Everything posted by _____
Here is a product called WifiX which is advertised on YouTube, facebook, twitter etc... https://get-wifi-x.com/home/UK/x-05/ If you look at the page and watch the video you will see how amazing the product claims are! But if you know anything about technology, you will know that this is a complete lie and if that isn't proof enough just see this page: https://uk.trustpilot.com/review/get-wifi-x.com?languages=all My point is that - not all malware as such these days comes in the format of software but in tricks/scams that cost people as much, if not more money than regular viruses used to. I think malwarebytes should allow people to report these in the research center or in-app and allow for blocking or warnings against these scams with URL blocking. Just a suggestion...
8B3380241C9C4B6D6460217A678AB178 TCPSVCS.EXE MD5 F02449938E0E2197152ECB1AF8AA158AE50214DC TCPSVCS.EXE SHA1 081DC131643A56706574B620388332AAA4D368EE48A147C15B173FEC27B1E732 TCPSVCS.EXE SHA256 https://www.virustotal.com/en/file/081dc131643a56706574b620388332aaa4d368ee48a147c15b173fec27b1e732/analysis/1538990878/ or (two different crc's) https://www.virustotal.com/en/file/63a56dcf9e9a717411d3b98519114987875171f9d3d76400f886751c0cd4d182/analysis/1538991149/ but then I found this... https://www.hybrid-analysis.com/sample/081dc131643a56706574b620388332aaa4d368ee48a147c15b173fec27b1e732/5bbb29f97ca3e16a18749a63 Also it appears to make connection to: TCP traffic to 184.108.40.206 on port 80 is sent without HTTP headerTCP traffic to 220.127.116.11 on port 80 is sent without HTTP headerTCP traffic to 18.104.22.168 on port 80 is sent without HTTP header Was just about to FORMAT entire PC until I saw this thread... Glad its just a false positive! Very scary stuff! tcpsvcs-info.txt