Hi! A couple days ago, I was just minding my own business on the internet. Then, a scam popup appeared. This one is very peculiar though because they did not register a domain name. Only hosting, I assume so they don’t get deactivated. Chrome does flag it as a phishing scam now after I reported it a few days ago, so I don’t know if the scammers have realized or not yet. The IP address is http://165.227.57.123/ Also, this one might crash your VM if you turn the popup blocker off and don’t have good configuration, so beware of that.
Report to Digital Ocean.
https://who.is/whois-ip/ip-address/165.227.57.123
OrgAbuseHandle: ABUSE5232-ARIN
OrgAbuseName: Abuse, DigitalOcean
OrgAbusePhone: +1-347-875-6044
OrgAbuseEmail: [email protected]
OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE5232-ARIN
I emailed them and all that did was have my Google account temporarily suspended because the message was flagged by Google as a phishing scam.
-_-
[[3,27,37],[3,4,27,37]]
That’s one wild find, I’ve got to say… strange how it doesn’t have a domain name assigned to it either, almost like they aren’t done setting it up. Also, if you haven’t tried doing this already, entering in any text and clicking the ‘submit’ button literally just reloads the page.
![image screenshot-at-2018-11-10-22-47-57png.png](replace/assets/files/2018-11-11/09:11:270-screenshot-at-2018-11-10-22-47-57png.png)
Their ip they used is 182.71.183.186
Never seen this before. They used dxdiag in run to check to see if I was using a VM. Their phone number is 866-953-6258. They shut it down after I flooded it but it may be back
![image screenshot-at-2018-11-11-02-45-08png.png](replace/assets/files/2018-11-11/09:45:320-screenshot-at-2018-11-11-02-45-08png.png)
I think it's funny how they put their own "Be cautious if you receive..." and have the Report Abuse button go to their own form. Leave them some messages after turning your VPN on @ supportpc123.com/btpl/support/abuse.html
The scammer has these web urls
supportpc123.com
flexpcsupport.com
flexpcsupport is owned by Indian scammer located in Noida (near New DelhI
BENOVELLIENT TECHNOLOGIES PRIVATE LIMITED
AB REACH TECHNOLOGIES PRIVATE LIMITED 706, PLOT NO. 7, ROOTS TOWER DISTRICT CENTRE, LAXMI NAGAR NEW DELHI East Delhi DL 110092 IN [email protected] is owned by very infamous scammers in NOIDA, India:
Owner/director Sushant Matto
Other companies owned by them
LONGRUN SOFTWARE PRIVATE LIMITED
BENO SUPPORT TECHNOLOGIES PRIVATE LIMITED
CONNECT AB INFOLINE PRIVATE LIMITED
ULTRAHEAL (Credit card processing)
SMRS Consultants UK Ltd
Sparksgen - Scotland (Aberdeen) “System Diagnostic Pro” Aberdeen
New number is +1-888-595-8997
There’s a lot of if, then, else loops in their HTML code checking for browsers, specifically Chrome.
Thanks for all the info!