Quote Originally Posted by tygab View Post
I will add you need your web people to figure out what was the way in. A restored back up will likely contain the exact same issue. Was it an out of date version of software, a php or sql vulnerability in one of your web forms, etc. Have to try and find the source of the vulnerability and shore it up...
Yes, I was going to say -- this is probably why the site isn't up yet. If I understand properly, you have a host provider that probably has many users all with their own websites on one or more server machines. Then you also have your web developer, who wrote the content for your site and uploaded it to your business account on a server machine.

Even if all the files are backed up, there's no point in bringing the websites up again until the means of the hack is discovered; otherwise you might immediately get hit again. It's also possible they may audit the site code for all of their users and change their settings to not allow certain constructs. So some sites may need to be rewritten. (For example, there are certain settings in PHP that are much more secure than others.)