Most owners of the ~1.375M targeted WordPress sites have not confirmed they are safe. Here is the 30-minute self-triage with file hashes, malicious paths, traffic patterns, and database signatures to prove you are clean.
WordPress admin user audit
1 Article
Manual and automated ways to detect suspicious admin users, rogue options, and malicious rows injected into wp_options and wp_users.
