Stange scripts like Pippio, LinkSynergy, ricdn show in speed testing PageSpeed

  • Resolved Hello

    (@themophiles)


    7 years, 5 months ago

    Hi,
    First of thank you making this amazing plugin.

    On one of my site, I recently noticed some strange scripts like Pippio, LinkSynergy, ricdn, etc. when I test my site on Google Pagespeed, GTMatrix or Pingdom Tools. Have a look here: https://i.imgur.com/hozgLDk.jpg

    With a quick google search, it appears that these are malware but then these are supposed to be on the computer, not on my WordPress site. But I am not sure,

    So, I installed and activated your plugin to see if it can find something. It shows me 14 potential threats. All these files are part of plugins like Contact Form 7, Visual composer etc, which are developed by very reputed WordPress developers. Now since I don’t know coding etc. I don’t know what to do with these files. How can I be sure if these are really infected.

    When I manually check the presence of any such filename using View source on Google Chrome, I find nothing. I also cleaned my computer with Malwarebytes software, but nothing helps.

    What are these? Are these on my computer or my website? What can I do now? Have you experienced something similar? Please help.

    Thank you.

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Author Eli

    (@scheeeli)

    7 years, 5 months ago

    The files in your screenshot are on your site not on your computer. It’s your site that seems to be infected, although I can’t say for sure because you didn’t give me your domain name.

    Don’t worry about those Potential Threats, it’s the Known Threats that you need to find. What version of the Malware Definitions do you have installed and what is your Key?

    Thread Starter Hello

    (@themophiles)

    7 years, 5 months ago

    Hi Eli,
    Thank you for your reply.

    On further testing, I found that these files were being inserted into the tracking code of “33Across SiteCTRL ” which I was using though Google Tag Manager. When I deleted it, all these codes disappeared.

    Though 33Across is a well-known site and it shouldn’t insert these ad codes without my permission so, I have asked them to reply on this through mail.

    Let’s see what they have to say. If I again face the issue, I will surely ask for your help.

    If it’s allowed to publish the key is public then my key is: 8c3606c4f8c5d1e93c01dbc5bc413f0b and the virus definition version is: GB3CL.

    Please let me know whats the right way of completely uninstalling your awesome anti-malware plugin in future? Should I simply deactivate and delete it or do I need to delete any other left-over files manually too?

    Thank you.

    Plugin Author Eli

    (@scheeeli)

    7 years, 5 months ago

    No leftover files. You can deactivate and delete like any other plugin.

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Stange scripts like Pippio, LinkSynergy, ricdn show in speed testing PageSpeed’ is closed to new replies.