Hi

This is my first post here.

I recently have had a number of internet accounts attacked, where the user tried to Login, and in one case was successful (so they probably got a general password from a bad site).

I believe this person also tried to access my egold account.

I have pasted the whois on the IPA : (some of my accounts reported the offending IPA to me.
noorus.aklubi.ee (***.40.*0.222)
Domain
***.40.*0.0 - ***.40.*0.255
Estonian Educational and Research Network
Mihkel Kraav
Raekoja plats *4
5*004 Tartu
Estonia
+*72 7 *02**0
+*72 7 *02***
[email]mihkel@eenet.ee[/email]

Raivo Hirmo
EENet
Raekoja plats *4
EE5*004 Tartu
Estonia
+*72 7 *02 **0
+*72 7 *02 ***
[email]Raivo.Hirmo@eenet.ee[/email]

TraceRoute
Hop IP Address Hostname Average RTT*
* **2.*68.*.* bodhi.pair.net 0.*8 ms
2 64.2*4.*74.*77 so-2-*-0.ar2.cle*.gblx.net *.6* ms
* 67.*7.65.*82 so5-0-0-2488M.ar2.CPH*.gblx.net ***.5* ms
4 208.48.2*.*54 geant-se*-se.so-6-0-0.ar2.CPH*.gblx.net *64.*5 ms
5 62.40.*0*.2*0 eenet-gw.se*.se.geant.net **5.87 ms
6 ***.40.***.24* ***.40.***.24* **6.** ms
7 ***.40.***.*86 trt-ge0-*-**4.bb.eenet.ee ***.68 ms
8 ***.40.*0.222 noorus.aklubi.ee *47.70 ms


I am looking for information on how to report this to an agency that actually cares to followup (local police report won't make a difference, for a hack from another country).

Last week, one of my network computers got a spyware trojan for the i-search bar system. It took me over a day to clean it out, and it made major changes in my registry, including the inability to remove the items from autorun. It also added icons to my desktop for antispyware (where the site described the exact conditions that it infected me with). I think I got it while at a search engine, and the perputrators id was in all the links.

The name of some of the infecting files were:
C:\WINDOWS\isrvs\suka.exe
C:\WINDOWS\isrvs\dsfeef.exe
C:\WINDOWS\isrvs\feee.exe
C:\WINDOWS\isrvs\sfee.exe
C:\58af2afd.exe
C:\WINDOWS\system*2\soft.exe

and the Desktop links were:
\Desktop\Evidence Eraser.lnk
\Desktop\PopUp Blocker Stops PopUps.lnk
\Desktop\Spyware Avenger.lnk
\Desktop\Virus Hunter Security.lnk
\Desktop\Your Platinum ****.lnk
All of the address were like: [url]http://in.[/url] (Eraser,Spyhunter etc
or [url]www.mainstreamdollars.[/url]

The base company for these programs is:
Postal Mail: iDownload.com
**80 Avenue of the Americas
*4th Floor
New York, NY *00*6
*-800-844-5***


And it took 4 seperate spyware programs, ZoneAlarm and AntiVir to suppress all of its links.
The trojan system also disconnected my ability to do a windows update.
I could have admired this attack for it thouroughness, if I weren't gritting my teeth so much.

To me, this is terrorism.
they loaded programs into my computer, including flagged viruses, and trojans, disconnected my services and some of my administrative privilages and then had the ball to advertise their site for a cleanup!

Where to report, as I want to get these suckas!

For another Idea, how about a class action suit on any company deploying such systems. based on lost time and privacy hacking?