My current WordPress installation was compromised and I need a clean, secure reinstall while preserving every post, page, image, plugin setting, and the existing database. The job starts with a full malware scan and removal, followed by replacing all core WordPress files with fresh copies. Once the site is running safely again, I want it hardened so this doesn’t happen twice. Key tasks and deliverables • Clean reinstall of the latest WordPress core without touching content or the database • Migration of wp-config, uploads, theme and plugin assets only after confirming they are clean • Security hardening: install reputable security plugins (Wordfence, Sucuri or similar), configure strong firewall rules, enforce strong passwords, lock down user roles, disable unused admin accounts • Set up an automated off-site backup routine—daily database and weekly full site backups, stored remotely (e.g., Google Drive, S3) • Post-reinstall report that lists actions taken, scans performed, and recommendations for ongoing maintenance Acceptance criteria 1. Site loads correctly with all content intact and no malware traces flagged by Wordfence or Sucuri SiteCheck. 2. Admin area protected by strong password policy and limited login attempts. 3. Automated backups run successfully and can be restored from the remote location. 4. Final security and cleanup report delivered. Access will be provided to cPanel/SFTP and phpMyAdmin as soon as we agree on the workflow and timeline.