Read the website security steps as mentioned at https://billing.webji.in/knowledgebase/4884/How-to-secure-my-website-What-basic-steps-to-follow-for-it.html and ensure your developer reads the same properly as they have to follow required security steps.
Option 1: If you have a copy of clean codes and updated cms at your end to reupload your website:
then, the email team will remove all files folder provide you the updated password for FTP and control panel. You need to follow all given steps after that as mentioned at https://billing.webji.in/knowledgebase/4823/All-in-one-Guide-to-malware-infection.html
Option 2: I don't have backup so need old files (even when I know many of them are infected)
https://billing.webji.in/knowledgebase/4903/I-donandsharp039t-have-CMS-copy-with-me-so-I-need-temporary-access-of-my-infected-data.html
Most of the cases where the issue repeats more often are:
A) Developer skips any of the security measures and steps
B) Or, if they scan with any antivirus and re-upload any infected file back as most of the latest infections can't be picked by any antivirus as if they are encrypted malware PHP files.
C) They don't check the website logs to understand which plugins or which part of CMS was attacked in logs and accordingly plan the security of the application
D) If they don't have a system to auto-update or update your web application timely hosting outdated cms like WordPress is the primary reason behind such hacking issues
E) If you don't have a plan to update your cms on a timely basis then better to develop a static website in HTML format, as HTML there is no way to have any hacking done on that as static HTML pages are not having any programming backend like PHP.
2. Once your developer is ready to follow the given security steps, email to support@webji.services with the subject "One time unsuspension request - domainname.com" replace domainname.com with your website name suspended for malware or security issues reasons and mention you want to follow the given steps and want a clean web hosting ac so that you can re-upload the clean copy of your website from your end and can follow the mentioned security steps.
3. Having SSL is optional but is recommended you can order SSL from https://billing.webji.in/knowledgebase/4892/Types-of-SSL-provided-by-WebJi.html
4. Having Virusdie (website firewall and malware scanner) is optional but is recommended if your website is in PHP you can order the same from https://billing.webji.in/knowledgebase/4888/Do-WebJi-offers-any-website-malware-cleanup-services.html as once ordered it can even auto clean your website.
Please note:
- For the first time - free unsuspend is possible
- If the issue repeats in 90 days time - Abuse fee is required to be paid for admin time
- If the issue 3rd time in 90 days time (from initial issue date) - Website cleanup service by WebJi® is must be ordered separately as your developer fails to secure the website or application, if repeated 3rd time. Our website cleanup plan details at https://billing.webji.in/knowledgebase/4888/Do-WebJi-offers-any-website-malware-cleanup-services.html
- If the issue 4th time in 90 days time (from the initial issue date) - The website will be blacklisted in our network and will not be allowed to be hosted anymore,
If you do not have a developer and/or your developer is unable to follow steps for any reason, then you can order our website cleanup service in case the malware issue is there, our website cleanup plan details as mentioned at https://billing.webji.in/knowledgebase/4888/Do-WebJi-offers-any-website-malware-cleanup-services.html
