Supremo Remote Control
Henrietta Naughton
The man on the other end of the phone then directed me to go to a website (supremocontrol [dot] com) and then directed me to click on the Download button, and then to download the software from that download page.
I have to Comment on this. I am a 20 year veteran if Cyber Security, and had one of these callers. I allowed them access into my virtual computer which was just created for this purpose. It is plagued with fake credit cards and information along with a minor little trace program that phones home. Lets just say after a few hours of screwing with these idiots that they no longer have a working computer. I am sure they will reinstall however, it was still entertaining. They started spamming my phone to fix there stuff lol. Next time I will record and post to youtube.
Why do the remote control program providers like Supremo control fail to put a warning on their web site before downloading to tell potential users not to do so if they have been called or emailed by someone they do not absolutely know, they should go no further.
So my 13 year nephew answered the phone while he was alone at home. He gave them full access. They have remote access to her computer. So, where do we go from here? She has closed down her bank/credit accounts, unplugged the ethernet/wifi. Any help would be appreciated. Poor kid. He is sick with anxiety.
He requested that I open MSConfig, and directed me to download Gotoassist, to which I replied there was a certificate error (there was not, I wanted to see how he would respond.). He then directed me to download SupremoControl. I told him there was a DNS server error and he hung up.
This is still around. Just got off the phone with someone with an indian accent. Did the run thing but when trpied the iexplore gg.gg20207 two windows popped up and there was no run on the front window. while that was happening I looked up and found this site. Thanks for having it online.
I received a call from the number 404-602-9519 yesterday. They asked me to download supremo software and connected to my PC. But when they asked me to pay money to remove malicious software, I did hung up. They will try in all the possible ways to scare you and make you pay. Please make a note of this number.
Thank you all for this blog/post. I too just got a call like this. They gave me a number to call to verify who they are: 209-813-1251. They said their office was at 3340 Ocean Park Blvd, Suite 160 in Santa Monica CA. They said they were a vendor from Windows Technical Dept. I got as far as looking at Supremo and realized I would be giving control of my computer to someone I do not know or trust and I politely declined to proceed further. Thanks for all these posts because had I not seen them, I might have gone further
As a public service, I spent 2 hours on the phone with these guys today. And an hour earlier in the day as well. I kept saying I had something on the stove, or had someone at the door, or whatever. Have to say, the amount of patience they showed was amazing. There were so many times that I almost burst out laughing with all of the very stupid questions I asked. And they transferred me around to various people (Sr Supervisor, Manager, Sr Manager), it is almost entertaining to be messing with them.
He called back. I answered and he proceeded to inform me that he was from Microsoft technical support. I asked him why he was calling from a blocked number if he was from Microsoft. He said they did not want the number out there so people keep calling back. I knew that was a lie.
He then said hackers were remote accessing my computer and stealing my passwords. I recently had one of my credit cards duplicated and someone tried using it, luckily not for much so I kept talking with him.
He ran me through how to access the error messages that are sent to Windows and had me filter out just the error and warning messages. This i assume is a worth while scare tactic. He had me right click one and asked if there was a delete option. There of coarse was not one. He then explained that was because it was put there by a hacker.
This is when I told him that I know windows and no windows operator or employee would send someone anywhere other than a Windows site and hung up. He called back and I let him go to voicemail. Then he called again. After the second time he stopped calling.
I received a call out of the blue from a man with a thick Indian accent who kindly informed me his tech support company was going out of business and they were going to refund the entire $255 I had paid for support 2 years ago. all I had to do was run [dot]com.
Hi actually I got a massage on my desktop that I need to call on the number starting with 1800
And I called to them and he was asking for id of supremo and pswd I gave it to him and I dnt know what he did with it can you pls tell me what should I need to do
Hi Khush,
I would recommend running a scan with Malwarebytes and/or Spybot Search & Destroy (both of which are linked into at the bottom of this blog post). I can certainly provide remote assistance as well, through Barred Owl Web, but I would need to charge for my time. Hope this helps!
We make the life of the scammers more difficult with some technical solution: when you run Supremo for the first time an alert appears, after the EULA resume. We explicitly alert the user about tech scams.
Thank you for your time! I may try to spin up a separate VM at some point to test out the Supremo software (sans the phone conversation with a scammer in India) and write a basic follow-up blog post on the Supremo software itself.
This just happened to me today but i did not run the program the guy said he was from microsoft and was calling me from a call center in india. Im no idiot i hung up and decided to call microsoft directly to verify they told me not to trust anyone calling from a company that wants you to download something to your computer. they do not call customers directly unless the customer called them and the call fell.
I just got a phone call from a guy with an Indian accent. Following the above scenarios, without thinking i downloaded Supremo and gave him access to my computer he wanted me to buy a care plan which he would remove any viruses and things from my computer. I then told him to phone back later as I was busy so he cut the phone. After reading the comments above, I have now uninstalled the Supremo software and deleted anything to do with it. what should i do now as i am getting paranoid that they might have taken my details.
I think your in the clear unless you run the program in but i guess you did i just dowloaded the file but never ran it. I was very suspicious especilly cuz he was giving me an attitude. So i got mad and hung up but they are still calling me. Its so annoying. You can always uninstall then wait a bit. If you notice something weird you might have to erase all memory and reset everything back. Good luck.
I just got one of these scam calls. Caller ID was blank but he said he was calling from Boston. I played along just to see. He had me do Win-R to run CMD, then run ASSOC on the command line. Then, he had me find the long line which was .zfsendtotarget=CLSID\888DCA60-FC0A-11CF-8F0F-00C04FD7D062. Then he told me that CLSID was Customer License ID or some such nonsense. Then he read me the CLSID number to try to convince me he was legitimate. I played along. Then he had me do Win-R to run EVENTVWR (Event Viewer) and showed me how there were all sorts of errors on my computer (which I know is quite normal). Then he had me do Win-R and then Not knowing what kind of web site this was, I stopped playing along and gave the guy a hard time. He was still quite insistent that his company was legitimate. I asked for a company phone number. He provided 857-999-0942, but I did not call it. Pretty interesting how he tried to gain trust, but no one legitimately calls out of nowhere to fix your computer.
I just had one of the Supremo fraudsters call. Unlucky for them I run the security engineering division for my company. I played along for about 30 minutes, even fired a linux mint VM to download the supremo.exe I gave them such bull crap answers and mis-directions on what I was seeing that they were really getting flustered with me. I feigned ignorance and kept up the charade, then I drop the hammer and told them what I did for a living and that I was using Linux. I got a 10 second tirade of 4 letter words and then the hang up. Blocked them with our V202 Call Blocker device but I had a good time wasting their time.
I've seen videos showing how tech support scammers operate. In nearly all of these videos, the scammer instructs their intended victim to install and run remote-control software, which allows the scammer to control the victim's computer. No surprises here. However, in at least some of these videos, the first thing the scammer does when he has control of the victim's computer is to install and run a different remote-control application and use it to connect to his own computer.
For example, in the YouTube videos Destroying Scammers Computer With Virus and Destroying All Computers On Scammers Network, the scammer instructs his victim to install and run Supremo, and then once he is controlling the victim's computer through Supremo, he installs and runs TeamViewer and seemingly uses it to connect to his own computer. (In these two videos, the intended victim is actually a scam-baiter, who exploits the reverse connection by installing and running malware on the scammer's computer.)
TeamViewer has noticed that scammers often come from India (or other places where scams often originate), and so when you get an incoming connection from India TeamViewer will give you a warning saying that this could be a scam. If the scammer can get the victim to connect to the scammer's computer first and then reverse the connection (by clicking a button that says "switch sides with partner"), TeamViewer's warning is skipped and the victim still doesn't know it's a scammer. The scammers want to use TeamViewer because it has the ability to blacken the victims screen so the victim cannot see what the scammer is doing.
e59dfda104