home

uTorrent.exe

µTorrent

BitTorrent Inc

µTorrent is a free ad-supported lightweight BitTorrent client. This is a setup program which is used to install the application. It is set to automatically start when a user logs into Windows via the current user run registry key under the display name ‘uTorrent’. This is installed with multiple programs including µTorrent. The file has been seen being downloaded from download-euro.oldapps.com and multiple other hosts.
Publisher:
BitTorrent Inc.  (signed by BitTorrent Inc)

Product:
µTorrent

Version:
3.3.0.29625

MD5:
746886d62f5912c366a25b01d3a971f0

SHA-1:
a86dcff051135d0371283d128542ee7f1f11e733

SHA-256:
c5673e32fb05eec8070782c38b56c94bfe4825a5b6ad5595e60cd62f5f0dd93a

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/24/2024 1:30:08 AM UTC  (today)

File size:
1020.1 KB (1,044,560 bytes)

Product version:
3.3.0.29625

Copyright:
©2012 BitTorrent, Inc. All Rights Reserved.

Original file name:
uTorrent.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\utorrent\utorrent.exe

Digital Signature
Signed by:
BitTorrent Inc

Authority:
VeriSign, Inc.

Valid from:
6/21/2010 2:00:00 AM

Valid to:
7/27/2013 1:59:59 AM

Subject:
CN=BitTorrent Inc, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=BitTorrent Inc, L=San Francisco, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
36BC30562A650AFAA5AD101ECD643AB4

File PE Metadata
Compilation timestamp:
5/1/2013 1:51:09 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
24576:alQumnkaKHFJ5AEk+/xCZNAailG+hdX49ucz+1dqeW7:AtTlHFJ5AEf/xIkvXS6fqeW7

Entry address:
0x2421F0

Entry point:
60, BE, 00, C0, 58, 00, 8D, BE, 00, 50, E7, FF, 57, 89, E5, 8D, 9C, 24, 80, C1, FF, FF, 31, C0, 50, 39, DC, 75, FB, 46, 46, 53, 68, 34, 06, 24, 00, 57, 83, C3, 04, 53, 68, E6, 61, 0B, 00, 56, 83, C3, 04, 53, 50, C7, 03, 03, 00, 02, 00, 90, 90, 90, 90, 90, 55, 57, 56, 53, 83, EC, 7C, 8B, 94, 24, 90, 00, 00, 00, C7, 44, 24, 74, 00, 00, 00, 00, C6, 44, 24, 73, 00, 8B, AC, 24, 9C, 00, 00, 00, 8D, 42, 04, 89, 44, 24, 78, B8, 01, 00, 00, 00, 0F, B6, 4A, 02, 89, C3, D3, E3, 89, D9, 49, 89, 4C, 24, 6C, 0F, B6, 4A...
 
[+]

Code size:
732 KB (749,568 bytes)

Startup File (User Run)
Registry location:
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
uTorrent

Command:
"C:\Program Files\utorrent\utorrent.exe" \minimized


The file uTorrent.exe has been discovered within the following programs.

µTorrent  by BitTorrent Inc.
µTorrent is a is a free, ad-supported, lighter-weight BitTorrent client designed to consume less resources then the full BitTorrent version.
www.utorrent.com
12% remove it
Disney Infinity PC  by Disney Interactive Studios
Publisher's description - “Play Disney Infinity on your PC! You have the freedom to explore, take adventures, and create your own worlds with your favorite Disney and Disney/Pixar characters. Visit Toy Box Share to download and play amazing Toy Boxes created by the Disney Infinity community.”
www.DisneyInteractive.com
5% remove it
MathType 6  by Design Science, Inc.
Publisher's description - “MathType is a powerful interactive equation editor for Windows and Macintosh that lets you create mathematical notation for word processing, web pages, desktop publishing, presentations, elearning, and for TeX, LaTeX, and MathML documents.”
www.dessci.com
4% remove it
ShowBiz  by ArcSoft
www.arcsoft.com
4% remove it
 
Powered by Should I Remove It?

The file uTorrent.exe has been seen being distributed by the following 17 URLs.

http://download-euro.oldapps.com/.../utorrent_3.3_29625.exe

https://dw.uptodown.com/dwn/HeWK1tSDMBytyhOyjX1QpUaHwZbwHd68VUTYqZjp1lPPhwP8nH_1mdt4Eeo8tsJnGdPKmC-deA69OHroCHqYwSNlvJNiAeJ3nxf87Bo_el_yp9NEbGWq1jA161EO2P2k/6kT2J5yTH-t-Jli0sF-KN5WtAF59gFyDb2vZiPjlI_-hWNyNtbJTd4QDP2tqIlpsG2QaMcBMCNPMupOeQSR1_ALtP9rsmQ-dIWHvPTxYk9A5WFy3_21SQzEagWagsFRq/pUXj82jNXC2twk2CekOZ0qaZN8531tvHRUf-ASrfvoNw9SCY9urlLdJkM0OtT7yQaTxx-qQplcLVmgjwSjLT2rdciB1ipEaHbMguNvDe1-SxIEFz2klppXWEh5mLd6mf/.../

http://download.ap.bittorrent.com/track/stable/endpoint/utorrent/.../windows

temp:utorrent.exe

http://promo.weburg.ru/utorrent/utorrent/.../utorrent.exe

http://download.utorrent.com/.../utorrent.exe

http://ll.download3.utorrent.com/.../uTorrent.exe

http://www.tamindir.com/indir/MjAxMy0wNy0xMiAxNzo0MjoyNA==/utorrent/.../3.3.1

http://depo.tamindir.com/p/u/.../utorrent-3.3-tamindir.exe

http://www.filehippo.com/download/file/.../

http://fs35.filehippo.com/8512/.../utorrent.exe

http://ll.download3.utorrent.com/.../uTorrent.exe

http://storage.dobreprogramy.pl/.../utorrent(dobreprogramy.pl).exe

http://llsw.download3.utorrent.com/.../uTorrent.exe

http://download-new.utorrent.com/endpoint/utorrent/os/windows/track/.../

http://download-new.utorrent.com/endpoint/utorrent/os/win/track/.../

http://www.commentcamarche.net/download/.../196-utorrent

Scan uTorrent.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.