Author Topic: URL:Phishing on every webpage I open  (Read 1240 times)

0 Members and 1 Guest are viewing this topic.

Offline Lodovico3

  • Newbie
  • *
  • Posts: 1
URL:Phishing on every webpage I open
« on: February 24, 2023, 04:03:30 PM »
Hello,

As of this morning, whenever I open any webpage I am met with an Avast Web Shield alert of the following:

We've blocked a threat URL:Phishing on https://ipfs.io/api/v0/name/resolve/[web domain]

I even got one for this forum URL:Phishing on https://ipfs.io/api/v0/name/resolve/forum.avast.com


I am an avid web3 user but have I been compromised somehow?

Offline Roch BAMBOU

  • Newbie
  • *
  • Posts: 1
Re: URL:Phishing on every webpage I open
« Reply #1 on: February 28, 2023, 07:30:41 PM »
The seme for me (on Brave Browser).

Offline DavidR

  • Avast √úberevangelist
  • Certainly Bot
  • *****
  • Posts: 88147
  • No support PMs thanks
Re: URL:Phishing on every webpage I open
« Reply #2 on: February 28, 2023, 07:48:08 PM »
Start by clearing your browser cache, cookies, etc.

Next when did this start, e.g. after updating/adding a new browser add extension, add-on ?
If so that could be what is reaching out to sites you aren't trying to connect to and is this always to the same site being blocked ?

Try running your browser without add-ons/extensions, does the behaviour/avast alerts stop  ?
Windows 10 Home 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 23.9.6082 (build 23.9.8494.792) UI 1.0.781/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro/ Avast! Mobile Security

Offline polonus

  • Avast √úberevangelist
  • Probably Bot
  • *****
  • Posts: 33745
  • malware fighter
Re: URL:Phishing on every webpage I open
« Reply #3 on: March 03, 2023, 01:38:52 PM »
I get
Quote
{"Message":"invalid IPNS root: \"\"","Code":0,"Type":"error"} 
there.

This is part of an Ubuntu-linux bug report not an answer.

So ipfs get`: tar has invalid root when a filename contains double dot `

See Netcraft risk rating here: https://sitereport.netcraft.com/?url=https://ipfs.io

-https://ipfs.tech/ is not being blocked by avast's.

See domain records here: https://www.shodan.io/domain/ipfs.tech
and https://www.shodan.io/host/107.182.163.162  etc.

polonus (volunteer 3rd party cold reconnaissance website security-analyst and website error-hunter)
« Last Edit: March 03, 2023, 01:47:47 PM by polonus »
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!