Thanks much for your reply and analysis @David . As I am not a programmer I am hesitant to mess up with anything unless absolutely necessary. For example I won’t know wheher I can update Jquery and if so how - I am using standard wordpress install and plugins.
Which one of these would lead to Avast declaring my site as infected so that I may focus on those ?
Have sent request to Avast in the form link provided. Let us see.
I think Avast should have a system of advising site owners the moment their software detects a website as infected so that the site owners can take actions.
There is one major issue with your Word Press website, you should look in a.s.a.p.
Directory Indexing
In the test an attempt was made to list the directory contents of the uploads and plugins folders to determine if Directory Indexing is enabled. This is a common information leakage vulnerability that can reveal sensitive information regarding your site configuration or content.
Path Tested Status /wp-content/uploads/ enabled
/wp-content/plugins/ disabled
Directory indexing is tested on the /wp-content/uploads/ and /wp-content/plugins/ directores. Note that other directories may have this web server feature enabled, so ensure you check other folders in your installation. It is good practice to ensure directory indexing is disabled for your full WordPress installation either through the web server configuration or .htaccess.
Also check WordPress Plugins
The following plugins were detected by reading the HTML source of the WordPress sites front page.
There are likely more plugins installed than those listed here as the detection method used here is passive. While these results give an indication of the status of plugin updates, a more comprehensive assessment should be undertaken by brute forcing the plugin paths using a dedicated tool.
polonus (volunteer 3rd party cold recon website security analyst and website error-hunter)
I would suggest that you talk to your website Host for advice on updating your software. For me maintaining your site is absolutely necessary to protect your visitors.
As I said I don’t know if they would directly cause avast to alert.
You should be contacted by avast in a day or two.
I don’t think that that is ever going to happen for many reasons.
a. The shear number of web sites in the whole of the internet is enormous.
b. The cost of this function would be large and as a business where would they recover that.
c. Where they find the contact details of every site unless this was offered as a paying service.
d. I don’t know of any other Antivirus Software company doing this, if it were possible and everyone did it you would get multiple contacts by several AV companies.