Support » Plugin: W3 Total Cache » Malware

  • Every time I enable W3TC, malware links get injected into my cache files and my site gets black-listed. This only happens when this plug-in is enabled. I’ve removed it, all cached files and then reinstalled it. The problem still happens. My server host has run multiple scans on the server and can find no malware when W3TC is disabled. Shortly after it’s reenabled, they run another scan and the malware links are throughout the cache files.

    Any idea how in the heck this happens and what I can do to make it stop? I’m running the latest version of WP and W3TC and have run WordFence scans against the installed files.

Viewing 3 replies - 1 through 3 (of 3 total)
  • You might have some malware that is dependent on W3TC to run. If you can send us your site, we can scan it for you to see if we can identify what is going on.

    You can also try to scan it here: to see if it is a known injection.


    It was listed on that site prior to me turning off W3TC.

    If you engage the Sucuri Research team at they’d love to learn more about the case and figure out the specifics of your environment and what you’re seeing. It might make for a very interesting write up.


Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Malware’ is closed to new replies.