Malwarebytes squawks on this forum: "Blocked due to Phishing"

Graham Parkinson · January 1

Anyone have any idea why Malwarebytes is blocking this forum due to "Phishing". I wonder if email addresses might have been scraped off the forum software somehow? Or just a false positive??

BB. · January 2

We got hacked something like 10 years ago?

The basic security seems to be OK (this was using GMAIL.COM address):

Image: https://us.v-cdn.net/6024911/uploads/editor/40/moxurmpo4duq.png

Image: https://us.v-cdn.net/6024911/uploads/editor/9o/eacnm6dw6bsj.png

I guess it is possible somebody "flagged" the email address that did not wish to participate with the forum anymore...

I rarely receive forum emails... Just PMs and such. You can adjust email notifications when somebody "posts" in one of your threads or such....

-Bill

Graham Parkinson · January 2

Malwarebytes does website checking as you browse to see if there is a history on file of anything fishy at the IP address that you have browsed to.

It blocks browser access to flagged IP addresses, unless you override it's warning.

Malwarebytes has just started flagging this forum recently. I'll reach out to them and ask for it to be checked.

Sometimes it can be another website hosted by the same provider that is causing the flag to be raised.

Apologies for the multiple images - it kept blocking me when I tried to insert .... then they all showed up!

Image: https://us.v-cdn.net/6024911/uploads/editor/5n/vpag79cir6aq.jpg

Image: https://us.v-cdn.net/6024911/uploads/editor/vn/rjpndbz4oy2o.jpg

BB. · January 2

Hmm... That is just a standard Cloudflare IP address... I believe that us.v-cdn.net address is usually used for "images" in the forum software.

Used this to look up IP Addresses/resolve DNS and got the same IP address as you:

https://www.iplocation.net/ip-lookup

Image: https://us.v-cdn.net/6024911/uploads/editor/uh/a1e8vk7nn8s9.png

DNS checker is "OK":
https://dnschecker.org/ip-blacklist-checker.php?query=104.18.227.85

I looked at the source code for one of the main pages, and see that the us.v-cdn.net is just (28 in this case) images... such as this one:

https://us.v-cdn.net/6024911/uploads/userpics/888/nDQ7AUQ1K2LED.jpg

At this moment, I am using a Chrome browser on a Chromebook... No errors.

If you do not have any luck with Malwarebytes, let me know and I will send this to tech support.

Thank you for letting me know.

Happy New Year!
-Bill

JRHill · January 3

A year ago all the forum email alerts coming to my Gmail began to get sent to spam. I tried and tried to clear the routing to spam and ended up having to create a filter:

NAWS windsun@solar-electric.com via sendgrid.net

Jan 2, 2025, 2:54 PM (16 hours ago)

to me

This message was not sent to Spam because of a filter you created.

Report not spamEdit Filters

northernarizona-windandsun http://forum.solar-electric.com/

ThirstyRoss commented on Understanding Conext AGS + state of charge triggers

Please do not reply to this email.

I'm using .....

Check it out: .....

Dave Angelini · January 3

At this moment, I am using a Chrome browser on a Chromebook... No errors.

If you do not have any luck with Malwarebytes, let me know and I will send this to tech support.

Thank you for letting me know.

Happy New Year!
-Bill

Happy New Year Bill! Same here Chrome and no errors since the big one 10 or so years back

Malwarebytes squawks on this forum: "Blocked due to Phishing"

Comments

NAWS windsun@solar-electric.com via sendgrid.net

Categories