Virus on Site

toptones, hi there.

Is there any proof to support your words?

My coder is cleaning up the site now. The plugin redirects visitors through multiple URLs to ads. Not sure what proof I can give you without revealing my client’s site.

So, where is the malicious code at fault?
Can you, or your coder show it?

toptones, there can only be one proof – these are the lines of the plugin source code that are responsible for the malicious activity, according to your accusation.

I’ve asked coder to provide.

Okay, heard back from coder. His was a hunch, based on the fact that this was a new addition. All the other plugins were there for months. So it may if fact be something else but test for yourselves. I’ve deleted it to be safe.

@toptones when enabled, WP-Optimize page cache and minify features will cache whatever your website contains at the time in the page and in the JavaScript files.

If your website has been compromised and contains malicious code, this code will be cached with the rest. So while it may look like WP-Optimize contains malicious code (because the cache is stored in a folder it created).

So if you have this issue:

redirects via caching to send visitors to ads.

They’re likely to continue even after removing WP-Optimize, unless if you have removed the root of the issue, which is not WP-Optimize.

Yes, I can confirm, this plugin added redirect to spam on my website. I have deleted the Plugin and after Installed again, its working without any redirect.

But why this Plugin redirect? I use it on many website but just one website get this hack!

EDIT: ok I understand, the plugin cache the hack.

• This reply was modified 3 years, 6 months ago by skinnerul.