tt.metatask.vip
Category: Phishing
To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.
Description of tt.metatask.vip
The domain tt.metatask.vip appears to host a deceptive landing page rather than a legitimate business or service website. Based on the screenshot, the page presents itself as a WhatsApp-related “official account” and “security verification center,” using WhatsApp branding and Chinese-language prompts that claim an account is at risk and needs verification. This kind of presentation is commonly associated with credential-harvesting or social-engineering pages that attempt to pressure visitors into taking immediate action.
The domain name itself does not match the branding shown on the page. In addition, available domain context indicates that the site may also resemble a well-known cryptocurrency wallet brand through its naming pattern, while the visible content imitates a different major messaging platform. That mismatch between domain identity and on-page branding is a notable warning sign and suggests the site may be operated by an unknown party attempting to impersonate established services rather than by an official organization.
Safety Assessment for tt.metatask.vip
Multiple security signals indicate elevated risk at the time of this scan. The domain was flagged by 20 out of 91 security engines, and a major threat database listed it for social-engineering activity. The page content shown in the screenshot appears designed to create urgency around account security and verification, which is a common phishing tactic. The domain also closely resembles metamask.io in plain spelling terms and may be a look-alike, even though the visible page content imitates WhatsApp branding instead.
Additional context increases concern: the domain is relatively new, has no meaningful traffic ranking, and the branding shown on the page does not align with the domain name. While one malware scan did not detect malicious files at the time of inspection, that does not outweigh the broader phishing-related detections and the impersonation-style presentation. The domain's IP address is also listed on one mail-reputation blocklist, which is a weaker signal on its own but still adds minor caution.
Based on these findings, this website may pose potential risks to visitors.
Technical Description
The site uses a valid SSL/TLS certificate issued by TrustAsia Technologies, with a stated expiry in October 2026. A valid certificate only indicates that traffic may be encrypted in transit; it does not verify that the operator is trustworthy. The domain is approximately 189 days old, DNSSEC appears to be unsigned, and the site resolves to an IP hosted by Vapeline Technology in Hong Kong. The web server software and supported protocol details were not identified in the provided scan data.
From an infrastructure perspective, the combination of a young domain, unsigned DNSSEC, lack of ranking, and unclear server fingerprinting does not prove abuse by itself, but it does fit a pattern often seen with short-lived phishing infrastructure. No external links, referenced domains, or iframes were identified in the supplied page scan.
Share your experience with this website. Was it safe? Did you encounter any issues?