indexo.dev

mainzplus.com

.com crawl

First seen 2026-04-20 · Last seen 2026-05-18 · ok HTTP/1.1 200 2822 ms crawled 2026-05-14

DE · 188.94.248.21 · AS15817 Mittwald CM Service GmbH & Co. KG

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
mainzplus GmbH
Description
Das dicke Plus für Mainz: Erlebe Kultur, Kongresse und Tourismus unter einem Dach. mainzplus macht das mainzgefühl für Gäste und Veranstalter erlebbar.
Language
de-DE
Canonical
https://www.mainzplus.com/
Translations
  • de
  • en

Open Graph

url
https://www.mainzplus.com/
title
Das dicke plus für alle: mainzplus GmbH
locale
de_DE
site name
mainzplus GmbH
description
Das dicke Plus für Mainz: Erlebe Kultur, Kongresse und Tourismus unter einem Dach. mainzplus macht das mainzgefühl für Gäste und Veranstalter erlebbar.
locale:alternate
en_GB

Technology

Server
Apache
CMS
WordPress

Third-party hosts loaded (1)

  • js.hcaptcha.com×1

Social

Registration

Registrar
Key-Systems GmbH
Created
2011-05-20
Expires
2026-05-20 0 days left
Updated
2025-11-26
Name servers
  • a.ns.ecotel.net
  • b.ns.ecotel.net
  • c.ns.ecotel.net
  • dns.heag.de
  • dns2.heag.de
  • dns3.heag.de

DNS records live

NS
  • a.ns.ecotel.net
  • b.ns.ecotel.net
  • c.ns.ecotel.net
  • dns.heag.de
  • dns2.heag.de
  • dns3.heag.de
MX
  • 10 mail21.itrm.de
  • 10 mail23.itrm.de
TXT
  • docusign=733d0eaf-7105-48d6-a3f0-ed8e47839be2
  • MS=ms82048415
  • DkFhUEqX9U0wUVgfbdVAh+D1rpNYKTr7txThqsxEgQJUAnDcReM0rcVl0FnPPl/x/qtO1YyJG8JDQTsBdEAOTw==

Email authentication partial

SPF
v=spf1 ip4:193.25.234.0/24 ip4:37.228.156.26/32 ip4:195.234.231.163 include:spf.protection.outlook.com include:agenturserver.de -all
strict (-all)
DMARC
v=DMARC1; p=none;
policy: none (monitoring only)
DKIM
no key found at common selectors

Certificate (current)

R13
from 2026-05-11 to 2026-08-09
Expires in 82 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 95/100 Checked live page: https://www.mainzplus.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
Header values
referrer-policy
no-referrer
x-frame-options
SAMEORIGIN
permissions-policy
accelerometer=(), autoplay=(self), camera=(), encrypted-media=(), fullscreen=(), geolocation=(self), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(self), usb=()
x-content-type-options
nosniff
content-security-policy
default-src 'self' data: statistik.mainzplus.com newassets.hcaptcha.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' data: blob: statistik.mainzplus.com js.hcaptcha.com; img-src 'self' data:; style-src 'self' 'unsafe-inline' data:;
strict-transport-security
max-age=31536000; includeSubDomains

Links to (5)

Linked from (9)