cardcomplete.com

.com crawl

First seen 2026-04-28 · Last seen 2026-05-18 · ok HTTP/1.1 200 4873 ms crawled 2026-05-05

AT · 128.65.132.107 · AS12930 card complete Service Bank AG

Reputation 100/100

sector finance type homepage

HTML metadata

Title: Kreditkarten und Prepaid-Karten für Privatpersonen – card complete » card complete Service Bank AG
Description: card complete – Der voll integrierte Karten-Komplettanbieter in Österreich vereint alle Elemente des bargeldlosen Zahlens – von der Produktentwicklung über Akzeptanzgeräte bis zu Abwicklungssystemen.
Language: de

Technology

CMS: Gatsby

Analytics

Google Tag Manager

Third-party hosts loaded (2)

f1-eu.readspeaker.com×1
www.googletagmanager.com×1

Social

Contact

Address: Lassallestraße 3, 1020, Wien, Österreich

Registration

Registrar

Ascio Technologies, Inc. Danmark - Filial af Ascio technologies, Inc. USA

Created

2007-03-29

Expires

2027-03-29 313 days left

Updated

2026-03-30

Name servers

dns1.telekom.at
dns2.telekom.at
dns3.telekom.at

DNS records live

NS

dns1.telekom.at
dns2.telekom.at
dns3.telekom.at

MX

10 cluster1.eu.messagelabs.com
20 cluster1a.eu.messagelabs.com

TXT

Show 6 TXT records

ZA=kEYxVRAKygLMxrTYA41yOjfvtAFOEfwq4R8VKkIh/J4=
abuseipdb-verification=65JqTAC2
google-site-verification=OIpj8b0dX9PeVUgychNtMlln9XWnM_XpMYt1pKhpnKQ
apple-domain-verification=LkXXYV2IURVVGkLX
v=spf1 a:mx01.rexx-systems.de ip4:193.228.86.27 ip4:128.65.132.115 ip4:128.65.132.50 include:spf.de.umantis.com include:spf.messagelabs.com include:_spf.rexx-suite.com -all
MS=2AD39DD4909A32EA7AEBFFBBF9726451E8A728A4

Certificate (current)

DigiCert EV RSA CA G2

from 2025-05-20 to 2026-05-20

Expires in 0 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.cardcomplete.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy
cross-origin-opener-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
weak content type protection

Header values

referrer-policy: same-origin, same-origin
x-frame-options: DENY
permissions-policy: geolocation=(),midi=(),sync-xhr=(),microphone=(),magnetometer=(),gyroscope=(),fullscreen=(self),payment=(),interest-cohort=()
x-content-type-options: nosniff, nosniff
content-security-policy: form-action 'self'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com/ *.readspeaker.com www.cardcomplete.com; font-src 'self' data: https://fonts.gstatic.com; default-src 'self' *.tile.openstreetmap.de 'nonce-pLMtLUX15bvYrrviwrOI/Q=='; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.readspeaker.com https://*.cookiebot.com https://*.analytics.google.com https://*.g.doubleclick.net/pagead/ https://*.google-analytics.com https://*.google.at/pagead/ https://*.google.com/ccm/ https://*.google.com/pagead/ https://*.googleadservices.com https://*.googlesyndication.com https://*.googletagmanager.com https://*.teads.tv www.cardcomplete.com; img-src 'self' data: blob: i.ytimg.com *.readspeaker.com *.tile.openstreetmap.de https://*.analytics.google.com https://*.g.doubleclick.net/pagead/ https://*.google-analytics.com https://*.google.at/pagead/ https://*.google.com/ccm/ https://*.google.com/pagead/ https://*.googleadservices.com https://*.googlesyndication.com https://*.googletagm
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-opener-policy: same-origin

Links to (5)

Linked from (2)

observer.info×2
observer.at×1