Offshore Outsourcing & Scammer

Blog about offshore outsourcing and scammer in the outsourcing industry

Scammer: vertualpchelp.us - Priyesh Rao - iPhone & iPad Tech Inbound Calls

Vertual PC HelpThe people, which need tech support for their gadgets, are normally going to the shop where they bought it and ask for help. I really don't know how a tech support agent can give phone support for iPhone & iPad without having the device in front of me. Anyway if we take a look at the forwarded email, we see already that the provided links in the signature are not fitting to the description, While the provided sender email address priyeshrao@live.com is fitting with the description in the signature is the link of the email address leading to aniket@vertualpchelp.us. The written homepage in the signature is www.vertualpchelp.us and the link leads to www.virtualpchelp.com.

More interesting is where the calls come from? The calls are not coming from the sites www.vertualpchelp.us or www.vertualpchelp.com. Both sites are a big secret in the World Wide Web. No links are leading to these sites. Alexa has even not enough data for give a ranking for the site www.vertualpchelp.com. www.vertualpchelp.us has a Alexa ranking of 3,360,215. If I compare the site with my blog, then I have a much better ranking (actual ranking: 236,696). My blog has only around 300 unique visitors per day. From where the calls which are getting sold can come in this case?

At the website www.vertualpchelp.us we see the following addresses:

Address (U.S.A)
3422 SW 15 Street Suite #8696 Deerfield Beach, FL 33442
Phone: 813-602-5624
Fax: 813-436-8789

Address (India - Head Office):
101, Laxman Mhatre Rd., Dhaisar West, Mumbai - Maharashtra 400068
Phone: 750-647-9626

My opinion is that the U.S.A. address is only a mail forwarding address for making a better impression. In any case is the combination of the addresses, the reputation of the websites and the offer more than suspicious. The address provided at the website is not matching with the address provided in the domain registry. For all this reasons is the offer nothing else then SCAM.

 

---------- Forwarded message ----------
From: Priyesh Rao <priyeshrao@live.com>
Subject: iPhone & iPad Tech Inbound Calls!
To: 


Hello!

Greetings!

The updated details of the process.

iPhone & iPad Tech Inbound Calls!

Calls will be from :

USA & CANADA Customers

Pricing :

50 calls - Rs. 500/- Per call
51 - 100 calls - Rs. 450/- Per call
101 - 200 calls - Rs. 400/- Per call

Timings :

8 PM - 3 AM (IST)

Days of Work :

Monday - Friday

How to Start :

Extensions will be provided to avoid wastage of calls & error's in report.

Minimum extensions to be taken - 3

Price per extension - Rs. 3200/- Per Month

Training Charges:

Training & Support, if required for 3 days. (Rs. 5000 + 12.36%), Rs. 1000 additional per day. 
Center has to take care of the return Flight tickets, Accommodation & Food, if out of Mumbai.

Note: No free test calls will be given, Pricing is not for Negotiation. Minimum calls to buy - 50 calls only.



Mr. Priyesh A. Rao


Mobile : +91 845-498-5591
Business : +91 845-498-5591
Skype : priyesharao
Email  : priyeshrao@live.com
Site : www.vertualpchelp.us


Disclaimer :
This message contains confidential information and is intended for [Recipient]. If you are not the intended recipient you are notified that disclosing, copying, distributing or taking any action in reliance on the contents of this information is strictly prohibited. E-mail transmission cannot be guaranteed to be secure or error-free as information could be intercepted, corrupted, lost, destroyed, arrive late or incomplete, or contain viruses. The sender therefore does not accept liability for any errors or omissions in the contents of this message, which arise as a result of e-mail transmission. If verification is required please request a hard-copy version. 

 

Domain registry data of vertualpchelp.us:

Domain Name: VERTUALPCHELP.US
Registry Domain ID: D45990637-US
Registrar WHOIS Server: whois.godaddy.com
Registrar URL: http://www.godaddy.com
Update Date: 2014-12-19T23:27:41Z
Creation Date: 2014-07-15T17:45:36Z
Registrar Registration Expiration Date: 2015-07-14T23:59:59Z
Registrar: GoDaddy.com, LLC
Registrar IANA ID: 146
Registrar Abuse Contact Email: abuse@godaddy.com
Registrar Abuse Contact Phone: +1.4806242505
Domain Status: clientTransferProhibited http://www.icann.org/epp#clientTransferProhibited
Domain Status: clientUpdateProhibited http://www.icann.org/epp#clientUpdateProhibited
Domain Status: clientRenewProhibited http://www.icann.org/epp#clientRenewProhibited
Domain Status: clientDeleteProhibited http://www.icann.org/epp#clientDeleteProhibited
Registry Registrant ID: CR172412827
Registrant Name: OMTechnosoft Services
Registrant Organization: OM Technosoft Services Co.
Registrant Street: 11711 N 50TH
Registrant City: TAMPA
Registrant State/Province: Florida
Registrant Postal Code: 33617
Registrant Country: United States
Registrant Phone: +1.8447447700
Registrant Phone Ext:
Registrant Fax: +1.8138082789
Registrant Fax Ext:
Registrant Email: om@omtechnosoft.com
Registry Admin ID: CR172412829
Admin Name: OMTechnosoft Services
Admin Organization: OM Technosoft Services Co.
Admin Street: 11711 N 50TH
Admin City: TAMPA
Admin State/Province: Florida
Admin Postal Code: 33617
Admin Country: United States
Admin Phone: +1.8447447700
Admin Phone Ext:
Admin Fax: +1.8138082789
Admin Fax Ext:
Admin Email: om@omtechnosoft.com
Registry Tech ID: CR172412828
Tech Name: OMTechnosoft Services
Tech Organization: OM Technosoft Services Co.
Tech Street: 11711 N 50TH
Tech City: TAMPA
Tech State/Province: Florida
Tech Postal Code: 33617
Tech Country: United States
Tech Phone: +1.8447447700
Tech Phone Ext:
Tech Fax: +1.8138082789
Tech Fax Ext:
Tech Email: om@omtechnosoft.com
Name Server: NS6005.HOSTGATOR.COM
Name Server: NS6006.HOSTGATOR.COM
DNSSEC: unsigned
URL of the ICANN WHOIS Data Problem Reporting System: http://wdprs.internic.net/
>>> Last update of WHOIS database: 2015-05-25T8:00:00Z <<<

Alexa ranking or vertualpchelp.us:

Screenshot of Alexa ranking or vertualpchelp.us

Domain registry data of vertualpchelp.com:

Domain Name: VERTUALPCHELP.COM
Registry Domain ID: 1866989523_DOMAIN_COM-VRSN
Registrar WHOIS Server: whois.godaddy.com
Registrar URL: http://www.godaddy.com
Update Date: 2014-07-15T17:45:46Z
Creation Date: 2014-07-15T17:45:46Z
Registrar Registration Expiration Date: 2015-07-15T17:45:46Z
Registrar: GoDaddy.com, LLC
Registrar IANA ID: 146
Registrar Abuse Contact Email: abuse@godaddy.com
Registrar Abuse Contact Phone: +1.4806242505
Domain Status: clientTransferProhibited http://www.icann.org/epp#clientTransferProhibited
Domain Status: clientUpdateProhibited http://www.icann.org/epp#clientUpdateProhibited
Domain Status: clientRenewProhibited http://www.icann.org/epp#clientRenewProhibited
Domain Status: clientDeleteProhibited http://www.icann.org/epp#clientDeleteProhibited
Registry Registrant ID: 
Registrant Name: OMTechnosoft Services
Registrant Organization: OM Technosoft Services Co.
Registrant Street: 11711 N 50TH
Registrant City: TAMPA
Registrant State/Province: Florida
Registrant Postal Code: 33617
Registrant Country: United States
Registrant Phone: +1.8447447700
Registrant Phone Ext:
Registrant Fax: +1.8138082789
Registrant Fax Ext:
Registrant Email: om@omtechnosoft.com
Registry Admin ID: 
Admin Name: OMTechnosoft Services
Admin Organization: OM Technosoft Services Co.
Admin Street: 11711 N 50TH
Admin City: TAMPA
Admin State/Province: Florida
Admin Postal Code: 33617
Admin Country: United States
Admin Phone: +1.8447447700
Admin Phone Ext:
Admin Fax: +1.8138082789
Admin Fax Ext:
Admin Email: om@omtechnosoft.com
Registry Tech ID: 
Tech Name: OMTechnosoft Services
Tech Organization: OM Technosoft Services Co.
Tech Street: 11711 N 50TH
Tech City: TAMPA
Tech State/Province: Florida
Tech Postal Code: 33617
Tech Country: United States
Tech Phone: +1.8447447700
Tech Phone Ext:
Tech Fax: +1.8138082789
Tech Fax Ext:
Tech Email: om@omtechnosoft.com
Name Server: NS6005.HOSTGATOR.COM
Name Server: NS6006.HOSTGATOR.COM
DNSSEC: unsigned
URL of the ICANN WHOIS Data Problem Reporting System: http://wdprs.internic.net/
>>> Last update of WHOIS database: 2015-05-25T8:00:00Z <<<

Alexa ranking for vertualpchelp.com:

Screenshot from Alexa ranking for vertualpchelp.com

Update Jan. 18, 2017: Link to www.vertualpchelp.com removed as the domain no longer exists.

 

Rombertik: Malware deletes itself during discovery - together with the hard drive content

Rombertik VirusOne tricky and complex programmed malicious software collects data from Internet users. if she gets discovered she swallows a digital cyanide pill.

Security researchers of the Talos Group, a division of the network equipment supplier Cisco Systems have discovered a Windows malware that has taken great care to cover up traces of their activities. "Rombertik", as the malware gets called from the experts, captures everything a user is doing with his computer on the Internet. If the malware believes that she got discovered, she makes the hard drive of the affected computer unusable and destroyed so herself.

Another feature of the digital pest is that it's not only searching for user name / password combinations of bank accounts. The malware is recording characterized obviously completely unfiltered everything what the respective users is doing with the infected computers on the Internet.

The distribution channel is not new: Rombertik gets distributed as an e-mail attachment from spam or phishing mails. According to the Talos Group, this emails are especially clever constructed and fooling the users easily. The infected emails mimics the sender "Windows Corporation" as shown by one example of the report

Camouflage by deleting

Noticeable is the elaborate camouflage with which the pest trying to protect themselves from detection. It works on several levels: If a user installs unconsciously the pest, Rombertik analyzes first the environment and checks if it is running in a "Sandbox" environment, an isolated area or the PC, which has no impact to the rest of the computer. Antivirus software uses such a sandbox to analyze suspicious software.

Only when this is excluded, the malware continues her installation. Before the malware starts her work, she is testing if she gets watched by a virus scanner. If so, she attempts to delete the so-called master boot record on the hard disk of the computer to make it unusable. If that does not work, Rombertik encrypts all user data on the boot hard drive of the computer for making them useless and brings the PC to fall into an endless loop of reboots.

Fogging by deflecting

Even if it does not come so far, Rombertik makes the work analysis software difficult: In order not to attract attention, the malware hides itself. Is the 28 kB small installation package gets unpacked, it is 1264 kilobytes long and leads to believe of 8000 program features. Although these are not getting used but makes the analysis extremely complex.

To ensure that the program does not get discovered or it is supposed to run in a sandbox, it uses another perfidious trick: Rombertik writes a file from one byte in a memory sector - 960 million times. Only by logging these processes would result in a log file of 100 gigabyte size explains Talos.

The report of the Talos group says nothing about the spread of Rombertik. User should follow the common recommendations:

Don’t click on links or attachments in emails from unknown senders and use an up to date security software.

 

Why all these offered offshore outsourcing campaigns where customer data are involved are nothing else then SCAM?

toys phone cellsLet us take a look first at the data protection law from Australia, European Union and the USA. All this directives and orders have in common that the consumer data are protected by law and this one which has collected them is responsible for the proper use of the collected data. If the data are getting used wrong, then this one, which has collected the data, is responsible in front of the law court for the misusage of the data. The fines are very high. It is not allowed to make data accessible in countries, where this data don’t have at least the same protection like in the country they got collected in respect of the law. Even if consumer data are getting stolen, the company will get prosecuted.

The fines for breaking the law are very high. You can see an example how high the fines are in the article “Data of 280,000 customers stolen: AT & T lost over $ 25 million”. Why companies shall take the risk for paying high fines for making their data accessible to offshore centers? Especially if they find out how the data are getting traded in the call center industry. The following screenshot from Facebook is showing how protected data are getting offered:

Facebook offers  Amit Girje

The above screenshot is only one example from many. Such data are not getting offered only on Facebook. You can find such offers at LinkedIn and a lot of sites.

As long as in your country is not the same or a better data protection rule guaranteed by law you are only able to use the already heavy used data, which are traded between the centers. This called one will not be really in the mood to buy something.

Even companies which are transferring consumer data between the USA and the European Union need to be certified by the international U.S.-EU Save Harbor Framework. The certification need to get renewed yearly. You can read about a judgment at "FTC Settles with Two Companies Falsely Claiming to Comply with International Safe Harbor Privacy Framework".

The next problem for call centers is the “Do Not Call List” where you have to scrub up your data against the list. You are declaring by signing up to the Don’t Call List that you are telemarketer and you’ll respect the local law. In this case you make yourself prosecutable to the local law and this law can get executed because you have accepted it before. Ignoring the Don’t Call List can result in high fines. The fines can get international prosecuted.

The next problem for call centers is the “Do Not Call List” where you have to scrub up your data against the list. You are declaring by signing up to the Don’t Call List that you are telemarketer and you’ll respect the local law. In this case you make yourself prosecutable to the local law and this law can get executed because you have accepted it before. Ignoring the Don’t Call List can result in high fines. The fines can get international prosecuted. An example of such a judgment can get read at "Court Grants Partial Summary Judgment in FTC Case Against Dish Network, Finding the Company Liable for Tens of Millions of Telemarketing Violations". That such judgments can get international prosecuted if proven by "Federal Court Orders Tech Support Scammers to Pay More Than $5.1 Million". All the Indian companies, which have been involved in this case, have been running into bankruptcy.

Centers you are searching for inbound campaigns? Think about who will be calling a company. What can you do with an inbound caller if you don’t have access to the consumer data because they are protected by law? For this are all inbound campaigns nothing else then SCAM.

Centers you are searching for form filling processes? Think about which data you need to put into a form. Since years all the consumer data are getting collected at the point of sales. In the USA even the signature get collected from digitizer pad. For copy and paste nobody will pay your agents. There are enough programs for automatize the process available. They are even cheaper than the salary of one agent for a month. For this reason all form filling processes are only scam.

If you think now logically, then you know why all this inbound campaigns and form filling processes are only getting offered with a huge upfront payment. Even the scammer has no other chance to get some money if he does not get it from you. He has no chance to get such a process and cheat you after you have done the work.

Even the client tries to burden all the legal risks to the centers by hiring them on a pay per sale base. For this they can say in front of the law court that they have only bought some leads from you and you have been working on your own risk.

A serious client will support you with phone numbers based on his selection. This phone numbers will be already scrubbed against the Do Not Call list. He will also provide you with an extension to his own phone system because he likes that the called ones are coming back to him for the case they have some questions or need some help.

A serious client will hire a marketing agency in his own country or living area and not a suspicious campaign broker from a low wage country, which try to make money with his campaign. The hired agency has the order to search for the best center for the client and gets paid from the client directly.

All other kinds of clients will burden you up the legal risk and they will provide you with products, which are already well-known from the email spam. For the case that you’ll not make enough sales to survive they even will tell you that you should buy some better data and to provide a better work. They even will lie you by telling that other centers are making sales with each call.

 

Scammer: Mohamed Elsayed - Kevin Steve - Kareem Sallam from Egypt is searching for new victims

The scammer Kareem Sallam aka Kevin Steve seems to be a chameleon. He is using different names and fake pictures and names in his fraud. All profiles have in common his domains: streamtelecom.net and connect2phone.net.

Actually he has a new idea to scam people. He likes to get direct access to the earnings of the call centers as we can see in the actual posts at LinkedIn (https://www.linkedin.com/grp/post/4092566-5999628717620502532):

Kevin Steve Executive Director

 

We are partnered with various US sponsoring banks for high-risk merchants as well as multiple offshore banks. I place merchants with Direct MID accounts for specifically "hard to place" business types

The entire application process is done over the phone in minutes on our SSL level 3 secure servers and with our digital signature approval process; we do not need a physical signature. I am glad to answer all of your questions and help your business increase profits accepting credit cards today.

CALL ME TODAY AND START ACCEPTING CARDS WITH STREAM BY TOMORROW!

In his LinkedIn profile we find the connection to Stream Telecom (streamtelecom.net). The domain streamtelecom.net is registered on the name Mohamed Elsayed from Egypt, a high risk country for getting scammed. Very suspicious is that at the LinkedIn page for streamtelecom.net is written that it got founded in the year 2005 and the domain got registered on January 9, 2014. A company which should have a staff count between 201 and 500 and which should be located in the USA, does not have a website during 9 years?

Domain Name: STREAMTELECOM.NET
Registry Domain ID: 1842143673_DOMAIN_NET-VRSN
Registrar WHOIS Server: whois.wildwestdomains.com
Registrar URL: http://www.wildwestdomains.com
Update Date: 2015-01-12T08:15:27Z
Creation Date: 2014-01-09T20:22:13Z
Registrar Registration Expiration Date: 2016-01-09T20:22:13Z
Registrar: Wild West Domains, LLC
Registrar IANA ID: 440
Registrar Abuse Contact Email: abuse@wildwestdomains.com
Registrar Abuse Contact Phone: +1.480-624-2505
Reseller: IM2Host
Domain Status: clientTransferProhibited http://www.icann.org/epp#clientTransferProhibited
Domain Status: clientUpdateProhibited http://www.icann.org/epp#clientUpdateProhibited
Domain Status: clientRenewProhibited http://www.icann.org/epp#clientRenewProhibited
Domain Status: clientDeleteProhibited http://www.icann.org/epp#clientDeleteProhibited
Registry Registrant ID:
Registrant Name: Registration Private
Registrant Organization: Domains By Proxy, LLC
Registrant Street: DomainsByProxy.com
Registrant Street: 14747 N Northsight Blvd Suite 111, PMB 309
Registrant City: Scottsdale
Registrant State/Province: Arizona
Registrant Postal Code: 85260
Registrant Country: United States
Registrant Phone: +1.4806242599
Registrant Phone Ext:
Registrant Fax: +1.4806242598
Registrant Fax Ext:
Registrant Email: STREAMTELECOM.NET@domainsbyproxy.com
Registry Admin ID:
Admin Name: Registration Private
Admin Organization: Domains By Proxy, LLC
Admin Street: DomainsByProxy.com
Admin Street: 14747 N Northsight Blvd Suite 111, PMB 309
Admin City: Scottsdale
Admin State/Province: Arizona
Admin Postal Code: 85260
Admin Country: United States
Admin Phone: +1.4806242599
Admin Phone Ext:
Admin Fax: +1.4806242598
Admin Fax Ext:
Admin Email: STREAMTELECOM.NET@domainsbyproxy.com
Registry Tech ID:
Tech Name: Registration Private
Tech Organization: Domains By Proxy, LLC
Tech Street: DomainsByProxy.com
Tech Street: 14747 N Northsight Blvd Suite 111, PMB 309
Tech City: Scottsdale
Tech State/Province: Arizona
Tech Postal Code: 85260
Tech Country: United States
Tech Phone: +1.4806242599
Tech Phone Ext:
Tech Fax: +1.4806242598
Tech Fax Ext:
Tech Email: STREAMTELECOM.NET@domainsbyproxy.com
Name Server: NS09.DOMAINCONTROL.COM
Name Server: NS10.DOMAINCONTROL.COM
DNSSEC: unsigned
URL of the ICANN WHOIS Data Problem Reporting System: http://wdprs.internic.net/
Last update of WHOIS database: 2015-5-1T11:00:00Z

On the website https://who.securepaynet.net/whois?domain=streamtelecom.net&prog_id=429246 we find the company address for Stream Telecom

Business Information

Stream Telecom
+1.(866) 978-7098 Phone
382 NE 191st St,
Miami, Florida 33179
United States

 

 

If we search for a registered address at http://visulate.com/rental/visulate_search.php?CORP_ID=L14000008986 then we get an output of a lot possible addresses but not a real one.

A search at http://search.sunbiz.org/Inquiry/CorporationSearch/GetDocument?aggregateId=flal-l14000008986-0b7a33a5-d0f3-4dcc-9eda-175f1e7650f6&transactionId=l14000008986-31ee53cd-92b0-49ee-aab5-640768af8a19&formatType=PDF is more informative. We find out that the Authorized Person Detail is:

Mohamed Elsayed - Kevin Steve - Kareem SallamMohamed Elsayed - Kevin Steve - Kareem SallamMohamed Elsayed - Kevin Steve - Kareem SallamTitle: MANAGING MEMBER
Name: SALLAM, KAREEM M
Address: 228 PARK AVE S 38802
City-State-Zip: NEW YORK NY 10003

 

 

At the site http://www.betternetworker.com/members/kmsallam confirms Kareem Sallam that the his websites are http://www.connect2phone.net and http://www.streamtelecom.net.

As the domain streamtelecom.net hides the ownership behind a proxy service, we are more lucky with the domain connect2phone.net:

Domain Name: CONNECT2PHONE.NET
Registry Domain ID: 1821332099_DOMAIN_NET-VRSN
Registrar WHOIS Server: whois.wildwestdomains.com
Registrar URL: [link removed] Date: 2014-08-07T21:13:18Z
Creation Date: 2013-08-12T12:47:10Z
Registrar Registration Expiration Date: 2015-08-12T12:47:10Z
Registrar: Wild West Domains, LLC
Registrar IANA ID: 440
Registrar Abuse Contact Phone: +1.480-624-2505
Reseller: DomainRightNow
Domain Status: clientTransferProhibited [link removed] Status: clientUpdateProhibited [link removed] Status: clientRenewProhibited [link removed] Status: clientDeleteProhibited [link removed] Registrant ID:
Registrant Name: Mohamed Elsayed
Registrant Organization:
Registrant Street: ElShoubak
Registrant City: Shiebeen-ElQanater
Registrant State/Province:
Registrant Postal Code: 13871
Registrant Country: Egypt
Registrant Phone: 201008076143
Registrant Phone Ext:
Registrant Fax:
Registrant Fax Ext:
Registry Admin ID:
Admin Name: Mohamed Elsayed
Admin Organization:
Admin Street: ElShoubak
Admin City: Shiebeen-ElQanater
Admin State/Province: Qaluobia
Admin Postal Code: 13871
Admin Country: Egypt
Admin Phone: 20108076143
Admin Phone Ext:
Admin Fax:
Admin Fax Ext:
Registry Tech ID:
Tech Name: Mohamed Elsayed
Tech Organization:
Tech Street: ElShoubak
Tech City: Shiebeen-ElQanater
Tech State/Province: Qaluobia
Tech Postal Code: 13871
Tech Country: Egypt
Tech Phone: 20108076143
Tech Phone Ext:
Tech Fax:
Tech Fax Ext:
Name Server: NS1.ITWORLDEG.COM
Name Server: NS2.ITWORLDEG.COM
DNSSEC: unsigned
URL of the ICANN WHOIS Data Problem Reporting System: [link removed] update of WHOIS database: 2015-01-28T07:00:00Z

At LinkedIn we find already from April 13, 2014 a scam warning about this guy at

Clarissa Singson
Clarissa Singson Owner,Greenline Connect Outsourcing Services

BEWARE OF TRANSACTING KAREEM SALAM FROM CONNECT2PHONE!

FYI for Everyone I had the chance of working with someone named Kareem Salam from connect2phone. HE NEVER PAYS SO BEWARE IN TRANSACTING WITH HIM OR TO CONNECT2PHONE campaign.PLS SPREAD THIS!!!

If we take a look at http://www.scamadviser.com/check-website/connect2phone.net then we see there the warnings:

Alert Result: This website is 1 Years old
Alert Result: This website setup involves countries known to be high risk
Alert Result: This website is likely to be operating from a high risk country
 

And we find also some negative comments:

  • Pradeep Sk
    Pradeep Sk · Works at Intel Security
    This website is owned by Kareem Sallam who has mulitple websites with different names. They have lot of complaints against them as they are indulged in fraudulent activities.

    https://www.google.co.in/url?sa=t&rct=j&q=&esrc=s&source=web&cd=1&cad=rja&ved=0CCcQFjAA&url=http%3A%2F%2Fwww.campaignprovider.com%2Fforum%2Ftopics%2Ffraud-alert-wasla-outsourcing-kareem-sallam&ei=lwT1UsucD4XprAf_44CwCg&usg=AFQjCNFmzT-RLzhUM7RHG0uvQ1mtI1A_8w&sig2=kOWvYT58iwNx3pHNf7FK6g&bvm=bv.60799247,d.bmk

    http://www.wasla.com/

    tele-professionals.com

 

Summary: This case shows how important a background check before making business is. Brian Baily did not make a background check. For this we can see now his post at https://www.linkedin.com/grp/post/4026158-5998933984736722944:

Brian Bailey
Brian Bailey Chairman & Founder

SCAM ALERT BEWARE OF KEVIN STEVE ( STREAM TELECOM )

BEWARE .. BIG SCAM SCAM SCAM
A very big scammer........Beware of this guy as he is now working with a different name Kareem Sallam , Lives in Egypt but he got his company registered online
Stream Telecom LLC
Here are few links for your references
http://visulate.com/rental/visulate_search.php?CORP_ID=L14000008986 http://search.sunbiz.org/Inquiry/CorporationSearch/GetDocument?aggregateId=flal-l14000008986-0b7a33a5-d0f3-4dcc-9eda-175f1e7650f6&transactionId=l14000008986-31ee53cd-92b0-49ee-aab5-640768af8a19&formatType=PDF
which does not have any physical address .....
He will change his number every time he scams some one
He provides US CABLE TV and Satellite services Campaigns, Hire Centers and don't pay them.. Unfortunately I got trapped and lost my payments.. See guys I have lost my payments, So I would like all centers to enquire about the person with whom you are going to work. BEWARE of this Bloody fake guy. If you are working on a US CABLE TV and Satellite services, just for your safety, . I have lost my payments, So I dont want any other center to suffer .

Lets see if he comment here with his BS justification for not paying us ???

 

 

Kareem Sallam - contact center professionals.pdf (1.81 mb)

Kareem Sallam _ BetterNetworker.com.pdf (363.87 kb)

Kareem Sallam _ LinkedIn.pdf (5.34 mb)

Kareem Sallam – Google+.pdf (1.22 mb)

Kevin Steve _ LinkedIn.pdf (5.37 mb)

sunbiz org - Stream Telecom, LLC Annual Report.pdf (182.01 kb)

visulate com - Stream Telecom, LLC Corporate Details.pdf (1.83 mb)

Wasla Outsourcing Egypt ...on contact center world.pdf (1.31 mb)

Whois Lookup _ Domain Av...n Information - IM2Host.pdf (912.52 kb)

Update Feb. 25, 2016: Link to streamtelecom.net removed as the domain does already not exist.

Update Jan. 18, 2017: Link to connect2phone.net removed as the domain already does not exist. Removed the link to http://visulate.com/rental/visulate_search.php?CORP_ID=L14000008986 and to the Facebook profile
Pradeep Sk (https://www.facebook.com/pradeep.sk) because they are already returning error 404 - not found.

 

Scammer: Castle Pension Solutions - castlepensionsolutions.co.uk - Paul Rowe - Nick Danks

Paul RoweThe following posting from Raj Sharma at LinkedIn brought Castle Pension Solutions - castlepensionsolutions.co.uk into my focus.

The posting from Raj Sharma:

Beware!!!Beware!!!Beware!!!!Scam!!!Scam!!
scam!!!fraud!!fraud!!!fraud!!!
Beware!!Beware!!Beware!!Beware.
castlepensionsolutions.co.uk is a fraud.
Paul Rowe,the con-man and owner of castlepensionsolutions.co.uk has cheated with our company Gokyo Ri BPO as my manager rajen sing was constantly in touch with him and didnot pay our payment from last two months.We started working for him, in mid of february and started passing pension and bank reclaim leads to him.He made only 1st payment after making lots of excuses,but we continued to pass leads for him as we thought the reason which he was giving might be genuine.Suddenly,Paul started showing his true colour.He didnot make any payments afterthat.He started telling lies and giving unreasonable excuses.1st week he said we made payment,might be banking issue.Next week he said i had issue with account department .when we made several attempts to contact him through email and trying to reach him,he always avoided us.Sometimes,he said audit is going on,will pay later without giving any specific date.We tried to get our money till last week untill he completely refused to pay to us.If anyone need email and chat snap shot we are happy to share with you guys.Any thing you want to know about this fraud company and his cheater owner,please contact.
We want that these scammer and con man should be out of LinkdIn or any other sites so he cannot cheat with any other people and please avoid castlepensionsolutions.co.uk to work.We are thinking of taking legal action against him and his company and contacted Fraud and crime department of British High commission,New Delhi India.
Paul Rowe.
castlepensionsolutions.co.uk
Registrant's address:
21 Simonburn
Washignton
Tyne and Wear
NE38 0NJ.

Castle Pension SolutionsThe first what I see on their website, that the “company” is only named Castle Pension Solutions. A legal form under which the company is operating is not declared. So we try to find out if the company is registered under this name or if the any responsible person is found for this company.

Registered UK companies can get found at http://wck2.companieshouse.gov.uk/

As expected we find some other companies which are starting with Castle Pension but no Castle Pension Solutions.

Under the names Paul Rowe, Rowe Paul, Nick Danks or Danks Nick is no company registered. For this they are private persons and not company owner. This makes at least Nick Danks for the fraud full responsible. At least Nick Danks cannot hide himself, because the website is registered on his name and the name got verified (see at the domain registry: Registrant contact details validated by Nominet on 27-Mar-2014)

The given phone number at the homepage (UK: 07852196909) is a mobile phone number.

We see at the LinkedIn Profile of Paul Rowe that he has given a recommendation for Paul Danks.

At Facebook he describes himself as “Bank/Financial Institution”. A bank or a financial institution has in UK to be registered at the FCA (Financial Conduct Authority). There is a search about “Castle Pension Solutions”, Paul Rowe or Rowe Paul at http://www.fsa.gov.uk/register/firmSearchForm.do ended without any result.

My opinion: Paul Rowe is not more than an insurance salesman who likes to play CEO. He is unable to find customers by himself. For this he uses call center in low wage countries. He is even not able to pay them.

My recommendation: Each call center, which got cheated from Castle Pension Solutions - castlepensionsolutions.co.uk - Paul Rowe - Nick Danks should file a complaint with their proves at http://www.fca.org.uk/consumers/complaints-and-compensation

 

LinkedIn Paul Rowe: https://uk.linkedin.com/pub/paul-rowe/36/1a9/353

LinkedIn Nick Danks: https://uk.linkedin.com/in/nickdanks

Facebook Castle Pension Solutions: https://www.facebook.com/castlepensionsolutions (2016-02-25: Link removed - Facebook profile already not available)

Google+: https://plus.google.com/101662186451649408556/posts

 

Nicks DanksDomain name:
castlepensionsolutions.co.uk
Registrant:
Nick Danks
Registrant type:
UK Individual
Registrant's address:
21 Simonburn
Washignton
Tyne and Wear
NE38 0NJ
United Kingdom
Data validation:
Registrant contact details validated by Nominet on 27-Mar-2014
Registrar:
Paragon Internet Group Ltd t/a Tsohost [Tag = UKWEBHOSTING]
URL: [link removed] dates:
Registered on: 27-Mar-2014
Expiry date: 27-Mar-2016
Last updated: 24-Mar-2015
Registration status:
Registered until expiry date.
Name servers:
ns1.tsohost.co.uk 185.52.27.27
ns2.tsohost.co.uk 95.142.155.4
ns3.tsohost.co.uk 95.142.154.15
WHOIS lookup made at 07:20:39 16-Apr-2015
This WHOIS information is provided for free by Nominet UK the central registry for .uk domain names. This information and the .uk WHOIS are: Copyright Nominet UK 1996 - 2015.
You may not access the .uk WHOIS or use any data from it except as permitted by the terms of use available in full at [link removed] includes restrictions on: (A) use of the data for advertising, or its repackaging, recompilation, redistribution or reuse (B) obscuring, removing or hiding any or all of this notice and (C) exceeding query rate or volume limits. The data is provided on an 'as-is' basis and may lag behind the register. Access may be withdrawn or restricted at any time.

Beware!!!Beware!!!Beware...d!!!fraud!!! _ LinkedIn.pdf (348.55 kb)

Paul Rowe _ LinkedIn.pdf (8.62 mb)

Facebook Castle Pension Solutions.pdf (26.26 mb)

Google plus Castle Pension Solutions.pdf (26.26 mb)

Nick Danks _ LinkedIn.pdf (17.08 mb)


Update September 29, 2016: More than one year later I got the following email from Nick Danks:

Von: Nick Danks [mailto:Nick7danks@Googlemail.com]
Gesendet: Dienstag, 27. September 2016 01:37
An: rudolf.faix@wwpa.com
Betreff: CC Scam e-mail - Reporting abuse

Good afternoon,

I have discovered a blog post about a scammed and I have been included in the post to which I beleive to be an outrage. I help the business setup a basic website a few years ago but I have zero involvement with the business or the business owner. I pride myself on helping people in business and the reason I have been mentioned was due to a mistake on registering the domain in my name rather than the client due to the setting on my hosting.
I feel that the comments made about me personally should be removed as this is slander against me when it has nothing to do with me or what I am involved with.

Feel free to keep the post about the invididual but i hope you can see by reading the post that the comment and image about me is undeserved so please can you remove.

https://blog.wwpa.com/post/2015/05/24/scammer-castle-pension-solutions-castlepensionsolutions-co-uk-paul-rowe-nick-danks-follow-up along with the main post that this relates too.

Any questions please let me know and I would be happy to answer any questions needed to have this removed.

Kindest regards
Nick Danks


Author information

Name: Nick Danks
E-mail: Nick7danks@Googlemail.com
IP address: 151.225.8.50
User-agent: Mozilla/5.0 (Linux; Android 6.0.1; SM-G925F Build/MMB29K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/53.0.2785.124 Mobile Safari/537.36

Nick Danks has been the domain owner from castlepensionsolutions.co.uk at the time when the scam has happened and he is the only verified source in this case because Nominet, the British domain registry has verified his name and address. The LinkedIn profile from Paul Rowe got never verified and could get created by everybody. For this reason I tried to get a good explanation why the domain got registered on his name:

On 27 Sep 2016 01:33, "Rudolf Faix" <rudolf.faix@wwpa.com> wrote:

Hi

You are included in the post because you have been the owner of the domain at this time. As owner of the domain you are responsible for the content. If you have helped someone and this person has used the domain for fraud then you are in this case a partner in crime of the fraudster. Each attorney will give you the same answer.

best regards
Rudolf Faix
Affiliate Marketing Reviews
Fraud & Scam Systems
Offshore Outsourcing & Scammer

I would never register a domain for someone other by using my name. This would make me responsible for the content of the website. If someone is not able to register a domain by himself then he need to provide to me his exact data including credit card details for the payment options for beeing able to enter it into web form.

Von: Nick Danks [mailto:nick7danks@googlemail.com]
Gesendet: Dienstag, 27. September 2016 18:01
An: Rudolf Faix
Betreff: Re: AW: CC Scam e-mail - Reporting abuse

Thank you for your response.

The website was created and transfered to the client but it took quite a while to complete the amends therefore I was named until I was paid. Which I wasn't and lost money whilst working for that business. I was infact a supplier not a partner and believe I should be removed as I have not had any business dealings with the individual apart from suppling a website. I'm not even sure the business is still going as I've tried to seek payment myself.

Please can we work together to resolve this issue and remove my details and image

Kind regards
Nick Danks

The domain got really transferred on July 8, 2016 (more than one year after the scam had happened). But the new domain owner does is a Anthony Gregory and not a person with the name Paul Rowe. So I tried to find out if Paul Rowe is in reality Anthony Gregory. Even the new site content has been very suspicious. There is a online shoe shop but without any price information and an imprint with name and address, which is required by the European law is missing too. Here a screenshot:

Screenshot from castlepensionsolutions.co.uk - an online shoe shop without showing any prices and without any imprint

For this reason I have written:

On 27 Sep 2016 11:53, "Rudolf Faix" <rudolf.faix@wwpa.com> wrote:

I think it is not a big issue as “Paul Rowe” mentioned by himself in his email “Also nick danks if you had looked in to things properly he is just a Web creater.” (https://blog.wwpa.com/post/2015/05/24/scammer-castle-pension-solutions-castlepensionsolutions-co-uk-paul-rowe-nick-danks-follow-up)

The domain castlepensionsolutions.co.uk got transferred on July 8, 2016 to a person with the name Anthony Gregory, 21 WALSALL WOOD ROAD, WALSALL, WEST MIDLANDS, WS9 8QU, United Kingdom. Is this the original domain owner or a name which got found in a public phone directory? The actual content of the site does not really fit to the domain name. Shoes are something different than a pension system and the content is from cazpoo.co.uk – another scam site https://www.mywot.com/en/scorecard/cazpoo.co.uk?utm_source=addon&utm_content=warn-viewsc

Missing prices are not really something what someone is searching at an onlineshop and a missing imprint on the website does not make the site more trustful. It is even against the European law.

The problem is that I don’t believe into so many coincidences. Do you have any explanations?

best regards
Rudolf Faix
Affiliate Marketing Reviews
Fraud & Scam Systems
Offshore Outsourcing & Scammer

The answer from Nick Danks has been coming, but not with any expected explanation:

Von: Nick Danks [mailto:nick7danks@googlemail.com]
Gesendet: Dienstag, 27. September 2016 19:05
An: Rudolf Faix
Betreff: Re: AW: AW: CC Scam e-mail - Reporting abuse

What would you like me to explain? I created the website and asked for payment and didn't received anything so I'm in the same situation as you as a supplier which is why I'd like me image and name taken out in the post as it is damaging to my credibility and I help alot of businesses and charities.

If Paul Rowe has done things wrong then that's his problem not mine. From what I can see if he has asked for a service and it was received then he should of paid regardless of the excuses.

I know it doesn't seem like a big issue but to me it is as it's my name being damaged due to someone elses wrong doing.

Thank you for your help.

As Nick Danks has been the owner of the domain castlepensionsolutions.co.uk he has been responsible for the content of the website and for the case he has given it for rent he has been responsible that the website is not getting used for any crime. The UK law got already broken by the content of the website as it represented a business where whether Paul Rowe nor Nick Danks had the required permission or licences for it.

On 28 Sep 2016 01:02, "Rudolf Faix" <rudolf.faix@wwpa.com> wrote:

I told you that it is not a big deal to change the information in the posting for the reason as in the email of the other guy is written that you are only a web creator.

I have asked you: “Is the actual domain owner, Anthony Gregory, 21 WALSALL WOOD ROAD, WALSALL, WEST MIDLANDS, WS9 8QU, United Kingdom, your previous customer?”

best regards
Rudolf Faix
Affiliate Marketing Reviews
Fraud & Scam Systems
Offshore Outsourcing & Scammer

Nick Danks replied to my questions above:

Von: Nick Danks [mailto:nick7danks@googlemail.com]
Gesendet: Donnerstag, 29. September 2016 03:32
An: Rudolf Faix
Betreff: Re: AW: AW: AW: CC Scam e-mail - Reporting abuse

No the domain owner was Paul rowe and he's the one tahys stung people by the looks of it. Not sure who the other guy is.

The argumentation from Nick Danks has a big problem. If I have a hosting customer, who don't pay, I'll turn off his website for giving him a reason to pay his bills. As the WayBackMachine - archive.org shows, got the content from castlepensionsolutions.co.uk between June 22, 2014 and March 13, 2016 exactly 9 time captured and the content from the site got even changed.

Even the actual content - the online shoe shop without prices and without any imprint showing the owner from the page - from castlepensionsolutions.co.uk is nothing else than a scam. It is a copy from the website cazpoo.co.uk.