unknown1 Posted May 17, 2022 ID:1516020 Share Posted May 17, 2022 Hi there, I'm following on from another topic posted below: I appear to have had a very similar notification to this hit me late on Sunday and yesterday. Malwarebytes blocked an outbound connection "category: trojan" for Steam.exe attempting a connection to IP Address: 8.0.0.0 Port: 27036. Thanks to @AdvancedSetup for the comprehensive instructions on that topic. I followed this closely and for me, it appears that Microsoft Safety Scanner (MSS) has found and potentially removed something with the following message; "Threat Detected: VirTool:Win32/DefenderTamperingRestore and Removed!" . I've attached one of the original MalwareBytes logs plus the MSERT.log too for my machine, as well as the last time I received a MalwareBytes threat detection. Would someone mind taking a look at the attached please? I noted that my hardware seemed to play up on Sunday which led me to investigate further (my display seemed to stop working and that issue continued when trying to reboot up so I left it, then Monday evening it booted fine). My PC is about 7 or 8 years old so at first I put it to its age (which I suppose it could still be), but then I thought perhaps the hardware issues plus the alerts might be linked... Do you have any further suggestions to try to weed out any other threats that might be lurking? Would there be any benefit in me running the Microsoft Safety Scanner again? I didn't get any alerts on boot up of my machine this evening, but I'm not sure if that means it's been cleaned as I received another MalwareBytes alert today at about 8AM after MSS ran a lot earlier this morning... Thanks in advance for your help and expertise. 🙂 MalwareBytes Last Log.txt MalwareBytes Log.txt msert.log Link to post Share on other sites More sharing options...
unknown1 Posted May 17, 2022 Author ID:1516021 Share Posted May 17, 2022 Sorry I forgot to include the most recent Threat Scan log I've run as well. Please see attached. ThreatScan.txt Link to post Share on other sites More sharing options...
unknown1 Posted May 17, 2022 Author ID:1516023 Share Posted May 17, 2022 And the FRST and Addition logs too. Addition.txt FRST.txt Link to post Share on other sites More sharing options...
Root Admin Solution AdvancedSetup Posted May 17, 2022 Root Admin Solution ID:1516026 Share Posted May 17, 2022 Good day @unknown1 This looks to have been a False Positive. Please open Malwarebytes, go to Settings, General and check for updates. Let us know if that corrects the issue Thanks Link to post Share on other sites More sharing options...
unknown1 Posted May 18, 2022 Author ID:1516222 Share Posted May 18, 2022 Hi @AdvancedSetup, I can confirm updating Malwarebytes has resolved it now. Good to know that it appears to be a false positive. Thanks for your help. Link to post Share on other sites More sharing options...
Root Admin AdvancedSetup Posted May 18, 2022 Root Admin ID:1516223 Share Posted May 18, 2022 You're quite welcome. Take care and stay safe out there. Recommendations to help protect you and your computer data Recommend using a Password Manager for all websites, etc. that require a password. Never use the same password on more than one site.https://www.howtogeek.com/240255/password-managers-compared-lastpass-vs-keepass-vs-dashlane-vs-1password/ Make sure you're backing up your files https://forums.malwarebytes.com/topic/136226-backup-software/ Keep all software up to date - PatchMyPC - https://patchmypc.com/home-updater#download Keep your Operating System up to date and current at all times - https://support.microsoft.com/en-us/windows/windows-update-faq-8a903416-6f45-0718-f5c7-375e92dddeb2 Further tips to help protect your computer data and improve your privacy: https://forums.malwarebytes.com/topic/258363-tips-to-help-protect-from-infection/ Please consider installing the following Content Blockers for your Web browsers if you haven't done so already. This will help improve overall security Malwarebytes Browser Guard Google Chrome: https://chrome.google.com/webstore/detail/malwarebytes-browser-guar/ihcjicgdanjaechkgeegckofjjedodee Microsoft Edge: https://support.malwarebytes.com/hc/en-us/articles/4413298736787-Install-Malwarebytes-Browser-Guard-on-Microsoft-Edge-browser Mozilla Firefox: https://addons.mozilla.org/en-US/firefox/addon/malwarebytes/ uBlock Origin Google Chrome: https://chrome.google.com/webstore/detail/ublock-origin/cjpalhdlnbpafiamejdnhcphjbkeiagm Microsoft Edge: https://microsoftedge.microsoft.com/addons/detail/ublock-origin/odfafepnkmbhccpbejgmiehpchacaeak Mozilla Firefox: https://addons.mozilla.org/en-US/firefox/addon/ublock-origin Further reading if you like to keep up on the malware threat scene: Malwarebytes Blog https://blog.malwarebytes.com/ Hopefully, we've been able to assist you with correcting your system issues. Thank you for using Malwarebytes Link to post Share on other sites More sharing options...
Root Admin AdvancedSetup Posted May 19, 2022 Root Admin ID:1516362 Share Posted May 19, 2022 Glad we could help. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this topic with your request. This applies only to the originator of this thread. Other members who need assistance please start your own topic in a new thread. Please review the following to help you better protect your computer and privacy Tips to help protect from infection Thank you Link to post Share on other sites More sharing options...
Recommended Posts