indexo.dev

maherspaint.com

.com crawl

First seen 2026-05-11 · Last seen 2026-05-11 · ok HTTP/1.1 200 8644 ms crawled 2026-05-16

US · 146.148.45.127 · AS396982 Google LLC

Reputation 100/100

Classifying

HTML metadata

Title
Maher's Paint & Wallpaper, LLC
Description
We have the best selections of premium paint products & decorating supplies in the Farmington Valley area. Our friendly website is here to assist you with all of your purchasing needs. Feel free to...
Language
en
Canonical
https://maherspaint.com/

Open Graph

url
https://maherspaint.com/
title
Maher's Paint Stores - Quality Home Improvement Paints & Decorating Supplies
site name
Maher's Paint & Wallpaper, LLC
description
We have the best selections of premium paint products & decorating supplies in the Farmington Valley area. Our friendly website is here to assist you with all of your purchasing needs. Feel free to...

Technology

CMS
WordPress
Third-party hosts loaded (7)
  • static.ezadlive.com×25
  • storage.googleapis.com×5
  • images.ezad.io×3
  • api.ezadlive.com×1
  • maps.googleapis.com×1
  • translate.google.com×1
  • translate.googleapis.com×1

Contact

Address
369 W Main St, 06001, Avon, CT, US

Registration

Registrar
IONOS SE
Created
2003-12-03
Expires
2026-12-03 197 days left
Updated
2025-12-04
Name servers
  • ns1055.ui-dns.biz
  • ns1055.ui-dns.com
  • ns1055.ui-dns.de
  • ns1055.ui-dns.org

DNS records live

NS
  • ns1055.ui-dns.biz
  • ns1055.ui-dns.com
  • ns1055.ui-dns.de
  • ns1055.ui-dns.org
MX
  • 10 mx00.ionos.com
  • 10 mx01.ionos.com

Email authentication strong

SPF
v=spf1 include:_spf-us.ionos.com ~all
softfail (~all)
DMARC
v=DMARC1;p=reject;pct=100;rua=mailto:postmaster@maherspaint.com
policy: reject (enforced)
DKIM
no key found at common selectors

Certificate (current)

R13
from 2026-03-31 to 2026-06-29
Expires in 40 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://maherspaint.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self'; connect-src 'self' *.ezadtv.com *.ezadlive.com *.stripe.com *.googleapis.com *.paypal.com *.google-analytics.com *.sentry.io *.facebook.com google.com *.google.com *.youtube.com http://localhost:3010; font-src * data:; img-src * data:; frame-src 'self' *.stripe.com www.googletagmanager.com *.paypal.com td.doubleclick.net platform.liquidus.net ezadtv.com *.google.com *.youtube.com *.youtube-nocookie.com *.jotform.com player.vimeo.com media.benjaminmoore.com *.authorize.net *.bamboohr.com *.calendly.com *.typeform.com *.vimeo.com; script-src 'self' blob: 'unsafe-inline' www.web2dm.com www.googletagmanager.com *.google-analytics.com connect.facebook.net js.stripe.com platform.liquidus.net static.hotjar.com static.ezadlive.com *.googleapis.com *.paypal.com *.sentry.io googleads.g.doubleclick.net *.google.com *.gstatic.com *.googleadservices.com; style-src 'self' static.ezadlive.com 'unsafe-inline' fonts.googleapis.com; media-src * data:; frame-ancestors 'self'; report-u
strict-transport-security
max-age=31536000

Links to (2)

Linked from (1)