The steps focus on safe, responsible research and give you the tools to evaluate the site’s purpose, credibility, and security without compromising your privacy or violating any policies. | Action | Why it matters | How to do it | |--------|----------------|--------------| | Check the URL carefully | Look for misspellings, extra characters, or unexpected sub‑domains that often indicate phishing. | Write the domain down, then re‑type it in a fresh browser tab (don’t click links). | | Run a reputation scan | Services like VirusTotal, URLVoid, or Google Safe Browsing flag known malware, phishing, or scam sites. | Go to https://www.virustotal.com → “URL” tab → paste the full URL and press “Search”. | | Inspect the SSL certificate | HTTPS (padlock icon) isn’t a guarantee of safety, but a missing certificate is a red flag. | Click the padlock in the address bar → “Certificate” → check the issuer and expiration date. | | Search for reports | Community forums, Reddit, or security blogs may have user experiences. | Query "h5.rajabaji.com" site:reddit.com or "h5.rajabaji.com" scam in a search engine. | If any of the above checks flag the site as suspicious, stop here and do not proceed further. 2. Gather Basic Information About the Domain | Tool | What it reveals | How to use it | |------|----------------|---------------| | WHOIS lookup | Registrant name, registration date, expiration, and contact info. | Use https://whois.domaintools.com or whois h5.rajabaji.com in a terminal. | | DNS records | IP address(es), MX (mail) servers, CNAMEs, and possible sub‑domains. | Use https://dnschecker.org or dig h5.rajabaji.com ANY in a terminal. | | IP geolocation | Approximate physical location of the hosting server. | Paste the IP into https://ipinfo.io or similar. | | Reverse IP lookup | Other sites sharing the same IP (useful for spotting hosting farms). | Try https://viewdns.info/reverseip/ . |