We detected suspicious contents that suggests your 'johnharper' account has been compromised. We have temporarily suspended your website to protect your website visitors from getting impacted and also preventing the impact on your website reputation as well as our server’s reputation.
We have uploaded a file ‘websitescan.txt' within the stats directory of your account which contains the full list of infected files. We need you to take one of two actions suggested below:
We encourage you to contact our preferred partner, SiteLock. In addition to long-term solutions like their Fix and Prevent products, which offer daily scans and removal of malware, SiteLock also provides an emergency service, SiteLock 911. You can call our dedicated SiteLock support representatives using the Toll Free number (United States and Canada customers only) : (855) 378 6200. International: (415) 390-2500. To learn more about SiteLock, please go to: https://www.ipower.com/product/sitelock .
I was very busy with other problems, so I did what they suggested - retain SiteLock to clean and do regular security sweeps at jcharper.net. It costs $30/month which is a huge increase in the cost of this non-commercial vanity website. The suspension was lifted and the website is back online.
Now that I have some time, I would like to know how to avoid security compromise on the remote server over which I have absolutely no control. Did I do something wrong or is this just the nature of today's internet?