BulletProof Security Forum

Proven Data looks good > https://www.provendata.com/. They have excellent Trustpilot reviews. They have an F rating on BBB, but I looked at one of the complaints and it is ridiculous or spam. They have been in business for 16 years and only have 2 complaints on BBB. That is exceptional.

Hmm they appear to be legit to me. In any case, I’m not a computer/network server ransomware specialist. My area of expertise is website security, which includes web servers and websites. Do google searches for “Akira ransomware recovery” and be sure to check BBB and reviews for any possible companies that you find.

They are very expensive + don’t seem legit to me.

Trying to figure out which variant of Akira your server is infected with and then figuring out the encryption method would be very difficult unless you are very familiar with ransomware decryption. So yeah definitely go with a Pro.

Try these guys > https://www.ransomwarehelp.com/. They are BBB accredited, have good reviews and claim that if they cannot recover your data you pay nothing. Important Note: Ransomware Help has zero reviews on Trustpilot.

What to do for this?

My server is windows

Just checked your IP address and it has a high threat level. That could mean that you are a bad actor or your computer/network is compromised and your IP address is seen as an attack vector IP.

ThreatLevel: “high”: An IP address with a “high” threat level is an immediate and serious security risk. This is not a vague or minor threat but one…[Read more]

My first thought was to boot into Linux from a Linux boot disk (Hiren’s BootCD PE).  This is the method that these guys (DIRT) used on a VMware ESXi server > https://medium.com/@DCSO_CyTec/unransomware-from-zero-to-full-recovery-in-a-blink-8a47dd031df3

Do you have a Windows or Linux server? Is the server inhouse or offsite?

I think your web host (YourHosting.nl) uses Plesk. If that is correct then see this Plesk help topic for how to change your php server version for individual domains/website > https://support.plesk.com

Most web hosts no longer use php handler htaccess code.  You might be able to change php handler code per domain/website in your web host control panel, but cPanel now seems to only allow you to change your php server version for your entire hosting account. If your web host does still allow php handler htaccess code then you would need to use…[Read more]

The Security Log entries do not contain anything that would be blocked by BPS. So what is happening is a JavaScript DELETE Request is occurring and the remaining GET Request is being logged. Use the solution below.

DELETE has been removed from the modified custom code below.
1. Copy the code below into this Root Custom Code text box: 9. CUSTOM…[Read more]

Following your intervention in the back office, I was able to activate BPS pro without any problems, then change the PHP version to 8.4, and finally I updated the plugins and WP, and now everything is OK.
Thanks 🙂

BPS is not causing the php Cron rescheduling error, but BPS may be able to fix it. Try Clearing|Resetting Cron Jobs by using the BPS Pro Scheduled Crons tool. Go to the BPS Pro menu > Tools menu > Scheduled Crons tab page > click the Reset|Clear All Cron Jobs button.

Related WP forum topic > https://wordpress.org/support/topic/some-cron-problems/#…[Read more]

The problem appears to be server-side. First thing to try is to change your PHP server version from 7.4.33 to at least 8.1 in your web host control panel.