indexo.dev

ilio.com

.com crawl

First seen 2026-05-15 · Last seen 2026-05-19 · ok HTTP/1.1 200 2541 ms crawled 2026-05-19

US · 192.124.249.17 · AS30148 Sucuri

Reputation 100/100

Classifying

HTML metadata

Title
Virtual Instruments, Plug-ins, Tools for Music Production
Description
ILIO is your source for award-winning virtual instruments and plug-ins for the professional musician, producer, and music creator
Language
en

Technology

CDN
Fastly
Server
Sucuri
CMS
Gatsby
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts

Third-party hosts loaded (4)

  • www.googletagmanager.com×3
  • fonts.googleapis.com×2
  • fonts.gstatic.com×1
  • www.facebook.com×1

Social

Contact

Phone
Address
© 2026 ILIO. All Rights Reserved.

Registration

Registrar
GoDaddy.com, LLC
Created
1995-12-13
Expires
2028-12-12 936 days left
Updated
2026-05-13
Name servers
  • pdns01.domaincontrol.com
  • pdns02.domaincontrol.com

DNS records live

NS
  • pdns01.domaincontrol.com
  • pdns02.domaincontrol.com
MX
  • 10 mail.ilio.com
TXT
  • trg554pr5bf4bolvt0op2vvjuk
  • cp3ck5etmpnu33dmu8ckg2cakq
Verified for
  • Google

Email authentication strong

SPF
v=spf1 +mx +a +mx:mail.ilio.com +mx:email.ilio.com +ip4:50.28.104.121 +ip4:50.28.104.122 +ip4:50.28.102.236 +ip4:50.28.107.5 +ip4:121.104.28.50 +ip4:169.48.173.31 +ip4:169.60.199.46 +ip4:169.60.199.47 +ip4:169.60.13.142 +ip4:169.48.173.30 +ip4:169.60.13.135 ~all
softfail (~all)
DMARC
v=DMARC1; p=quarantine; rua=mailto:dmarc_rua@ilio.com; ruf=mailto:dmarc_ruf@ilio.com;fo=1
policy: quarantine
DKIM
  • default: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmtSnU76NspfJJr0v9XODIt7hI960t5bC+TRqgcwloeHL/yeZ3HpO6uz1x93hyz7CKkWxGgok4meKdT…
selectors probed

Certificate (current)

Starfield Secure Certificate Authority - G2
from 2026-05-14 to 2026-08-12
Expires in 84 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://www.ilio.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • weak frame protection
  • weak content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN, SAMEORIGIN, SAMEORIGIN
x-content-type-options
nosniff, nosniff
content-security-policy
upgrade-insecure-requests;, font-src www.paypalobjects.com fonts.gstatic.com use.typekit.net *.typekit.net *.gstatic.com *.cloudflare.com *.twitter.com https://www.gstatic.com *.twimg.com *.googleapis.com https://maps.googleapis.com/ https://*.g.doubleclick.net https://www.google.com/ https://www.google.co.in/ https://*.hotjar.com https://*.hotjar.io wss://*.hotjar.com *.byspotify.com *.spotify.com *.paypal.com https://fonts.gstatic.com maxcdn.bootstrapcdn.com fonts.googleapis.com data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.paypal.com *.twitter.com https://maps.googleapis.com/ https://*.g.doubleclick.net https://www.google.com/ https://www.google.co.in/ https://*.hotjar.com https://*.hotjar.io wss://*.hotjar.com *.facebook.com *.byspotify.com
strict-transport-security
max-age=31536000; includeSubdomains; preload

Links to (5)

Linked from (1)