Our membership WordPress site was attacked by a bot that created thousands of memberships. Not clear what the scam was but adding a Captcha to the registration (not a feature available when we first created the site, so didn’t know it was an option) seems to have stopped the registrations. I was manually deleting accounts through the WP interface and realized it would be faster to delete 5,000 accounts through the database.

Did I back up the database? No I did not.
Am I dumb? Apparently.

There is apparently a glitch in the PHPMyAdmin tool because I

1. Searched for names that only have fake accounts, e.g., Abilgail
2. Selected all 500 visible
3. Clicked delete
4. and the program just decided to select the first 500 users in the database rather than the specific ones I selected, but only gave me the “DO you want to delete this list of user numbers?” rather than the names
5. so I unknowingly deleted my admin account from the php database which started with an “A”

That was the only admin account so I can’t log in. I manually added a line to the database with my username and password but, either it’s slow to propagate or it’s not working.

Any help would be greatly appreciated.