Website Detected as Having Infected Files That Don't Exist

Hello all, hoping for some help, so recently one of the websites I help manage has been having problems. Avast is marking the website as being infected by Trojans/Malwares on files THAT DO NOT EXIST.

I contacted the hosting company and they are just as confused as I am, currently running a server scan as well but so far no infected files found.

The website is: hxxps://accesspharmaceutical.com/

Avast states the following files are infected:
/images/grid.png
/images/acesspharma.png
/favicon.ico

We don’t have those files on the server whatsoever and haven’t been able to “find” either through FTP or directly on File Manager on the CPANEL.

Ran a couple quick scans:
https://unmask.sucuri.net/security-report/?page=accesspharmaceutical.com
https://www.virustotal.com/gui/url/ffc357a12b6de210dfd09ab71dbf1d67015e67acbe94dcbdc5a899602a62e0c8

The thing is I also submitted a false report form and received the following email:
"Hello XXXX,

Thank you for contacting Avast and reporting a suspected false positive detection. I’m happy to help.

Our virus specialists checked the detection and confirmed it as correct. Therefore, regrettably, I can’t suggest visiting the site.

If you’re the owner of the reported website and want to change the detection, feel free to contact us again for a new analysis once the website is cleaned.

Thank you for understanding.
I hope you have a nice day, and stay safe online."

Any and all help would be appreciated.

Update - Server Scan also found no infected viruses:
----------- SCAN SUMMARY -----------
Known viruses: 2263445
Engine version: devel-clamav-0.99-beta1-632-g8a582c7
Scanned directories: 166
Scanned files: 1143
Infected files: 0
Data scanned: 42.64 MB
Data read: 48.32 MB (ratio 0.88:1)

----------- SCAN SUMMARY -----------
Known viruses: 2263445
Engine version: devel-clamav-0.99-beta1-632-g8a582c7
Scanned directories: 0
Scanned files: 0
Infected files: 0
Data scanned: 0.00 MB
Data read: 0.00 MB (ratio 0.00:1)

----------- SCAN SUMMARY -----------
Known viruses: 2263445
Engine version: devel-clamav-0.99-beta1-632-g8a582c7
Scanned directories: 0
Scanned files: 0
Infected files: 0
Data scanned: 0.00 MB
Data read: 0.00 MB (ratio 0.00:1)

First please modify you link so it isn’t active hxxps://accesspharmaceutical.com/ (or just post the domain name) to avoid accidental exposure.

Well Sucuri isn’t giving it a totally clean bill of health, it is reporting a Medium Security Risk and Security Hardening Improvements.
This is also reporting security issues - https://en.internet.nl/site/accesspharmaceutical.com/2270851/
This one reports a minimal risk - https://quttera.com/detailed_report/accesspharmaceutical.com

These may or may not directly be the reason why the Avast detection is Alerting, but should be addressed.

I have just tried to visit the site, and gather information on why Avast is alerting, see attached image (click to expand). The image file …/images/grid.png appears to be the problem.

DavidR - I made the change to the website link as suggested, and will look into the Sucuri link. Why I am scratching my head is because the files like …/images/grid.png DO NOT EXIST. When searching for it in FTP, it isn’t there, when searching for it through CPANEL/File Manager (directly in the server itself), it does not exist anywhere… so I would modify/get rid of it - but it does not exist. Hence the request for help.

I can only show that this is what Avast Is alerting on and presumably why Avast virus labs are saying the detection is valid.
I don’t know if you are taking the …/ bit as literal, is is just a contraction the full path is in the alert.
I can’t see how it could alert if that file doesn’t exist. I don’t know why you would be searching on FTP, but rather in the sites software/html code.

As an Avast user I can only show what I have found on the checks I have done and actually trying to connect using my default browser Firefox.

Lightbulb! Thanks DavidR - I think I might be able to get the issue resolved. Apologies English is not my first language, don’t mean to come off as rude/ignorant

You’re welcome.

Not a problem.

Website is no longer flagged,

polonus