Scam/Warnings Reports (Large-Profit.com) - HYIP

HYIPexplorer · 09-12-2011, 11:05 AM

Post here if you have been scammed or if a program has stopped paying.
Please confirm your Scam Report HERE.

shriganesh · 10-07-2011, 01:52 AM

Third mail from large-profit.com after malicious hackers sent me mail by misusing the superhotpay.com email id and trust-income.com email id. BEWARE FROM MALICIOUS HACKERS WHO ARE SENDING PHISHING MAILS which looks like as if sent from large-profit, superhotpay and trust-income. All three hyips are genuine for now. The mischeifs are being done by malicious hackers, so do not get feared from such hackers and do not trust such malicious hacker's emails.

What is this happening? I think this is email spoofing attack on me, trust-income.com and superhotpay.com and there is another third email where large-profit.com name is also being spoiled by these malicious hackers. Within a gap of few minutes three emails from three different hyips email id's. Beware, from email spoofing attacks from malicious hackers. Here is a copy of my reply and large-profit.com email at bottom:

I have received another email as mentioned below from some malicious hacker
who is using email spoofing techniques by sending me emails on your name.
Check this and inform all your investors. I am there to help you, don't
worry. I got two emails which looks like as if were sent by you, but I am a
world record holder and IT Security Expert and quickly identified that these
are spoofed email techniques which malicious hackers are using to spoil your
hyip's reputation on internet. You need to post this on your news section
and send a mass mail to all your existing investors before these hackers
create any kind of trouble for your company. I am a person who helps all
hyip admins and all investors when something strange is observed during my
research. It was my duty to inform you and that's why I am informing you.

Have a nice day

Sincerely

Kalpesh Sharma
Research Expert
Technical Intelligence Expert
IT Security Expert

----- Original Message -----
From: <*>
To: <*>
Sent: Friday, October 07, 2011 2:02 PM
Subject: Large-Profit Pending Withdrawals!

> Hello dear Large-Profit member,
>
> We are sorry for the recent delays in LibertyReserve withdrawals. We
> upgraded some of our server hardware and software, but unfortunately we
> are not able to process LR payouts now. An action is required at your side
> to be taken so our script can send your pending withdrawal.
>
> 1. Login to your LR account, go to Merchant Tools.
> 2. Click on Create new API
> 3. Enter the following entries
> 3.1. API Name: largeprofit
> 3.2. Sec. Word: largeprofit1
> 4. Tick ENABLED
> 5. Tick BALANCE
> 6. Tick TRANSFER
>
> Enter your PIN and submit to save the configuration. Please reply to this
> e-mail with your LR account number.
>
> We will then make the adjustments needed to process your pending payout
> ASAP.
>
> Large-Profit Team
>

shriganesh · 10-07-2011, 01:54 AM

Beware of email spoofing techniques now a days used by malicious hackers to attack you.

I want to explain all of you what is email spoofing. I was just now attacked two times when a malicious hacker used the following email id's

admin at superhotpay dot com
superhotpay at superhotpay dot com
admin at large-profit.com
admin at trust-income dot com

to send me email which looks like as if superhotpay and trust-income admins have sent me emails. But NO actually this is hacker's game.

SO DON'T GET FEARED BECAUSE ACTUALLY SUPERHOTPAY OR TRUST-INCOME DID NOT SEND THESE MAILS. THESE ARE THE TRICKS USED BY MALICIOUS HACKERS and COMPETITORS AND MISCHEVIOUS PEOPLE TO SPOIL NAME OF REPUTED AND GENUINE HYIPS.

How they do email spoofing and what is email spoofing? I want to explain this to everyone on this forum so that they do not get confused when they get a phishing mail where FROM FIELD contains email id of reputed and genuine hyips.

Email Spoofing: It's an action taken by malicious hackers who use the authorized email id's of reputed and genuine hyips with an intention to spoild their name on internet. When you or me receives a mail we always check the FROM field i.e. the FROM field which specifies which email account has sent you email. Actually here is how they do email spoofing:

Hackers first go to ANONYMAILER dot net Site for sending free anonymous joke emails like sites which provide anonymous email facility or email spoofing facility.
In "FROM NAME" and "FROM EMAIL" FIELD hackers enter the email id which he wants to misuse. Some sent me a threat email before few minutes by using the above two email id's. Actually hackers do these type of tricks to confuse us. So, that we get into fear and we think that the email was from original admin of the concerned hyip's email id's specified above.

Then he writes a letter asking you to send payments or follows some steps on liberty reserve and so on. Sometimes they will send you email for fear that your account has been blocked. Sometimes they will send emails specifying that the sender is the admin of so and so hyip and that he is closing the company. This way investors get into fear and withdraw all their money and then genuine hyips come into problem when all investors get out.

If anyone has any query regarding email spoofing I am there to help and guide them.

Sincerely

Kalpesh Sharma
Research Expert
Technical Intelligence Expert
IT Security Expert

shriganesh · 10-07-2011, 03:06 AM

Just read this email communication and you will come to know the truth of winnerearn.com

Winnerearn.com did this email spoofing attack on superhotpay, large-profit, me and trust-income. I have full proof solid evidence about this. Below is a recent email that I sent to admin of large-profit.com that how winnerearn is using email spoofing techniques by misusing large-profit.com 's email id and sending threat and phishing email attacks to large-profit.com investors. Winnerearn is the culprit behind sending all these threat and malicious hacking attempts. Read it your self with complete headerfile, ip address, mailserver from where email was routed to my inbox, timedate stamp, etc. Here is the copy paste of email which I recently sent to large-profit.com admin and informed him that how the competitor winnerearn is doing malicious and hacking activities against large-profit.com

Here starts the copy paste ============

I have traced the hacker. All the three emails that I recieved were sent by
mail server winnerearn.com

They are the culprits who are misusing your name. Here is genuine technical
intelligence evidence:

When I checked the email header on ip2location.com/emailtracer.aspx

I saw that the mail was sent by
E1RC5qx-00075C-IY at winnerearn.r47.dragonara.net

Here is the header file of the email I received where winnerearn.com(your
competitor) is MISUSING your name and sending emails to your investors:

Delivered-To: pvtint at gmail.com
Received: by 10.220.168.85 with SMTP id t21cs181268vcy;
Fri, 7 Oct 2011 01:30:24 -0700 (PDT)
Received: by 10.216.168.143 with SMTP id k15mr2235758wel.111.1317976224212;
Fri, 07 Oct 2011 01:30:24 -0700 (PDT)
Return-Path: <nobody at winnerearn.r47.dragonara.net>
Received: from backup.b2bstoragemail.com (backup.b2bstoragemail.com.
[84.19.161.65])
by mx.google.com with SMTP id f8si5976681wed.4.2011.10.07.01.30.23;
Fri, 07 Oct 2011 01:30:24 -0700 (PDT)
Received-SPF: neutral (google.com: 84.19.161.65 is neither permitted nor
denied by best guess record for domain of
nobody at winnerearn.r47.dragonara.net) client-ip=84.19.161.65;
Authentication-Results: mx.google.com; spf=neutral (google.com: 84.19.161.65
is neither permitted nor denied by best guess record for domain of
nobody at winnerearn.r47.dragonara.net)
smtp.mail=nobody at winnerearn.r47.dragonara.net
To: pvtint at gmail.com
Subject: Large-Profit Pending Withdrawals!
From: admin at large-profit.com
Reply-To: admin at large-profit.com
Message-Id: <E1RC5qx-00075C-IY at winnerearn.r47.dragonara.net>
Date: Fri, 07 Oct 2011 04:32:23 -0400

----- Original Message -----
From: "Kalpesh Sharma" <pvtint at gmail.com>
To: <admin at large-profit.com>; <info at large-profit.com>;
<support at large-profit.com>
Sent: Friday, October 07, 2011 2:12 PM
Subject: Re: Large-Profit Pending Withdrawals!

>I have received another email as mentioned below from some malicious hacker
> who is using email spoofing techniques by sending me emails on your name.
> Check this and inform all your investors. I am there to help you, don't
> worry. I got two emails which looks like as if were sent by you, but I am
> a
> world record holder and IT Security Expert and quickly identified that
> these
> are spoofed email techniques which malicious hackers are using to spoil
> your
> hyip's reputation on internet. You need to post this on your news section
> and send a mass mail to all your existing investors before these hackers
> create any kind of trouble for your company. I am a person who helps all
> hyip admins and all investors when something strange is observed during my
> research. It was my duty to inform you and that's why I am informing you.
>
> Have a nice day
>
> Sincerely
>
> Kalpesh Sharma
> Research Expert
> Technical Intelligence Expert
> IT Security Expert
>
> ----- Original Message -----
> From: <admin at large-profit.com>
> To: <pvtint at gmail.com>
> Sent: Friday, October 07, 2011 2:02 PM
> Subject: Large-Profit Pending Withdrawals!
>
>
>> Hello dear Large-Profit member,
>>
>> We are sorry for the recent delays in LibertyReserve withdrawals. We
>> upgraded some of our server hardware and software, but unfortunately we
>> are not able to process LR payouts now. An action is required at your
>> side to be taken so our script can send your pending withdrawal.
>>
>> 1. Login to your LR account, go to Merchant Tools.
>> 2. Click on Create new API
>> 3. Enter the following entries
>> 3.1. API Name: largeprofit
>> 3.2. Sec. Word: largeprofit1
>> 4. Tick ENABLED
>> 5. Tick BALANCE
>> 6. Tick TRANSFER
>>
>> Enter your PIN and submit to save the configuration. Please reply to this
>> e-mail with your LR account number.
>>
>> We will then make the adjustments needed to process your pending payout
>> ASAP.
>>
>> Large-Profit Team
>>
>

Here ends the copy paste ============

bonline86 · 10-07-2011, 03:18 AM

shriganesh
I want to ask you as IT security specialist... Are there any tricks which will help to recognize future HYIPs launched by winnerearn admin. He plays unfair game and destroys HYIP industry, I would better prefer to ignore his programs

shriganesh · 10-07-2011, 03:45 AM

Quote:

Originally Posted by bonline86

shriganesh
I want to ask you as IT security specialist... Are there any tricks which will help to recognize future HYIPs launched by winnerearn admin. He plays unfair game and destroys HYIP industry, I would better prefer to ignore his programs

Really these few hyip admins are playing so bad game. I feel like killing them. They get so much investment and rather then using bad games if they use that money properly, then they will never need to do scam and hacking and all these things. Why they don't understand and take help from experts who can guide them.

Anyway, my job is to make everyone aware. As concerns to your query, I liked your question. I will get back to you on this privately because if I explain this over here, then they will become alert. I will find out the solution to your query soon. Just add me to your friend list network so that I do not forget to reply you.

I don't know what the hell is this hyipexplorer admin doing. He is busy earning from top banner advertising from winnerearn who is not only destroying hyip industry, but also destroying investors and monitoring companies and it is somewhere spoiling the reputation of hyipexplorer.com also. But hyipexplorer admin rather then taking actions on the basis of factual evidence, himself bans people like me who exposes the truth for welfare of investors. I have a lot of respect for hyipexplorer.com admin but this is not fair what he/she/it is doing.

Kalpesh

bigrascal · 10-07-2011, 10:16 AM

Can you add me to your friends list too? I would also like to know...

shriganesh · 10-07-2011, 06:52 PM

Quote:

Originally Posted by bigrascal

Can you add me to your friends list too? I would also like to know...

Yes, sure. You may contact me directly on pvtint at gmail dot com and I see you are already in my network and friend list.

Kalpesh

wwjdo · 10-10-2011, 08:58 AM

I got one of those letters about changing your settings on your LR account and it said it was from Global Bank
The properties of the letter said this
Received: from baglo by h4.ddoswiz.net with local (Exim 4.69)
(envelope-from <*>)
id 1RD8rP-0000T8-Gc
Does that mean it came from bagle @h4.ddoswiz.net?
And that's not part of Global Bank?
We're not supposed to change our settings are we?
I've heard someone can take the money out of your LR account. Is that true?

blueberry · 10-10-2011, 09:08 AM

Quote:

Originally Posted by wwjdo

I got one of those letters about changing your settings on your LR account and it said it was from Global Bank
The properties of the letter said this
Received: from baglo by h4.ddoswiz.net with local (Exim 4.69)
(envelope-from <*>)
id 1RD8rP-0000T8-Gc
Does that mean it came from bagle @h4.ddoswiz.net?
And that's not part of Global Bank?
We're not supposed to change our settings are we?
I've heard someone can take the money out of your LR account. Is that true?

Just ignore any email you received. They are trying to steal your money.
DO NOT EVER change or enable API in your LR account.