Looks like your site has been hacked and one of the plugins that were compromised was W3TC. It doesnt mean that W3TC has the reason your site was hacked though.
Either way you must clean your website.
Thread Starter
WPUser
(@user325)
Well it’s either a false positive from the hosting side or the site is hacked ad a whole.
Moderator
Jan Dembowski
(@jdembowski)
Forum Moderator and Brute Squad
haha, no. my site is ok
No, it’s not OK. Your (free and totally unsupported which is why no one should ever use that company ever) host was compromised. The attacker placed that hack into that directory, it did not come from this plugin.
You need to delouse your site if you want to use it. This link can help you start that process.
https://codex.wordpress.org/FAQ_My_site_was_hacked
Thread Starter
WPUser
(@user325)
it’s w3tc file, you can download and find it yourself https://downloads.wordpress.org/plugin/w3-total-cache.0.9.4.1.zip (w3-total-cache.0.9.4.1.zip\w3-total-cache\lib\Nusoap\nusoap.php)
what is nusoap? – https://sourceforge.net/projects/nusoap/
i just think 000webhost is buggy
Thread Starter
WPUser
(@user325)
and yeah… i didn’t mention in my first post that 000webhost removed my site, so there was nothing to clean anyway xD
Moderator
Jan Dembowski
(@jdembowski)
Forum Moderator and Brute Squad
Yes. This file.
https://plugins.trac.wordpress.org/browser/w3-total-cache/trunk/lib/Nusoap/nusoap.php
Either it’s a false positive (as indicated above) or your copy of that file was hacked.
if it’s a false positive then your host needs to fix it. If you are hacked then you need to delouse your site,
Thread Starter
WPUser
(@user325)
someday i’ll try to upload nusoap.php from w3tc plugin (just one file) on new account of 000webhost and see what will happen
@wpuser, either way its a bad practise to use free hosting providers such as 000webhost.
This is a -wannabee- hacker playground.