My WooCommerce shop was restored from backup last week, yet a fresh malware infection has taken it offline again. The host has disabled public access until everything is cleaned and secured. I need someone to: • Locate and remove every malicious file, script, and backdoor across WordPress core, themes, plugins, and uploads • Restore full site functionality without losing orders, products, or customer data • Patch WordPress, WooCommerce, and all plugins to the latest stable versions and delete anything unused or vulnerable • Reinforce security settings—strong file permissions, .htaccess rules, recommended hardening plugins, and rate-limit or firewall configuration • Provide a concise report of what was found, what was fixed, and clear steps I should follow to keep the site safe No redesign or feature work is required—just a clean, healthy site ready for customers again. If you have solid experience in WordPress malware removal and hardening, I’m ready to get started right away.