RevivalTech

For sure, just thought of how it'd be a possible solution to slow support times such as this. Decetralized, localized support kind of thing. Know what I mean?

I sure wish there was more focus on reviving the TechBench program. Seems a decentralized support network of repair shops and in home repair techs may be assist better with mb customers that'd like responses sooner that 3 - 7 WEEKS [edit: misread, days]. That's very strange for such a large company... Seems the focus is MSP only lately.

What's the current official guidance on reselling license keys and managing the malwarebytes coverage for smb and residential clients in a shop environment? Just noticed I can't inject license key with my powershell script through rmm. Installs mb5 but no license passed and activated.

But you didn't answer the question haha. Is https://downloads.malwarebytes.com/file/mb5_offline the official offline installer also updated or does the update only come via the update function of the installed version?

Thank you very much!

Had a recent attack of some nature, that I believe to be some sort of DDoS. Since then I have gotten a warning from malwarebytes browser guard, could you please take a look at my site on your backend? revivaltechsolutions.com Thank you!

I agree. Does MB want us users to help beta test, or not? haha. I too would like to test beta. I installed to test and report and now just noticed it removed my subscription I had entered previously. Strange bug I just noticed. Try to enter my license key and it's not working, unknown error.

I really wish there was an in between, most logically something tied in with the toolset membership imho. I like my RMM, function and price. I don't know if I can afford the MB MSP system, and it'd be redundant, or missing features my current PSA/RMM vender is providing... Would be nice to see more friendly integration from MB with other longtime RMM solutions. Cheers!

Hmmm don't have the issue with the v4 MB program, so I'd suspect this isn't desired behavior. Yeeaaa, I used to be in that camp too, but have seen many issues with immediate updates, and also many complains of updates randomly through the week. Currently security patches are held to weekly on Sundays, and feature monthly on first Sundays. All members are taught to turn on machines sundays if they aren't already, to not deal with updates monday or later in the week. Curious what the devs say on this one.

Well yea, I know how to hit ignore haha. I feel it should detect the managed by admin or policy group I forget which is called, ya know?

Man, I actually had this search malware, as well as a search baron one, and was unable to remove entirely with MB. cleanmymac still found issues allegedly, but client didn't want to buy the program to attempt repair and I just wiped machine and start fresh install. But it was worse mac malware I've run into in my 20yrs of computering haha. Any malwarebytes tech some experience with these on mac?

Why not just have the top left menu options in the settings nav on the left? Was looking for sub info, and took a sec to find under the down arrow top right.

I know you folks have your own MSP solution nowadays, but it would be nice to get a little more integration with the others, for those who prefer to stay on them for their fleet of clients, yet still are a TechBench member and use the software including end user MB active tool. Cheers!

No pentesting. just notice alert of of no where. Now continuing on, I noticed it pops up immediately after selecting the "view settings" link in mb where it's alerting windows updates are off and I should address it. They are not off, they are managed by my RMM via I believe a group policy. So I think we may have found an additional side effect to the newly introduced false positive of win updates being off. This is what I was trying to say previously too, that I need to make a post / ticket on. I noticed all my machines having a mb alert that windows updates are off, but when I click view settings it immediately turns green and says everything's alright then pulls up win updates settings, that is all up to date and fine. Well on this one desktop, when I click view settings, it turns green, opens win update settings, and also pops alert it block the windows control thing. I'll try to grab screen shot of that specific alert, but I thought the log dump would help us get moving in the direction of figuring something out.

Yup, read your bio which is what made me think to mention I have similar long term experience, and am here to test things out alternate enhanced settings! haha. Precisely! This is my personal desktop we're reviewing lol. So still very curious if this has come up yet and is a KNOWN false positive or not. If not, time to figure it out together yea?!

For sure for sure, but how would I help with future default development by not tinkering with moooore settings! haha. P.S. Can't tell if I've presented myself as a 20yr long IT guy, malwarebytes reseller, and current MSP... Heads up.

Ahhhhh, I didn't recent decide to try out the "use expert systems' option. Sounds pretty expert! haha. Well, still curious why it's a false positive, if anyone has more in depth answers! Looking to enhance things past laymen defaults when ever possible. UPDATE: Actually, I hadn't turned out that setting on this machine I got the alert yet.... Don't have rootkit of expert systems on... Nor block pen testing.... UPDATE: Seems it pops the block alert up after I hit view settings for software updates, when alerting me they're turned off. This is new alert I've seen last weekish that I believe is a false positive because I have patch management RMM on my machines. Been meaning to post about here and make bug report support ticket to find out what's up, and likely alert the detection needs a tweaking for when the win updates are managed by an RMM / group policy...

Malwarebytes www.malwarebytes.com -Log Details- Protection Event Date: 3/25/22 Protection Event Time: 2:52 PM Log File: 0dd748fe-ac75-11ec-8a7f-04d4c454afd5.json -Software Information- Version: 4.5.6.180 Components Version: 1.0.1634 Update Package Version: 1.0.52850 License: Premium -System Information- OS: Windows 11 (Build 22000.588) CPU: x64 File System: NTFS User: System -Exploit Details- File: 0 (No malicious items detected) Exploit: 1 Malware.Exploit.Agent.Generic, explorer.exe, Blocked, 0, 392684, 0.0.0, , -Exploit Data- Affected Application: Windows Control Panel Protection Layer: Application Behavior Protection Protection Technique: Exploit Office WMI abuse blocked File Name: explorer.exe URL: (end)

Yes yes, that is right along the lines that I was thinking! Haven't gotten too specific, just had a client with a sus link, and I couldn't remember VT at first, so when I finally did I thought it would have been handy to have it built into the web guard extension, or now the idea of the toolset perhaps. Yea, listen to you twos I realize more how large VT is and the comparison to MB. I think I had a opposite perception haha. So I understand now that it wouldn't be a clone, but having something similar within the MB fam of toolsets could be nice value add addition I think. Much appreciated for chiming in!

Right right. Perhaps it's a paid unlock feature, yada yada. Could be worked in there somehow as a value add I'm sure. That all said, would certainly make send to have something in TechBench tool set thing. So far that's been super useful for us at our shop, wouldn't mind seeing more little features pop up there! haha

lol hmmmm idk about all that. Strange negative anti-work responses to this idea lol. I did not expect this type of reaction.... Not sure how it would bloat the extension, would it not be pulling from a main page that hosts the frontend interface, and simply loaded through eh extension window? Also, let's be imaginative! What if the URL scanner in the extension was just an input submission box? No waiting! I find a client or myself with a possible bad link, so I simply raise mouse to the top right of the window I have open on all computers constantly to access the web browser extension, and I click, paste, bang! In a few minutes I get an email notifying me that the url scan has completed and is ready to show me the report! That'd be pretty lightweight and doable I'd imagine.... lol. Anywho, sounds like this is pretty hard no feature request, understood. Moving right along.... P.S. Try not to have failure to launch notions worried about being cursed at and uninstalling. What's' the metrics on current malwarebytes installs? Think you're doing pretty well on people keeping and enjoying the software. Unlikely a url scanner taking a little bit of time would full turn the level of user that would know about and thus use such a feature.... Cheers! 🍻

Gooootcha. Well, perhaps a MB style scanner could be a useful manual tool so you don't have to just "go to it".

lol lol dang, shots fired eh?! Just me, or aren't they already competing with them? Also, just saying to have a MB style url scanner, with as much as they could offer. This is a idea for a feature add so I don't have to pull up the link for virustotal necessarily, not a recommendation to make the feature significantly better that VT or anything, ya know? Perhaps I don't know how gigantic and hardcore VT is also? have to check them out more in depth...

Would be really awesome tool to have in the MBToolSet or the extension. Inspiration for it here: https://www.virustotal.com/gui/url/a06a0102b8cec733de99ec8cdfd9395619855dbc343b4c9c22e8ce61c1cf5f13?nocache=1

Or, built into the browser extension, free or premium....