Support » Plugin: W3 Total Cache » Malicious Code Alert from Our Webhost… Assistance from Frederick Townes Please

  • I’m seriously hoping this is just a false positive on our hosting account. We have two separate accounts with Bluehost and they recently shut us down for malware on both sites. When we asked them to investigate and give us specifics, this is what they replied with.

    From Bluehost….

    These files are hacker related and the bad code in them needs to be removed or you will need to remove the files completely. However by removing the files completely can effect the site to no longer function.

    Bad files:

    These files appear to contain malicious code. You will want to review the files and remove the injected code from important files and/or remove unused or invalid files.

    public_html/wp-content/plugins/w3-total-cache/lib/W3/VarnishFlush.php
    public_html/wp-content/plugins/w3-total-cache/lib/W3/CacheFlush.php
    public_html/wp-content/plugins/w3-total-cache/cache/lib/W3/PageUrls.php
    public_html/wp-content/plugins/w3-total-cache/lib/W3/PgCacheFlush.php
    public_html/wp-content/plugins/w3-total-cache/lib/W3/CdnCacheFlush.php
    public_html/wp-content/plugins/w3-total cache/lib/W3/Plugin/PgCacheAdmin.php
    public_html/wp-content/plugins/w3-total-cache/lib/W3/Plugin/TotalCacheAdmin.php

    …End of message from Bluehost

    I removed the path for our username since this is a public form.

    The version of W3 Total Cache installed is 0.9.2.8

    I know there were some security issues a while back, but we need to know if this is for real or some kind of false trigger on our server.

    Thank you!

    http://wordpress.org/extend/plugins/w3-total-cache/

Viewing 2 replies - 1 through 2 (of 2 total)
Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Malicious Code Alert from Our Webhost… Assistance from Frederick Townes Please’ is closed to new replies.