Всем привет !
Ситуация распространенная: ативирус не обновляется, тормозит видео на ютубе и прочие прелести. Но к сожалению антивирус ничего не нашел, пробовал nod, курейт...прикрепляю логи, посмотрите в чем дело пожалуйста
Всем привет !
Ситуация распространенная: ативирус не обновляется, тормозит видео на ютубе и прочие прелести. Но к сожалению антивирус ничего не нашел, пробовал nod, курейт...прикрепляю логи, посмотрите в чем дело пожалуйста
Последний раз редактировалось Diabolical; 06.06.2011 в 20:02.
Уважаемый(ая) Diabolical, спасибо за обращение на наш форум!
Удаление вирусов - абсолютно бесплатная услуга на VirusInfo.Info. Хелперы, в самое ближайшее время, ответят на Ваш запрос.
Если наш сайт окажется полезен Вам и у Вас будет такая возможность - пожалуйста поддержите проект.
Выполните скрипт в AVZ
Компьютер перезагрузится.Код:begin SearchRootkit(true, true); SetAVZGuardStatus(True); QuarantineFile('D:\WINDOWS\system32\conime32.exe',''); QuarantineFile('D:\Documents and Settings\Дмитрий\Application Data\netprotocol.exe',''); DeleteFile('D:\Documents and Settings\Дмитрий\Application Data\netprotocol.exe'); RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\Run','Netprotocol'); DeleteFile('D:\WINDOWS\system32\conime32.exe'); BC_ImportAll; ExecuteSysClean; BC_Activate; ExecuteREpair(14); ExecuteREpair(16); RebootWindows(true); end.
Пришлите карантин согласно Приложения 3 правил по красной ссылке Прислать запрошенный карантин вверху темы
Сделайте новые логи
Сделайте лог полного сканирования МВАМ
Microsoft MVP 2012-2016 Consumer Security
Microsoft MVP 2016 ReconnectАнтивирусная помощь
Прикрепил отчет МВАМ. Ничего удалять не нужно было, просто вам отчет и все пока что ?
Здравствуйте!
Удалите в MBAM:
Сделайте повторный лог MBAM.Код:Зараженные параметры в реестре: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\option_1 (Rootkit.Agent) -> Value: option_1 -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\option_2 (Rootkit.Agent) -> Value: option_2 -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\option_3 (Rootkit.Agent) -> Value: option_3 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\128.130.56.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 128.130.56.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\128.111.48.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 128.111.48.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\128.130.60.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 128.130.60.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\139.91.222.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 139.91.222.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\141.202.248.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 141.202.248.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\149.101.225.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 149.101.225.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\150.70.93.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 150.70.93.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\155.35.248.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 155.35.248.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\162.40.10.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 162.40.10.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\165.160.15.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 165.160.15.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\166.70.98.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 166.70.98.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\18.85.2.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 18.85.2.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\188.93.8.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 188.93.8.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\192.150.94.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 192.150.94.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\193.0.6.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 193.0.6.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\193.1.193.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 193.1.193.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\193.110.109.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 193.110.109.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\193.17.85.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 193.17.85.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\193.193.194.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 193.193.194.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\193.24.237.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 193.24.237.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\193.66.251.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 193.66.251.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\193.69.114.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 193.69.114.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\193.71.68.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 193.71.68.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\194.0.200.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 194.0.200.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\194.109.142.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 194.109.142.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\194.112.106.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 194.112.106.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\194.206.126.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 194.206.126.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\194.33.180.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 194.33.180.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\195.137.160.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 195.137.160.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\195.146.235.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 195.146.235.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\195.2.240.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 195.2.240.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\195.210.42.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 195.210.42.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\195.55.72.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 195.55.72.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\195.64.225.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 195.64.225.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\195.70.37.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 195.70.37.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\198.6.49.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 198.6.49.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\199.203.243.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 199.203.243.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\203.160.188.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 203.160.188.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\204.14.90.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 204.14.90.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\205.178.145.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 205.178.145.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\205.227.136.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 205.227.136.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\207.44.154.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 207.44.154.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\207.46.18.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 207.46.18.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\207.46.20.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 207.46.20.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\207.46.232.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 207.46.232.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\207.66.0.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 207.66.0.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\208.79.250.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 208.79.250.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\209.124.55.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 209.124.55.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\209.157.69.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 209.157.69.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\209.160.22.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 209.160.22.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\209.216.46.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 209.216.46.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\209.51.167.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 209.51.167.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\209.62.112.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 209.62.112.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\209.62.68.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 209.62.68.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\209.87.209.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 209.87.209.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\212.47.219.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 212.47.219.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\212.67.88.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 212.67.88.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\212.72.62.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 212.72.62.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\212.8.79.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 212.8.79.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\213.133.34.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 213.133.34.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\213.171.218.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 213.171.218.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\213.198.89.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 213.198.89.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\213.220.100.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 213.220.100.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\213.31.172.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 213.31.172.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\216.10.192.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 216.10.192.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\216.12.145.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 216.12.145.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\216.239.122.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 216.239.122.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\216.49.94.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 216.49.94.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\216.55.183.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 216.55.183.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\216.99.133.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 216.99.133.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\217.106.234.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 217.106.234.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\217.16.16.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 217.16.16.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\217.170.21.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 217.170.21.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\217.174.103.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 217.174.103.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\38.113.1.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 38.113.1.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\62.14.249.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 62.14.249.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\62.146.66.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 62.146.66.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\62.189.194.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 62.189.194.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\62.75.163.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 62.75.163.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\62.213.110.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 62.213.110.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\62.75.216.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 62.75.216.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\63.85.36.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 63.85.36.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\64.128.133.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 64.128.133.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\64.13.134.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 64.13.134.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\64.202.189.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 64.202.189.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\64.41.142.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 64.41.142.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\64.246.4.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 64.246.4.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\64.41.151.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 64.41.151.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\64.66.190.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 64.66.190.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\64.78.182.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 64.78.182.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\65.175.38.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 65.175.38.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\65.55.184.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 65.55.184.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\65.55.240.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 65.55.240.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\66.249.17.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 66.249.17.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\66.77.70.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 66.77.70.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\67.134.208.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 67.134.208.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\67.15.103.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 67.15.103.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\67.19.34.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 67.19.34.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\67.192.135.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 67.192.135.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\67.225.206.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 67.225.206.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\67.227.172.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 67.227.172.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\69.18.148.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 69.18.148.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\69.162.79.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 69.162.79.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\68.177.102.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 68.177.102.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\69.20.104.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 69.20.104.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\70.84.211.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 70.84.211.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\69.93.226.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 69.93.226.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\72.232.246.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 72.232.246.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\69.57.142.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 69.57.142.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\72.32.125.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 72.32.125.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\72.32.70.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 72.32.70.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\74.208.158.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 74.208.158.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\74.208.20.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 74.208.20.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\74.50.0.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 74.50.0.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\74.52.233.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 74.52.233.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\74.55.40.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 74.55.40.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\75.125.29.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 75.125.29.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\75.125.82.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 75.125.82.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\78.108.86.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 78.108.86.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\78.137.164.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 78.137.164.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\78.47.87.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 78.47.87.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\79.125.5.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 79.125.5.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\80.153.193.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 80.153.193.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\80.190.130.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 80.190.130.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\80.190.154.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 80.190.154.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\80.86.107.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 80.86.107.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\80.237.132.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 80.237.132.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\81.176.66.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 81.176.66.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\81.24.35.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 81.24.35.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\82.117.238.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 82.117.238.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\82.151.107.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 82.151.107.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\82.165.103.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 82.165.103.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\82.98.86.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 82.98.86.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\83.202.175.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 83.202.175.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\83.222.23.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 83.222.23.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\83.222.31.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 83.222.31.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\83.223.117.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 83.223.117.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\84.40.30.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 84.40.30.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\85.17.210.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 85.17.210.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\85.214.106.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 85.214.106.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\85.255.19.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 85.255.19.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\85.31.222.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 85.31.222.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\87.106.242.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 87.106.242.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\87.106.254.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 87.106.254.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\87.230.79.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 87.230.79.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\87.238.48.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 87.238.48.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\87.242.74.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 87.242.74.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\87.242.79.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 87.242.79.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\88.221.119.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 88.221.119.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\89.111.176.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 89.111.176.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\89.202.149.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 89.202.149.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\89.202.157.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 89.202.157.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\90.156.159.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 90.156.159.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\90.183.101.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 90.183.101.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\91.121.97.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 91.121.97.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\91.199.212.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 91.199.212.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\91.209.196.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 91.209.196.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\92.123.155.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 92.123.155.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\92.53.106.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 92.53.106.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\93.184.71.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 93.184.71.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\94.23.206.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 94.23.206.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\94.236.0.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 94.236.0.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\95.140.225.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 95.140.225.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\74.55.74.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 74.55.74.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\75.125.185.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 75.125.185.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\174.120.186.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 174.120.186.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\208.43.71.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 208.43.71.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\74.53.70.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 74.53.70.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\74.86.232.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 74.86.232.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\74.54.139.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 74.54.139.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\174.133.38.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 174.133.38.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\174.120.185.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 174.120.185.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\174.120.184.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 174.120.184.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\74.54.130.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 74.54.130.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\74.54.46.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 74.54.46.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\75.125.189.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 75.125.189.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\75.125.43.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 75.125.43.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\74.86.125.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 74.86.125.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\75.125.212.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 75.125.212.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\207.44.254.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 207.44.254.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\83.102.130.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 83.102.130.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\87.242.75.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 87.242.75.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\81.176.67.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 81.176.67.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\188.40.74.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 188.40.74.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\208.43.44.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 208.43.44.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\62.67.184.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 62.67.184.0,255.255.255.0,172.20.113.253,1 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\74.125.77.0,255.255.255.0,172.20.113.253,1 (TCPRoute.Hijack) -> Value: 74.125.77.0,255.255.255.0,172.20.113.253,1 -> No action taken. Объекты реестра заражены: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Main\Start Page (Hijack.StartPage) -> Bad: (http://webalta.ru) Good: (http://www.google.com/) -> No action taken. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Main\Default_Page_URL (Hijack.StartPage) -> Bad: (http://webalta.ru) Good: (http://www.google.com/) -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main\Default_Page_URL (Hijack.StartPage) -> Bad: (http://webalta.ru) Good: (http://www.google.com/) -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main\Start Page (Hijack.StartPage) -> Bad: (http://webalta.ru) Good: (http://www.google.com/) -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit (Hijack.UserInit) -> Bad: (D:\WINDOWS\system32\userinit.exe,D:\WINDOWS\apppatch\iloddhr.dat,) Good: (userinit.exe) -> No action taken. Зараженные файлы: d:\$RECYCLE.BIN\S-1-5-18\$R5DKARX.exe (Spyware.Passwords.XGen) -> No action taken. d:\$RECYCLE.BIN\S-1-5-18\$R79QTH9.exe (Spyware.Passwords.XGen) -> No action taken. d:\$RECYCLE.BIN\S-1-5-18\$RIL1MMZ.exe (Spyware.Passwords.XGen) -> No action taken. d:\$RECYCLE.BIN\S-1-5-18\$RVIHOGA.exe (Spyware.Passwords.XGen) -> No action taken. d:\$RECYCLE.BIN\S-1-5-18\$RXHH6HP.exe (Spyware.Passwords.XGen) -> No action taken. d:\documents and settings\all users\application data\ssyytjzzzuu.exe (Spyware.Passwords.XGen) -> No action taken. d:\documents and settings\Дмитрий\local settings\temp\conime32.exe (Spyware.Passwords.XGen) -> No action taken. d:\documents and settings\Дмитрий\local settings\temporary internet files\Content.IE5\95SE12HR\about[1].exe (Spyware.Passwords.XGen) -> No action taken. d:\documents and settings\Дмитрий\local settings\temporary internet files\Content.IE5\9ZE4IRDA\b2_res[1].exe (Spyware.Passwords.XGen) -> No action taken. d:\documents and settings\Дмитрий\local settings\temporary internet files\Content.IE5\WBP0DSDP\codi[1].exe (Spyware.Passwords.XGen) -> No action taken. d:\documents and settings\Дмитрий\рабочий стол\avz4\quarantine\2011-06-06\avz00004.dta (Spyware.Passwords.XGen) -> No action taken. d:\documents and settings\Дмитрий\рабочий стол\avz4\quarantine\2011-06-06\avz00005.dta (Spyware.Passwords.XGen) -> No action taken. d:\documents and settings\Дмитрий\рабочий стол\avz4\quarantine\2011-06-07\avz00001.dta (Spyware.Passwords.XGen) -> No action taken. d:\documents and settings\Дмитрий\рабочий стол\avz4\quarantine\2011-06-07\avz00002.dta (Spyware.Passwords.XGen) -> No action taken. d:\documents and settings\Дмитрий\рабочий стол\avz4\quarantine\2011-06-07\bcqr00001.dat (Spyware.Passwords.XGen) -> No action taken. d:\documents and settings\Дмитрий\рабочий стол\avz4\quarantine\2011-06-07\bcqr00002.dat (Spyware.Passwords.XGen) -> No action taken. d:\system volume information\_restore{d48f62db-3884-46bd-825d-4436eda226d4}\RP128\A0254532.exe (Spyware.Passwords.XGen) -> No action taken. d:\system volume information\_restore{d48f62db-3884-46bd-825d-4436eda226d4}\RP128\A0254534.exe (Spyware.Passwords.XGen) -> No action taken. d:\documents and settings\Дмитрий\application data\avdrn.dat (Malware.Trace) -> No action taken. d:\documents and settings\Дмитрий\application data\fvgqad.dat (Malware.Trace) -> No action taken. d:\WINDOWS\system32\config\systemprofile\application data\fvgqad.dat (Malware.Trace) -> No action taken. d:\documents and settings\Дмитрий\application data\usernt.dat (Malware.Trace) -> No action taken.
Удалять все то, что будет после проверки ? Те записи реестра, которые вы написали удалить, это полный результат проверки, или же придется вручную проставлять галочки, чтобы ничего лишнего не удалить ?
И еще вопрос: карантин отправлять с паролем "virus", или без кавычек ?)
hedgars, вы меня не поняли наверно. thyrex написал прислать карантин. Чтобы его отправить по правилам надо его запаковать с паролем и залить сюда http://virusinfo.info/upload_virus.php?tid=103157 Вот я и спрашиваю с каким паролем, в кавычках или нет )
Выполните скрипт в AVZ:
И пришлите quarantine.zip из папки AVZ согласно правилам (через красную ссылку "Прислать запрошенный карантин" наверху темы).Код:begin CreateQurantineArchive(GetAVZDirectory+'quarantine.zip'); end.
Карантин отправлен )
После удаления записей реестра автоматически открылся лог, прикрепляю его.
Что с проблемой?
теперь все отлично, спасибо ! Только видео грузится не так быстро как раньше..но это может с инетом что-то в этот день было. Давайте я сделаю контрольные логи AVZ и hijack, на всякий случай.
Контрольные логи.
Выполните скрипт в AVZ:
Компьютер перезагрузится.Код:begin ExecuteRepair(3); ExecuteRepair(4); RegKeyStrParamWrite('HKLM', 'SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon', 'UserInit', GetEnvironmentVariable('SystemRoot')+'\system32\userinit.exe,'); AutoFixSPI; RebootWindows(true); end.
Что с проблемой?
Сделайте повторные логи.
При выполнении данного скрипта AVZ почему-то виснет..приходится через диспетчер задач вырубать. Сомневаюсь что скрипт завершается до конца в данном случае (
Повторные логи будут готовы завтра.
Пофиксите в HiJack
Код:R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://webalta.ru/poisk R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://webalta.ru/poisk R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://webalta.ru/poisk R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://webalta.ru/poisk R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://webalta.ru/poisk R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://webalta.ru/poisk R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://webalta.ru/poisk F2 - REG:system.ini: UserInit=userinit.exe, O3 - Toolbar: (no name) - {91397D20-1446-11D4-8AF4-0040CA1127B6} - (no file)
Microsoft MVP 2012-2016 Consumer Security
Microsoft MVP 2016 ReconnectАнтивирусная помощь
Уважаемый(ая) Diabolical, наши специалисты оказали Вам всю возможную помощь по вашему обращению.
В целях поддержания безопасности вашего компьютера настоятельно рекомендуем:
Чтобы всегда быть в курсе актуальных угроз в области информационной безопасности и сохранять свой компьютер защищенным, рекомендуем следить за последними новостями ИТ-сферы портала Anti-Malware.ru:
Надеемся больше никогда не увидеть ваш компьютер зараженным!
Если Вас не затруднит, пополните пожалуйста нашу базу безопасных файлов.