If you notice that your site files have been modified and contain viruses or malicious links, this could have happened either through theft of your FTP/cPanel password via a virus/trojan or by exploiting a bug in a script on your site.
If you find yourself in such a situation, we recommend contacting us immediately to check how your site was infected.
If the site was infected due to stolen FTP/cPanel passwords, the first thing you should do is clean your computer from viruses. We recommend antivirus software like Bitdefender or Malwarebytes.
After cleaning your computer, change all your site passwords: cPanel, email accounts, and any additional FTP accounts (if you have them). Do not change passwords before cleaning because the virus/trojan may send the new password to attackers.
You can now upload your site files from your computer to the server. Make sure none of the files contain foreign or malicious code. If you do not have the site files on your computer, you can contact us to restore them from backup.
If the site was infected by exploiting a bug, immediately update the platform your site is built on. For example, if you use WordPress, update it to the latest version, and also update all plugins and the theme.
If the Firefox or Chrome web browser shows a warning when accessing your site, follow the steps described here https://webmasters.googleblog.com/2008/08/hey-google-i-no-longer-have-badware.html.