Payza members beware!

[THE Bull]

NOTE: DO NOT PROVIDE ANY INFORMATION TO THE LINK IN THIS THREAD (SPECIFICALLY FIRST POST) FOR YOUR OWN SAFETY!

I've just received strange e-mail from "Payza" with next content:

Dear Member

You need follow final step transition From Alertpay To Payza before you can use full access your Payza account!
Please click on the following link to validate your account:
Click here to validate your account.
If you not follow this final step your account will temporary frozen with unknown period.
Â
Follow Us
Thanks for choosing Payza (formerly AlertPay),
The Payza Team

It was strange to me for few reasons:

1. Dear "member", not with full name
2. Link "help-payza.com"
3. On the link provided, they are requested my e-mail, password and transaction PIN.

Then I've looked at source of e-mail and it came from here.

Received: from [199.191.56.228] (port=36528 helo=mail.comexprofit.com)
Message-ID: <20120911174408.7723.qmail@mail.comexprofit.com>
X-PHP-Script: comexprofit.com/come.php for 114.79.12.102

I'm currently suspecting on one person from this forum known as "JeoRocker", because he is the only one who had my e-mail related to the Payza account. I would like to see is there any persons here received same e-mail? Please, if you do, let me know on the private message, so we can try to track this guy(s). Also, I've contacted Dacentec with original e-mail and information about it. Hope they'll provide some help

 

[Jesse]

Their is probably about 10,000 of these going around at any given second.

 

[THE Bull]

But I'm sure that owner of Help-payza.com is member on this forum, because my Payza e-mail knew only three persons from this forum (2 with successful transactions completed and third never responded after I send him info's).

 

[Jesse]

It's possible. A large body of persons here are not honest.

 

[THE Bull]

After I got this message on second e-mail, I've realized that member with username JeoRocker is responsible for these messages.

 

[Gevin]

This would be a short guide to people to actually get proper information from an email before reacting to its subject. ALWAYS check the email header to get the email source .

 

[Kruno]

If you are going to scam, at least hire someone to translate your email into valid English. It looks like a bad joke ^_^

 

[robert420]

Looks like he got reported or caught by eNom which is the domain register for the domain they've put the domain on hold meaning he can't use it anymore.

http://whois.domaintools.com/help-payza.com

Beware of
http://whois.domaintools.com/security-payza.com

which is another domain name that is also hosted on that same server which doesn't have private whois might help you findout whom send you that fake email.

 

[THE Bull]

Probably just fake WHOIS data, so doesn't helps a lot (:

 

[Tango]

I just had a payza phishing email, it looks like someone is using WHMCS to send the mails most likely a webhost that supports Payza.


Received: from [209.160.28.100] (port=59309 helo=whmcs.internetworldwide.in)

I will Pm The staff with phishing URL

 

[WDF]

I just had a payza phishing email, it looks like someone is using WHMCS to send the mails most likely a webhost that supports Payza.


Received: from [209.160.28.100] (port=59309 helo=whmcs.internetworldwide.in)

I will Pm The staff with phishing URL

Domain ID:D2159127-AFIN
Domain Name: INTERNETWORLDWIDE.IN
Created On:16-Jan-2006 07:55:12 UTC
Last Updated On:30-Aug-2012 15:51:02 UTC
Expiration Date:16-Jan-2013 07:55:12 UTC
Sponsoring Registrar: Directi Internet Solutions Pvt. Ltd. dba PublicDomainRegistry.com
(R5-AFIN)
Status:OK
Registrant ID:AT_11704247
Registrant Name: Padmasree Harish
Registrant Organization: Internetworldwide
Registrant Street1: 25, Gover Road,
Registrant Street2: Coxtown
Registrant Street3:
Registrant City: bangalore
Registrant State/Province: Karnataka
Registrant Postal Code: 560005
Registrant Country:IN
Registrant Phone: +080.4125901
Registrant Phone Ext.:
Registrant FAX:
Registrant FAX Ext.:
Registrant Email:
Admin ID:AT_11704247
Admin Name: Padmasree Harish
Admin Organization: Internetworldwide
Admin Street1: 25, Gover Road,
Admin Street2: Coxtown
Admin Street3:
Admin City: bangalore
Admin State/Province: Karnataka
Admin Postal Code: 560005
Admin Country: IN
Admin Phone: +080.4125901
Admin Phone Ext.:
Admin FAX:
Admin FAX Ext.:
Admin Email:
Tech ID:AT_11704247
Tech Name: Padmasree Harish
Tech Organization: Internetworldwide
Tech Street1: 25, Gover Road,
Tech Street2: Coxtown
Tech Street3:
Tech City: bangalore
Tech State/Province: Karnataka
Tech Postal Code: 560005
Tech Country: IN
Tech Phone: +080.4125901
Tech Phone Ext.:
Tech FAX:
Tech FAX Ext.:
Tech Email:
Name Server: PRIMARY.SPACETOLET.COM
Name Server: SECONDARY.SPACETOLET.COM
Name Server: NS3.INTERNETWORLDWIDE.IN
Name Server: NS4.INTERNETWORLDWIDE.IN
Name Server:
Name Server:
Name Server:
Name Server:
Name Server:
Name Server:
Name Server:
Name Server:
Name Server:
DNSSEC:Unsigned

 

[dareknyght]

If you think that it's someone from here then no doubt it is a truth. This place is full of scammers.
Otherwise, just ignore such mails...

 

[WDF]

Well if this place is full of scammers what does that make you?

Everyone needs to remember your words when it comes time to doing business with you.

 

[Xeon]

Dear methad0ne,

Then I've looked at source of e-mail and it came from here.

here ?? http://www.wjunction.com/comexprofit.com/come.php ?????
you gave WJ's Link ????

 

[M]

If you think that it's someone from here then no doubt it is a truth. This place is full of scammers.
Otherwise, just ignore such mails...

Excuse me? Are you accusing my members of being scammers? If so, then I don't see why you are still on WJunction. As if you believe they're scammers, you wouldn't be browsing and posting. We ban scammers when reports are made, if the email was sent from someone on this board, we will ban them. We do not associate ourselves with scams nor do we want any scammer on WJunction. Next time, think twice before you call a whole board (including staff) scammers. We do our best to ensure that our members are protected and our staff go through a lot.

 

[superleech]

needed extra thoroughness and attitude have always alert to the affairs payza