macrofireball Posted May 26, 2015 ID:965184 Share Posted May 26, 2015 Good morning, I have just installed a new piece of software I have purchased from somebody I know to be reputable. When attempting to launch the software, Malware Antibytes (Corporate) is adding this to my Quarantine folder and is report this is a threat: Exploit.Drop.70. I have attached the exe and my log as instructed. Please let me know if you require any further information. Best wishes,Markmbam-log-2015-05-26 (09-04-42).txtWebContentStudio.zip Link to post Share on other sites More sharing options...
Staff miekiemoes Posted May 26, 2015 Staff ID:965187 Share Posted May 26, 2015 Hi, Above log doesn't contain any detections. Mind to recheck your Malwarebytes logs and reupload the one where it displays this detection?Thanks! Link to post Share on other sites More sharing options...
macrofireball Posted May 26, 2015 Author ID:965203 Share Posted May 26, 2015 Hi there, It is only when I attempt to load the Web Content Studio app do I hit this issue. I scanned my drive using the steps outlined in the read before posting thread and I couldn't find any issues. Let me know if you need anything else. Cheers,Mark Link to post Share on other sites More sharing options...
Staff miekiemoes Posted May 26, 2015 Staff ID:965204 Share Posted May 26, 2015 Hi, Do you have the protection module enabled? If so, please disable it.Then launch the Web Content Studio app once again, keep it running and scan with malwarebytes again. Hopefully that triggers it again and is listed in the log.The log is needed because we can't reproduce detection on the webcontentstudio file itself.Can you also please make sure it *IS* the file hitting that you attached? Thanks! Link to post Share on other sites More sharing options...
macrofireball Posted May 26, 2015 Author ID:965214 Share Posted May 26, 2015 Hi there, I have carried out the steps you requested but still cannot get Malwarebytes to trigger the issue and report it to the log. Is there anything else I can try? Cheers,Mark Link to post Share on other sites More sharing options...
Staff miekiemoes Posted May 26, 2015 Staff ID:965215 Share Posted May 26, 2015 Can you just verify once again it is really detecting the WebcontentStudio.exe file when you launch it? Link to post Share on other sites More sharing options...
macrofireball Posted May 26, 2015 Author ID:965223 Share Posted May 26, 2015 Hi there, I think it must be the exe as this is what is getting added to the Quarantine tab, as per the screen shot I have included below. This is the behaviour I am encountering each time I try and load the Web Content Studio application when file system protection enabled. Best wishes,Mark Link to post Share on other sites More sharing options...
Staff miekiemoes Posted May 26, 2015 Staff ID:965226 Share Posted May 26, 2015 Thanks Mark, We will figure it out though - it might take some time, since we can't reproduce this, so we need to do some additional testing.Can you give me the full installer of this webcontentstudio app? (just give the link to the webpage where I can download it) Link to post Share on other sites More sharing options...
macrofireball Posted May 26, 2015 Author ID:965228 Share Posted May 26, 2015 Sure! Can you send this to you directly? If so, can you PM me with your contact details. Cheers,Mark Link to post Share on other sites More sharing options...
Staff miekiemoes Posted May 26, 2015 Staff ID:965234 Share Posted May 26, 2015 Done Link to post Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now