Alert Virus

#167297
  • Resolved Bruno Pinci

    3 years, 1 month ago

    Rank Math free

    Hi,
    On four of our sites we have received a virus alert from the Provider concerning your Plugin:
    Dear Customer,

    we have detected the presence of some malicious files that compromise your sites.
    These files have probably been uploaded through vulnerabilities in the CMS, themes or plugins it uses. Therefore it is advisable to delete the malicious files (by checking them), update the CMS / themes / plugins to the latest versions available online and change the administrative access passwords to the CMS itself.

    N.B. There are two possible types of malicious files detected:
    1 – files with the wording ‘Moved to quarantine’: they are certainly malicious files to which public access is inhibited and which you can consult in the ‘Security’ -> ‘Quatantena Malware’ section of your cPanel;
    2 – files that do NOT have the wording ‘Moved to quarantine’: they are files that the scan considers possible threats, but which can also be false positives and therefore functional files for the activity of your CMS / site / application. These are not moved to quarantine, but we still recommend checking the code present in these files, to eventually clear them from code not entered by you.

    This is the list of domains with the details of the detected files.

    Domain: tuttocomputer.net
    Date modified
    File (and detection description)
    2021-03-13 18: 27: 05
    /home/gtuttocc/public_html/wp-content/plugins/seo-by-rank-math/includes/modules/analytics/assets/js/stats.js
    YARA.SP_31_20180830_php_xor_function.UNOFFICIAL FOUND

Viewing 3 replies - 1 through 3 (of 3 total)
  • Anas

    3 years, 1 month ago

    Rank Math business

    Hello,

    Thanks for contacting Rank Math, and sorry for any inconvenience caused.

    That is a false positive and nothing to be worried about.

    We go through rigorous testing before each update and Rank Math is 100% safe to use.

    Please go through this article on the topic:
    https://rankmath.com/kb/is-rank-math-safe-to-use/

    Thank you. Let us know if you need any further assistance.

    Bruno Pinci

    3 years, 1 month ago

    Rank Math free

    We send you the response of our Hosting Serverplan to which we had read your words of assistance:

    Good morning,
    I confirm that the files are mostly possible vulnerabilities, which is why they have not been placed directly in quarantine. So no problem on our part, surely there is some PHP code in that plugin that should be optimized to eliminate the vulnerabilities found. I confirm that with an optimization of the code, by the developer, these alerts will disappear.

    We remain available, have a nice day,

    Federico Della Penna
    Technical Analyst

    Prabhat

    3 years, 1 month ago

    Rank Math agency

    Hello,

    Thanks for your reply.

    As my colleague said, the file pointed in the error is a False Positive and there’s nothing to be worried about.

    However, could you please confirm which hosting provider and tool (like Cpanel) you are using? Please add these details in the Sensitive Data section of this ticket. You can access the Sensitive Data section by editing the first post on this ticket.

    Looking forward to helping you.

    Thanks.

    RankBot

    3 years ago

    Hello,

    Since we did not hear back from you for 15 days, we are assuming that you found the solution. We are closing this support ticket.

    If you still need assistance or any other help, please feel free to open a new support ticket, and we will be more than happy to assist.

    Thank you.

Viewing 3 replies - 1 through 3 (of 3 total)

The ticket ‘Alert Virus’ is closed to new replies.