One of my sites started showing a fake “Cloudflare human verification” page asking visitors to press Windows + R, then Ctrl + V, then Enter. The clipboard contained a suspicious command using cmd / rundll32, so it was clearly not a real Cloudflare challenge.

At first I thought the problem was on the website/server side: WordPress, plugins, theme, .htaccess, injected JavaScript, cache, etc.

But after checking, the origin server looked clean.

The real issue was inside Cloudflare.

In my Cloudflare dashboard I found an unknown Worker named something like:

holy-recip-aeba

It had been attached to multiple domains through Worker Routes.

In the Cloudflare Audit Log I found the full sequence:

• LOGIN success from suspicious IP
• Create Token: "Cloudflare Agent (auto-generated)"
• Upload Worker Module
• Create Worker Routes on several domains

The Worker was then injecting the fake Cloudflare / ClickFix page before the request reached users.

So in my case, this was not caused by WordPress, not by the hosting server, and not by Cloudflare itself intentionally. It was an unauthorized Cloudflare Worker created after the account was compromised.

What I did to fix it:

• Removed all Worker Routes linked to the unknown Worker.
• Deleted the malicious Worker.
• Purged Cloudflare cache on all affected domains.
• Changed my Cloudflare password.
• Enabled 2FA.
• Regenerated the Global API Key.
• Checked and removed suspicious API tokens.
• Reviewed Audit Logs for login, token creation, Worker upload, and route creation events.
• Checked Google/Gmail security and local PC/browser extensions.

My advice: if you ever see a fake Cloudflare CAPTCHA asking users to run commands with Win + R, don’t only scan WordPress. Also check:

• Cloudflare → Workers & Pages
• Cloudflare → Worker Routes
• Cloudflare → Audit Log
• Cloudflare → API Tokens
• Cloudflare → Global API Key
• Cloudflare → Account Members

This type of attack can make a clean site look infected because the malicious code is injected at the Cloudflare edge.

Hope this helps someone.

I recently built a Chrome extension called BeachDesk – Beach Umbrella Booking Manager.

It is designed for beach clubs, lidos, resorts and small seaside businesses that rent beach umbrellas, sunbeds or seasonal beach spots.

Chrome Web Store Link: https://chromewebstore.google.com/detail/beachdesk-%E2%80%93-beach-umbrell/hpdfkgbbgnaefajhmpmalioheeidijfh

The idea is simple: instead of managing reservations on paper, spreadsheets or messy notes, the extension provides a visual beach map where each umbrella can be created, numbered and managed directly.

https://preview.redd.it/ktjsr8crof2h1.png?width=800&format=png&auto=webp&s=5fce4a5eb0fae613fdd3c916a636868aa395738a

Main features:

• Interactive beach map
• Quick umbrella grid creation by rows and columns
• Horizontal and vertical walkways
• Daily, half-day, weekly, monthly and seasonal bookings
• Customer name and phone number
• Payment status: paid or to collect
• Umbrella maintenance/block status
• Price lists by row/area
• Calendar view for availability
• Payments to collect
• Daily and monthly revenue summary
• Import/export backup
• Excel/CSV export
• Multilingual interface

The extension stores data locally in the browser using Chrome storage. It does not access websites, track browsing activity or send data to external servers.

I wanted to keep it lightweight and visual, especially for small beach operators that do not need a complex cloud management system.

I would appreciate feedback from Chrome extension users, developers or anyone who has experience with booking/management tools for small businesses.

What would you improve in the UI or workflow?

I recently built a Chrome extension called Smart Volume Booster, designed for people who often find website audio too low or want more control over how sound plays in the browser.

Chrome Web Store link: https://chromewebstore.google.com/detail/smart-volume-booster-audi/iimldgjanmmoiepefjgnadlgpknkdcao

The extension lets you boost tab volume up to 600%, adjust the sound with a 6-band equalizer, use audio presets like Bass Boost, Vocal, Treble, Rock, Pop, Cinema, Jazz and Dance, and control left/right audio balance.

https://preview.redd.it/o1tueilb0x1h1.png?width=803&format=png&auto=webp&s=3c8e9a9fc3c9b831795268a3f5d3d7b2cef8ad81

It also includes an Anti-Distortion option to help reduce peaks and distortion when the volume is pushed higher.

I mainly created it because I often noticed that some videos, online courses, streaming pages, or web apps had inconsistent or very low audio, and the default browser controls were not enough.

Main features:

• Volume boost up to 600%
• 6-band equalizer
• Audio presets
• Left/right balance control
• Anti-Distortion option
• Spectrum analyzer
• Per-site audio settings in the PRO version
• Lightweight popup interface

The extension works locally in the browser. It does not collect audio content, page content, or personal data.

I would really appreciate feedback from other Chrome extension users and developers, especially about UX, permissions, and compatibility with different audio/video sites.

Hey everyone,

I developed a free Amazon affiliate plugin for WordPress that lets you display Amazon products anywhere on your site with one simple shortcode — no page builder, no blocks, no fuss.

👉 Link Plugin: https://wordpress.org/plugins/affiliate-amazon-shortcode/

https://preview.redd.it/pyr646287g1h1.png?width=754&format=png&auto=webp&s=2edfbdc1972b92580c14cdd6aebb88ee51bfc392

That's it. It automatically pulls product image, title, price, and star rating for any keyword you choose — perfect for Amazon affiliate marketing on blogs, niche sites, and review sites.

To display products, simply insert the following shortcode in any page or post:

[affiamsh_amazon keyword="your keyword"]

Amazon recently deprecated PA-API 5.0 and migrated everyone to the new Creators API. A lot of Amazon affiliate WordPress plugins haven't caught up yet — this one supports both, so you won't wake up one day to broken product boxes.

It's lightweight, doesn't slow your site down, supports multiple Amazon marketplaces (US, UK, IT, DE...), and setup takes about 5 minutes.

Feedback welcome — especially if you've been struggling with the Amazon Creators API migration!

I recently built a Chrome extension called ChatGPT to Claude Transfer.

Chrome Web Store link:
https://chromewebstore.google.com/detail/chatgpt-claude-transfer/bklangmmnllkbpoocmfcmcmbhpgnnnbp

The idea is simple: sometimes you start a useful conversation in ChatGPT, but later you want to continue, compare, archive, or reuse that same discussion inside Claude. Doing this manually usually means opening the chat, copying the content, switching tabs, pasting everything into Claude, and repeating the process for multiple conversations.

This extension adds a small floating panel directly inside ChatGPT and lets you transfer selected conversations to Claude with a more guided workflow.

ChatGPT to Cloude Transfer

Main features:

• Select one or more ChatGPT chats
• Send the selected content to Claude.ai
• Small floating panel inside ChatGPT
• Processing indicator while the transfer is running
• Quick “Open Claude.ai” button after completion
• Runs locally in the browser, with no external server processing

It is not meant to replace either platform. It is just a practical helper for people who use both ChatGPT and Claude and want to move conversations between them with fewer manual steps.

I’d really appreciate feedback from other extension users and developers, especially about the workflow, UI, and any edge cases you think I should improve.