Jump to content
spenny

Trojan url blocked from Steam.exe 2 times

Recommended Posts

Hey,

This doesn't happen consistently, but when it did it was after a restart as steam was booting.

I'd like to know what to do with Steam... or why this is happening and if its falsely blocking

Any info will be much appreciated, thanks!

Spoiler

Malwarebytes
www.malwarebytes.com

-Log Details-
Protection Event Date: 3/26/20
Protection Event Time: 5:39 PM
Log File: 51f10052-6faa-11ea-9159-0c9d92651dbf.json

-Software Information-
Version: 4.1.0.56
Components Version: 1.0.848
Update Package Version: 1.0.21410
License: Premium

-System Information-
OS: Windows 10 (Build 18362.720)
CPU: x64
File System: NTFS
User: System

-Blocked Website Details-
Malicious Website: 1
, C:\Program Files (x86)\Steam\Steam.exe, Blocked, -1, -1, 0.0.0

-Website Data-
Category: Trojan
Domain: steam.naeu.qtlglb.com.cdn20.com
IP Address: 157.185.146.129
Port: 80
Type: Outbound
File: C:\Program Files (x86)\Steam\Steam.exe

(end)

Spoiler

Malwarebytes
www.malwarebytes.com

-Log Details-
Protection Event Date: 3/24/20
Protection Event Time: 11:38 PM
Log File: 1e7b3c76-6e4a-11ea-80bf-0c9d92651dbf.json

-Software Information-
Version: 4.1.0.56
Components Version: 1.0.848
Update Package Version: 1.0.21322
License: Premium

-System Information-
OS: Windows 10 (Build 18362.720)
CPU: x64
File System: NTFS
User: System

-Blocked Website Details-
Malicious Website: 1
, C:\Program Files (x86)\Steam\Steam.exe, Blocked, -1, -1, 0.0.0

-Website Data-
Category: Trojan
Domain: steam.naeu.qtlglb.com.cdn20.com
IP Address: 157.185.146.129
Port: 80
Type: Outbound
File: C:\Program Files (x86)\Steam\Steam.exe

(end)

 

Share this post


Link to post
Share on other sites

***This is an automated reply***

Hi,

Thanks for posting in the Malwarebytes for Windows Help forum.

 

If you are having technical issues with our Windows product, please do the following: 

Spoiler

If you haven’t already done so, please run the Malwarebytes Support Tool and then attach the logs in your next reply:

NOTE: The tools and the information obtained is safe and not harmful to your privacy or your computer, please allow the programs to run if blocked by your system.

  1. Download Malwarebytes Support Tool
  2. Once the file is downloaded, open your Downloads folder/location of the downloaded file
  3. Double-click mb-support-X.X.X.XXXX.exe to run the program
    • You may be prompted by User Account Control (UAC) to allow changes to be made to your computer. Click Yes to consent.
  4. Place a checkmark next to Accept License Agreement and click Next
  5. You will be presented with a page stating, "Get Started!"
  6. Click the Advanced tab on the left column

    mbst_get_started.jpg
     
  7. Click the Gather Logs button

    mbst_advanced_gather_logs.jpg
     
  8. A progress bar will appear and the program will proceed with getting logs from your computer

    mbst_getting_logs.jpg
     
  9. Upon completion, a file named mbst-grab-results.zip will be found on your Desktop. Click OK

    mbst_log_saved_desktop.jpg
     
  10. Please attach the file in your next reply. Before submitting your reply, be sure to enable "Notify me of replies" like so:

     notify me.jpeg  

Click "Reveal Hidden Contents" below for details on how to attach a file:
 

Spoiler

To save attachments, please click the link as shown below. You can click and drag the files to this bar or you can click the choose files, then browse to where your files are located, select them and click the Open button.

mb_attach.jpg.220985d559e943927cbe3c078b
 

One of our experts will be able to assist you shortly.

 

If you are having licensing issues, please do the following: 

Spoiler

For any of these issues:

  • Renewals
  • Refunds (including double billing)
  • Cancellations
  • Update Billing Info
  • Multiple Transactions
  • Consumer Purchases
  • Transaction Receipt

Please contact our support team at https://support.malwarebytes.com/hc/en-us/requests/new to get help

If you need help looking up your license details, please head here: Find my premium license key

 

 

Thanks in advance for your patience.

-The Malwarebytes Forum Team

 

Share this post


Link to post
Share on other sites

Greetings,

It is likely that one of the games installed within Steam was attempting to connect to an IP address which is blocked by Malwarebytes.  It is common for IPs/servers to be shared by multiple websites/domains and it is very possible that one of the game servers that one of your games attempted to connect to is also known for hosting one or more malicious sites even though the game server itself is completely clean/safe.  However, if you believe this to be a false positive then please read the information posted in this topic as well as this topic and report the issue by creating a new topic in the Website Blocking false positives area by clicking here and a member of the Research team will review the block and investigate the site to determine whether or not it is an FP.

With that said, if you suspect that your system may be infected or you just want the peace of mind of knowing for certain then you may read and follow the instructions in this topic and then create a new topic in our malware removal area by clicking here and one of our malware removal specialists will assist you in checking your system for threats and cleaning them up if found.

I hope this helps and if there is anything else we might assist you with please let us know.

Thanks

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.