Js found with Gmetrix

Hello, while testing the site with Gmetrix, I found two js files that are not loaded on my server but seem to be from Cloudflare:

https : // special.beatifulllhistory. com/api/step.js

Host: special. beatifulllhistory. com

https : // west.statisticsplatform. com/stats?special=js

report-to {“endpoints”:[{“url”:"https://a.nel.cloudflare.com/report/v3?

Both of these are worsening the Gmetrix score but are not in the HTML source code…
What are these exactly?

That site isn’t on Cloudflare. The domain’s name servers are at MY-NDNS.COM, and that file is coming from an NGINX server:

> GET /api/step.js HTTP/1.1
> Host: special.beatifulllhistory.com
> User-Agent: curl/8.1.2
> Accept: */*
> 
< HTTP/1.1 200 OK
< Server: nginx
< Date: Mon, 23 Oct 2023 14:49:06 GMT
< Content-Type: application/javascript
< Content-Length: 15373
< Last-Modified: Sun, 22 Oct 2023 09:53:59 GMT
< Connection: keep-alive
< ETag: "6534f137-3c0d"
< Expires: Thu, 02 Nov 2023 14:49:06 GMT
< Cache-Control: max-age=864000
< Access-Control-Allow-Origin: *
< Accept-Ranges: bytes
1 Like

really i dont understand what is a from where it comes…

Hi,

There seem to be problems on Cloudflare these days. I in particular am finding this js (I see it with pagespeed) that is not part of my site’s files and is not inscribed by my hosting.

https://special.beatifulllhistory.com/api/step.js

So it would necessarily have to be a file inserted I don’t know how by someone via cloudflare and I don’t think it leads to anything good.

I did some research online and it looks like malware

https://any.run/report/065115c893e94e9e9a3ef0580cf619b0f2fa3d2b82c35867c67b57d6efb5514d/9e13a822-33a0-4a0d-ae89-77f7f69e8754

Does anyone have the same problem and want to solve it, then delete the js?

Thanks

This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.