My site is built with Yii framework and running with https. Avast has recently blocked some js files which makes my site running improperly. These files is from Yii framework core so I’m sure they’re not “Other:Malware-gen [Trj]”. These are the js files:
I fixed the one file that I was able to download from the domain (sha256: 19E7AB9406C8E9DED802F1A02A3F61D02024CC9ABB4A617FD7AEB3A00C574C9A) - it was a false positive.
Can you post VT links to all the files, so I can fix them as well?
Thanks!
As said some fixes are needed to grant the site is malware free per se,
but then as Eddy stated here there is much more vulnerability and insecurity to be mitigated.
Checing the self/signed certificate:
BEAst vulnerable server: BEAST
The BEAST attack is not mitigated on this server.
Root installed on the server.
For best practices, remove the self-signed root from the server.
jquery.prettyPhoto - 3.0 is-may form a high security risk.