vrbankmitte.de

.de crawl

First seen 2026-04-30 · Last seen 2026-05-15 · ok HTTP/1.1 200 4769 ms crawled 2026-05-08

DE · 195.200.52.96 · AS15590 Atruvia AG

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title: Startseite - VR-Bank Mitte eG
Description: Für uns heißt da sein, auch füreinander da zu sein. Und das geht am besten vor Ort. Erfahren Sie hier mehr über die Leistungen und das Angebot Ihrer VR-Bank Mitte eG.
Language: de-DE
Canonical: https://www.vrbankmitte.de/startseite.html

Open Graph

url: https://www.vrbankmitte.de/startseite.html
title: Füreinander da sein
language: de
description: Für uns heißt da sein, füreinander da zu sein – das geht am besten vor Ort.

Technology

Third-party hosts loaded (2)

atruvia.scene7.com×23
cdn.m-m-m.de×1

Social

Registration

Updated

2025-06-24

Name servers

nsh1.atruvia.de.
nsh2.atruvia.com.
nsh3.atruvia.de.
nsh4.atruvia.com.

DNS records live

NS

nsh1.atruvia.de
nsh2.atruvia.com
nsh3.atruvia.de
nsh4.atruvia.com

MX

Show 8 MX records

20 omail22.gadmail.de
20 omail23.gadmail.de
20 rmail22.gadmail.de
20 rmail23.gadmail.de
30 gmail22.gadmail.de
30 gmail23.gadmail.de
30 wmail22.gadmail.de
30 wmail23.gadmail.de

TXT

Show 5 TXT records

apple-domain-verification=ib0EAC5JteeAHOXk
QuoVadis=0b2dc53d-bc5a-4e66-a002-d7a12ed112e2
google-site-verification=enftLvKtB04YG706MRdRVJbib-r7L_ysH2MAGftGVrI
MS=ms26015660
D-TRUST=QCOGDCG8Q49YG8G8H9BCAM8

Email authentication partial

SPF: v=spf1 include:net1.spf.fiduciagad.de include:spf.mailjet.com include:inxserver.com ip4:116.202.200.205 ip6:2a01:4f8:d0a:7449::2 include:spf.mailjet.com -all
strict (-all)
DMARC: v=DMARC1; p=none; adkim=r; aspf=r
policy: none (monitoring only)
DKIM: no key found at common selectors

Certificate (current)

D-TRUST SSL Class 3 CA 1 EV 2009

from 2026-04-05 to 2026-10-20

Expires in 154 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.vrbankmitte.de/startseite.html

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Permissions Policy

Header values

referrer-policy: no-referrer
x-frame-options: DENY
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' https://maps.googleapis.com 'sha256-aSqN2R3jDvHFUL3vVOUtG6OJr1IF+Y31IPMdo0dLU6U=' 'nonce-d55ad2468b4445505e5f77b0a648c9ba' https://cdn.m-m-m.de https://*.etracker.com https://*.etracker.de https://api.signalize.com; base-uri 'self'; font-src 'self' https: data:; form-action 'self'; frame-src 'self' https://www.youtube-nocookie.com https://pia.vrbankmitte.de https://www.ruv-aktion.de https://zuschussguide.vr-bankenportal.de https://cbs.module.vr-networld.de https://vrbankmitte.genolive.de https://app.novo.eco https://www.easycredit.de https://fincalc-services-vrnw.de https://webmodulservice.de https://cloud.ruv.de https://vcc.computercheck24.com https://suche.geno-banken.de https://hwmmu.module.vr-networld.de https://was.module.vr-networld.de https://onlinefinanzierung.vr-smart-finanz.de https://geno-banken.de; frame-ancestors 'none'; object-src 'self'; style-src 'self' 'unsafe-inline' https:; img-src https: data:; connect-src 'self' data: https://m
strict-transport-security: max-age=31536000