LooseTurnip

Members
  • Content count

    15
  • Joined

  • Last visited

About LooseTurnip

  • Rank
    New Member
  1. Websites Blocked, Possible Malware?

    Ah, i had figured as much but had never had something like that happen so i figured i'd air on the side of caution and ask, appreciate the reply!
  2. Hi! Recently I've been experiencing website blocked popups from Malwarebytes while playing Don't Starve Together on steam, I posted about this in the Website Blocking section before (My Topic) and was told that the ip had been blocked cause it has been known to distribute malware, and was then told if it was coming from steam to not worry about it so i continued to let malwarebytes block the incoming connections, however continued reports from my Malwarebytes has prompted me to post here. I had wondered if it was an issue from the steam workshop so I uninstalled the game, went into my files and deleted the entire folder for the game along with the mods i had, and reinstalled the game with no mods, and ran into the same issue. I should note that Don't Starve Togehter is the only game I've experienced this with, and that I've ONLY experienced it while browsing Public Servers, not joining them, just browsing, as i usually only play on private servers hosted by friends but recently have been playing on the Klei Entertainment hosted public servers. As a side note any Scan I did came back with no issues, The text files I'm going to attach below will be the 3 seperate occasions on which Malwarebytes has blocked a website and made a log, My most recent Malwarebytes Scan, My Most Recent Adwcleaner Scan, and an FRST + Addition log I've ran prior to posting. I'd also be interested in knowing if this is just something coming from the public server list and if I could safely ignore it and let Malwarebytes do the work with no worries. As always any help or insight would be greatly appreciated. dst.txt dst2.txt dst3.txt Scan.txt FRST.txt Addition.txt AdwCleaner[S4].txt
  3. 109.248.173.76 blocked

    Interesting, I ran a full scan with malwarebytes after to be safe and it seemed to turn up nothing, even if i scanned the executable individually, i figured something might be odd since it said it was an outbound connection from my computer however everything was fine, even double checked with an adwcleaner scan, which came back clean, I guess my other question is, since it was a blocked outbound connection, is there any need to be concerned? thanks for the quick reply aswell!
  4. 109.248.173.76 blocked

    Recently Malwarebytes blocked a couple of outbound connections to websites with no domain from accessing a game i was playing on steam's executable, and I figured I'd just post the logs created here and see what insight someone on the forums might have as to why it was blocked in the first place, Just curious. as a note Malwarebytes did create 2 logs, though I'm not sure what the difference is between them. WebsiteBlocked.txt WebsiteBlocked2.txt
  5. Any need for concern?

    Nope, I'm satisfied, feel free to call this one solved. Thanks Again!
  6. Any need for concern?

    Understood, I'll attach both logs to this, aswell as the zip file MB-Check made. FRST.txt Addition.txt mb-check-results.zip
  7. Any need for concern?

    Alright, attached are the requested FRST and addition logs FRST.txt Addition.txt
  8. Any need for concern?

    Understood! I really appreciate the help I got on the forum over the past few days and am glad i have a satisfactory resolution, I'll get to that as soon as I can! Thanks for all the help Gentleman, Happy Holidays and i hope i didn't make Ya'll pull out too much hair.
  9. Any need for concern?

    So just add steam completely as an exlusion or just the files i currently have quarantined?
  10. Any need for concern?

    I'm slightly confused, just for clarification, you'd like me to uninstall ONLY Avast Cleanup Premium, Not Avast Premier and the task scheduler for it, do i just need to look up those tasks in my file explorer and delete them? and after that do you want me to un-quarantine the IMAGE FILE EXECUTION OPTIONS that i currently have quarantined? that's mainly what I'm confused about, I'm unsure if its Avast's stuff that you want me to remove via malewarebytes OR the IFEO's i currently have listed in my quarantine.
  11. Any need for concern?

    I appreciate the help with my issue, unfortunately with my most recent pc boot up it would appear the same problem PUP's have found their way back onto my Steam launcher, so I've again quarantined it and ran adwcleaner and FRST afterward included is a new log from malwarebytes, adwcleaner and FRST + its addition. Could this be a false positive by any chance, as it always seems to be attaching to the same program? your input is greatly appreciated, I'd hate having to reformat my computer Malwarebytes.txt AdwCleaner[S2].txt FRST.txt Addition.txt
  12. Any need for concern?

    Thanks for the reply! attached is the fixlog created. i would like to note that Malwarebytes still had the PUP in quarantine, however besides running the fix I've not bothered to delete or restore it without further instruction. as always I appreciate the help. Fixlog.txt
  13. Any need for concern?

    Apologies for the triple post, currently unsure if I'm able to edit my previous posts however, Malwarebytes recently scanned and detected the same issue on the same program, Steam, after a fresh install of it, so i worry it may be serious, and as such I've checked the forums some more and seen that a FRST scan may be in order, as such I've done so and will attach the new Malwarebytes Scan along with a the FRST scan and Addition.txt, I realize I'm posting quite a bit however I just want to be safe, sorry. Bytes2.txt Addition.txt FRST.txt
  14. Any need for concern?

    I also subsequently ran Adwcleaner and it removed some files and restarted my computer, here is a log from that aswell! # AdwCleaner 7.0.5.0 - Logfile created on Fri Dec 15 04:42:40 2017 # Updated on 2017/29/11 by Malwarebytes # Database: 12-13-2017.2 # Running on Windows 10 Home (X64) # Mode: scan # Support: https://www.malwarebytes.com/support ***** [ Services ] ***** No malicious services found. ***** [ Folders ] ***** PUP.Optional.Legacy, C:\Users\All Users\Documents\Downloaded Installers PUP.Optional.Legacy, C:\Users\Public\Documents\Downloaded Installers PUP.Optional.SlimCleanerPlus, C:\Users\Frank Rodgers\AppData\Local\slimware utilities inc PUP.Optional.SlimCleanerPlus, C:\Users\Frank Rodgers\AppData\Local\SlimWare Utilities Inc ***** [ Files ] ***** PUP.Optional.Legacy, C:\Windows\SysNative\drivers\swdumon.sys ***** [ DLL ] ***** No malicious DLLs found. ***** [ WMI ] ***** No malicious WMI found. ***** [ Shortcuts ] ***** No malicious shortcuts found. ***** [ Tasks ] ***** No malicious tasks found. ***** [ Registry ] ***** PUP.Optional.SlimCleanerPlus, [Key] - HKLM\SOFTWARE\SlimWare Utilities Inc ***** [ Firefox (and derivatives) ] ***** No malicious Firefox entries. ***** [ Chromium (and derivatives) ] ***** No malicious Chromium entries. ************************* ########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt ##########
  15. Hi, I've used your software for over a year now and I've always loved it, and actually just today got a premium sub! however before i activated it i ran a scan and had some threats show up, and quarantined them, and after checking the forums decided it was in my best interest to delete them completely and do a fresh install of the executable that was infected afterwards, cause i attempted to launch it and it gave me an error message but still launched. anyway, this was my first scan that positively identified something, so i'm gonna post my log from that scan. Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 12/14/17 Scan Time: 5:47 PM Log File: cc6b1d89-e120-11e7-bbe9-d050992ff81d.json Administrator: Yes -Software Information- Version: 3.2.2.2018 Components Version: 1.0.212 Update Package Version: 1.0.3491 License: Free -System Information- OS: Windows 10 (Build 16299.125) CPU: x64 File System: NTFS User: DESKTOP-O75K6L4\Frank Rodgers -Scan Summary- Scan Type: Threat Scan Result: Completed Objects Scanned: 282421 Threats Detected: 4 Threats Quarantined: 4 Time Elapsed: 1 min, 7 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Detect PUM: Detect -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 2 PUP.Optional.IFEO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\STEAM.EXE, Quarantined, [8731], [239347],1.0.3491 PUP.Optional.IFEO, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\STEAM.EXE, Quarantined, [8731], [239347],1.0.3491 Registry Value: 2 PUP.Optional.IFEO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\STEAM.EXE|DEBUGGER, Quarantined, [8731], [239347],1.0.3491 PUP.Optional.IFEO, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\STEAM.EXE|DEBUGGER, Quarantined, [8731], [239347],1.0.3491 Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 0 (No malicious items detected) File: 0 (No malicious items detected) Physical Sector: 0 (No malicious items detected) (end) I've since activated the key and did a full scan with rootkits enabled, and also did a full scan with Avast antivirus, and came up with no issues, even after a computer restart. So, my question is, should I be concerned, and how does this usually infect a computer? Not that i don't trust your software, and I've not gone to any weird websites since the scan before this one. Lastly is there anything more i should be doing to see if I have anything else that might be malicious and need removing?