labor-day-51gb-free2.t87bb[.]top
Category: Phishing
To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.
Quttera Web Malware Removal is a paid subscription service. Pricing, plans, and trial availability are set by Quttera. Quttera is operated by Quttera Ltd, an independent third-party company unrelated to RCS LT. PCRisk.com may earn a referral commission when users sign up through this link.
Description of labor-day-51gb-free2.t87bb[.]top
The domain labor-day-51gb-free2.t87bb[.]top appears to host a promotional landing page claiming that visitors have received "51GB FREE Data for Labor Day." Based on the page title, screenshot, and linked assets, the content is framed as a holiday-themed giveaway aimed at Filipino users, with references to mobile data and local telecom branding. The page design suggests a campaign-style offer rather than a full business website, and it appears to rely on redirects and external resources to move visitors through the flow.
The domain name itself is highly promotional and disposable-looking, combining a holiday reference, a free-data claim, and a numbered suffix. No clear operator identity is provided in the scan data, and the site does not appear to represent an established organization, government service, or official telecom portal. Based on available evidence, this appears to be a short-lived promotional or lead-capture page rather than a transparent, independently branded service.
Safety Assessment for labor-day-51gb-free2.t87bb[.]top
The scan results show several notable risk indicators at the time of this scan. One out of 91 security engines flagged the domain for phishing-related activity, and the malware scan reported a malicious threat level with 7 flagged items out of 10 scanned files. In addition, multiple outbound resources and referenced domains were flagged as malicious objects, including external script and image resources. These findings may indicate that the page is part of a redirect chain, deceptive promotion flow, or broader malicious campaign.
Contextual signals also raise concern. The domain was registered very recently and was 0 days old at the time of analysis, it has no established traffic ranking, and it uses a generic promotional naming pattern centered on a free reward claim. The screenshot advertises a large free mobile-data offer tied to Labor Day and displays telecom branding, which may be intended to create urgency or implied legitimacy. While some blacklist databases did not list the domain at the time of this scan, newly created domains can appear before broader blocklists are updated.
Based on these findings, this website may pose potential risks to visitors.
Technical Description
The site was served over HTTPS with a valid Let's Encrypt certificate, fronted by Cloudflare infrastructure, and resolved to a Cloudflare IP in Toronto, Canada. The domain uses Cloudflare nameservers and has DNSSEC unsigned status. A valid certificate helps encrypt traffic in transit, but it does not by itself indicate trustworthiness or legitimacy.
From a technical risk perspective, the more significant issue is the presence of multiple flagged files and outbound references to suspicious external domains and resources. The scan identified suspicious redirect-style endpoints such as go.php parameters and a flagged single.php page, along with externally hosted script and image assets associated with malicious-object detections. Combined with the domain's extremely recent registration, this infrastructure profile may be consistent with a short-lived campaign site.
Share your experience with this website. Was it safe? Did you encounter any issues?