fbk[.]cc
Category: Phishing
To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.
Quttera Web Malware Removal is a paid subscription service. Pricing, plans, and trial availability are set by Quttera. Quttera is operated by Quttera Ltd, an independent third-party company unrelated to RCS LT. PCRisk.com may earn a referral commission when users sign up through this link.
Description of fbk[.]cc
The domain fbk[.]cc appears to host a cryptocurrency-themed landing page branded as "NEBULA X" and promoting a "USDT Storage Center" anniversary campaign. The visible homepage is minimal and primarily presents registration and login options, along with language switching and a support widget. Based on the screenshot and URL structure, the site appears to be aimed at account creation and user sign-in rather than publishing substantial public-facing company information.
The scanned paths include multilingual login-related pages and a "passport/forgot.html" route, which suggests the site may be operating as a web application with authentication flows. However, the available metadata does not identify a clearly verifiable operator, business entity, or established service provider behind the platform. The domain itself is short and generic, which does not by itself indicate legitimacy or illegitimacy, but it also does not provide strong branding context.
Safety Assessment for fbk[.]cc
This website was flagged by 15 out of 91 security engines at the time of the scan, with detections broadly describing phishing or malicious activity. In addition, the malware scan marked the overall threat level as malicious and flagged 24 out of 49 scanned files, including the homepage, password-recovery-related content, and numerous language-specific login pages. That pattern can be consistent with credential-harvesting or deceptive account portals, especially when many localized login endpoints are present.
The page design shown in the screenshot is sparse and heavily focused on registration and login, while offering limited transparency about the operator or service terms. Although several blacklist databases were clean at the time of this scan, blacklist coverage often lags behind newly deployed or selectively targeted abuse. The combination of multiple independent engine detections, numerous flagged authentication-related pages, and a very low trust score materially increases concern.
Based on these findings, this website may pose potential risks to visitors.
Technical Description
The site was reachable over HTTPS with a valid Let's Encrypt certificate, hosted on an nginx server at IP 104.223.65.118 in Dallas, United States, with hosting attributed to HostPapa. The domain has been registered since 2016 and is set to expire in 2027, which means it is not a newly created domain, although older age alone does not reduce risk when current scan findings are concerning.
DNSSEC appears to be unsigned, which is common but provides no additional DNS integrity assurance. The malware scan also flagged externally referenced JavaScript resources from a third-party content domain as malicious objects at the time of analysis. Based on available technical data, the main concerns are not certificate validity but the flagged web content and login-related page structure.
Share your experience with this website. Was it safe? Did you encounter any issues?