indexo.dev

optimera.se

.se crawl

First seen 2026-05-27 · Last seen 2026-05-30 · ok HTTP/1.1 200 426 ms crawled 2026-05-30

US · 45.60.19.156 · AS19551 Incapsula Inc

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Optimera - Bygghandel för proffs
Language
sv-SE
Canonical
https://www.optimera.se

Technology

Server
istio-envoy
CMS
Nuxt
Analytics
  • Google Tag Manager
Fonts
  • Adobe Fonts
  • Google Fonts

Third-party hosts loaded (4)

  • images.ctfassets.net×7
  • fonts.googleapis.com×2
  • use.typekit.net×2
  • www.googletagmanager.com×1

Social

Contact

Phone
Address
Adress:Optimera Svenska AB/Cederströmsgatan 1, 212 39, Malmö/Telefon:040-692 37 00

DNS records live

NS
  • ns1.loopiagroup.com
  • ns2.loopiagroup.com
MX
  • 10 mxa-002c9e02.gslb.pphosted.com
  • 10 mxb-002c9e02.gslb.pphosted.com
TXT
  • wvnvjf1v324x0cstzg07ckqr0m3g4hs3
  • V1XjE/FoU4B/gXvhm9OmU9ETtIvq7+CWxwCW2r5AM7fv+tAti2cnTJkmI5C6iihjoJB2h1f5SWtE9mugu5mtQQ==
  • h1xd3bsj0wqm70xs1bd7m2cbcg23cn1y
Verified for
  • Atlassian
  • GlobalSign
  • Google
  • Meta
  • Microsoft 365

Email authentication partial

SPF
v=spf1 include:_spfout.mail.saint-gobain.com a:mail.webropolsurveys.com include:all._spf.plma.se ~all
softfail (~all)
DMARC
v=DMARC1; p=none; fo=1; rua=mailto:dmarc_rua@emaildefense.proofpoint.com; ruf=mailto:dmarc_ruf@emaildefense.proofpoint.com
policy: none (monitoring only)
DKIM
no key found at common selectors

Certificate (current)

GlobalSign Atlas R3 DV TLS CA 2026 Q1
from 2026-03-24 to 2026-06-22
Expires in 21 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.optimera.se/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
no-referrer
x-frame-options
SAMEORIGIN
permissions-policy
geolocation=*
x-content-type-options
nosniff
content-security-policy
default-src 'self' 'self' *.dahl.se *.konradssons.com *.optimera.se *.sgds.io; img-src 'self' data: https: blob: 'self' *.dahl.se *.konradssons.com *.optimera.se *.sgds.io images.ctfassets.net cdn.contentful.com *.cloudfront.net maps.gstatic.com; frame-src *.hotjar.com *.youtube.com 'self' *.dahl.se *.konradssons.com *.optimera.se *.sgds.io cdn.contentful.com graphql.contentful.com *.54proxy.com *.sentry.io *.sentry-cdn.com *.googletagmanager.com *.google-analytics.com *.googleapis.com *.gstatic.com stats.g.doubleclick.net *.kundo.se *.cookielaw.org *.onetrust.com * https://sgds-gs.fiwe.cloud; media-src 'self' *.ctfassets.net 'self' *.dahl.se *.konradssons.com *.optimera.se *.sgds.io; worker-src 'self' blob: https: 'self' *.dahl.se *.konradssons.com *.optimera.se *.sgds.io cdn.contentful.com; style-src 'self' 'unsafe-inline' https: 'self' *.dahl.se *.konradssons.com *.optimera.se *.sgds.io; font-src 'self' https: fonts.googleapis.com fonts.gstatic.com; script-src 'self' 'unsafe-inline'
strict-transport-security
max-age=15552000; includeSubDomains

Links to (5)

Linked from (1)