My WordPress site was recently hacked and I have already located several web-shells and other malicious scripts scattered throughout the installation. I need the entire site cleaned and restored to its pre-attack state. You will have everything required to work efficiently: full cPanel and WordPress admin credentials, plus a complete site backup taken before the compromise. I’d like you to: • Identify every infected or suspicious file, remove the malware, and confirm no hidden backdoors remain. • Reinstate the clean copy of the site if needed, while preserving the latest legitimate content and user data. • Update WordPress core, themes, and plugins to current secure versions and harden typical entry points (wp-config, file permissions, .htaccess rules, etc.). • Provide a concise report summarising what was found, the steps taken, and practical recommendations to prevent a repeat. I’ll consider the job complete once the site loads normally, scans malware-free on tools such as Wordfence or Sucuri, and the admin dashboard is fully functional without errors.