What is ferrishyn.com and why is utorrent trying to reach it?

[Relvox]

Heya,

I've been hunting for malware on my computer today when I noticed that utorrent tried to send a lot of requests to a domian called ferrishyn.com (ip 173.45.162.164).

I'm curious, why would uTorrent do that?

Relvox

[kotekzot]

probably a tracker or a peer.

[Relvox]

First of all, I notice that there are more connections made to that ip than all other ips combined.

Second of all, I notice that the bulk of connections are opened when I try to close utorrent.

Anyone else has seen that happening / has any clues?

[kotekzot]

if you think something's up run some malware scans. this is on your end, otherwise firon'd wake up to a pitchforked mob.

[Relvox]

malware scans show nothing,

reinstalling utorrent changes nothing ... nobody else getting this?

[DreadWingKnight]

Did you bother trying to packetsniff to see what the traffic actually was?

[Relvox]

Did you bother trying to packetsniff to see what the traffic actually was?

Pretty stupid of me not to, I will do so now!

[Firon]

You do realize P2P clients will connect to all sorts of random IPs, right?