Exploit reported but no item in exclude exploit list

[MartiniGM]

Hi,

After installing LSI/Avago/Broadcom MegaRaid Storage Manager and running it  Malwarebytes  3.3 (3.3.1.2183) reports an exploit.

The MegaRaid is a java application and it connects to service running locally with the IP 192.168.232.1.

The explot it detected as "Java malicious inbound socket".

The exclution wizard doesn't show anything:

.

 

I've tried to exclude the MegaRaid Softwares folder and executables (exclude1.png) and turned of two java exploit settings.

 

But the MegaRaid software isn't able to locate the service.

 

Here is the logged explot:

Malwarebytes
www.malwarebytes.com

-Log Details-
Protection Event Date: 11/22/17
Protection Event Time: 12:28 AM
Log File: 9db03b3d-cf13-11e7-8b00-3085a9406ff6.json
Administrator: Yes

-Software Information-
Version: 3.3.1.2183
Components Version: 1.0.236
Update Package Version: 1.0.3316
License: Premium

-System Information-
OS: Windows 10 (Build 17035.1000)
CPU: x64
File System: NTFS
User: System

-Exploit Details-
File: 0
(No malicious items detected)

Exploit: 1
Malware.Exploit.Agent.Generic, , Blocked, [0], [392684],0.0.0

-Exploit Data-
Affected Application: Java
Protection Layer: Application Behavior Protection
Protection Technique: Java malicious inbound socket detected
File Name:
URL:

 

(end)

[vbarytskyy]

Hello @MartiniGM,

EDIT:

It looks like I was able to reproduce this issue. We are looking into what is triggering it, but for the time being, go ahead and follow this workaround: 

1. Turn off just the inbound/outbound settings under Java Protection. (see attached screenshot)
2. Reboot the machine
3. Open MegaRAID Storage Manager, should load up correctly. 

 

 

Thank you

Edited November 22, 2017 by vbarytskyy

[MartiniGM]

Thank you for your answer. I will try your work around.