iforex.eu

HTML metadata

Title

Trade Online, Regulated & Safe -CFD Broker | iFOREX Europe

Description

Trade CFDs on ETFs with iFOREX Europe. Access 900+ CFD instruments with EU-regulated protection, leverage up to 30:1, and educational resources.

Language

en

Canonical

https://www.iforex.eu/

Translations

en ×14
ar ×2
es ×2
zh ×2
de
el
fr
hi
hu
it
ja
ko
nl
pl
pt
ru
th

Technology

Server: rhino-core-shield

Analytics

Google Tag Manager

Ads

Google Ads (DoubleClick)

Fonts

Google Fonts

Third-party hosts loaded (26)

www.iforexarab.com×11
www.iforex.com×2
www.iforex.in×2
cn.iforex.com×1
content.webapi-services.net×1
events.iforex.com×1
fonts.googleapis.com×1
fonts.gstatic.com×1
kr.iforex.com×1
stats.g.doubleclick.net×1
www.googletagmanager.com×1
www.iforex-saudi.com×1
www.iforex.co.th×1
www.iforex.com.pt×1
www.iforex.es×1
www.iforex.fr×1
www.iforex.gr×1
www.iforex.hu×1
www.iforex.it×1
www.iforex.jpn.com×1
www.iforex.mx×1
www.iforex.nl×1
www.iforex.pl×1
www.iforex.tw×1
www.iforexae.com×1
www.iforexru.com×1

Contact

Address: Corner of Agiou Andreou & Venizelou Streets, Vashiotos Agiou Andreou Building, Second Floor, P.O.B 54216, Limassol, Cyprus

DNS records live

NS

pdns73.ultradns.biz
pdns73.ultradns.com
pdns73.ultradns.net
pdns73.ultradns.org

MX

10 cust34483-2.in.mailcontrol.com
15 iforex-eu.mail.protection.outlook.com
5 cust34483-1.in.mailcontrol.com

Verified for

Google

Email authentication strong

SPF

v=spf1 ip4:195.200.238.30/32 ip4:195.200.238.40/32 ip4:195.200.238.42/32 ip4:52.17.96.184/32 include:mailcontrol.com include:spf.protection.outlook.com -all

strict (-all)

DMARC

v=DMARC1; p=quarantine; rua=mailto:it@iforex.eu,mailto:dmarc_agg@vali.email; pct=100

policy: quarantine

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqKyHjjNbvVmlQjlhZ89roj/zAngFdqHlPfqX8yS9w01UXoZnnWRcNSQd/H0rBBSFfwZpJKjU9kV3PS…
selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4s6Odhu5jfekGyocG1aB619WXqlLj/14YGlyWgf7vnrBZTGIgHjLUXOXD3AFl+8oG5gUEurkOuSEOl…

selectors probed

Certificate (current)

Sectigo Public Server Authentication CA DV R36

from 2025-12-15 to 2026-12-26

Expires in 208 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://www.iforex.eu/

present

strict-transport-security
content-security-policy
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection
missing Permissions Policy

Header values

referrer-policy: no-referrer-when-downgrade
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests; default-src 'self' data: blob: gap: 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com *.google.com *.linkedin.com *.bizographics.com *.loggly.com *.doubleclick.net *.wistia.com *.twimg.com *.twitter.com *.googleadservices.com *.facebook.com *.googletagmanager.com *.snapengage.com *.visualwebsiteoptimizer.com *.facebook.net *.iforex.com *.google-analytics.com *.bootstrapcdn.com *.youtube.com *.wistia.net *.opmnstr.com *.webapi-services.net *.googlesyndication.com *.optnmnstr.com *.mxpnl.net https://pixel-tracking.appspot.com https://pixelmachine-981.appspot.com *.mte-media.com mte-media.com *.typekit.net *.optimizely.com d5phz18u4wuww.cloudfront.net *.hotjar.com *.ads-twitter.com *.finadsr.com wcs.naver.net *.criteo.net *.criteo.com https://s.yimg.com https://sp.analytics.yahoo.com *.fihtrader.com *.vestle.com appleid.cdn-apple.com *.livechatinc.com *.appier.net https://sc-static.net https://*.snapchat.com *.tiktok.com https://ssl.pstatic.net https
strict-transport-security: max-age=15768000 ; includeSubDomains