Hello! I will check your site, scan it for injected malware via my own scanner (I will use my own python scanner which will detect and remove hidden malware, it uses very useful patterns of malware injections which being collected within last couple years. Last pattern I added yesterday when work on hacked Wordpress ), remove only vulnerable code (without removing whole file) and provide you security full report. if you have advanced access to sever logs I will try to determine which vulnerability was exploited. You will get the full list of hacked files, including time of hack so you can address this case to server logs for possible investigation
About me: I'm a system administrator in big hosting company with more than 200 cpanel\linux and plesk\windows servers under management. I have an excellent experience with helping my customers with resolving issues with email, WHM\cpanel, Plesk, Wordpress, Joomla and another CMS along with hundreds of various hosting problems, so I will use my special approach and you will shortly see the results. My hobby is pentesting so I can help with server securing because know many tools and exploration technics. I will be available within next 8 hours so we can han handle this task in short terms. Kindly let me know if you are interested. Thanks