Same here, since yesterday it is redirecting to http://uaroyalysdaliachu.ru and now google search engine has started showing malware notice on website when go through search engine, something got infected in wordpress on 15th Feb. 2012. Please post the solution or any malware removal script if anyone has tried it.
Hi, I contacted my server provider (hostgator) about this issue, they have scanned and cleaned all the malware scripts which was even injected in the root domain, then I submited to Google webmaster tool for “Attack Page Website message” removal and within 24 hours all sites are back to normal. Do contact your server provider because this is what you cannot clean on your own quickly. I found Hostgator is extermly helpful that is why I had shifted my sites from Godaddy to Hostgator.
This is not the best solution the malware script stll be there.
Have anybody a another solution for this?
I have found more files in the subdirectorys with malware. For example in the subdirectory wp-admin is one file it caled wp-ggxy.php
And i have detected more of one file with this names wp-xxxx.php