My WordPress install has been hit with a back-end malware infection. While visitor pages still load, strange PHP files keep spawning in wp-includes and my admin panel crashes at random. I need someone who can dive straight into the server, trace every malicious script, clean the core, themes, plugins and database, then harden the site so the breach can’t happen again. You’ll receive full cPanel, FTP and wp-admin access as soon as we start. Please document the exact files you touch, the vulnerabilities you find, and the steps you take to patch them. I’ll consider the job complete once the site passes a fresh malware scan (Wordfence or Sucuri), admin functions run smoothly, and no suspicious files regenerate after a short monitoring window. Same-day turnaround is strongly preferred. Issue with i am not a robot pop up that occurs from windows desktop Need enforcement for prevention of this in the future as well. Restriction and locking down files