WordPress Elementor Security & Indexing Cleanup Specialist

We need an independent WordPress Elementor malware and security specialist to audit, clean, secure and report on a compromised business website. Fixed-rate job. Domain provided privately to shortlisted applicants only. Please quote fixed price and anticipated time to complete. Specialist Applicants Only Please only apply if you are a genuine expert in WordPress Elementor malware cleanup, WordPress hardening and Google spam indexing recovery. Do not contact me if you are a general WordPress developer, SEO provider, or someone who will simply install a plugin and run a basic scan. Required experience: - WordPress malware cleanup and hardening - Japanese or Chinese spam indexing issues - Injected items spam files and fake indexed URLs - Fake item, product, tag, search or doorway spam pages - Wordfence, Sucuri, MalCare, MonarX or similar tools - Manual file and database investigation - 100 percent positive Upwork rating Background The website stopped loading and WordPress admin access returned a 401 Unauthorized error. The host found WordPress core checksum failures, including modified index.php, and many unexpected files inside wp-admin and wp-includes, including unexpected .htaccess, index.php and error_log files. The host indicated this was likely due to a compromised WordPress installation or service. There was also an earlier Google indexing issue where Japanese or Chinese spam URLs appeared in Google Search or Search Console. Injected items spam files and URLs were discovered through indexing, with fake item or product URL paths outside the site structure. The current programmer has started indexing fixes, but we need an independent specialist to check whether those fixes are effective. Help speeding up Google re-crawling and re-indexing after cleanup is preferred. Scope 1. Malware and file review - Scan WordPress for malware, backdoors, injected files and suspicious code. - Check WordPress core integrity. - Review wp-admin, wp-includes, wp-content, uploads, plugins and themes. - Check suspicious .htaccess, index.php, PHP files, hidden files and PHP files inside uploads. - Review wp-config.php, cron jobs, permissions and recently modified files. - Confirm whether restored site is clean. 2. WordPress security audit - Review WordPress core, plugin and theme versions. - Identify vulnerable, abandoned or unnecessary plugins and themes. - Check suspicious admin users, permissions and access points. - Review Wordfence firewall status, scan history and alerts. - Recommend 2FA and hardening steps. 3. Login issue Investigate whether the 401 login issue was caused by .htaccess rules, host password protection, Wordfence or firewall lockout, ModSecurity or MonarX, IP blocks, malware restrictions, or backup restore conflicts. 4. Google indexing and SEO spam review Investigate Japanese or Chinese spam URLs, injected items spam files and URLs discovered through indexing, fake item or product URL paths, cloaking, Googlebot-only content, hidden sitemaps, redirects, database entries, plugin or theme injections, rewrite rules, server files, Search Console warnings, manual actions, indexing status, current fixes, sitemap resubmission, removals, 410 responses, URL inspection and reindexing requests. 5. Backup and restore review Advise whether current restored version is clean, whether an earlier backup should be restored, and whether the database may still contain spam, redirects or malicious entries. Written Report Required Please provide a concise report covering what was found, what was fixed, likely cause, whether the site is clean and safe, Wordfence configuration, suspicious users/plugins/themes/files/redirects/database entries, whether Japanese or Chinese spam URLs and injected items spam files were malicious and removed, whether indexing fixes are effective, what to do in Search Console, what to monitor over the next 2 to 6 weeks, and hardening steps. Admin Security Checklist Required Please also provide a plain-English checklist any authorised admin can follow weekly or monthly. It should cover updates, risky plugins or themes, Wordfence checks, firewall status, suspicious admin users, 2FA, backups, post-update checks, Search Console spam and indexing checks, sitemap checks, warning signs, and what not to touch without specialist help. Applicant Questions Please answer: 1. Do you have a 100 percent positive Upwork rating? 2. Provide examples of similar WordPress malware and Google spam indexing recoveries. 3. Have you handled Japanese or Chinese spam indexed URLs? 4. Have you investigated injected items spam files, fake item or product URLs, tag, search or doorway spam pages? 5. How will you confirm the restored site is clean? 6. How will you check for cloaking or Googlebot-only spam? 7. What tools and manual checks will you use? 8. Can you review Wordfence and help speed up Google re-crawling after cleanup? 9. What access do you need? 10. What fixed price do you propose?