So, you want to scambait?

Welcome, and thanks for reading. I assume that you, the reader, want to get into scambaiting. Well, you’re in luck… This is a comprehensive guide for getting into scambaiting.

I will cover many key topics, including VMs (Virtual Machines), calling scammers, finding numbers for yourself and how to act when calling scammers.

But why should you take advice from me? I've been in scambaiting since 2016 and was formerly the manager of TLS/, formerly a moderator for PopupDB, and worked closely with domain hosts to take down many sites. I took a break from the community from around February 2020 - December and I'm back to stop scammers.

Let's begin with Virtual Machines. VMs are a very important part in scambaiting. If you're calling a technical support scammer, they are a MUST.

You'll need several things to make a Virtual Machine. Firstly, the VM software. Secondly, the ISO file for the operating system you wish to use. There are several pieces of software to make VMs. They are VMware, VirtualBox and HyperV (Requires Windows 10 Pro).

Personally, I use (at time of writing) VMware Workstation 16 Pro. I would recommend VMware, however that does not mean the others are bad. A quick note. VirtualBox has a snapshotting feature, which allows you to make backups of the VM. VMware has this, but only in the Pro editions.

Here are the downloads for VMware and VirtualBox.


Now you have downloaded that, you need the ISO file. You can download the Windows 10 ISO from Microsoft for free.

Now you have the ISO, you can make the VM. The process will be slightly different depending on what Virtual Machine software you use, but the concept is the same. You should see a button which looks like a "+" or "create new". From there, you can select the file path to the ISO you downloaded and change system specifications such as RAM allocations. Be sure not to allow access to your webcam or microphone.

Once you have created your VM, there are several things to do after. Firstly, navigate to C:\ then check BOTH Program Files, and the x86 folder. If you see any folder named like VMware, VirtualBox, right click and press properties. From there, you can press hidden, and then apply. This will make the folder appear to disappear, so the scammer cannot see it.

Next, you need to open REGEDIT, and navigate to HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall
Once in this location, look for any entries which include VMware, VirtualBox etc. Right click and delete. Note: This does NOT delete the program, but hides it from the program list on the control panel uninstall page.

Also, try to change backgrounds, install software, put files on the VM. Do some searches on the browser. The goal here is to make it look used.

Now.. You need to make it look like a real PC. Jim Browning has a VMware focused tutorial here:

There is also a tutorial for VirtualBox: (I do not know how well this works as I have not used VirtualBox before).

You can also use a VPN should you wish. You may also wish to install a keylogger on your VM to catch any info the scammer types. This is LEGAL as it is on YOUR device. See for a keylogger. This has to be installed on the VM, not your PC.

Great, you have a VM ready to go. (Just remember to make backups if you don't have a snapshot function).

Now you have a VM, you need to be able to call scammers. You have a few options here.
1) BobRTC -
2) TextNow (US VPN needed on signup) -
3) Talkatone (Phone app) -
4) Google Voice (US only) -
5) Run your own PBX (can get complicated, and expensive)

Amazing! You can now call scammers.

Now for finding numbers. You have several options.

1) Just look at what others have found. Easy..,,
2) Find them yourself.. Also easy!
To find numbers yourself, you can use multiple methods.

Google "tech support number", press tools, and select 24 hours, or 1 week. Try changing the search to things like "microsoft support" or "email support".

You can check to see latest spam calls and check to see if tech support, IRS/SSA scams are there. Travel scams, healthcare scams and more are also likely to appear. You can also try have a tool for finding new popups. It is at
Be sure to allow browser popups, as it opens many tabs at once.. Be aware that scammers might not be targeting your country, or might not be running a campaign at the time you tried looking, so check back later if unsuccessful.

So, you are now ready to start scambaiting, but how should you behave when on a call with a scammer?

Here's a few tips.

Why? That is the term scammers use when they buy and sell them. They'll know you're aware of the scam. Instead, say alert, warning, or error message.

Act worried, nervous. Make the scammer believe you are genuinely concerned, and they will leap onto that.

Ask them questions about what they're explaining, but not too many. When you ask simple questions, it makes them think you are unaware about what things mean, which helps make the calls more convincing.

Know your information! Have a fake identity prepared. They will ask for bank details at some point. Use a fake credit/debit card generator here: - No.. you can't actually purchase things..

When the time comes when the scammer can't get a payment, and its time to reveal, don't start swearing in Hindi, English etc.. its pointless. Insults really aren't needed. Yes, I know they're scammers, but we need to be better than them.

I hope this guide has helped to get you started, and good luck!


Thank you so much

good one Neooom :))

Is bobrtc free to use internationally like outside of the US?

Welcome aboard :grinning_face_with_smiling_eyes:


Just saw this guide for the first time. Excellent info, thanks!

Kinda basic but it will do. I would like to add that even VMs aren’t the “all-in-one condom” some may think they are. It’s still software and software doesn’t exist without bugs. Not-greatly secured applications like QEMU or VMWare get escape exploits released all the time so relying on them to protect your private data is quite futile if you don’t update regularly and don’t know what you are doing.
If you have severely important and confidential data (such as corporate sheets) you may want to invest in another computer (for example an older laptop) for your scambaiting needs but that bit is rather obvious…
TL;DR: research rigorously to save headaches. Scammers aren’t always clever. But sometimes they are.


just testing a shareable scambaiting rig (Dell-R710/Linux host (1win10) (linux/Nextcloud))

i want to leave the doze open on 3389/RDP for other baiters to use, will the scammers be able to detect this when they anydesk in?

1 Like

Welcome :grinning_face_with_smiling_eyes:

That’s a historically bad idea. I can guarantee you that it will end with somebody abusing the access and using it to actually scam people / do online fraud / something even worse on the box. And all of that would fall on your head as you granted them the access.
I do not know a single tech support scammer that actually knows how to look for open ports on their boxes but the mouse popping in and out randomly might tip scammers off. But it’s usually as weird as using a VM so I guess it’s okay from a tech standpoint. You also might want to obfuscate / hide all the drivers used for the remote access in the same way you would do VM drivers.

i don’t mean publicly shared i mean a few friends. having trouble finding a free win-app to do RDP anyways, it might end up with them connecting to my hypervisor instead

New member here. This guide will be a good starting point for me and I already have a few things covered. Most of my time the past few years has involved getting phishing links to Google removed from local Marketplace groups on Facebook. Scambaiting didn’t really appeal to me at first, then I watched a few YouTube videos from Jim Browning/Scambaiter/Kitboga/Scammer Payback/etc. and am now hooked on the concept. Thanks for putting this together :v:


Welcome to the community @Ikiryo ! :wave:

1 Like

Welcome aboard :grinning_face_with_smiling_eyes:

1 Like

Great info! I’m with all the way except for the cursing. I’m from NYC, it’s a big part of our vocabulary. Hell, giving the finger while making a left hand turn is on our drivers license road test. :grin:

:rofl: I’m from CT Major, but down there often on business. You are spot on with that statement!

1 Like