Most owners of the ~1.375M targeted WordPress sites have not confirmed they are safe. Here is the 30-minute self-triage with file hashes, malicious paths, traffic patterns, and database signatures to prove you are clean.
WordPress access log forensics
1 Article
Searching Nginx, Apache, and Litespeed access logs for traffic signatures of WordPress exploitation, including wp-cron abuse and admin-ajax POST floods.
