86%
Health
StatusOnline
HTTP status code200
Response time9 ms (Fast)
ProtocolHTTP/1.1
HTTPS availableYes
Forces HTTPS (redirects http→https)Yes visiting http:// forwards to https://
DNS & reachability
Resolves to1 IPv4 · 0 IPv6 (single A record — no DNS failover)
IPv6 (AAAA record)No
www vs non-wwwBoth work, same canonical
Routing
RedirectsNone (direct)
Content checks
Fake URL handlingCorrect fake URLs return 404
Parked / for-sale pageNot parked
Connection timing breakdown
DNS lookup1 ms
TCP connect0 ms
TLS handshake7 ms
Server processing1 ms
Content transfer0 ms
SSL / TLS Certificate
Certificate presentYes
Trusted & validYes
IssuerLet's Encrypt
Issued tophp-login.com
Also covers (SAN)my.php-login.com, php-login.com, www.php-login.com
Expires2026-08-12 (68 days)
TLS versionTLSv1.3
CipherTLS_AES_256_GCM_SHA384 Strong
Security Headers (1 ok · 5 weak · 1 missing)
| Header | State | Detail |
|---|---|---|
strict-transport-security | Missing | HSTS not set — site is vulnerable to SSL stripping and protocol downgrade attacks |
content-security-policy | Missing | No Content Security Policy — no structural protection against XSS injection |
x-frame-options | Missing | X-Frame-Options not set — site may be vulnerable to clickjacking |
x-content-type-options | Missing | X-Content-Type-Options not set — browsers may MIME-sniff and execute malicious content |
referrer-policy | Missing | Referrer-Policy not set — full URLs may leak to third parties via the Referer header |
permissions-policy | Missing | Permissions-Policy not set — no restrictions on browser feature access |
x-xss-protection | Optional | Not set — fine, this header is deprecated (CSP is the modern replacement) |
cross-origin-opener-policy | Optional | Not set — recommended for cross-origin isolation, but optional |
cross-origin-resource-policy | Optional | Not set — recommended to prevent your resources being embedded cross-origin |
cross-origin-embedder-policy | Optional | Not set — optional; needed only for full cross-origin isolation |
set-cookie | Good | All cookies set HttpOnly, Secure and SameSite |
server | Info | Consider hiding or genericizing this header |
No malware signatures matched. The scanned HTML, scripts and links are clean.
No SEO spam, cloaking, hidden links or pharma injection detected.
DNS Blacklists (0 of 5 blocking)
| Service | Status | Resolved |
|---|---|---|
| Clean | NOERROR | |
| Clean | NOERROR | |
| Clean | NOERROR | |
| Clean | NOERROR | |
| Clean | NOERROR |
Domain Age & Registration
Domain age0.9 years (328 days)
Registered2025-07-11
Expires2026-07-10 (35 days)
RegistrarGoDaddy.com, LLC
WHOIS privacyYes
- Domain is less than 1 year old — moderate risk
- Domain expires in 35 days — renewal recommended soon
GDPR riskMedium
Analytics presentYes
Advertising trackersNo
Session-recording / fingerprintingNo
Privacy policy linkNo
Cookie consent bannerNo
Analytics (1)
Plausible
- Analytics tracking detected but no privacy policy link found
Page HTML size9 KB
Server response time9 ms
Compression (gzip/br)Yes
Minified HTMLNo
Browser caching headersNo (max-age 0s)
Total scripts5
External scripts1
Render-blocking scripts1
Stylesheets5
Images11
- 1 render-blocking script(s) in <head> — consider async/defer
- No browser caching headers detected — repeat visitors re-download all assets
No fingerprintable technologies were detected.
External scripts referenced5
Stylesheets referenced7
IP address(es)149.28.66.11
CountryUnknown
Site categoryUncategorized
Neighbour domains on the same host
| Website | IP address |
|---|---|
| lgoshpee.com. | 149.28.66.11 |
Spam SEO