indexo.dev

stihlusa.com

.com crawl

First seen 2026-04-14 · Last seen 2026-05-20 · ok HTTP/1.1 200 2604 ms crawled 2026-05-07

US · 172.212.55.234 · AS8075 Microsoft Corporation

Reputation 100/100

Classifying

HTML metadata

Title
STIHL USA | Chainsaws, Lawn Mowers, Battery Tools & Outdoor Equipment | STIHL
Description
Discover STIHL chainsaws, mowers, trimmers, and pro‑grade outdoor equipment as we celebrate 100 years of durability and performance. Browse the full lineup and find a dealer near you.
Language
en-US
Canonical
https://www.stihlusa.com/en

Open Graph

url
https://www.stihlusa.com/en
title
STIHL USA | Chainsaws, Lawn Mowers, Battery Tools & Outdoor Equipment | STIHL
description
Discover STIHL chainsaws, mowers, trimmers, and pro‑grade outdoor equipment as we celebrate 100 years of durability and performance. Browse the full lineup and find a dealer near you.

Technology

CDN
Amazon CloudFront
Server
Apache
Cookie consent
  • OneTrust

Third-party hosts loaded (3)

  • 252092-stihl-b2camer.adobeioruntime.net×1
  • cdn.cookielaw.org×1
  • rum.hlx.page×1

Social

Contact

Address
536 Viking Drive, 23452, Virginia Beach

Registration

Registrar
Network Solutions, LLC
Created
1996-08-30
Expires
2026-08-29 101 days left
Updated
2025-02-18
Name servers
  • ns45.worldnic.com
  • ns46.worldnic.com

DNS records live

NS
  • ns45.worldnic.com
  • ns46.worldnic.com
TXT
  • nbdva4cc33ccqvhm347mns50q7
  • ss3832vuj8lfq73p7s27h5debg
  • j5hlhqfc655o0i6oig69lobtf0
Verified for
  • Google

Email authentication no MX

SPF
v=spf1 include:spf.mandrillapp.com ?all
neutral (?all)
DMARC
v=DMARC1; p=none; rua=mailto:dmarc_agg@vali.email
policy: none (monitoring only)
DKIM
no key found at common selectors

Certificate (current)

Entrust OV TLS Issuing RSA CA 2
from 2025-11-25 to 2026-11-26
Expires in 190 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.stihlusa.com/en

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'none'; object-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' assets.adobedtm.com *.adform.net *.adnxs.com assets.adotmob.com *.adsrvr.org *.ads-twitter.com pixel.adsafeprotected.com *.adyen.com zenloop-website-overlay-production.s3.amazonaws.com *.amazon-adsystem.com *.awin1.com impact.axite.app oc-cdn-public-eur.azureedge.net web-app-costcalculator-frontend-pda-t.azurewebsites.net web-app-costcalculator-frontend-pda-q.azurewebsites.net web-app-costcalculator-frontend-pda-r.azurewebsites.net web-app-batteryadvisor-frontend-pda-t.azurewebsites.net web-app-batteryadvisor-frontend-pda-q.azurewebsites.net web-app-batteryadvisor-frontend-pda-r.azurewebsites.net *.b2x-env.cloud apps.bazaarvoice.com *.bing.com *.bing.net *.clarity.ms *.cloudflare.com app.contentsquare.com t.contentsquare.net *.cookielaw.org *.criteo.com *.criteo.net digitizer.app *.dwin1.com *.g.doubleclick.net edge.curalate.com *.en25.com *.excentos.com nonce-csp-test *.facebook.net *.foxbase.de *.f
strict-transport-security
max-age=31536000; includeSubdomains;

Links to (14)

Linked from (19)