Malware Scan:

find . -name '*.php' -print0 | xargs -0 egrep -in 'wp_cd_code'

Search by Recents: ( add backslash-n after %p )

find . f -printf '%TY-%Tm-%Td %TT %p ' | sort -r

Notes:

https://www.google.com/search?q=lock360.php
https://www.getastra.com/blog/911/how-to-remove-the-backdoor-php-apiword-malware-from-your-wordpress-website
https://securityboulevard.com/2020/09/the-hidden-php-malware-that-reinfects-cleaned-files

Cleaning Scripts:

Search for “pwd163”
Search for 8/8 file creation date ( or other infection date )

Remove all htaccess files

Compare Main Folders
Compare Theme Files

Review Database