nkvd.us spyware

Discussion in 'adware, spyware & hijack cleaning' started by Shaunw, Apr 16, 2004.

Thread Status:
Not open for further replies.
  1. Shaunw

    Shaunw Guest

    I have been infected with the nkvd.us hijacker and plan to use the information I found on this site to try and remove it as nothing else has worked. I looked into the owner of the domain and got the email address that is registered as the owner of the domain. Do you think that posting it and having everyone "spam" them with hate mail might get under their skin enough to do some good? I also have the name, address, phone number and domain originator as well. Is there anything we can do to cause the culprit a little heartache in return for his little "gift" to us?
     
  2. Pieter_Arntz

    Pieter_Arntz Spyware Veteran

    Joined:
    Apr 27, 2002
    Posts:
    13,491
    Location:
    Netherlands
    Have you ever considered the owner of the domain might be just another victim of the people spreading this pest?

    To resolve your issue follow the instructions here:
    https://www.wilderssecurity.com/showthread.php?t=15913 and let us have a look at your HijackThis log. We may spot something you missed.

    Regards,

    Pieter
     
  3. Shaunw

    Shaunw Registered Member

    Joined:
    Apr 16, 2004
    Posts:
    1
    Location:
    Houston Texas area

    I have been in contact with the owner of the domain and he is the originator of the nkvd.us hijacker. He got very snotty with me and told me tough. I will have to live with it and there was nothing I could do. Thank you very much for the info to correct the problem. It has seemed to work great. This is a great group of helpful individuals. Keep up the good work. If anyone would like the culprit's info please let me know and I will gladly post it. However I will not do so without administrator's permission. After being in contact with the originator I have no doubt that he is basking in the glory of the havoc his program is causing. I would not jump to this conclusion. I gave him the benefit of the doubt and he proved to be an arrogant S.O.B. I hate to see someone who is causing so much trouble go unpunished. I am unable to do anything myself but think that a group could have more effect. I will however respect the wishes of the administrator whatever they may be. Again, thank you for helping to remove this from my computer.

    Shaun W.
     
  4. Pieter_Arntz

    Pieter_Arntz Spyware Veteran

    Joined:
    Apr 27, 2002
    Posts:
    13,491
    Location:
    Netherlands
    Shaun,

    I would be interested in the email exchange you had with them.
    But I would like to have a look at it before we post anything in the open.

    I will IM you my email-address.

    Regards,

    Pieter
     
  5. gordobia

    gordobia Guest

    Is there any plan to post the contact information for the nkvd author on this forum?

    -gordo
     
  6. iain123

    iain123 Registered Member

    Joined:
    Apr 27, 2004
    Posts:
    1
    You want to know who is behind nkvd..try this..

    Domain Name: NKVD.US
    Domain ID: D5154092-US
    Sponsoring Registrar: DIRECT INFORMATION PVT. LTD., (D.B.A. DIRECTI.COM)
    Domain Status: ok
    Registrant ID: DI_343675
    Registrant Name: Zhavoronkov Dmitry
    Registrant Organization: none
    Registrant Address1: Karamzina street 7
    Registrant City: Kaliningrad
    Registrant State/Province: na
    Registrant Postal Code: 236029
    Registrant Country: Russian Federation
    Registrant Country Code: RU
    Registrant Phone Number: +7.293572
    Registrant Email: alex_ser_gay@hotmail.com
    Registrant Application Purpose: P3
    Registrant Nexus Category: C31/RU
    Administrative Contact ID: DI_343675
    Administrative Contact Name: Zhavoronkov Dmitry
    Administrative Contact Organization: none
    Administrative Contact Address1: Karamzina street 7
    Administrative Contact City: Kaliningrad
    Administrative Contact State/Province: na
    Administrative Contact Postal Code: 236029
    Administrative Contact Country: Russian Federation
    Administrative Contact Country Code: RU
    Administrative Contact Phone Number: +7.293572
    Administrative Contact Email: alex_ser_gay@hotmail.com
    Administrative Application Purpose: P3
    Administrative Nexus Category: C31/RU
    Billing Contact ID: DI_343675
    Billing Contact Name: Zhavoronkov Dmitry
    Billing Contact Organization: none
    Billing Contact Address1: Karamzina street 7
    Billing Contact City: Kaliningrad
    Billing Contact State/Province: na
    Billing Contact Postal Code: 236029
    Billing Contact Country: Russian Federation
    Billing Contact Country Code: RU
    Billing Contact Phone Number: +7.293572
    Billing Contact Email: alex_ser_gay@hotmail.com
    Billing Application Purpose: P3
    Billing Nexus Category: C31/RU
    Technical Contact ID: DI_343675
    Technical Contact Name: Zhavoronkov Dmitry
    Technical Contact Organization: none
    Technical Contact Address1: Karamzina street 7
    Technical Contact City: Kaliningrad
    Technical Contact State/Province: na
    Technical Contact Postal Code: 236029
    Technical Contact Country: Russian Federation
    Technical Contact Country Code: RU
    Technical Contact Phone Number: +7.293572
    Technical Contact Email: alex_ser_gay@hotmail.com
    Technical Application Purpose: P3
    Technical Nexus Category: C31/RU
    Name Server: NS1.NKVD.US
    Name Server: NS2.NKVD.US
    Created by Registrar: DIRECT INFORMATION PVT. LTD., (D.B.A. DIRECTI.COM)
    Last Updated by Registrar: DIRECT INFORMATION PVT. LTD., (D.B.A. DIRECTI.COM)
    Domain Registration Date: Thu Dec 11 17:21:35 GMT 2003
    Domain Expiration Date: Fri Dec 10 23:59:59 GMT 2004
    Domain Last Updated Date: Wed Apr 14 19:03:39 GMT 2004

    An easy find via www.whois.net

    See if you get the same response as I did from him.

    Cheers from down under
     
  7. Pieter_Arntz

    Pieter_Arntz Spyware Veteran

    Joined:
    Apr 27, 2002
    Posts:
    13,491
    Location:
    Netherlands
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.