https://illumepgh.com/

Analyzed on March 1, 2026, 5:23 a.m. Click "Rescan Website" to get the latest data

Analysis Successful
Network Information
IP Address: 172.67.137.195
IP WHOIS Information:
  • ASN: 13335
  • ASN Description: CLOUDFLARENET - Cloudflare, Inc., US
  • Country: US
  • Description: Cloudflare, Inc.
  • CIDR: 172.64.0.0/13
Domain Information
  • Registrar: NAMECHEAP INC
  • Created: February 04, 2015
  • Expires: February 04, 2029
  • Last Updated: May 18, 2025
  • Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
  • Name Servers:
    • DOUG.NS.CLOUDFLARE.COM
    • MIA.NS.CLOUDFLARE.COM
DNS Records
Learn about DNS Records
A Records (IPv4 Addresses)
Domain IP Address
illumepgh.com 104.21.46.103
illumepgh.com 172.67.137.195
MX Records (Mail Servers)
Priority Mail Server
5 alt1.aspmx.l.google.com.
5 alt2.aspmx.l.google.com.
10 alt3.aspmx.l.google.com.
10 alt4.aspmx.l.google.com.
1 aspmx.l.google.com.
TXT Records
Domain Text Record
illumepgh.com "canva-site-verification=TBfpTjiK5DMyJ2aDl6Mrtw"
illumepgh.com "apple-domain-verification=4wWRPed0ZEJbis3KYsxrbXXpKvIpNMHi2j91riVm-u0"
illumepgh.com "google-site-verification=QJt1UdW7WIUhh8OHKgQPyjOglnL_zzY-8V30lvzu5bE"
illumepgh.com "v=spf1 include:_spf.google.com ~all"
illumepgh.com "pinterest-site-verification=f305c7953a3a9c0daa1d9a3fb71b7333"
WWW Subdomain Records
Subdomain Type Value
www.illumepgh.com A 104.21.46.103
www.illumepgh.com A 172.67.137.195
Services Detected (5 found)
Google Workspace
Google Workspace

Email hosted on Google Workspace

Learn More
Apple
Apple

Apple services detected

Learn More
Canva
Canva

Canva services detected

Learn More
Google Search Console
Google Search Console

Google Search Console services detected

Learn More
Pinterest
Pinterest

Pinterest social media services detected

Learn More
Blocklisting Status
Learn about Blocklisting Status
Overall Status: CLEAN No blocklisting detected
Services Checked: 2
VirusTotal: CLEAN
Domain is clean according to 0 scanners
No threats detected by any security scanner
Google Safe Browsing: CLEAN
Domain is not blocklisted by Google Safe Browsing
No threats detected
Hosting Information
Provider: Cloudflare (high confidence)
Detection Method: HTTP Headers
Matched Headers:
  • server: cloudflare
  • cf-ray: 9d55ba95bd4f4515-atl
Company Information:

Global CDN and security provider offering DDoS protection, SSL certificates, and performance optimization services.

Contact:
Social Media:
SSL/TLS Security
Learn about SSL/TLS Security
TLS Version: TLSv1.3
SSL Certificate:
  • Certificate Type: DV (Domain Validated - Basic Security)
  • Subject: illumepgh.com
  • Certificate Authority (CA): WE1
    Google Trust Services
    US
  • Valid From: Jan 30 13:52:34 2026 GMT
  • Valid Until: Apr 30 14:50:09 2026 GMT
  • Serial Number: 6F22A13F66559B96132FF50F92F361AB
SSL Certificate Expiring Soon!
Your SSL certificate expires in 60 days.
Please renew your certificate before Apr 30 14:50:09 2026 GMT to avoid service interruption.
Content Management System
WordPress Security Analysis
FAILED
Learn about WordPress Security Analysis
XMLRPC.php Security Test PASSED

XMLRPC.php is properly protected (HTTP 403)

HTTP Status: 403

Recommendation: XMLRPC.php is properly secured.
WP-Login.php Security Test FAILED

WP-Login page is accessible without CAPTCHA protection

HTTP Status: 200

Recommendation: Implement CAPTCHA protection on wp-login.php and consider using a firewall to block brute force attacks.
User Enumeration Test FAILED

User enumeration is possible via WordPress REST API

Test Results:

Endpoint: https://illumepgh.com/wp-json/wp/v2/users

Status: FAILED

Message: User enumeration possible - 2 users found

HTTP Status: 200

Endpoint: https://illumepgh.com/?rest_route=/wp/v2/users

Status: FAILED

Message: User enumeration possible - 2 users found

HTTP Status: 200

Users Found:
ID Name Slug Link
84 Chris Ubinger chris https://illumepgh.com/author/chris/
2 Kristin Maher kristin https://illumepgh.com/author/kristin/
Recommendation: Require authentication for WordPress REST API or disable user enumeration. Consider using security plugins or server-level restrictions.
Failed Security Tests:
  • WP-Login
  • User Enumeration
Security Headers Analysis
Need help understanding security headers? View our comprehensive documentation to learn about each header and how to implement them.
Present Security Headers
Referrer-Policy
X-Frame-Options
X-XSS-Protection
X-Content-Type-Options
Strict-Transport-Security
Missing Security Headers
Content-Security-Policy
Permissions-Policy
Cross-Origin-Embedder-Policy
Cross-Origin-Opener-Policy
Cross-Origin-Resource-Policy
External JavaScripts Detected
Only scripts from different domains are shown
Domain Script URL Type
assets.speedvitals.com https://assets.speedvitals.com/vitals.min.js External
web.cmp.usercentrics.eu https://web.cmp.usercentrics.eu/ui/loader.js External
www.googletagmanager.com https://www.googletagmanager.com/gtag/js?id=G-3MJKJT4L34 External
HTTP Headers
Learn about HTTP Headers
HTTP Response Code
200 OK - Request successful
HTTP Protocol Version
Excellent! Your website is using HTTP/2

Your website is using a modern HTTP protocol version, which provides better performance and security features.

Gzip Compression Enabled 👍

Great! This site is using Gzip compression to improve performance and reduce bandwidth usage.

Header Value
nel {"report_to":"default","max_age":2592000,"include_subdomains":true,"failure_fraction":1.0}
date Sun, 01 Mar 2026 05:23:18 GMT
link <https://illumepgh.com/wp-content/cache/perfmatters/illumepgh.com/css/front.used.css?ver=1772077376>; rel=preload; as=style, <https://illumepgh.com/wp-content/uploads/generatepress/fonts/outfit/outfit-variablefont_wght.ttf>; rel=preload; as=font; crossorigin, <https://illumepgh.com/wp-content/uploads/generatepress/fonts/inter/inter-variablefont_opszwght.ttf>; rel=preload; as=font; crossorigin
vary Accept-Encoding
cf-ray 9d55ba95bd4f4515-ATL
server cloudflare
alt-svc h3=":443"; ma=86400
report-to {"group":"default","max_age":10886400,"endpoints":[{"url":"https://crudesign.uriports.com/reports"}],"include_subdomains":true}
content-type text/html; charset=UTF-8
http_version HTTP/2
cache-control s-maxage=31536000, max-age=600
last-modified Sun, 01 Mar 2026 03:27:14 GMT
cf-cache-status HIT
referrer-policy strict-origin-when-cross-origin
x-frame-options SAMEORIGIN
x-ua-compatible IE=edge
content-encoding gzip
x-xss-protection 1; mode=block
reporting-endpoints default="https://crudesign.uriports.com/reports"
x-wp-spc-disk-cache DISABLED
x-content-type-options nosniff
strict-transport-security max-age=31536000; includeSubDomains; preload
x-wp-cf-super-cache-active 1
permissions-policy-report-only geolocation=();report-to=default, camera=();report-to=default, microphone=();report-to=default, usb=();report-to=default, fullscreen=(self);report-to=default
x-wp-cf-super-cache-cache-control s-maxage=31536000, max-age=600
content-security-policy-report-only default-src 'self'; font-src 'self' https: data:; img-src 'self' https: data:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:; frame-ancestors 'self'; connect-src 'self' https://*.uriports.com; upgrade-insecure-requests; report-to default; report-uri https://crudesign.uriports.com/reports/report;
Service Disclaimer

Free Service: This website security analyzer is provided as a free service to help website owners and administrators identify potential security issues and improve their website's security posture.

Donations: We welcome and appreciate donations to help us maintain and improve this service. Your support helps us keep this tool free and continuously enhance its capabilities.

Affiliate Links: We may use affiliate links for various security services, hosting providers, and security tools mentioned throughout this analysis. If you choose to purchase any of these services through our links, we may receive a small commission at no additional cost to you. This helps support the development and maintenance of this free service.

Support Our Service

Help us keep this tool free and improve it further

Please wait, running the scan...
This may take a few moments