Zoltair Posted August 20, 2008 Report Posted August 20, 2008 I was wondering why uTorrent would attempt to send my machine name and user name to some site 116.227.241.41?I use a firewall and force encryption, yet uTorrent 1.8 attempted to send this information in the clear .... WTF!!!!!The programmed trigger the alert in my Checkpoint software to protect personal information in the internet. At the time the ip address does not match ANY of the trackers, so WTF is going on???I downloaded uTorrent from this site..
DreadWingKnight Posted August 20, 2008 Report Posted August 20, 2008 Have you validated the claims with wireshark?Have you validated that you don't have malware by using process explorer and hijackthis?
Switeck Posted August 20, 2008 Report Posted August 20, 2008 That ip is in China.I think we can rule out everyone's uTorrent sending to that ip right there.But...are you sure uTorrent was sending instead of some other program?
Zoltair Posted August 20, 2008 Author Report Posted August 20, 2008 The report was from Zonealarm, and it claims it blocked it from uTorrent. I found the IP address questionable also. Nothing appears under ProcessExplorer out of the ordinary.Don't know what else besides wireshark to trace the data, it does not happen often, this is the first time since upgrading from 1.77 to 1.8 so I was unable to actively capture it. I will attempt to do just that. It did catch me by surpise when I seen the popup from Zonealarm state that uTorrent was trying to send my private information in the clear.... Ran Hijakthis and SPybot S&D, it found no issues of concern. I do notice sometimes that uTorrent will attempt to connect on port 25 (SMTP) which also seem strange, but I block those ports anyway.I will do further monitoring and try to see whats going on, very strange.....
DreadWingKnight Posted August 20, 2008 Report Posted August 20, 2008 Don't get us started about zonealarm's accuracy rate (can't hit the broadside of a stadium if it was thrown straight at it).
Firon Posted August 22, 2008 Report Posted August 22, 2008 Oh, that privacy feature in ZA is terribly broken. It randomly detects it in all sorts of connections. Happens often when the database corrupts itself.
Recommended Posts
Archived
This topic is now archived and is closed to further replies.