indexo.dev

tkb.ch

.ch crawl

First seen 2026-05-27 · Last seen 2026-05-31 · ok HTTP/1.1 200 1223 ms crawled 2026-05-30

CH · 193.222.69.218 · AS3303 Bluewin

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Thurgauer Kantonalbank - Fürs ganze Leben - seit 1871 im Thurgau
Description
Die TKB ist die führende Universalbank im Kanton Thurgau. Ob Bankkonto, Geldanlage, Vorsorge oder Immobilien-Finanzierung - die TKB ist ganz in der Nähe für Sie da.
Language
de
Canonical
https://www.tkb.ch/private

Open Graph

url
https://www.tkb.ch/private
title
Thurgauer Kantonalbank - Fürs ganze Leben - seit 1871 im Thurgau
description
Die TKB ist die führende Universalbank im Kanton Thurgau. Ob Bankkonto, Geldanlage, Vorsorge oder Immobilien-Finanzierung - die TKB ist ganz in der Nähe für Sie da.

Technology

Server
Apache
CMS
Gatsby

Social

DNS records live

NS
  • dns1.swisscom.com
  • dns2.swisscom.com
  • dns3.swisscom.com
MX
  • 10 mail.swisscom.com
  • 20 mail10.swisscom.com
  • 20 mail20.swisscom.com
TXT
Show 8 TXT records
  • y2l71m0lwlc0gdf4nqhhfdg19r1hxffp
  • swisssign-check=xj-5tfa0tJhl3rvhULGWvGwh3so
  • BFF90B86-F1EF-4767-BA77-1D967A2B6AA1
  • _p0y34q7qipakgs336ni74hvcmo7z0u2
  • citrix.mobile.ads.otp=yxja288am6f712gbe65y26b
  • QuoVadis=857e494e-af51-4e52-8235-d94ce75fadd9
  • _w3gc1p4znvauow1j332ha9ca92qyq8q
  • swisssign-check=bDdqlzP8fw738126q8WeSK3d3FM
Verified for
  • Google
  • Microsoft 365
  • Miro
  • TeamViewer

Email authentication partial

SPF
v=spf1 ip4:62.240.192.48 ip4:194.9.85.135 ip4:62.240.192.49 ip4:195.141.17.27 include:spf.swisscom.com include:mailing.eqs.com include:amazonses.com include:spf.imc-hosting.com ~all
softfail (~all)
DMARC
v=DMARC1;p=none
policy: none (monitoring only)
DKIM
no key found at common selectors

Certificate (current)

SwissSign RSA TLS EV ICA 2022 - 1
from 2025-08-04 to 2026-08-04
Expires in 64 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.tkb.ch/private

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
same-origin
x-frame-options
deny
x-content-type-options
nosniff
content-security-policy
default-src 'self';connect-src 'self' https://*.google-analytics.com https://*.analytics.google.com https://*.googletagmanager.com https://*.google.com https://*.google.ch https://pagead2.googlesyndication.com https://www.googleadservices.com https://google.com https://www.google.com www.googletagmanager.com www.google-analytics.com *.linkedin.com *.licdn.com www.googleadservices.com www.google.com *.facebook.com connect.facebook.net https://*.g.doubleclick.net www.tkb.ch;font-src 'self' https://fonts.gstatic.com data: https://www.gstatic.com;frame-src 'self' https://www.googletagmanager.com https://td.doubleclick.net www.linkedin.com *.doubleclick.net *.facebook.com connect.facebook.net https://td.doubleclick;frame-ancestors 'self' https://*.tkb.ch;img-src 'self' blob: data: https://*.google-analytics.com https://*.googletagmanager.com https://googletagmanager.com https://ssl.gstatic.com https://www.gstatic.com https://fonts.gstatic.com https://www.googleadservices.com https://googlea
strict-transport-security
max-age=31536000

Links to (7)

Linked from (9)