Показано с 1 по 9 из 9.

Проверка логов после лечения Cure It (заявка № 95856)

  1. #1
    Junior Member Репутация
    Регистрация
    28.12.2010
    Сообщений
    20
    Вес репутации
    26

    Thumbs up Проверка логов после лечения Cure It

    Банер-блокировщик.
    В безопасном режиме с поддержкой ком строки запущен cure it свежий. Во время сканирования обнаружил и удалил несколько троянов.
    Не известно на какой стадии завершилось сканирование - вылет в синий экран смерти.

    После этого получил логи согласно правилам.

  2. Будь в курсе!
    Реклама на VirusInfo

    Надоело быть жертвой? Стань профи по информационной безопасности, получай самую свежую информацию об угрозах и средствах защиты от ведущего российского аналитического центра Anti-Malware.ru:

    Anti-Malware Telegram
     

  3. #2
    Невымерший Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Аватар для thyrex
    Регистрация
    07.03.2009
    Адрес
    Soligorsk, Belarus
    Сообщений
    96,349
    Вес репутации
    3019
    Выполните скрипт в AVZ
    Код:
    begin
    SearchRootkit(true, true);
    SetAVZGuardStatus(True);
    QuarantineFile('C:\WINDOWS\sewd.sys','');
     DeleteService('mkdrv');
     QuarantineFile('.exe','');
     QuarantineFile('C:\Program Files\Internet Explorer\setupapi.dll','');
     QuarantineFile('C:\Documents and Settings\Admin\Application Data\download2\svcnost.exe','');
     QuarantineFile('C:\WINDOWS\system32\e963f5df.exe','');
     QuarantineFile('C:\WINDOWS\system32\rescue32.exe','');
     QuarantineFile('C:\WINDOWS\system32\wexisu.exe','');
     QuarantineFile('C:\WINDOWS\rundll.bat','');
     DeleteFile('C:\WINDOWS\rundll.bat');
     DeleteFile('C:\WINDOWS\system32\wexisu.exe');
     DeleteFile('C:\WINDOWS\system32\rescue32.exe');
     DeleteFile('C:\WINDOWS\system32\e963f5df.exe');
     DeleteFile('C:\Documents and Settings\Admin\Application Data\download2\svcnost.exe');
     DeleteFile('C:\Program Files\Internet Explorer\setupapi.dll');
     DeleteFile('C:\Program Files\VPets\VPets.exe');
     DeleteFile('.exe');
     RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run','wininet');
     RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\Run','download');
     RegKeyParamDel('HKEY_LOCAL_MACHINE','System\CurrentControlSet\Control\Session Manager\AppCertDlls','DefaultVerifier');
     RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\Run','VPetsPlayer');
     RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\Run','PCHDPlayer');
     DeleteFile('C:\Program Files\pchd\PCHDPlayer.exe');
     DeleteFile('C:\WINDOWS\sewd.sys');
    DeleteFileMask('C:\Program Files\VPets', '*.*', true);
    DeleteDirectory('C:\Program Files\VPets');
    DeleteFileMask('C:\VPets', '*.*', true);
    DeleteDirectory('C:\VPets');
    DeleteFileMask('D:\VPets', '*.*', true);
    DeleteDirectory('D:\VPets');
    DeleteFileMask('C:\Program Files\pchd', '*.*', true);
    DeleteDirectory('C:\Program Files\pchd');
    DeleteFileMask('C:\pchd', '*.*', true);
    DeleteDirectory('C:\pchd');
    BC_ImportAll;
    ExecuteSysClean;
    BC_Activate;
    ExecuteRepair(16); 
    RebootWindows(true);
    end.
    Компьютер перезагрузится.

    Пришлите карантин согласно Приложения 3 правил по красной ссылке Прислать запрошенный карантин вверху темы

    Сделайте новые логи

    Сделайте лог полного сканирования МВАМ
    Microsoft MVP 2012-2016 Consumer Security
    Microsoft MVP 2016 Reconnect

  4. #3
    Junior Member Репутация
    Регистрация
    28.12.2010
    Сообщений
    20
    Вес репутации
    26
    карантин прислал сразу же, а вот MBA не успела досканировать до конца рабочего дня

    поэтому выкладываю сегодня

  5. #4
    Невымерший Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Аватар для thyrex
    Регистрация
    07.03.2009
    Адрес
    Soligorsk, Belarus
    Сообщений
    96,349
    Вес репутации
    3019
    Удалите в МВАМ
    Код:
    Заражённые ключи в реестре:
    HKEY_LOCAL_MACHINE\SOFTWARE\StimulProfit (Adware.Agent) -> No action taken.
    
    Заражённые параметры в реестре:
    HKEY_CURRENT_USER\Software\Microsoft\idln2 (Malware.Trace) -> Value: idln2 -> No action taken.
    HKEY_CURRENT_USER\Software\Microsoft\bk (Malware.Trace) -> Value: bk -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\139.91.222.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 139.91.222.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\128.111.48.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 128.111.48.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\128.130.56.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 128.130.56.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\128.130.60.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 128.130.60.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\141.202.248.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 141.202.248.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\149.101.225.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 149.101.225.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\150.70.93.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 150.70.93.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\155.35.248.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 155.35.248.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\162.40.10.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 162.40.10.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\165.160.15.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 165.160.15.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\166.70.98.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 166.70.98.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\18.85.2.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 18.85.2.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\188.93.8.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 188.93.8.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\192.150.94.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 192.150.94.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\193.0.6.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 193.0.6.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\193.1.193.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 193.1.193.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\193.110.109.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 193.110.109.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\193.17.85.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 193.17.85.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\193.193.194.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 193.193.194.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\193.24.237.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 193.24.237.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\193.66.251.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 193.66.251.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\193.69.114.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 193.69.114.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\193.71.68.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 193.71.68.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\194.0.200.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 194.0.200.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\194.109.142.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 194.109.142.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\194.112.106.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 194.112.106.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\194.206.126.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 194.206.126.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\194.33.180.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 194.33.180.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\195.137.160.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 195.137.160.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\195.146.235.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 195.146.235.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\195.2.240.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 195.2.240.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\195.210.42.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 195.210.42.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\195.55.72.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 195.55.72.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\195.64.225.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 195.64.225.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\195.70.37.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 195.70.37.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\198.6.49.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 198.6.49.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\199.203.243.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 199.203.243.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\203.160.188.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 203.160.188.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\204.14.90.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 204.14.90.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\205.178.145.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 205.178.145.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\205.227.136.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 205.227.136.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\207.44.154.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 207.44.154.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\207.46.18.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 207.46.18.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\207.46.20.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 207.46.20.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\207.46.232.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 207.46.232.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\207.66.0.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 207.66.0.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\208.79.250.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 208.79.250.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\209.124.55.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 209.124.55.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\209.157.69.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 209.157.69.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\209.160.22.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 209.160.22.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\209.216.46.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 209.216.46.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\209.51.167.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 209.51.167.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\209.62.112.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 209.62.112.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\209.62.68.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 209.62.68.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\209.87.209.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 209.87.209.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\212.47.219.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 212.47.219.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\212.67.88.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 212.67.88.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\212.72.62.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 212.72.62.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\212.8.79.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 212.8.79.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\213.133.34.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 213.133.34.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\213.171.218.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 213.171.218.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\213.198.89.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 213.198.89.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\213.220.100.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 213.220.100.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\213.31.172.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 213.31.172.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\216.10.192.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 216.10.192.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\216.12.145.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 216.12.145.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\216.239.122.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 216.239.122.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\216.49.94.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 216.49.94.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\216.55.183.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 216.55.183.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\216.99.133.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 216.99.133.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\217.106.234.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 217.106.234.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\217.16.16.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 217.16.16.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\217.170.21.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 217.170.21.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\217.174.103.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 217.174.103.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\38.113.1.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 38.113.1.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\62.14.249.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 62.14.249.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\62.146.66.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 62.146.66.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\62.189.194.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 62.189.194.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\62.213.110.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 62.213.110.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\62.75.163.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 62.75.163.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\62.75.216.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 62.75.216.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\63.85.36.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 63.85.36.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\64.128.133.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 64.128.133.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\64.13.134.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 64.13.134.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\64.202.189.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 64.202.189.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\64.246.4.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 64.246.4.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\64.41.142.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 64.41.142.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\64.41.151.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 64.41.151.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\64.66.190.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 64.66.190.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\64.78.182.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 64.78.182.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\65.175.38.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 65.175.38.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\65.55.184.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 65.55.184.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\65.55.240.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 65.55.240.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\66.249.17.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 66.249.17.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\66.77.70.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 66.77.70.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\67.134.208.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 67.134.208.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\67.15.103.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 67.15.103.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\67.19.34.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 67.19.34.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\67.192.135.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 67.192.135.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\67.225.206.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 67.225.206.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\67.227.172.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 67.227.172.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\68.177.102.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 68.177.102.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\69.162.79.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 69.162.79.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\69.18.148.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 69.18.148.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\69.20.104.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 69.20.104.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\69.57.142.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 69.57.142.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\69.93.226.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 69.93.226.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\70.84.211.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 70.84.211.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\72.232.246.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 72.232.246.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\72.32.125.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 72.32.125.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\72.32.70.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 72.32.70.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\74.208.158.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 74.208.158.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\74.208.20.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 74.208.20.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\74.50.0.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 74.50.0.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\74.52.233.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 74.52.233.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\74.55.40.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 74.55.40.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\75.125.29.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 75.125.29.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\75.125.82.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 75.125.82.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\78.108.86.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 78.108.86.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\78.137.164.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 78.137.164.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\78.47.87.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 78.47.87.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\79.125.5.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 79.125.5.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\80.153.193.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 80.153.193.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\80.190.130.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 80.190.130.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\80.190.154.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 80.190.154.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\80.237.132.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 80.237.132.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\80.86.107.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 80.86.107.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\81.176.66.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 81.176.66.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\81.24.35.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 81.24.35.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\82.117.238.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 82.117.238.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\82.151.107.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 82.151.107.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\82.165.103.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 82.165.103.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\82.98.86.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 82.98.86.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\83.202.175.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 83.202.175.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\83.222.23.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 83.222.23.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\83.222.31.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 83.222.31.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\83.223.117.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 83.223.117.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\84.40.30.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 84.40.30.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\85.17.210.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 85.17.210.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\85.214.106.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 85.214.106.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\85.255.19.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 85.255.19.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\85.31.222.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 85.31.222.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\87.106.242.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 87.106.242.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\87.106.254.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 87.106.254.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\87.230.79.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 87.230.79.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\87.238.48.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 87.238.48.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\87.242.74.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 87.242.74.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\87.242.79.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 87.242.79.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\88.221.119.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 88.221.119.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\89.111.176.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 89.111.176.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\89.202.149.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 89.202.149.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\89.202.157.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 89.202.157.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\90.156.159.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 90.156.159.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\90.183.101.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 90.183.101.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\91.121.97.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 91.121.97.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\91.199.212.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 91.199.212.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\91.209.196.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 91.209.196.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\92.123.155.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 92.123.155.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\92.53.106.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 92.53.106.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\93.184.71.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 93.184.71.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\94.23.206.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 94.23.206.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\94.236.0.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 94.236.0.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\95.140.225.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 95.140.225.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\74.55.74.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 74.55.74.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\75.125.185.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 75.125.185.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\174.120.186.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 174.120.186.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\208.43.71.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 208.43.71.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\74.53.70.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 74.53.70.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\74.86.232.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 74.86.232.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\74.54.139.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 74.54.139.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\174.133.38.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 174.133.38.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\174.120.185.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 174.120.185.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\174.120.184.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 174.120.184.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\74.54.130.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 74.54.130.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\74.54.46.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 74.54.46.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\75.125.189.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 75.125.189.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\75.125.43.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 75.125.43.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\74.86.125.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 74.86.125.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\75.125.212.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 75.125.212.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\207.44.254.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 207.44.254.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\83.102.130.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 83.102.130.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\87.242.75.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 87.242.75.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\81.176.67.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 81.176.67.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\188.40.74.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 188.40.74.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\208.43.44.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 208.43.44.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\62.67.184.0,255.255.255.0,172.16.2.0,1 (TCPRoute.Hijack) -> Value: 62.67.184.0,255.255.255.0,172.16.2.0,1 -> No action taken.
    
    Объекты реестра заражены:
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Main\Default_Page_URL (Hijack.StartPage) -> Bad: (http://webalta.ru) Good: (http://www.google.com/) -> No action taken.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main\Default_Page_URL (Hijack.StartPage) -> Bad: (http://webalta.ru) Good: (http://www.google.com/) -> No action taken.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main\Start Page (Hijack.StartPage) -> Bad: (http://webalta.ru) Good: (http://www.google.com/) -> No action taken.
    
    Заражённые файлы:
    e:\system volume information\_restore{83a134ef-7960-458e-b72b-9508c9c66984}\RP27\A0019970.exe (Malware.Packer.Gen) -> No action taken.
    e:\system volume information\_restore{83a134ef-7960-458e-b72b-9508c9c66984}\RP28\A0027983.exe (Malware.Packer.Gen) -> No action taken.
    e:\system volume information\_restore{83a134ef-7960-458e-b72b-9508c9c66984}\RP28\A0027968.exe (Malware.Packer.Gen) -> No action taken.
    Microsoft MVP 2012-2016 Consumer Security
    Microsoft MVP 2016 Reconnect

  6. #5
    Visiting Helper Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Аватар для light59
    Регистрация
    14.07.2008
    Адрес
    Пермь
    Сообщений
    5,492
    Вес репутации
    589
    Что с проблемами?

  7. #6
    Junior Member Репутация
    Регистрация
    28.12.2010
    Сообщений
    20
    Вес репутации
    26
    light59
    банер был удален ещё при первичном лечении Cure It.

    сейчас по ощущениям всё в норме. диспетчер задач, TCP/IP вроде работают

    может ещё разок логи выложить?

    p.s. объясню, почему я так щепетилен...
    дело в том, что я занимаюсь програмным ремонтов компьютеров в малом городе с население 8000 человек и практически полным отсутствием компьютерной грамотности.

    мамы детей, которые любят порно, не хотят в это (в любовь детей к порно) верить
    им проще поверить, что я специально засылаю на их компы злые вирусы, которые после определенного времени блокируют винду.

    мне конечно не составляет труда напустить пыли в глаза и рассказать какой я супер спец и как я им там всё чищу круто.
    но есть ещё совесть) поэтому чисто для себя хочу быть уверен в том, что от меня забирают действительно чистый компьютер (насколько это возможно)
    Последний раз редактировалось Forest Gump; 24.01.2011 в 15:29. Причина: добавил

  8. #7
    Visiting Helper Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Аватар для light59
    Регистрация
    14.07.2008
    Адрес
    Пермь
    Сообщений
    5,492
    Вес репутации
    589
    смысла нет

    Добавлено через 27 минут

    ХОтите, повторяйте Нам минуту на просмотр не жалко

    Добавлено через 6 минут

    Цитата Сообщение от Forest Gump Посмотреть сообщение
    мамы детей, которые любят порно, не хотят в это (в любовь детей к порно) верить
    им проще поверить, что я специально засылаю на их компы злые вирусы, которые после определенного времени блокируют винду.
    А вы им про статью 273 УК РФ расскажите. Может как-то по другому думать начнут.
    Последний раз редактировалось light59; 24.01.2011 в 16:01. Причина: Добавлено

  9. #8
    Junior Member Репутация
    Регистрация
    28.12.2010
    Сообщений
    20
    Вес репутации
    26
    господа хелперы..
    я ступил
    интернет всё-таки не работает.
    метод подключения - vpn-подключение через кабельный коаксиальный модем.
    сервер провайдера не пингуется.

    пробовал WinsockFix
    затем
    netsh winsock reset
    ещё
    netsh int ip reset c:\resetlog.txt

    а так же 14 и 15 пункты "восстановления системы" AVZ

    вот теперь думаю, пробовать ли пункт 18?)


    при попытке поднять vpn-подключение выдает ошибку 800 - сервер не доступен
    попровал 18 пункт - не помогло
    Последний раз редактировалось Forest Gump; 25.01.2011 в 12:34. Причина: добавил

  10. #9
    Cybernetic Helper Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация
    Регистрация
    29.12.2008
    Сообщений
    48,318
    Вес репутации
    953

    Итог лечения

    Статистика проведенного лечения:
    • Получено карантинов: 1
    • Обработано файлов: 16
    • В ходе лечения вредоносные программы в карантинах не обнаружены


  • Уважаемый(ая) Forest Gump, наши специалисты оказали Вам всю возможную помощь по вашему обращению.

    В целях поддержания безопасности вашего компьютера настоятельно рекомендуем:

     

     

    Чтобы всегда быть в курсе актуальных угроз в области информационной безопасности и сохранять свой компьютер защищенным, рекомендуем следить за последними новостями ИТ-сферы портала Anti-Malware.ru:

     

     

    Anti-Malware VK

     

    Anti-Malware Telegram

     

     

    Надеемся больше никогда не увидеть ваш компьютер зараженным!

     

    Если Вас не затруднит, пополните пожалуйста нашу базу безопасных файлов.

  • Похожие темы

    1. Проверка логов после лечения
      От tryndec в разделе Помогите!
      Ответов: 3
      Последнее сообщение: 25.03.2012, 18:38
    2. Проверка логов после лечения
      От tryndec в разделе Помогите!
      Ответов: 5
      Последнее сообщение: 08.12.2011, 13:55
    3. Проверка логов после лечения.
      От Leo27 в разделе Помогите!
      Ответов: 9
      Последнее сообщение: 08.09.2011, 21:58
    4. Проверка логов после лечения Cure It.
      От Forest Gump в разделе Помогите!
      Ответов: 5
      Последнее сообщение: 26.01.2011, 15:32
    5. Проверка логов после чистки
      От SirMax в разделе Помогите!
      Ответов: 8
      Последнее сообщение: 25.03.2009, 23:39

    Свернуть/Развернуть Ваши права в разделе

    • Вы не можете создавать новые темы
    • Вы не можете отвечать в темах
    • Вы не можете прикреплять вложения
    • Вы не можете редактировать свои сообщения
    •  
    Page generated in 0.01250 seconds with 16 queries