Hi, I am a new user and I did read some of the threads that discussed Malwarebytes blocking Tixati because of malware.
My issue is Malwarebytes is telling me the Tixati.exe has a trojan imbedded. I do want to believe that Tixati is virus etc free but how do I know that it is?
Also, I do want to include it in the exceptions list but very wary to do so. Any advice?
Cheers.

What is calling the Tixati a trojan and which trojan?

Hi, Apologies for a really slow reply!
So, the following information should help. Pity I couldn't attach a screen capture file!

File: Tixati.exe
IP Address: x.x.x.x
Category: Fraud
Type: Outbound Connection
Port: 6881

I hope this clarifies the issue.
Thank you!

Also, I forgot to mention.... it is Malwarebytes blocking Tixati.

To me it looks like Malwarebytes is just detecting a transfer that you are seeding with some blacklisted IP

This is False Positive, just scan Tixati in Virus Total and is done!

So, the saga continues! I decided to allow it through Malwarebytes & the next day my PC behaved exactly like it was heavily infested with virus.
Malwarebytes wouldn't scan, so I downloaded Kaspersky Virus scan & after 7.30hrs, I decided that it was not working either. I then decided to use RevoUninstaller to uninstall Tixati, which didnt work either but I was able to remove Tixati through windows uninstall....go figure! I then scanned using Kaspersky Cloud, which finally worked & found no infection. The next day my PC is behaving itself & Malwarebytes is working perfectly again, so I decided to give Tixati another go....reinstalled it & unfortunately it wont download anything, while blocking the internet connection at the same time. Then Malwarebytes pops up again & tells me Tixati is a Trojan, again!
I did try the guest suggestion & ran it through VirusTotal, of course it came up clean, but it doesnt fix my problem with tixati blocking my internet connection & not downloading & showing up as a trojan.
Any other suggestions before I ditch Tixati & go back to a different easier functioning P2P software??
Cheers!

I think this is more a problem with Malwarebytes than Tixati. I'd remove Malwarebytes and try again. Where did you get the Tixati installer from?

Hi,  I too have been getting insane slow downs while running Tixati.  I also just noticed Malwarebytes was blocking outgoing connections from Tixati.  

I believe the slow down is some sort of conflict between Malwarebytes(MB) and Tixati,  MB is probably scanning all the connections happening through Tixati and causing the slow down.  I've been running Tixati for weeks now and only just installed MB to check up on my systems. This is when the slowdowns happened.

Tixati is not infected or a virus I believe it to be some sort of conflict.  I'm removing MB for now to see if there are any more slowdowns.

Ive also been experiencing this mine says

C:Program Files\tixati\tixati.exe
Catagory:
Compromised

Port:
11211

Type:
Outbound Connection

I also had 3 Trojan ones and ive since uninstalled tixati with windows uninstaller like the OP did.

I dont know if I should reinstall it and risk a trojan or nah.

There are absolutely NO Trojans, No spyware and NO adware in Tixati.
Any reports from Malwarebytes or other programs like it are False.

Dear janet, that's a terrible response regarding a report of compromise.
Before shredding it off, it would be nice for example if you could reassure us that Tixati does not rely on the memcached protocol for Channels.
See: https://blog.cloudflare.com/memcrashed-major-amplification-attacks-from-port-11211/

Dear Guest on 2023/12/02
It may be that Malwarebytes' classification is based only the port number, and not the actual traffic. In that case it is possible that someone on the internet just set his incoming port to 11211, and Tixati is trying to connect to that peer.
Potential solutions to avoid the alerts from Malwarebytes:
- contact Malwarebytes about wrong classification (it should say "Potentially compromised "); or
- whitelist Tixati; or
- In the network connections settings set outgoing peer connection protocol to TCP > UDP or TCP only; or
- find the peer with 11211 port in the peerlist and block him

It's terrible how prolific antivirus false-positives are.
Your quote shows an OUTBOUND connection. The memcrashed article you show says that you'd be at risk of INBOUND connections from port 11211 that's used by vulnerable Memcached servers. Vulnerable and exploited servers, not malicious.

If you wanted a technical analysis of what happens when some peer pretends to be at a foreign IP:11211 with actual Memcached running, you'd need to capture what traffic Tixati sends there. It will be a bittorrent connection attempt, but the Malwarebytes quote doesn't even tell if it's UDP or TCP, a crucial distinction for the "memcrashed" amplification attack.

There are a bunch of fake addresses (ghost peers) floating around especially on port 1. I don't know what's the deal, there's indeed a tiny possibility the Bittorrent network is used to some extent for DDoS but it's minor. The dev has stated some time that he had taken precautions in the UDP implementation (uTP) to avoid amplification.
==========
Looks like I've only explained this three times so far.
https://forum.tixati.com/support/1896
https://forum.tixati.com/support/7355
https://forum.tixati.com/support/7604
https://forum.tixati.com/support/7683