Ninjastic
PostEdited versionsQuotes to this post
Post
Topic
Board Electrum
Merits 2 from 1 user
Re: Electrum Wallet & Malware Bytes
by
NotATether
on 19/09/2024, 11:25:03 UTC
⭐ Merited by Pmalek (2)
Quote from: nc50lc on September 16, 2024, 06:24:19 AM
IP above is flagged since it was used in SSH Bruteforce attack in the past.
It might be a good idea to keep it blocked by your AV even though it may have been a False Positive result.
Electrum will work with 1 less public server anyways.

The IP below is flagged as "Coin Mining" IP which is definitely False Positive since it's usually associated with public Electrum servers.
There's no known bug in Electrum that allows the server to perform CPU/GPU mining through the client. You may exclude that if you want.

Another thing you can do: Check the Abuse IP-DB and search for those IP addresses that appear in Malwarebytes. https://www.abuseipdb.com/

They will contain a history of any attacks they have been used to participate in, if any. And it will also tell you how long ago they happened.

Generally speaking, if the activity was from several months ago, you can safely ignore it as it is likely that the IP address has changed hands by then.