Analysis Results

https://www.chch.com

Analyzed on July 29, 2025, 9:32 p.m. Click "Rescan Website" to get the latest data

Analysis Successful
Network Information
IP Address: 162.159.135.42
IP WHOIS Information:
  • ASN: 13335
  • ASN Description: CLOUDFLARENET, US
  • Country: US
  • Description: Cloudflare, Inc.
  • CIDR: 162.158.0.0/15
Ping Test Check AbuseIPDB Other Websites on Same IP
Domain Information
DNS Records
Learn about DNS Records
A Records (IPv4 Addresses)
Domain IP Address
www.chch.com 162.159.135.42
CNAME Records (Aliases)
Domain Alias
www.chch.com chch.com.
MX Records (Mail Servers)
Priority Mail Server
10 aspmx3.googlemail.com.
5 alt1.aspmx.l.google.com.
15 hkfb7c4g3hfvyasw6r6zfhjrqyy4sypqxj6uf6wtiocytzh5j5eq.mx-verification.google.com.
10 aspmx2.googlemail.com.
1 aspmx.l.google.com.
5 alt2.aspmx.l.google.com.
TXT Records
Domain Text Record
www.chch.com "google-site-verification=Ea7Te6tnmuhUNfjHnISGt0EPZc67kvqazXMBu6YasrA"
www.chch.com "v=spf1 mx a ip4:192.33.167.66 include:_spf.salesforce.com include:_spf.google.com include:spf.us.exclaimer.net include:_spf.intacct.com ~all"
www.chch.com "google-site-verification=tJIu0grqQiwVqYN1yOhctTbD9R2KVLMLqAqRWdA6N4E"
www.chch.com "google-site-verification=e-iII2vxq8ANxiFAEqHph2Ni6ziIatz98ffHJmC3OrQ"
Services Detected (2 found)
Google Workspace
Google Workspace

Email hosted on Google Workspace

Learn More
Google Search Console
Google Search Console

Google Search Console services detected

Learn More
View DNS History on DNS Archive
Check GeoIP Blocking
Blocklisting Status
Learn about Blocklisting Status
Overall Status: CLEAN No blocklisting detected
Services Checked: 2
Google Safe Browsing: CLEAN
Domain is not blocklisted by Google Safe Browsing
No threats detected
VirusTotal: CLEAN
Domain is clean according to 0 scanners
No threats detected by any security scanner
Hosting Information
Provider: Kinsta (high confidence)
Detection Method: HTTP Headers
Matched Headers:
  • x-kinsta-cache: hit
  • ki-cache-type: edge
  • ki-cf-cache-status: hit
  • ki-edge: v=21.1.1;mv=5.0.10
Company Information:

Premium managed WordPress hosting with Google Cloud Platform infrastructure, offering high performance, security, and developer-friendly features.

Website
Portal
Contact:
Social Media:
SSL/TLS Security
Learn about SSL/TLS Security
TLS Version: TLSv1.3
SSL Certificate:
  • Certificate Type: DV (Domain Validated - Basic Security)
  • Subject: chch.com
  • Certificate Authority (CA): WE1
    Google Trust Services
    US
  • Valid From: Jun 25 11:21:45 2025 GMT
  • Valid Until: Sep 23 12:21:41 2025 GMT
  • Serial Number: DAF4BD7B1F4942680DA33E10B567F292
SSL Certificate Expiring Soon!
Your SSL certificate expires in 54 days.
Please renew your certificate before Sep 23 12:21:41 2025 GMT to avoid service interruption.
Content Management System
CMS Detected: WordPress
Detected Plugins (6):
elementor the-events-calendar elementor-pro events-calendar-pro onesignal-free-web-push-notifications blocksy-companion-pro
Themes

0

Plugins

6

WordPress Security Analysis
PASSED
Learn about WordPress Security Analysis
XMLRPC.php Security Test PASSED

XMLRPC.php is properly protected (HTTP 403)

HTTP Status: 403

Recommendation: XMLRPC.php is properly secured.
WP-Login.php Security Test PASSED

WP-Login page is not accessible (HTTP 403)

HTTP Status: 403

Recommendation: WP-Login page is properly protected.
User Enumeration Test PASSED

User enumeration is properly protected

Test Results:

Endpoint: https://www.chch.com/wp-json/wp/v2/users

Status: PASSED

Message: Endpoint properly protected (HTTP 403)

HTTP Status: 403

Endpoint: https://www.chch.com/?rest_route=/wp/v2/users

Status: PASSED

Message: Endpoint properly protected (HTTP 403)

HTTP Status: 403

Recommendation: WordPress REST API user enumeration is properly secured.
Security Headers Analysis
Need help understanding security headers? View our comprehensive documentation to learn about each header and how to implement them.
Present Security Headers
X-Content-Type-Options
Missing Security Headers
Strict-Transport-Security
X-Frame-Options
X-XSS-Protection
Referrer-Policy
Content-Security-Policy
Permissions-Policy
Cross-Origin-Embedder-Policy
Cross-Origin-Opener-Policy
Cross-Origin-Resource-Policy
Request Assistance
External JavaScripts Detected
Only scripts from different domains are shown
Domain Script URL Type
a.teads.tv https://a.teads.tv/page/136137/tag External
cdn.onesignal.com https://cdn.onesignal.com/sdks/web/v16/OneSignalSDK.page.js?ver=1.0.0 External
chimpstatic.com https://chimpstatic.com/mcjs-connected/js/users/a0c7f66c98e3f59389e2e4134/4b0c4e7b5038f9e40121cce73.js Inline Reference
multiformat.rubiconproject.com https://multiformat.rubiconproject.com/pub.js External
s.ntv.io https://s.ntv.io/serve/load.js External
s3.amazonaws.com https://s3.amazonaws.com/downloads.mailchimp.com/js/mc-validate.js External
securepubads.g.doubleclick.net https://securepubads.g.doubleclick.net/tag/js/gpt.js External
www.googletagmanager.com https://www.googletagmanager.com/gtag/js?id=G-HHZPB5H8YL External
HTTP Headers
Learn about HTTP Headers
HTTP Response Code
200 OK - Request successful
Security Protection Detected

The site is using Cloudflare CDN & WAF 👍

Gzip Compression Enabled 👍

Great! This site is using Gzip compression to improve performance and reduce bandwidth usage.

Header Value
Date Tue, 29 Jul 2025 21:32:22 GMT
Content-Type text/html; charset=UTF-8
Transfer-Encoding chunked
Connection keep-alive
CF-Ray 966fba7f9cf56b5b-DFW
CF-Cache-Status HIT
Age 1839
Cache-Control public, max-age=0, s-maxage=31536000
Last-Modified Tue, 29 Jul 2025 20:52:53 GMT
Link <https://www.chch.com/wp-json/>; rel="https://api.w.org/", <https://www.chch.com/wp-json/wp/v2/pages/2>; rel="alternate"; title="JSON"; type="application/json", <https://www.chch.com/>; rel=shortlink
Vary Accept-Encoding
ki-Cache-Tag 083c3422-5ae0-4bf9-b647-fa1650b8f8f1,07ebc763e3ed60074d880b42627037ef093579792d55371873611800a14049b5
ki-cache-type Edge
Ki-CF-Cache-Status HIT
ki-edge v=21.1.1;mv=5.0.10
X-Content-Type-Options nosniff
X-Edge-Location-Klb 1
x-kinsta-cache HIT
x-pingback https://www.chch.com/xmlrpc.php
x-tec-api-origin https://www.chch.com
x-tec-api-root https://www.chch.com/wp-json/tribe/events/v1/
x-tec-api-version v1
Set-Cookie __cf_bm=usD2BOZU8sLsBpvRm7LSjvBUd6D5cWnw4JrC4YDAx_w-1753824742-1.0.1.1-cAS2WhVi82EKv8lJ9LflM1KMAzHex9OL6Y_TS1zT0M.YAfsTwFGVI6HnDY6g.Q1SXhR6ia1xH_Gq2VUPgbWD7qeygd0rnHAaB27vx.tN2eU; path=/; expires=Tue, 29-Jul-25 22:02:22 GMT; domain=.www.chch.com; HttpOnly; Secure; SameSite=None
Report-To {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=u94mKK7nnZUFHl5zFxol3KBfAReb0JEn69278%2FcivYY%2FbnBXXq79rljhxUCjvwoxhp4H9JKKCIZEcmzR00zTLwqG%2BzH4ZSf1kYSae1S%2BqITeEPcbkxXo7IjaXMaUJg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Server cloudflare
Content-Encoding gzip
alt-svc h3=":443"; ma=86400
Service Disclaimer

Free Service: This website security analyzer is provided as a free service to help website owners and administrators identify potential security issues and improve their website's security posture.

Donations: We welcome and appreciate donations to help us maintain and improve this service. Your support helps us keep this tool free and continuously enhance its capabilities.

Affiliate Links: We may use affiliate links for various security services, hosting providers, and security tools mentioned throughout this analysis. If you choose to purchase any of these services through our links, we may receive a small commission at no additional cost to you. This helps support the development and maintenance of this free service.

Support Our Service

Help us keep this tool free and improve it further

Buy us a Coffee Make a Donation via PayPal
Please wait, running the scan...
This may take a few moments