXGOvzWvKub8t3bwoluohGH0Gwagv2sOavZUuoglEitzWiygNYwmLVbPai…
selectors probed

Certificate (current)

GlobalSign RSA OV SSL CA 2018
from 2026-01-28 to 2027-03-01
Expires in 273 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://btv-bank.ch/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • cross-origin-opener-policy
  • cross-origin-resource-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
no-referrer
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
base-uri 'none'; font-src 'self' https: data: https://cdn.chatvisor.com https://fonts.gstatic.com; form-action 'self'; frame-ancestors 'self'; img-src 'self' data: https://cdn.cookielaw.org https://px.ads.linkedin.com https://support.3banken.net https://*.doubleclick.net https://*.btv.at https://cdn.cookielaw.org https://cm.teads.tv https://maps.googleapis.com https://maps.gstatic.com https://*.linkedin.com https://support.3banken.net https://t.teads.tv https://www.facebook.com https://www.google.at https://www.google.com https://www.googletagmanager.com https://connect.facebook.net https://www.linkedin.com https://pagead2.googlesyndication.com https://eu.adsapp.com; object-src 'none'; script-src-attr 'unsafe-inline'; style-src 'self' https: 'unsafe-inline' https://fonts.googleapis.com https://support.3banken.net https://cdn.chatvisor.com; script-src 'self' https: 'unsafe-inline' 'unsafe-eval' 'strict-dynamic' 'nonce-l7CcYfOzsSfYmEm5SbfArLRF' https://cdn.cookielaw.org https://player.vi
strict-transport-security
max-age=15552000; includeSubDomains
cross-origin-opener-policy
same-origin
cross-origin-resource-policy
same-origin

Links to (9)

Linked from (1)