sciotovalley.com

.com crawl

First seen 2026-04-15 · Last seen 2026-05-10 · ok HTTP/1.1 200 6420 ms crawled 2026-05-10

US · 151.101.193.124 · AS54113 Fastly, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title: SV Life's best moments start here [NEW]
Description: Visit Scioto Valley for all your indoor & outdoor entertaining needs - furniture, pools, hot tubs, spas, game tables, bars, outdoor fireplaces & kitchens.
Language: en
Canonical: https://www.sciotovalley.com/

Technology

CMS: Gatsby

Analytics

Google Tag Manager

Fonts

Adobe Fonts
Google Fonts

Third-party hosts loaded (4)

fonts.googleapis.com×1
tag.simpli.fi×1
use.typekit.net×1
www.googletagmanager.com×1

Social

Contact

Phone

614-876-7755

Address

Retail Store4577 Lyman Dr.Hilliard, OH 43026614-876-7755

Registration

Registrar

GoDaddy.com, LLC

Created

1995-12-07

Expires

2027-03-01 286 days left

Updated

2022-09-02

Name servers

ns35.domaincontrol.com
ns36.domaincontrol.com

DNS records live

NS

ns35.domaincontrol.com
ns36.domaincontrol.com

MX

10 mx2-us1.ppe-hosted.com
5 mx1-us1.ppe-hosted.com

TXT

Show 7 TXT records

facebook-domain-verification=gw1btpreqe8l41h3ouhg9na29n0d8f
google-site-verification=mFqCqY_NxwtvH7NKYmRwldP07gqqyJmwqMkGT3wbbpo
fb6cvltg6nta709h742hm9rfs3
ppe-3a04747cba3e5c43869c
nordpass-domain-verification=acd76182ca9811208b379c1ee66a74cd6d8867c049f354dfe37c127e7110dd8b
_globalsign-domain-verification=tDpjRBlQKPJriM7MhZaiyDFo5DP19cB3Q0c90JSPXC
google-site-verification=hRtXg0iHDq5NlurNHEwn28V_8wDBCv9ADm_Nvx1OM28

Email authentication partial

SPF

v=spf1 include:spf.protection.outlook.com ip4:50.58.99.30 ip4:50.58.99.22 include:servers.mcsv.net include:infusionmail.com a:dispatch-us.ppe-hosted.com include:_spf.outgoing.vircom.com include:5117171.spf55.hubspotemail.net -all

strict (-all)

DMARC

v=DMARC1; p=none;

policy: none (monitoring only)

DKIM

k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…

selectors probed

Certificate (current)

R13

from 2026-03-24 to 2026-06-22

Expires in 34 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.sciotovalley.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: object-src 'self' 'unsafe-inline'; manifest-src 'self' 'unsafe-inline'; child-src *.certcapture.com assets.braintreegateway.com c.paypal.com *.paypal.com http: https: blob: 'self' 'unsafe-inline'; upgrade-insecure-requests; frame-ancestors 'self' *.certcapture.com 'self'; form-action 'self' https://survey.g.doubleclick.net/ https://www.facebook.com/tr/ https://forms.hsforms.com/ geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.paypal.com www.facebook.com connect.facebook.net graph.facebook.com business.facebook.com *.cardinalcommerce.com 3ds-secure.cardcomplete.com www.clicksafe.lloydstsb.com pay.activa-card.com *.wirecard.com acs.sia.eu *.touchtechpayments.com www.securesuite.co.uk rsa3dsauth.com *.monzo.com *.arcot.com *.wlp-acs.com * 'self' 'unsafe-inline'; style-src 'self' 'unsafe-inli
strict-transport-security: max-age=31536000

Links to (5)

Linked from (1)

aaabluejackets.com×2