I have two websites based on same theme and scripts, they are on same hosting but on different accounts. Yesterday i noticed one of sites has been blocked by avast, emarketing-strategy.co.uk with following information: HTML:Script-inf
I have restored backup version of sites scanned thrue sucuri, wordfence and other antiviruses, my hosting provider also checked all files, i have used report from zulu, and few other scanning apps - and everywhere site seems is clean. But I’m still having same problem on avast. Today my second site has been blocked aswell: smartindex.co.uk
Any idea how i can solve this problem ? Sites are based on WordPress system.
Sucuri’s does not flag site. Here Quttera detects: /wp-content/plugins/Ultimate_VC_Addons/assets/min-js/ultimate.min.js?ver=3.16.7
Severity: Potentially Suspicious
Reason: Detected procedure that is commonly used in suspicious activity.
Details: Too low entropy detected in string [[‘-webkit-transition-duration: ms; -webkit-animation-duration: ms; -moz-transition-duration: ms; -moz-’]] of length 120 which may point to obfuscation or shellcode.
polonus (volunteer website security analyst and website error-hunter)
This detection means you try to load resources from a blocked URL, in this case from lmknjb1[.]com. What do you use this URL for? Are you using it intentionally?