WordPress.org

Ready to get started?Download WordPress

Forums

W3 Total Cache
Malware (4 posts)

  1. miri
    Member
    Posted 2 months ago #

    Every time I enable W3TC, malware links get injected into my cache files and my site gets black-listed. This only happens when this plug-in is enabled. I've removed it, all cached files and then reinstalled it. The problem still happens. My server host has run multiple scans on the server and can find no malware when W3TC is disabled. Shortly after it's reenabled, they run another scan and the malware links are throughout the cache files.

    Any idea how in the heck this happens and what I can do to make it stop? I'm running the latest version of WP and W3TC and have run WordFence scans against the installed files.

    https://wordpress.org/plugins/w3-total-cache/

  2. Daniel Cid
    Member
    Posted 1 month ago #

    You might have some malware that is dependent on W3TC to run. If you can send us your site, we can scan it for you to see if we can identify what is going on.

    You can also try to scan it here: http://sitecheck.sucuri.net to see if it is a known injection.

    thanks,

  3. miri
    Member
    Posted 1 month ago #

    It was listed on that site prior to me turning off W3TC.

  4. perezbox
    Member
    Posted 1 month ago #

    If you engage the Sucuri Research team at labs@sucuri.net they'd love to learn more about the case and figure out the specifics of your environment and what you're seeing. It might make for a very interesting write up.

    Thanks

Reply

You must log in to post.

About this Plugin

About this Topic

Tags