Solved Malwarebytes warning from Vivaldi connection.
-
Every time I go to the password page vivaldi:password-manager/passwords, I get a warning from Malwarebytes that the browser is infected.
I tried many methods.. but I did not succeed.. I tried resetting the settings to default and logging out, logging in to another account, removing extensions... I did not succeed.
Is there a way to remove the infection from the browserModedit: title -
@maher13 This happens only for the
vivaldi://password-manager/passwordspage?I think it's quite simple. It's certainly not an "infection" of Vivaldi.
When you open the Chromium passwords page, it will try to get favicons from each of the sites you have stored passwords for.
So, either you have stored a password for
nimoultv.comor the site shares an IP address that has or is marked by MWB as malicous.So I suggest you go through your list of stored passwords.
My bet is the site is in there, or a site that shares the same IP, possibly the site was infected at some point.
Currently the site seems to be a video production agency, but it might share IP with a malicious site.๐ปVolunteer helper ยท Forum moderator ยท Sopranos tester ๐ ๏ธTroubleshooting ๐Report a bug ๐Markdown help
๐ฆ"With a rubber duck, one's never alone" -Douglas Adams๐ฆ -
@maher13 I have no knowledge or experience of any infection in Vivaldi, though I donโt recognise the URL you mentioned.
Try accessing Password Manager via Settings > Privacy > Passwords, see what that gives you.
-
@maher13
Hi, the shown IP address is from EIG Network Operations, connected with bluehost.com and endurance.com.
https://www.reviewhell.com/blog/endurance-international-group-eig-hosting/Does this ring a bell for you?
Openvivaldi://serviceworker-internalsand check if something relevant is registered as service worker, unregister it. -
@mib2berlin
It doesn't really ring any bells for me. I've looked it up and can't figure out what's so weird about these services. Is it safe to remove them all? -
@maher13
Yes, open Help > About and look for the path to your profile folder "Default", close Vivaldi.
Open this folder and delete the folder "Service Worker".
After the next start of Vivaldi it create the folder and restore the three default service workers. -
@mib2berlin
I already did that before I wrote this post. -
LLonM moved this topic from Forum on -
@maher13
And do you get still the Malwarebytes warning?
Very strange.
We need another Malwarebytes user. -
@mib2berlin
Yes, it is still poping up -
@maher13
Hm, if you downloaded Vivaldi from vivaldi.com you can be sure it is not infected, we had many false positives over the time.
Maybe you change the title to Malwarebytes reported Infected Vivaldi or something to get more users to check the thread.Opensuse Tumbleweed x86_64 KDE 6.2 X11, Windows 11 Pro, Vivaldi latest
HP Probook Intel(R) i5-8350U 16 GB, GPU UHD 620, SSD 256 GB
Miniforum-B550 AMD Ryzen 7 4700G 16 GB, Radeon Graphics
Redmi Note 14, HyperOS Android 14 -
@maher13 This happens only for the
vivaldi://password-manager/passwordspage?I think it's quite simple. It's certainly not an "infection" of Vivaldi.
When you open the Chromium passwords page, it will try to get favicons from each of the sites you have stored passwords for.
So, either you have stored a password for
nimoultv.comor the site shares an IP address that has or is marked by MWB as malicous.So I suggest you go through your list of stored passwords.
My bet is the site is in there, or a site that shares the same IP, possibly the site was infected at some point.
Currently the site seems to be a video production agency, but it might share IP with a malicious site.๐ปVolunteer helper ยท Forum moderator ยท Sopranos tester ๐ ๏ธTroubleshooting ๐Report a bug ๐Markdown help
๐ฆ"With a rubber duck, one's never alone" -Douglas Adams๐ฆ -
@mib2berlin
I will try to download Vivaldi from vivaldi.com.
I could not change the post's title .. It is not allowed.
feel free to change it if you can -
@Pathduck
Yes only for password page
I'll check it -
@Pathduck
you nailed it !
I have this site in my 300 passwords thank you for your help!
-
@maher13 Maybe a little cleanup is needed?
-
I never noticed the favicons in the list.
-
@mib2berlin Yeah, I thought it might do that so did a little network capture while opening the passwords page. Turns out it makes a connection to each site in the list, to get the favicon (presumably...)
I don't know why it just doesn't use the Favicons cache for this, some Chromium stupidity I can only assume
-
I have been having the same warning but not only with vivaldi, with some other trustworthy software as well. It is a Malwarebytes thing. Just white list them and it disappears.
-
PPathduck has marked this topic as solved on
