Author Topic: Weebly site break  (Read 550 times)

0 Members and 1 Guest are viewing this topic.

Offline SGC

  • Newbie
  • *
  • Posts: 1
Weebly site break
« on: June 17, 2024, 05:48:22 PM »
Avast is breaking my site built with Weebly.
The Alert ID is008c42b8d351/2024-06-17T13:55:25.084Z
I have tried to attach a copy of the alert.

Offline DavidR

  • Avast √úberevangelist
  • Certainly Bot
  • *****
  • Posts: 89431
  • No support PMs thanks
Re: Weebly site break
« Reply #1 on: June 17, 2024, 07:52:55 PM »
For whatever reason, it would appear Avast doesn't like the /js/old/slideshow-qj.js ? buildtime=1234 path/parameter (as in your screenshot) and not the whole domain as such or the URL editmysite.com  of course the cdn2 sub-domain may also be the issue.

What that might be I as an Avast user don't know why that might be.

Given that the hXXps://editmysite.com/ requires a login it may be somewhat difficult to investigate.
That said https://www.ipaddress.com/website/editmysite.com/ is shown as OK, but as mentioned that isn't the domain that is being indicated by Avast.

However, this is for a check of cdn2.editmysite.com - https://www.ipaddress.com/website/cdn2.editmysite.com/ - which I didn't really expect anything different.

- New location to report both a False Positive and or a False Negative - https://www.avast.com/submit-a-sample#pc

Windows 10 Home 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 24.6.6121 (build 24.6.9241.848) UI 1.0.809/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro/ Avast! Mobile Security

Online polonus

  • Avast √úberevangelist
  • Probably Bot
  • *****
  • Posts: 33980
  • malware fighter
Re: Weebly site break
« Reply #2 on: June 18, 2024, 10:06:33 AM »
Wait for a final verdict by avast's
see also: https://quttera.com/detailed_report/cdn2.editmysite.com

Also consider: https://www.shodan.io/host/151.101.193.46

underlying root cause might be IP-abuse on Fastly's https://www.abuseipdb.com/check/151.101.193.46

This time the IP has been whitelisted, but the IP was reported at AbuseIPDB.

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!