Bobbye
Posts: 16,313 +36
Hopefully someone can direct me to a network person here. I'm helping someone go through their malware logs. This entry is in the HijackThis log:
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = 169.254.224.189
The problem I'm having is that this IP is NOT in the Blackhole IP range of:
* 10.0.0.0 - 10.255.255.255
* 172.16.0.0 - 172.31.255.255
* 192.168.0.0 - 192.168.255.255
The term AutoConfigURL is fine, but the IP isn't. Can someone guide me in how to determine whether this is valid? The user did not configure for Blackhole.
Thanks.
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = 169.254.224.189
The problem I'm having is that this IP is NOT in the Blackhole IP range of:
* 10.0.0.0 - 10.255.255.255
* 172.16.0.0 - 172.31.255.255
* 192.168.0.0 - 192.168.255.255
The term AutoConfigURL is fine, but the IP isn't. Can someone guide me in how to determine whether this is valid? The user did not configure for Blackhole.
Thanks.