# strongman-it.com — SUSPICIOUS

> strongman-it.com hosts a fake tech support scam, undetected on VirusTotal (0/95). Resolves to 172.67.218.

## Summary
PhishDestroy identifies active phishing operations on the recently registered domain strongman-it.com, posing as a fraudulent IT support service. The campaign leverages social engineering to trick users into contacting fake helpdesks, where victims are coerced into purchasing unnecessary services, installing malware, or divulging sensitive credentials under the guise of resolving fabricated technical issues. The domain resolves to 172.67.218.158 and utilizes a valid SSL certificate issued by Google Trust Services to appear legitimate, targeting users searching for remote IT assistance.

Technical analysis reveals strongman-it.com was registered through NICENIC INTERNATIONAL GROUP CO., LIMITED on October 24, 2024, with no detections across 95 VirusTotal scanning engines (0/95) as of this report. The domain's recent creation date and pristine reputation metrics suggest a newly deployed threat, designed to evade legacy security controls. While specific phishing payloads or campaign artifacts remain under investigation, the combination of unauthenticated SSL, generic registrar cloaking, and zero antivirus flags indicates high evasion potential. Users should treat this domain as hostile until further IOCs are published.

If you visited strongman-it.com, assume your device may have been compromised—terminate active sessions, disconnect from networks, and scan endpoints for unauthorized remote access tools or credential harvesters. Do not interact with pop-ups, chat widgets, or automated call-back requests from this domain. Report the domain to your security team or ISP for immediate DNS blocking. Monitor financial accounts and enable multi-factor authentication on critical services. This domain remains under active investigation; updated IOCs will be published as evidence emerges under seed f5a844.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2024-10-24 11:05:21
- Registrar: NICENIC INTERNATIONAL GROUP CO., LIMITED
- IP: 172.67.218.158

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/e9e9e191-8ada-4cdb-b923-adfde87d3888
- PhishDestroy: https://phishdestroy.io/domain/strongman-it.com/
- LLM endpoint: https://phishdestroy.io/domain/strongman-it.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/strongman-it.com/
Last updated: 2026-03-27