labor-day-51gb-free140.dzou[.]top
Category: Phishing
To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.
Quttera Web Malware Removal is a paid subscription service. Pricing, plans, and trial availability are set by Quttera. Quttera is operated by Quttera Ltd, an independent third-party company unrelated to RCS LT. PCRisk.com may earn a referral commission when users sign up through this link.
Description of labor-day-51gb-free140.dzou[.]top
This website appears to present a promotional giveaway themed around Philippine Labor Day, claiming that visitors have received "51GB FREE Data" valid for 90 days. The page imagery and wording suggest it is targeting Filipino users and referencing mobile data offers, with branding elements that resemble major Philippine telecom providers shown in the screenshot.
Based on the domain structure and page title, this does not appear to be an official corporate or government campaign site. Instead, it looks like a temporary promotional landing page hosted on a low-profile subdomain under dzou.top, with redirect-style paths such as go.php and single.php that may be used to route visitors to other destinations.
No clear operator identity is provided in the scan data. The domain name, lack of ranking, and short operating history may indicate a disposable campaign-style site rather than an established online service.
Safety Assessment for labor-day-51gb-free140.dzou[.]top
The scan results show multiple warning signs at the time of this scan. The domain was flagged by 2 out of 91 security engines, with detections associated with malware and phishing. In addition, the malware scan marked the overall threat level as malicious and flagged 7 out of 10 scanned files or URLs, including local redirect paths and externally loaded resources.
The page also references external domains and scripts that were identified as suspicious or malicious by the malware scan. This is notable because giveaway-style pages that promise free mobile data, especially when paired with redirect endpoints and third-party script loading, may be used to funnel users into phishing flows, ad fraud, unwanted subscriptions, or other deceptive activity. The use of telecom branding in the screenshot, without evidence in the scan data that this is an official telecom domain, further increases the risk of misleading visitors.
Although some blacklist and browsing-database checks were clean at the time of this scan, those results do not outweigh the direct file and link-level detections. Based on these findings, this website may pose potential risks to visitors.
Technical Description
The domain is relatively new, with an age of about 171 days, is not ranked in major popularity lists, and uses Cloudflare-hosted infrastructure with nameservers on Cloudflare. It presents a valid TLS certificate issued by a mainstream certificate authority, which indicates encrypted transport but does not by itself establish legitimacy. DNSSEC appears to be unsigned.
From a technical perspective, the site includes several redirect-oriented paths such as /go.php and a landing page script structure that may be intended to route traffic dynamically. Multiple externally referenced resources were flagged during scanning, and the site loads content from several third-party domains. This combination of short domain age, low reputation, unsigned DNSSEC, and flagged external resources may increase operational risk at the time of this scan.
Share your experience with this website. Was it safe? Did you encounter any issues?