# zerkao.xyz — SUSPICIOUS

> zerkao.xyz hosts a tech support scam impersonating Microsoft. Resolves to IP 104.21.60.4. Do not interact; block immediately and report.

## Summary
zerkao.xyz has been classified by PhishDestroy as active tech support scam infrastructure. The domain is currently unflagged by security vendors but exhibits clear indicators of malicious intent, including recent registration and hosting on a known infrastructure. Users should treat this domain as hostile and avoid all interaction.


zerkao.xyz is a tech support scam domain impersonating Microsoft support services. This domain was flagged by 0 of 95 VirusTotal vendors as of the latest scan, indicating it remains under the radar despite its malicious nature. The domain was registered through PDR Ltd. d/b/a PublicDomainRegistry.com on March 16, 2026, and resolves to IP address 104.21.60.4. It utilizes a Let's Encrypt SSL certificate to appear legitimate. Despite the lack of vendor detections, this domain is associated with active phishing campaigns targeting unsuspecting users with false claims of system compromise or technical support requirements. Historical data shows no prior reputation, and trust scores are effectively zero due to its recent creation and malicious intent.


The current status of zerkao.xyz is active, with no vendor detections but clear malicious indicators. This domain poses a high risk to users who may be misled by its professional appearance, including the use of a legitimate SSL certificate. Immediate action is required: users should block zerkao.xyz at the network level, avoid visiting or interacting with the site, and report it to their security teams or relevant abuse channels. Security researchers are advised to monitor this domain closely, as its low detection rate suggests it may escalate in sophistication or expand its targeting. Given the lack of vendor detections, proactive blocking and user education are critical to mitigating potential infections or financial loss.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2026-03-16 11:09:33
- Registrar: PDR Ltd. d/b/a PublicDomainRegistry.com
- IP: 104.21.60.4

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/domains/zerkao.xyz
- PhishDestroy: https://phishdestroy.io/domain/zerkao.xyz/
- LLM endpoint: https://phishdestroy.io/domain/zerkao.xyz/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/zerkao.xyz/
Last updated: 2026-04-07