I have a WHM cPanel server that was hacked and has infected files. I have a list of which particular accounts on the site have been affected. It may be possible to automate a great deal of the cleaning since many of the bad files are exactly the same.
root access is available.
I would like these files cleaned up (deleted if unnecessary or replaced if required).
The server has hundreds of websites so it is repetitive.
Also I would like to find the source of the infection and prevent it from happening in the future.