The Baidu antivirus has been flagging all versions of the qBittorrent installer for the past couple of days on VirusTotal. Oddly the same scanner reports it as clean on Metadefender.
I'm a bit confused...
All files came from FossHub.
False Positive?
-
KitKat
Re: False Positive?
3.3.4 shows as clean in the link you provided.
I believe its detecting something in the packer sledgehammer uses to distribute qbittorent.
"Multi.Threats.InArchive" is likely baidus definition for applications like "opencandy" that offer the user "helpful" adware on install
I compile my own qbittorent so im not 100% sure whether that kind of explanation fits, last i checked qbittorent doesnt use opencandy.
You'd need a reply from sledgehammer to confirm (guess at) what is actually triggering that definition.
May be worth opening an issue report on the github.
/e: Honestly though most bittorrent programs look like malware to antivirus's due how the client itself behaves, opens network sockets, connects to a large host of IP address (DHT) and builds new "connections" based on those connections etc.
I believe its detecting something in the packer sledgehammer uses to distribute qbittorent.
"Multi.Threats.InArchive" is likely baidus definition for applications like "opencandy" that offer the user "helpful" adware on install
I compile my own qbittorent so im not 100% sure whether that kind of explanation fits, last i checked qbittorent doesnt use opencandy.
You'd need a reply from sledgehammer to confirm (guess at) what is actually triggering that definition.
May be worth opening an issue report on the github.
/e: Honestly though most bittorrent programs look like malware to antivirus's due how the client itself behaves, opens network sockets, connects to a large host of IP address (DHT) and builds new "connections" based on those connections etc.
Last edited by KitKat on Mon Apr 04, 2016 8:26 am, edited 1 time in total.