sparda.at — domain check, WHOIS, DNS & reputation

HTML metadata

Title: Startseite
Description: Startseite der SPARDA-BANK - eine Marke der V OLKSBANK WIEN AG
Language: de

Technology

Stack: Java

Third-party hosts loaded (1)

analytics.arz.at×1

Social

Contact

Email

kundenservice@sparda.at

Phone

050 4004 5150

DNS records live

NS

nsi1.arz.at
nsi2.arz.at

MX

10 mx01.arz.at
10 mx02.arz.at

TXT

swisssign-check=GELb87yMQMoMQdF3hfqv0I4ncd8
_k7ypv8kd6uuaioth43ui7x9plf72rqu
ciscocidomainverification=2dcc1412060a7b270f9f455a9d12a250306e70605c0da7d829195c4871cd828a

Verified for

Google
Microsoft 365

Email authentication strong

SPF

v=spf1 include:%{ir}.%{v}.%{d}.spf.has.pphosted.com ~all

softfail (~all)

DMARC

v=DMARC1; p=reject; fo=1; rua=mailto:dmarc_rua@emaildefense.proofpoint.com; ruf=mailto:dmarc_ruf@emaildefense.proofpoint.com;

policy: reject (enforced)

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxrwJri4DfB1dCOBzvhXjlN2YmD36hZDI5Mudl6oh7qEMvWesIkYTUxPKVHf9+zNeDqidqRoIcbRsBG…
selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxBxvclCYm2fM74v5FM3fRZ7iJ0snLt/lobld47kwzKFHTEZhLYK0ttdM3a0JLznQ2DR/GTCehZObIj…

selectors probed

Certificate (current)

DigiCert Global G2 TLS RSA SHA256 2020 CA1

from 2026-02-03 to 2027-02-24

Expires in 257 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://sparda.at/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' *.opentext.cloud *.accenture.com *.arz.at; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.opentext.cloud *.arz.at maps.google.com www.googleadservices.com unpkg.com maps.googleapis.com www.econ-application.de; img-src 'self' *.opentext.cloud *.accenture.com *.arz.at image.onoffice.de maps.google.com maps.googleapis.com maps.gstatic.com jobs.volksbankwien.at jobs.volksbank.tirol jobs.volksbanksalzburg.at jobs.volksbank-kaernten.at jobs.vbnoe.at jobs.vb-ooe.at jobs.volksbank-stmk.at lcdn.letscast.fm i.vimeocdn.com *.kununu.com data:; connect-src 'self' *.opentext.cloud *.accenture.com *.arz.at maps.googleapis.com unpkg.com data.rtr.at; frame-src 'self' 'unsafe-inline' 'unsafe-eval' *.opentext.cloud *.arz.at modul.volksbank.at kurse.banking.co.at www.youtube.com www.youtube-nocookie.com bank-news.at news.volksbank.tirol news.volksbank.at news.volksbankwien.at *.volksbanksalzburg.at *.apobank.at *.aerztebank.at *.volksbanksalzburg.com new
strict-transport-security: max-age=31536000

Links to (4)

Linked from (1)

sportcenterdonaucity.at×1

Use this data via API

Everything on this page for sparda.at is available as JSON from the indexo.dev REST & MCP API.

curl "https://indexo.dev/api/v1/domains/sparda.at" \
  -H "X-API-Key: idx_..."

Read the docs & get a free key →