indexo.dev

btv-bank.de

.de crawl

First seen 2026-05-27 · Last seen 2026-05-30 · ok HTTP/1.1 200 699 ms crawled 2026-05-30

AT · 193.138.123.184 · AS28960 3 Banken IT GmbH

Reputation 100/100

Classifying

HTML metadata

Title
BTV Vier Länder Bank AG – die Bank mit Geist und Haltung
Description
Willkommen bei der BTV Vier Länder Bank AG. Mit Expertise & Erfahrung begleiten wir Firmen- und Privatkund*innen in der Schweiz. ► Jetzt informieren
Language
de
Canonical
https://btv.athttps://btv-bank.de/

Open Graph

title
BTV VIER LÄNDER BANK – die Bank mit Geist und Haltung
description
Willkommen bei der Bank für Tirol und Vorarlberg. Mit Expertise & Erfahrung begleiten wir Firmen- und Privatkund*innen in der Schweiz. ► Jetzt informieren

Technology

CMS
Nuxt

Third-party hosts loaded (1)

  • btv.athttps×1

Social

Contact

Email
Phone

Registration

Updated
2022-10-19
Name servers
  • nsa1.atruvia.de.
  • nsa2.atruvia.de.

DNS records live

NS
  • nsa1.atruvia.de
  • nsa2.atruvia.de
MX
  • 10 mlgw1.3banken.net
  • 20 mlgw9.3banken.net
TXT
Show 5 TXT records
  • D-TRUST=AIEYAJPKFTP5UDGRO78KOQR
  • MS=BD15B78615D8D4570353D93723605AF237CCBC1A
  • QuoVadis=2c9f67fb-300b-418e-bf98-ab6a0fd60a77
  • D-TRUST=FINDKN2VRBLX6XN6QDQOVYM
  • _geejn09dm9kfp0g114rqote2ij2e0sh
Verified for
  • Cisco
  • GlobalSign
  • Meta
  • Microsoft 365

Email authentication strong

SPF
v=spf1 mx include:net1.spf.fiduciagad.de -all
strict (-all)
DMARC
v=DMARC1; p=quarantine; fo=1; ri=86400; rua=mailto:rua-dmarc@3bankenit.at; ruf=mailto:ruf-dmarc@3bankenit.at
policy: quarantine
DKIM
  • dkim: v=DKIM1; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCg5r6/NwWC+N94YxxsfaRB8fu3w1K4W3GbXGOvzWvKub8t3bwoluohGH0Gwagv2sOavZUuoglEitzWiygNYwmLVbPai…
selectors probed

Certificate (current)

GlobalSign RSA OV SSL CA 2018
from 2026-01-28 to 2027-03-01
Expires in 273 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://btv-bank.de/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • cross-origin-opener-policy
  • cross-origin-resource-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
no-referrer
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
base-uri 'none'; font-src 'self' https: data: https://cdn.chatvisor.com https://fonts.gstatic.com; form-action 'self'; frame-ancestors 'self'; img-src 'self' data: https://cdn.cookielaw.org https://px.ads.linkedin.com https://support.3banken.net https://*.doubleclick.net https://*.btv.at https://cdn.cookielaw.org https://cm.teads.tv https://maps.googleapis.com https://maps.gstatic.com https://*.linkedin.com https://support.3banken.net https://t.teads.tv https://www.facebook.com https://www.google.at https://www.google.com https://www.googletagmanager.com https://connect.facebook.net https://www.linkedin.com https://pagead2.googlesyndication.com https://eu.adsapp.com; object-src 'none'; script-src-attr 'unsafe-inline'; style-src 'self' https: 'unsafe-inline' https://fonts.googleapis.com https://support.3banken.net https://cdn.chatvisor.com; script-src 'self' https: 'unsafe-inline' 'unsafe-eval' 'strict-dynamic' 'nonce-WRMM+0QBHl4zLzmk84IY5F8l' https://cdn.cookielaw.org https://player.vi
strict-transport-security
max-age=15552000; includeSubDomains
cross-origin-opener-policy
same-origin
cross-origin-resource-policy
same-origin

Links to (8)

Linked from (2)