At purchase the bot screens the name against Google Safe Browsing and scam/wallet blocklists and warns you if the domain is already flagged. The domain card shows a «Блокировки: присутствуют/отсутствуют» (Blocks: present/absent) line — that’s the registrar-ban status, and you can re-check it with a button. The check doesn’t fix your content: keeping the site clean is your job.
1. Choosing a name
A name without alarming words
A name without alarming words
- The shorter and more neutral the name, the more trust it earns.
- Don’t put brands or trigger words in the domain:
verification,security,login,bank,google,paypal,coinbase,amazon, and the like — anti-phishing bots ban those almost instantly. - Don’t echo an already-banned domain in a new name (
example-app2.comafterexample-app.comgot blocked) — the link shows in the content, and the new domain follows the old one down.
A separate domain per project
A separate domain per project
Don’t host several different projects on one domain, and don’t reuse a domain that has already been blocked. One project, one domain: if something gets flagged, it won’t drag the rest down with it. Prices start at $5/year, so a dedicated domain per campaign is cheap insurance.
The subdomain trick
The subdomain trick
You can route traffic through a subdomain (
promo.example.com) and keep an empty or neutral page on the root. Automated scanners take longer to find pages like these.Private registrant data
Private registrant data
For Lumi domains, WHOIS shows generated contact data — the bot registers under its own contact identity, so your real details never go public. There’s no separate WHOIS-privacy toggle to flip: privacy is on by default.
2. Protecting traffic
Cloudflare and bots
Lumi domains have basic Cloudflare on from the start: bots are cut off, and a basic DDoS shield is active. Under heavy load, turn on Under Attack mode, plus Bot Fight Mode and WAF rules against data-center networks. SSL and protection settings are in Cloudflare.
SSL on your own server
If your site runs on a VPS, install the certificate directly on the server instead of relying solely on a generic one from the CDN — that’s true end-to-end encryption, and search engines and reputation systems treat it more favorably. Setup is in SSL and Let’s Encrypt.
Cloaking
Cloaking
Cloaking means showing one page to the bots that inspect you and another to your target audience. There are ready-made services (Adspect, for example) — powerful, but expensive (on the order of $500–1000/mo) and only worth it at large volumes.
3. Landing page design
The page will get blocked if it’s a template or a copy of someone else’s content, even on a clean domain. Make it unique:Make the code unique
Make the code unique
Rename classes and ids to random ones, rearrange blocks, obfuscate the JS (with javascript-obfuscator, for example), and make images unique (strip metadata, change the size and quality). Afterward, check that everything still works.A trick to “glue” a word together from CSS so a simple parser can’t read it:
Color randomization
Color randomization
A light visual variation — a small hue shift on each load. Add the script in
<head>:Don't infringe copyright
Don't infringe copyright
Someone else’s logo or materials used without permission are a common trigger for complaints and blocks. Remove or rework them.
Already got a red warning?
How to clear a Google and Cloudflare warning.
Cloudflare
SSL, bot protection, redirects.