My WordPress site has been hit by malware and is barely functioning. I don’t yet know the exact strain, so the first step will be a thorough scan to identify every compromised file, database entry, or script. I have an older backup you can reference if needed, but assume we are working with the live server for most of the fixes. Once the infection is isolated and removed, I want the core, theme, and all plugins fully updated, followed by hardening measures such as permission tightening, firewall rules, and security plugin configuration. Please leave me with a brief incident report that lists what you found, what you cleaned, and the steps you applied to secure the site so I can keep track moving forward. Deliverables • Complete malware identification and removal (files + database) • Restoration of normal site functionality and performance • Updates to WordPress core, themes, and plugins • Security hardening and post-cleanup report with recommendations The site is hosted on a standard cPanel environment with full SFTP and phpMyAdmin access ready for you.