labor-day-51gb-free142.nurc[.]top
Category: Suspicious
To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.
Quttera Web Malware Removal is a paid subscription service. Pricing, plans, and trial availability are set by Quttera. Quttera is operated by Quttera Ltd, an independent third-party company unrelated to RCS LT. PCRisk.com may earn a referral commission when users sign up through this link.
Description of labor-day-51gb-free142.nurc[.]top
The domain labor-day-51gb-free142.nurc[.]top appears to host a promotional landing page claiming that visitors have received "51GB FREE Data for Labor Day." Based on the page title, screenshot, and linked resources, the site is presented as a giveaway-style campaign aimed at Filipino users, using Labor Day imagery, references to mobile data, and branding associated with major Philippine telecom providers. The page appears to be designed to attract clicks through a time-sensitive reward offer rather than to provide substantive organizational or editorial content.
The domain itself does not appear to belong to an established telecom operator, government body, or recognized media organization. Its naming pattern is highly promotional and disposable-looking, and the site does not show clear ownership or operator identity in the provided scan data. The content and structure suggest a campaign-style page that may be intended to funnel users through redirects or external scripts rather than serve as a legitimate corporate website.
The domain also closely resembles nrc.nl in spelling, which may indicate a look-alike registration pattern, even though the visible page content is unrelated to that brand. Based on available data, this combination of a misleading promotional theme, unclear operator identity, and resemblance to another known domain raises credibility concerns.
Safety Assessment for labor-day-51gb-free142.nurc[.]top
Several scan signals indicate elevated risk at the time of this scan. The domain was flagged by 4 out of 91 security engines, and multiple web-classification sources categorized it as suspicious, phishing-related, or a newly registered website. In addition, the malware scan reported a malicious threat level and flagged 7 out of 10 scanned files, including local PHP paths and externally loaded resources. Two referenced external domains were also identified as malicious objects in the scan results, which may indicate that the page loads or redirects through questionable third-party infrastructure.
The page content itself adds to the concern. It promotes a "51GB FREE Data" Labor Day offer using telecom branding and patriotic imagery, a pattern commonly associated with social-engineering lures and fraudulent giveaway campaigns. The domain also closely resembles nrc.nl in spelling and may be a look-alike registration, which is another credibility warning sign even if the visible theme differs from the referenced domain. The site has no Tranco ranking, appears relatively new, and lacks clear signs of an established operator.
Although some blacklist and browsing-database checks were clean at the time of this scan, that does not outweigh the combination of phishing-related classifications, malicious file findings, suspicious external resources, and deceptive promotional presentation. Based on these findings, this website may pose potential risks to visitors.
Technical Description
The site was served over HTTPS with a valid TLS certificate issued by a mainstream certificate authority, and the traffic appears to be proxied through Cloudflare infrastructure. The reported server IP was 188.114.97.2, with Cloudflare nameservers in use and hosting geolocated to Toronto, Canada. A valid certificate helps encrypt traffic in transit, but it does not by itself indicate legitimacy.
From a domain-security perspective, DNSSEC appears to be unsigned, and the domain is relatively new and unranked. The scan also identified suspicious or malicious PHP endpoints, multiple flagged outbound links, and references to external domains associated with malicious objects. These technical indicators suggest the site may be using redirect chains or externally hosted assets in ways that increase risk.
Share your experience with this website. Was it safe? Did you encounter any issues?