Title: Suspicious code
Last modified: January 31, 2022

---

# Suspicious code

 *  Resolved [mity123](https://wordpress.org/support/users/mity123/)
 * (@mity123)
 * [4 years, 4 months ago](https://wordpress.org/support/topic/suspicious-code-5/)
 * Hello,
 * my hosting marked this file: wp-mailinglist-plugin.php as dangerous with malware.
   
   I tried some malware tester and really found malware (suspicious code) in all
   versions of your plugin, especially the latest version.
 * Can you check it please?
    Thank you

Viewing 3 replies - 1 through 3 (of 3 total)

 *  Plugin Author [Tribulant Software](https://wordpress.org/support/users/contrid/)
 * (@contrid)
 * [4 years, 4 months ago](https://wordpress.org/support/topic/suspicious-code-5/#post-15311080)
 * Hi,
 * Can you let us know which malware scanning tool have you used? Ours haven’t indicated
   any malware so far.
 *  Thread Starter [mity123](https://wordpress.org/support/users/mity123/)
 * (@mity123)
 * [4 years, 4 months ago](https://wordpress.org/support/topic/suspicious-code-5/#post-15311542)
 * I used [http://virustotal.com/](http://virustotal.com/) and I upload only this
   file: wp-mailinglist-plugin.php
 * But also my hosting provider had a problem with this file.
 *  Plugin Author [Tribulant Software](https://wordpress.org/support/users/contrid/)
 * (@contrid)
 * [4 years, 4 months ago](https://wordpress.org/support/topic/suspicious-code-5/#post-15312518)
 * Thanks for your reply.
 * We did the same by going to virustotal.com and uploading only wp-mailinglist-
   plugin.php of the latest lite version and the paid version and the result is 
   that only one detected something, this one: Bkav Pro – VEX.Webshell
 * We’re looking to see if it’s a false positive (as it should be as we never meddle
   with our own files in any illicit way, ever).
 * One of our staff says that it is only a Vietnamese scanner that detects something(
   Bkav Pro) and none of the big known names do. See this also: [https://www.alfredforum.com/topic/16478-virus-total-detection/](https://www.alfredforum.com/topic/16478-virus-total-detection/)
 * And, it’s a false positive. Use tools like this to confirm that it is clean: 
   [https://shellray.com/](https://shellray.com/)
 * We have our own tools in our own hosting company and none detect that and we 
   use our own plugin for our Newsletters. It is a false positive by Bkav Pro.
 * You can keep using our plugin safely. If anything is discovered, we’ll patch 
   it immediately.
 * I’m interested in seeing what tool your hosting used, so that we can verify that.

Viewing 3 replies - 1 through 3 (of 3 total)

The topic ‘Suspicious code’ is closed to new replies.

 * ![](https://ps.w.org/newsletters-lite/assets/icon-256x256.png?rev=1184265)
 * [Newsletters](https://wordpress.org/plugins/newsletters-lite/)
 * [Support Threads](https://wordpress.org/support/plugin/newsletters-lite/)
 * [Active Topics](https://wordpress.org/support/plugin/newsletters-lite/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/newsletters-lite/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/newsletters-lite/reviews/)

 * 3 replies
 * 2 participants
 * Last reply from: [Tribulant Software](https://wordpress.org/support/users/contrid/)
 * Last activity: [4 years, 4 months ago](https://wordpress.org/support/topic/suspicious-code-5/#post-15312518)
 * Status: resolved