Been dealing with this since last friday, a way I found to overcome it is if to roll back to a previous date prior to the attack, change all your passwords & then place every security measure you can. You can only roll back if you are on linux hosting. This was more cost effective and simpler at least for me. Hope that helps
