indexo.dev

etnedalsparebank.no

.no crawl

First seen 2026-05-27 · Last seen 2026-05-30 · ok HTTP/1.1 200 863 ms crawled 2026-05-30

US · 159.60.133.137 · AS35280 F5 Networks SARL

Reputation 100/100

Classifying

HTML metadata

Title
Etnedal Sparebank
Description
Etnedal Sparebank
Language
nb-NO
Canonical
https://www.etnedalsparebank.no/

Open Graph

url
https://www.etnedalsparebank.no/
locale
nb-NO

Technology

Server
volt-adc
Stack
ASP.NET
Analytics
  • Google Tag Manager

Third-party hosts loaded (2)

  • app.eika.no×1
  • www.googletagmanager.com×1

Social

Contact

Email
Phone

Registration

Registrar
Corporation Service Company
Created
1999-11-14
Updated
2025-11-15
Name servers
  • dns1.cscdns.net
  • dns2.cscdns.net

DNS records live

NS
  • dns1.cscdns.net
  • dns2.cscdns.net
MX
  • 10 mxa-00727601.gslb.pphosted.com
  • 10 mxb-00727601.gslb.pphosted.com
TXT
  • 1b86edb294774cd283b4ae150ed1fc0da4b7428503807de9ff41bb89101d7d8c
  • DomainVerification=CXEVXPHZ8WLXKSY7VE5AQGTEB6K16JXQLJM7VFAWCRJ5R57AJJS1MQI0B94K6XU4
Verified for
  • Atlassian
  • Dynamics 365
  • Microsoft 365

Email authentication strong

SPF
v=spf1 mx a ip4:195.159.29.211 include:spf-00727601.pphosted.com include:spf.protection.outlook.com include:_spf.sndr.no include:_spf.papirfly.no include:spf.hatteland.com ip4:139.116.71.0/24 ip4:139.116.71.0/25 ip4:139.111.201.0/29 ip4:193.162.109.0/24 ip4:212.18.128.0/24 ip4:146.192.49.0/24 ip6:2a02:9c8:0:1001::/64 -all
strict (-all)
DMARC
v=DMARC1; p=reject; fo=1; rua=mailto:dmarc_rua@emaildefense.proofpoint.com; ruf=mailto:dmarc_ruf@emaildefense.proofpoint.com
policy: reject (enforced)
DKIM
no key found at common selectors

Certificate (current)

Buypass Class 3 CA 2
from 2025-10-13 to 2026-06-29
Expires in 29 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.etnedalsparebank.no/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SameOrigin
x-content-type-options
nosniff
content-security-policy
default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.google.com https://*.gstatic.com *.googleapis.com https://app.eika.no/infrastruktur-styleguide-web/ https://www.youtube.com/iframe_api https://www.youtube.com/s/player/ https://eika.piwik.pro/ppms.js https://svc.kundedialog.eika.no/t/w https://mktdplp102cdn.azureedge.net/public/latest/js/form-loader.js https://cdn.spinnaker-js.com/rc/ https://acdn.adnxs.com/dmp/up/pixie.js siteimproveanalytics.com https://www.googletagmanager.com https://in.taskanalytics.com https://connect.facebook.net https://googleads.g.doubleclick.net www.googleadservices.com https://secure.adnxs.com http://ib.adnxs.com https://*.mookie1.com *.google-analytics.com;style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://app.eika.no/infrastruktur-styleguide-web/ https://tagmanager.google.com;img-src 'self' * data: region1.google-analytics.com region1.analytics.google.com;frame-src 'self' *.youtube.com *.youtube-nocookie.com *.v
strict-transport-security
max-age=31536000

Links to (5)

Linked from (1)