Support » Plugin: SiteGround Optimizer » Malware in Combined Js

  • Resolved shredcouk1976



    I’ve been working on a site that was infected with malware. The website has been been cleaned and all scans using plugins: WordFence, Sucuri, malCure come up clean. When I install and activate SG Optimizer I then get a malware warning in a combined js file in the folder: /uploads/siteground-optimizer-assets/ If I disable the plugin and delete the mentioned folder with combined files, the malware scans are clean.

    I can’t seem to work out where it is coming from or how to clean. Any ideas?

    I’ve replaced wp-admin & wp-includes folders. As well as all the plugins. I’ve checked all the uploads folders. The scan is clean until the Optimizing plugin is activated.

    I’ve cleared website and serverside caches too.


    The page I need help with: [log in to see the link]

Viewing 1 replies (of 1 total)
  • Plugin Author Stanimir Stoyanov


    SiteGround Representative

    Hey @shredcouk1976

    The combined JS files are generated by just combining all the scripts that are loaded on a specific page.

    We do not insert or remove anything, so please check all pages for malware scripts to find out which one of them is loading the scam code.

    And make sure you purge the cache manually from the plugin interface if you have modified your files just to regenerated the combined files right away.


Viewing 1 replies (of 1 total)
  • You must be logged in to reply to this topic.