Sign in to follow this  
Yahar

Backdoor in Utorrent? [Resolved -FP]

Recommended Posts

I just updated and ran a scan and it detected Utorrent as a backdoor.

a-squared Free - Version 4.5

Last update: 1/12/2010 6:15:09 PM

Scan settings:

Scan type: Deep Scan

Objects: Memory, Traces, Cookies, C:\

Scan archives: On

Heuristics: Off

ADS Scan: On

Scan start: 1/12/2010 6:15:22 PM

C:\Program Files (x86)\uTorrent\uTorrent.exe detected: Backdoor.Win32.Bifrose.caqf!A2

C:\Users\John\Documents\Downloads\mirc635.exe detected: Riskware.Client-IRC.Win32.mIRC!IK

C:\Users\John\Downloads\utorrent.exe detected: Backdoor.Win32.Bifrose.caqf!A2

I downloaded from the official Utorrent page. Is this a false positive or real deal?

Share this post


Link to post
Share on other sites

Hi Yahar, welcome to the forum

Please submit both files from the detection list to EMSI developers for analysis

µTorrent.exe the latest version is flagged indeed with the latest signatures that should be False Positive (submitted from here, but do that as well)

As for the MIRC, I don't have that client, so I cannot check, but it was flagged in the past as well.

I don't think it was flagged as a Riskware though

If so, it most likely has to be whitelisted , but sure first submit and wait for the signatures updates

My regards

Share this post


Link to post
Share on other sites
Guest James

Hey there,

Christian Peters has fixed the False Detection, If you update to the latest signatures then the detection should no longer exist.

Regards,

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Sign in to follow this  

  • Recently Browsing   0 members

    No registered users viewing this page.