Jump to content

3.0 anti exploit blocking a site--need help why


Cleatus
 Share

Recommended Posts

Using  3.0 on our mobile squad computers.  They use site www[.]nexportcampus.com        (68.109.246.201)  for training.  they get thru the site just fine, but get to the spot where they actually start the class and 3.0 blocks them with a anti-exploit warning pop up.

I tried adding the siteabove, but we still get the block

 

Any thoughts on what I can do other than turning off anti exploit?

 

I would hope this site is not actually trying to "exploit" us...its training for police...

 

Sorry to bug you about one specific site, but its going to be a big issue on this end

 

 

NOTE:  I have also contacted the site, and hope they can help look into this.

Edited by MysteryFCM
Link disabled
Link to post
Share on other sites

anyone...anyone...bueler...

 

here is the response from the website/training company:

 

Thank you,

I have discussed this with our engineers and I have been told that it is blocking the VBS script when the course window launches. This should only be an issue with Internet Explorer so if you have the option of using another browser that should work.

Failing that you will need to contact their support team to find out how to allow that script to run.

Please keep us updated.

Link to post
Share on other sites

  • 2 months later...
  • Staff

Hi Cleatus,

I am not sure if your issue was already fixed. But for what it's worth, Please open up Malwarebytes application, Go to "Settings" menu on the left->"Protection" Tab->"Advanced Settings" under Exploit Protection. In the window that opens up, uncheck "Disable Internet Explorer VB Scripting" for browsers. Hope that helps. Thanks.

 

screenshot.png

Link to post
Share on other sites

  • 2 months later...

just had one start blocking it again-- even with exploit off--disabling the VB scripting check mark above worked--but is it safe to disable?

 

here is the log:

-Log Details-

Protection Event Date: 7/20/17

Protection Event Time: 11:01 AM

Log File: 

Administrator: Yes

 

-Software Information-

Version: 3.1.2.1733

Components Version: 1.0.160

Update Package Version: 1.0.2405

License: Premium

 

-System Information-

OS: Windows 7 Service Pack 1

CPU: x64

File System: NTFS

User: System

 

-Exploit Details-

File: 0

(No malicious items detected)

 

Exploit: 1

Malware.Exploit.Agent.Generic, , Blocked, [0], [392684],0.0.0

 

-Exploit Data-

Affected Application: Internet Explorer (and add-ons)

Protection Layer: Application Hardening

Protection Technique: Attempt to execute VBScript blocked

File Name: C:\Windows\SysWOW64\vbscript.dll

URL: 

 

 

 

(end)

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.