• Our team is looking to connect with folks who use email services provided by Plesk, or a premium service. If you'd like to be part of the discovery process and share your experiences, we invite you to complete this short screening survey. If your responses match the persona we are looking for, you'll receive a link to schedule a call at your convenience. We look forward to hearing from you!
  • We are looking for U.S.-based freelancer or agency working with SEO or WordPress for a quick 30-min interviews to gather feedback on XOVI, a successful German SEO tool we’re looking to launch in the U.S.
    If you qualify and participate, you’ll receive a $30 Amazon gift card as a thank-you. Please apply here. Thanks for helping shape a better SEO product for agencies!
  • The BIND DNS server has already been deprecated and removed from Plesk for Windows.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS. We strongly recommend transitioning to Microsoft DNS within the next 6 weeks, before the Plesk 18.0.70 release.
  • The Horde component is removed from Plesk Installer. We recommend switching to another webmail software supported in Plesk.

Issue pmm-ras.exe infected? Symantec detected WS.Reputation.1

nethubonline

nethubonline

Regular Pleskian
After upgrade the Plesk to most updated version: Plesk Onyx Version 17.5.3 Update #22 , Backup manager becomes not accessible, it is same to this KB: Backup manager is not accessible: The system cannot find the file specified

We checked the reason becuase Symantec Endpoint Protection detects pmm-ras.exe infected by WS.Reputation.1 , so that the file is quarantined and make the Backup manager fails.

However, it is weird that I download pmm-ras.exe again today, Symantec doesn't show alert anymore......

Below is the report from Symantec Endpoint Protection

Filename Risk Action Risk Type Logged By Original Location Computer User Status Current Location Primary Action Secondary Action Action Description Date and Time

pmm-ras.exe WS.Reputation.1 Quarantined Insight Network Threat Auto-Protect scan c:\program files (x86)\parallels\plesk\admin\bin\ abc SYSTEM Infected Quarantine Quarantine Leave alone (log only) The file was quarantined successfully. 17/9/2017 4:31
 
Last edited:
WS.Reputation.1 is a detection for files that have a low reputation score based on analyzing data from Symantec's community of users and therefore are likely to be security risks. Detections of this type are based on Symantec's reputation-based security technology.
Click to expand...

That is, it is not a virus, even from the point of view of the Symantec. Just a kind of mistrust.
I would suggest do not use any third-party antivirus software on Plesk server.
 
You must log in or register to reply here.

Similar threads

danami
Input Sentinel Anti-malware Extension for Plesk
Replies
6
Views
4K
danami
danami
Azurel
Issue Extension ModSecurity issues with matomo?
Replies
3
Views
4K
Azurel
Azurel
danami
Input Warden Antispam & Virus Protection Extension for Plesk
7 8 9
Replies
175
Views
49K
danami
danami
Nishant Tanwar
Issue "Error: pmm utility 'PMMCli' raised an exception. Error code is: -1"
Replies
0
Views
5K
Nishant Tanwar
Nishant Tanwar
E
How to Set up Your WordPress Website Security
Replies
0
Views
2K
Elvis Plesky
E
Back
Top