I didn’t install any new plugin or theme in WordPress 4.0.1. I just update some plugin every day for new update is coming. But my website got effect the malware alerted from google webmaster tool. I still don’t know what this malware injected to my code on server yesterday (14 December 2014). I’ve replaced the file follow “@iLabz Dev” instruction above, that’s these 2 files has been modified yesterday by someone or ….
But it’s 6 hours until now, my website still got an malware alert :'(
