projecteq website down?

**GeorgeS** · #1 12-20-2006, 03:23 AM

Acronis True Image backup is very valuable. I bought my copy a few months ago, and is leagues better than norton ghost.

GeorgeS

Teppen · #2 12-20-2006, 08:54 AM

after i used the Acronis True Image backup and reverted to factory install, patched to current windows updates, patched up to current norton av version, ran full norton av check which came back nothing wrong, I installed and ran the three programs listed by Angelox, all came back nothing wrong. also ran latest spybot s&d, nothing returned.

if i type in 66.28.184.13 page loads. but if i try to login takes to same error page i was getting and doesnt log me in. also if i try googling projecteq and clicking or www.projecteq.net in address bar returns with same error.

also if i try 66.28.184.13/quests
or 66.28.184.13/edit
or 66.28.184.13/quests/submit
or 66.28.184.13/quick_recipe.php

all redirect to www.projecteq.net and then loads same error page i was getting. so im still stuck.

only sites i visited was:

updates for windows
updates for norton av
those 3 sites listed by Angelox
google search for projecteq

so i didnt wander far but still got hit by this nasty thing again. any ideas?

**cavedude** · #3 12-20-2006, 09:51 AM

You may have an infection. More than likely spyware, and the thing you need to know about spyware is one program is NEVER enough. Spybot, like all other anti-spyware programs on its on SUCKS. But, if you use spybot, ad-aware, ewido, M$ defender, etc all together than you have quite the defense. Also, you'll need to make use of tools such as hijackthis, autoruns, and Winsock XP Fix to fully get rid of most infections. The other thing you need to know is there isn't a single anti-virus program on the market that effectively fights spyware. Sure, they can detect a couple of variants here and there but they can't completely remove them.

So, I recommend grabbing as many anti-spyware tools as you can (starting with the ones I mentioned above) install them, boot into safe mode, and do full scans with all of them (let your machine scan over night) When they are finished cleaning, run hijackthis and autoruns, remove any suspicious entries either finds. Hell, if you don't mind reinstalling a couple of programs, remove everything both find EXCEPT Microsoft entries and your device drivers (though keep an eye out for any odd ones). Run Winsock XP Fix to repair your winsock, and reboot into safe mode again. Run hijack and autoruns again. If any of the entries are back (and they aren't obvious ones that aren't malicious) track down the file, remove it if you can, remove the entry and reboot again.

In most cases that should clean your machine. Many exceptions apply, but the scanners will tell you everything you need to know. If something lingers, do a search on the web for manual removal directions.

If it still doesn't work, then I would recommend backing up any user data, formatting and starting fresh. A backup image is useless if it too, is infected or has the problem.

eq4me · #4 12-20-2006, 10:27 AM

I was just browsing through this thread so dont beat me if I am way of.

I recon you have an Internet Router/Firewall. Maybe with an dhcp server.
If you have it might be a good idea to boot from some Linux Life CD like Knoppix and try if you can reproduce the behavior. If yes you most probably have an wonky/hacked Router/Firewall Setup.

rojadruid · #5 12-20-2006, 02:14 PM

Quote:

Originally Posted by eq4me

I was just browsing through this thread so dont beat me if I am way of.

I recon you have an Internet Router/Firewall. Maybe with an dhcp server.
If you have it might be a good idea to boot from some Linux Life CD like Knoppix and try if you can reproduce the behavior. If yes you most probably have an wonky/hacked Router/Firewall Setup.

Or bypass the router and connect directly to the modem and then try the website.

Angelox · #6 12-20-2006, 02:34 PM

Here's more possibilties;

Make sure you don't have any hidden partitions - PC's like Dell, Compaq, like to make partitions that are "hidden" - I've had situations where the malware would come back from places like that.
What brand router do you have? look it up on the net make sure there's no bugs with it - Routers can be hacked too. If you can, Flash- upgrade your router to whats newest.

John Adams · #7 12-21-2006, 07:37 AM

Hey, as long as this is turning into a PC Tech suggestion thread, here's mine...

Do what they suggest, eliminate all connection points between the PC and cable modem, and ipconfig /flushdns and ipconfig /registerdns again. Check that there are no other servers but localhost with ipconfig /displaydns.

Then, hop on up to www.grc.com and run his Shields Up! profiler. It's horribly enlightening and scarey (not that you are affected, but you never know). Do this with and without your router.

The only other thing that I can imagine is something is intercepting the DNS lookups. Can you hard-code your ISP DNS servers on the connection profile?

I've honestly never heard of this - and I've run virusscanner/adware free for 10 years on the internet, and never been infected. Strange that so many people are.