animalmedclinicmerlehay.com

.com crawl

First seen 2026-05-05 · Last seen 2026-05-12 · ok HTTP/1.1 200 1466 ms crawled 2026-05-12

US · 104.21.62.140 · AS13335 Cloudflare, Inc.

Reputation 100/100

Classifying

HTML metadata

Title: Homepage | Animal Medical Clinic of Merle Hay
Description: Animal Medical Clinic of Merle Hay has proudly been serving the pets and pet owners of the Des Moines, IA community since 1978.
Language: en
Canonical: https://www.animalmedclinicmerlehay.com/

Open Graph

url: https://www.animalmedclinicmerlehay.com/
title: Homepage | Animal Medical Clinic of Merle Hay
locale: en_US
site name: Animal Medical Clinic of Merle Hay
description: Animal Medical Clinic of Merle Hay has proudly been serving the pets and pet owners of the Des Moines, IA community since 1978.

Technology

CDN: Cloudflare
CMS: Next.js

Analytics

Google Tag Manager

Third-party hosts loaded (4)

images.ctfassets.net×38
www.googletagmanager.com×6
code.azureedge.net×1
www.google.com×1

Social

Registration

Registrar

GoDaddy.com, LLC

Created

2018-03-09

Expires

2030-03-09 1388 days left

Updated

2025-02-13

Name servers

carl.ns.cloudflare.com
olga.ns.cloudflare.com

DNS records live

NS

carl.ns.cloudflare.com
olga.ns.cloudflare.com

MX

5 animalmedclinicmerlehay-com.mail.protection.outlook.com

Verified for

Google
Microsoft 365

Email authentication strong

SPF

v=spf1 mx include:spf.protection.outlook.com ip4:209.143.155.182 include:spfa.cpmails.com include:spf.constantcontact.com include:_spf.smtp.com ~all

softfail (~all)

DMARC

v=DMARC1; p=reject; fo=1; rua=mailto:dmarc_agg@vali.email

policy: reject (enforced)

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0FyfJTkKZo1HCxkt2eMIIjNnVQKeUB64MNnFrN7p2XId2kBs8PM3P7965C5q+yaLOEaT7Atg+FxJaz…

selectors probed

Certificate (current)

WE1

from 2026-04-28 to 2026-07-27

Expires in 67 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.animalmedclinicmerlehay.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Permissions Policy

Header values

referrer-policy: same-origin
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'self'; media-src 'self' *.ourvet.com *.vetcove.com *.intercom-messenger.com *.intercomcdn.com *.intercom.io https://vetcove-pharmacy-production.s3.amazonaws.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: *.ourvet.com static.cloudflareinsights.com *.tiktokcdn-us.com www.tiktok.com *.ttwstatic.com www.instagram.com *.azureedge.net *.audioeye.com *.petsapp.com cdnjs.cloudflare.com static.ctctcdn.com *.brandcdn.com storage.googleapis.com player.vimeo.com petresortpromo.com *.evetsites.com js.intercomcdn.com widget.intercom.io *.amplitude.com *.nextinline.io assets.emergepay.chargeitpro.com countrysidevetcare.bamboohr.com *.adroll.com calendar.time.ly *.vetcove.com cdn.kustomerapp.com edge.fullstory.com js.stripe.com *.list-manage.com s3.amazonaws.com www.gstatic.com widgets.jotform.io nva.jotform.com code.jquery.com googleads.g.doubleclick.net *.google-analytics.com *.weglot.com *.googletagmanager.com www.youtube.com *.erexpress.com lifelearn-cliented.com connect.t
strict-transport-security: max-age=63072000; includeSubDomains; preload

Links to (3)

Linked from (1)

whiskerstnr.org×1