geraldz

I had the same problem – this affects the default files on your server (index.php, index.html, default.html, etc.) Open these files and remove the malicious code (usually a script placed just below the </head> tag). Then save the cleaned file and change the permissions to read only (444).

Hi Samboll – you are correct; all of the index files on my shared server were hacked.

I have changed my file permissions to 444 (read only) which seems to have stopped the attacks.

I have looked at the database but did not notice anything suspicious. What should I be looking for?

Thanks for your help!

I’m waiting for WordPress to issue a release. I restored my backup index file.