Hopefully someone can direct me to a network person here. I'm helping someone go through their malware logs. This entry is in the HijackThis log: R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = 169.254.224.189 The problem I'm having is that this IP is NOT in the Blackhole IP range of: * 10.0.0.0 - 10.255.255.255 * 172.16.0.0 - 172.31.255.255 * 192.168.0.0 - 192.168.255.255 The term AutoConfigURL is fine, but the IP isn't. Can someone guide me in how to determine whether this is valid? The user did not configure for Blackhole. Thanks.