MalwareTips
SUSPICIOUS

Tech-support scare page — do not call the number

Domain was registered only 17 days ago — brand-new sites are higher-risk by default. Some signals suggest this is a fake support / scare page. Don't call any displayed number and don't install any "support" software.

Security Review

Is prenedurs.co.in legit or a scam?

Our verdict:Suspicious· 45/100

Browser notification scareware domain registered 17 days ago, triggering fake virus alerts and redirecting to Norton-impersonation scam pages.

Top reasons
Domain registered only 17 days ago with no legitimate business content or operator details.Multiple Reddit users report persistent fake virus notifications directing to Norton-impersonation scam pages.Empty page metadata (no title, description, contact info) despite active hosting and SSL certificate.
prenedurs.co.inScanned 1h ago
Post Facebook
0
Trust score
SUSPICIOUS
Heuristics 54·MT 40
Category tags
browser notification abusescareware#Tech Support Scam85% MT confidence
Technical red flags (1)
Domain is 17 days old

These checks passed — but they don't clear the site. A clean antivirus result, valid SSL, and a calm server only mean it isn't hosting malware; they say nothing about whether the business is real. This verdict is based on the site's conduct and content, not a malware detection.

View density

Analysis Summary

Threat Intelligence
0/92
All engines report clean
Domain Age
17 days old
Registered May 22, 2026
MT Intelligence
Suspicious
High likelihood · 85% confidence

MT Intelligence

Advanced threat intelligence
MT Security Analyst
High scam likelihoodengineMT · Guardiantrust40/100
MT AgentLive web researchVisual inspectionNetwork correlation
0%
Confidence
The domain prenedurs.co.in was registered only 17 days ago and hosts no legitimate business content—no title, description, contact details, or verifiable operator information. Multiple Reddit users report the same pattern: after visiting or permitting notifications from this site, their browsers display persistent pop-ups claiming virus infections, despite real antivirus software (McAfee) finding nothing. The notifications direct to pages impersonating Norton, a known scareware tactic. The empty page metadata combined with AWS hosting in Mumbai and the coordinated notification-abuse reports point to a deliberate scam operation. No antivirus engines flag the domain itself as malicious, but this is typical for notification-abuse schemes—the harm occurs through social engineering, not file-based malware. The very recent registration, lack of business legitimacy, and multiple corroborating user complaints establish a clear scareware pattern.
Full dossier
Analysis complete

Page Content

The domain serves a blank page with no title, meta description, contact information, or business details. No login forms, countdowns, or push-notification prompts are visible in the page structure itself, but user reports confirm the site requests and abuses browser notification permissions to display fake security alerts.

Infrastructure

Hosted on AWS EC2 in Mumbai, India, with nginx and a valid Let's Encrypt SSL certificate. The IP (13.204.126.131) has zero abuse reports and a clean reputation score. DNS is unsigned. These technical details are consistent with a low-cost hosting setup typical of scam operations.

Domain History

Registered 17 days ago (May 22, 2026) via Namecheap with privacy protection enabled. The domain expires May 22, 2027. No business registration records exist for "prenedurs" or associated entities in India's company databases. The recent registration combined with zero legitimate business presence is a strong indicator of malicious intent.

Web Reputation

Multiple Reddit users in r/antivirus report the same scareware pattern: browser notifications claiming virus infections, directing to Norton-impersonation pages. No positive reviews or trust mentions exist. Independent review aggregators have no data on the domain. The coordinated user complaints establish a clear scam operation.

Risk Factors
6
  • Domain registered only 17 days ago with no legitimate business content or operator details.
  • Multiple Reddit users report persistent fake virus notifications directing to Norton-impersonation scam pages.
  • Empty page metadata (no title, description, contact info) despite active hosting and SSL certificate.
  • Browser notification abuse pattern: users report alerts despite legitimate antivirus software finding no infections.
  • Privacy-protected WHOIS and AWS hosting in India consistent with low-cost scam infrastructure.
  • No business registration found for the domain operator despite .IN registry listing.
Positive Signals
3
  • Zero antivirus engines flag the domain as malicious.
  • Valid SSL certificate issued by Let's Encrypt.
  • Hosting IP has zero abuse reports and clean reputation.
AI Recommendation
Do not visit this site or permit browser notifications from it. If you have already allowed notifications, revoke permission immediately in your browser settings and clear any associated data. If you received fake virus alerts, ignore them—run a scan with legitimate antivirus software (Windows Defender, Malwarebytes, or your existing AV) to confirm your system is clean.
Scam network detected
Related infrastructure identified

The domain operates as a notification-abuse vector, likely part of a broader scareware network. Reddit reports indicate coordination with Norton-impersonation pages, but specific linked domains were not identified in the evidence package.

Next-gen fraud intelligence
Evidence-backedCross-checked

Website Preview

Screenshot of prenedurs.co.in
LIVE RENDER
prenedurs.co.in

Automated page render — captured in a safe sandbox. What an ordinary visitor would see when loading the site.

Web Research Findings

Our live research agent queries scam-report databases, consumer-review sites, news coverage, and general web search for prenedurs.co.in, then cross-checks business-registration records and look-alike domain patterns. Everything below is pulled from what it actually found.

Domain age
17 days
Registered May 2026
Business registration
Not found · India
Clone check
Not a clone
No well-known site's layout or branding detected here.
Typosquat check
No look-alike match
The domain doesn't resemble any well-known brand's spelling.
Web mentions
2 scam reports
Key findings
7 headline facts from open-web research
  • Domain registered 17 days ago on May 22, 2026 via Namecheap; hosted on AWS EC2 Mumbai (India) with nginx; expires May 22, 2027; DNSSEC unsigned
  • PCrisk scanner (Jun 8, 2026): 0/91 engines flagged, clean malware scan, no blacklisting, but Moderate Risk 50/100 due to very recent registration and empty page metadata/title/description
  • Multiple Reddit users (r/antivirus, May 2026) report persistent browser notifications claiming viruses on their laptop, despite real AV (McAfee) finding nothing; notifications direct to Norton-related scam pages
  • Reddit consensus: not a traditional virus/malware but browser notification abuse (scareware/scam messages) after user likely permitted notifications on the site
  • Quttera scan: 0 malicious files detected
  • No business website content visible; domain name suggests possible entrepreneurship/startup intent for Indian audience but no verifiable operator details
  • Appears in .IN registry create list with other new domains under similar entities
Scam reports (2)
Direct quotes from public scam databases, forums, and news.
  • Reddit r/antivirusopen

    "This thing called prenedurs.co.in is in my laptop and sends notifications of viruses being present despite McAfee saying there is none. The notifications send me to a website about Norton but does not link does not look legit."

  • Reddit r/antivirusopen

    "This does not sound like an actual virus... but rather a website abusing the toast notification/popup feature in your web browser to present you with scam messages... addresses of `prenedurs[.]co[.]in`"

Business registration
Status: not found · India

Registered May 22, 2026 via Namecheap; listed in .IN registry creates PDF alongside other new domains; no company details or active business records found for "prenedurs" or "naroenterprises"

Research summary
Narrative write-up from our AI analyst, grounded on the facts above

Reddit users in r/antivirus report a consistent scareware pattern: after visiting or permitting notifications from prenedurs.co.in, their browsers display persistent pop-ups claiming virus infections. Despite legitimate antivirus software (McAfee) finding no threats, the notifications direct to pages impersonating Norton security software. Community consensus identifies this as browser notification abuse rather than traditional malware—a social-engineering scam designed to trick users into clicking malicious links. No positive reviews or trust mentions were found. The domain appears in .IN registry listings alongside other newly registered entities, suggesting coordinated scam infrastructure.

Antivirus Engines

Clean pass · verified
Clean across 92 engines

We cross-check every URL against our antivirus network of 92 malware and blacklist engines. None of them flagged this URL in the last scan.

0Malicious0Suspicious58Harmless92Engines
Clean
Kaspersky
Clean
Bitdefender
Clean
Microsoft
Not in pass
ESET-NOD32
Not in pass
Avira
Not in pass
Sophos
Clean
Fortinet
Clean
Google Safebrowsing
Clean
Emsisoft
Clean

No engine detections. The URL passed every antivirus and blacklist engine we queried in this scan. Stay vigilant — AV coverage is only one signal among many.

Security Scans

Blacklist Check
Not flagged on major threat lists

Checked against the major public blocklists used by browsers and security tools — no hits.

Sandbox Render
Sandbox capture incomplete — no traffic recorded
Requests made0
Unique IPs0
Countries0
Detected brandsNone

Contact Verification

We fetched the page and looked for real-world contact details. Legitimate businesses almost always publish an email on their own domain, a phone number, and a postal address. Scam shops usually don't.

What We Found
No clear contact details on the page
Emails on site's domainNone
Phone numbersNone
Postal addressNot listed
Linked social profiles0
Signal Summary
Several contact red flags
  • No contact email found anywhere on the page.
  • No phone number listed on the page.
  • No postal address visible on the page.

Domain & Encryption

Domain History
Age17 days old
RegistrarNAMECHEAP
RegisteredMay 22, 2026
ExpiresMay 22, 2027
Owner privacyHidden
Encryption Certificate
StatusValid
ProtocolTLSv1.3
IssuerLet's Encrypt · E8
ExpiresAug 20, 2026 (72d)
Self-signedNo
Hosting & Technology
HostingAmazon Technologies Inc.
Server locationIN
Web servernginx

Server Reputation

Hosting
CountryUnknown
NetworkUnknown
IP addressUnknown
Abuse Intelligence
Confidence score0%
Reports on file0
ISPAmazon Technologies Inc.
Usage typeData Center/Web Hosting/Transit

Scam-Type Likelihood

1 scam-type patterns detected
Scam-Type Likelihood

1 of 13 categories showed signals

We check every URL against 13 distinct scam categories so the verdict tells you not just how risky the page is, but what kind of risk it carries. Each meter pulls from page signals, web reports, our AI analyst, vision, and the scam-network cluster — not from raw AV labels.

Top match: Tech Support Scam
Tech Support Scam
Moderate likelihood
30/100
  • AI analyst tagged this as a tech-support scam.

Possible tech-support scare page

Pages like this impersonate Microsoft, Apple, or your ISP to trick you into calling a number or granting remote access.

  • Treat prenedurs.co.in as unverified

    Do not enter credentials or send money until you have independently verified the business.

  • Do not call the number and do not install any "support" tool

    Microsoft, Apple, Google, and legitimate ISPs never show a pop-up with a phone number. Installing AnyDesk, TeamViewer, or "Windows Support" at their request hands over your computer.

  • Close the page — end the browser process if needed

    If the page has locked your browser, press Ctrl+Shift+Esc (Windows) or Cmd+Option+Esc (Mac) and end the browser task. Reopen your browser with "Don't restore tabs".

  • If you already gave remote access or paid

    Disconnect the device from the internet. Run a full scan with Malwarebytes or a reputable AV. Change your passwords from a different device. Call your bank to dispute any payment and request a new card.

    Open

Reputation Sources

How this domain rates across independent threat-intelligence and blocklist providers.

Google Safe Browsing
Not listedCheck ↗
VirusTotal
Not listedCheck ↗
AbuseIPDB
Not listedCheck ↗
Also verify:Spamhaus ↗DNSBL / SURBL ↗PhishTank ↗

Safety FAQ

Common questions about this site, answered directly from the scan data above — so the answers always reflect the latest verdict on this page.

  • Our automated security review marked prenedurs.co.in as suspicious. Several warning signs were detected; it may still turn out legitimate, but you should verify it through independent channels before trusting it with money or credentials.
  • prenedurs.co.in currently scores 45/100 on our trust scale. We found enough warning signals to recommend caution. Verify the site through independent channels before entering credentials or money.
  • Yes. prenedurs.co.in presents a valid TLSv1.3 certificate issued by Let's Encrypt · E8, expiring in 72 days. Note that SSL only encrypts the connection — it does not guarantee that the site itself is trustworthy.
  • prenedurs.co.in is 17 days old, registered on 5/22/2026 through NAMECHEAP. Scam domains are often freshly registered — a site under 6 months old warrants extra caution.
  • No. All 92 antivirus engines in our malware network report prenedurs.co.in as clean.
  • No. prenedurs.co.in is not currently listed on the major browser blocklist feeds that modern browsers use.
  • prenedurs.co.in resolves to an IP operated by Amazon Technologies Inc. in IN (usage type: Data Center/Web Hosting/Transit). Hosting location alone doesn't make a site good or bad, but unusual geography for a brand's claimed country is one of many signals we weigh.
  • We cache results for 24 hours. Signed-in MalwareTips members can trigger a manual rescan at any time using the "Rescan" button on the report page, which re-runs every check from scratch and refreshes this page.

Final Verdict

0
Trust / 100
Final Verdict·prenedurs.co.in
SUSPICIOUS

A 17-day-old domain abusing browser notifications to display fake virus warnings and redirect users to scam pages. Multiple users report persistent pop-ups claiming infections despite legitimate antivirus software finding nothing.

Do not visit this site or permit browser notifications from it. If you have already allowed notifications, revoke permission immediately in your browser settings and clear any associated data. If you received fake virus alerts, ignore them—run a scan with legitimate antivirus software (Windows Defender, Malwarebytes, or your existing AV) to confirm your system is clean.

AV engines
92
MT passes
2
Net signals
0
Scan another URL
Security review completemalwaretips.com/url-scan
Recently scanned

Other Suspicious reports

Browse all reports
Suspicioustrust67
joinclnr.co
9m ago
Read the review
Suspicioustrust52
teamhealth.com
11m ago
Read the review
Suspicioustrust55
papyrio.app
12m ago
Read the review
Suspicioustrust61
xrares.com
18m ago
Read the review
Suspicioustrust59
racingfamilyvillage.com
18m ago
Read the review
Suspicioustrust64
asfaleia-zois.gr
1h ago
Read the review
Suspicioustrust57
aldealio.com
1h ago
Read the review
Suspicioustrust51
uu-download.dx5mzt.com
1h ago
Read the review
Suspicioustrust57
go-to-holidays.com
1h ago
Read the review
Suspicioustrust69
modum-house.com
1h ago
Read the review
Suspicioustrust50
panditprogrammer.com
1h ago
Read the review
Suspicioustrust59
desihub.org
1h ago
Read the review
Community review

User reviews & comments(0)

Share your experience — "Lost $200 on a fake checkout" is more useful than "Scam". Your review helps others avoid traps.

Loading…
Loading comments…
This report is generated automatically by combining threat intelligence, domain signals, and an AI security analyst. It is informational, not legal advice. Always use your own judgement before sharing personal information or money online.