JS file from my site blocked

My site is built with Yii framework and running with https. Avast has recently blocked some js files which makes my site running improperly. These files is from Yii framework core so I’m sure they’re not “Other:Malware-gen [Trj]”. These are the js files:

jquery.yiiactiveform.js
jquery.ba-bbq.min.js
jquery.yiilistview.js

I tried to uncheck “Enable https scanning” and “Script scanning”. The js files started to load fine.

http://postimg.org/image/pccphp1rh/

Please review.
Thanks.

What is the website URL ?

https://napilikai.als-web.net/site/login

Please have a look at the web console, you’ll see the message:
jquery.yiiactiveform.js net::ERR_CONNECTION_RESET

Thanks.

Have you tested the JS files here? > www.virustotal.com / www.metadefender.com

Reported to avast, you may recive a reply here later today

I tested the js files and they’re clean (they’re from the Yii framework core).

Thank you for your help.

I fixed the one file that I was able to download from the domain (sha256: 19E7AB9406C8E9DED802F1A02A3F61D02024CC9ABB4A617FD7AEB3A00C574C9A) - it was a false positive.

Can you post VT links to all the files, so I can fix them as well?
Thanks!

5 vulnerabilities that need to be solved :
http://retire.insecurity.today/#!/scan/16c5dc56725c1b17e2565d9f59d376b8d072f3039da17bb02912da0554563c40

As said some fixes are needed to grant the site is malware free per se,
but then as Eddy stated here there is much more vulnerability and insecurity to be mitigated.

Let us start with this scan: https://seomon.com/domain/napilikai.als-web.net/performance/
Go over the various reports / Overview Performance DNS SSL Whois HTML Blacklists

Re: character “<” is the first character of a delimiter but occurred as data
Line: 68, Col: 42 if ( $( window ).width() < 639) { etc. see:
https://seomon.com/domain/napilikai.als-web.net/html_validator/

Then there is a bad R-Status here: https://securityheaders.io/?q=https%3A%2F%2Fnapilikai.als-web.net

Checing the self/signed certificate:
BEAst vulnerable server: BEAST
The BEAST attack is not mitigated on this server.
Root installed on the server.
For best practices, remove the self-signed root from the server.

jquery.prettyPhoto - 3.0 is-may form a high security risk.

Your nameserver is DROWn vulnerable and open to attack, see: https://test.drownattack.com/?site=ns13.domaincontrol.com

Let someone that understands website and server security go over your website and server security with a nit-comb,
and get it more secure!

polonus (volunteer website security analyst and website error-hunter)

Please do as HonzaZ requested an post the virustotal.com links.

Thank you, HonzaZ.

Here’s another file which is still blocked:
https://callcenters.als-online.com/assets/a999e54a/listview/jquery.yiilistview.js

I’ll keep looking around and let you know if there are other files.
Thanks.

Removed the detection on this one too :wink:

@HonzaZ: I highly appreciate your help. All the files load fine again.

@Eddy, @polonus: I’ll review those issues.

Thank you all.