SiteGround keeps taking my WordPress site offline every few days after their scanner flags fresh malicious scripts. I have already set up regular backups, cleaned the reported files each time, and had the account re-activated—yet the problem returns almost immediately. The job is to perform a deep inspection of both the file system and database, eliminate every trace of malware, and then harden the environment so SiteGround’s scanner no longer finds anything suspicious. Experience with SiteGround-specific tools (cPanel, SG-Site Scanner, server-side WAF rules) and standard WordPress security practices—manual core checks, plugin/theme audits, .htaccess tweaks, server-level permissions, and real-time monitoring—is essential. Deliverables • Full malware cleanup, confirming the current malicious scripts are gone • Written summary of what was found, how it was removed, and how the infection vector was closed • Security hardening: up-to-date core, vetted themes/plugins, firewall rules, login protection, and scheduled scans • Final report with proof the site passes SiteGround’s scan and remains accessible Acceptance: the site must stay online and malware-free through SiteGround’s next scheduled scan cycle (minimum one week) without additional interventions from their support team.