Beware Nimiq Trojan or.....? [SOLVED]

Guess_Wh0_0 · July 2, 2020, 5:39pm

Hi All,

Just a couple of questions if that ok?

It would appear that when visiting the nimiq wallet (new or old) Malwarebytes active on our system is activated and then reports a trojan attack (is this an attack?)from one or the other two domains listed below:

node.nimiq.watch - port 8080
seed.nimiqpool.com - port 22001

The above two domains are both outbound connections.

While I doubt very much these are malicious Trojans (i hope!), and more to do with peer connections, some clarifications would be great so i can manage these exclusions if required.

Kind regards

Guess_Wh0_0

rraallvv · July 2, 2020, 6:30pm

Those are what’s called false positives, it happens when someone (for whatever reason) reports a website as being malicious on some third party security tool or platform, without the website in question having any malware.

Guess_Wh0_0 · July 2, 2020, 6:36pm

Great, thanks for the swift reply.

Is there something we can do as a community and rectify this issue so that this does not sway potential new Nimiq users?

rraallvv · July 2, 2020, 6:39pm

Yes, we can report the issue here, and also send them a link to the list of Nimiq seed nodes used by the blockchain.

Guess_Wh0_0 · July 2, 2020, 6:55pm

Great, thanks for the links. Im in the process of reporting this now

RecoveryRider · August 1, 2020, 8:23am

It won’t let me post the 2 additional messages in previous post so here they are.
Seed-5.nimiq-network.com:8443/
Seed-14.nimiq-network.com:8443/
Thank you

RecoveryRider · August 1, 2020, 8:23am

I am experiencing same problem with Malwarebytes. I get 5 errors though.
5 Cross Site Trackers Blocked. This is using Brave Browser, it also appears with Chrome
Seed.nimiqpool.com22001/

Seed-11nimiq.etwork:8443/
Seed-8nimiq.etwork:8443/

I am attempting to link my Ledger device. I have established a wallet previously at Safe.nimiq.com with a recovery seed and the log in green card and successfully transferred coin. I am skeptical to keep info on a computer and wanted to link the Ledger. I was able to create new wallet but when I hooked up Ledger again it couldn’t find device and wanted me to create new wallet and new avitar. I am afraid to try to put anything on wallet linked to Ledger until I can solve connection issue as account seems to disappear after being created.

rraallvv · August 1, 2020, 1:02pm

Thanks for reporting the issue, you can report it directly to Malwarebytes as a false positive visiting the support page at the link below, please give them the list of official seed nodes and community seed nodes so that they can remove all the nodes from their blacklist.

Alternatively you can add the Nimiq and community seed nodes domains to the list of allowed websites following the steps described below:

Guess_Wh0_0 · August 2, 2020, 6:21am

I reported the issue already to malware sometime ago and it would appear nothing has changed.

Would it not be in Nimiq best intrest knowing that new users are having these issues and obviously reporting them here, so that maybe Nimiq should also contact them additional?
I’m sure it would be also better received if it came directly from Nimiq.