Scammer’s Number: scammers switch numbers and more info is below
Domains Used: they usually use blogspot pages and then redirect to one of their domains, they accidentally leaked their domains a little while ago and they had about 300 domains at the time
Extra Info: These scammers use javascript on blogspot pages to redirect to a tech support scam popup, if the page is visited from a datacenter ip instead of redirecting to a tech support popup it’ll instead show the blogspot page. These scammers put up search ads with the blogspot page which will redirect to the popup. I made something in python to send a message with a discord webhook to notify when the popup has been changed, and it also adds in !add before the urls so you can use it to easily add to popupdb. These scammers have a different popup for firefox, edge, internet explorer, chrome, and then a completely different one for macs and usually they have a different number for each but sometimes they all have the same number.
Seems like after I made this post these scammers have just changed tactics with the current blogspot page using javascript to redirect directly without connecting somewhere else: see https://swamhousemoving.blogspot.com/ but before they had something like this: https://wetopcarpetsandfloors.blogspot.com/
edit: they went back to using the old method again like before with https://officecleaningse.blogspot.com/
▼
Here’s the thing I made in python to check for popups