Spammers are cracking now?!

So I am no stranger to the occasional comment from spammers, I usually just moderate it and get on with life.

But today I mosey on over to my site for shits and giggles when I notice one thing: it’s not there.

Then I notice the scrollbar is way pushed up, so I scroll down. My site has a huge amount of blank space above it. Attributing it to a code glitch, I validate the CSS and XHTML almost instinctively. The CSS Validation page tells me there’s an error in my HTML document. Line 1 Column 16.

The XHTML validation page just says Failed.

I’m getting suspicious: I check this Line 1 Column 16 by viewing source. Expletives ring off in my mind as I read marquee tags everywhere in my source. They advertise “Xenical”, “Xanax”, and “Phenterimine”, as well as a plethora of unknown characters represented by a diamond and question mark.

I check the admin pages and the theme editor—maybe it was just my theme that was cracked. Instead I am greeted with header errors relating to wp-db.php:359.

I make sure there’s nothing wrong with wp-db.php and then open up my ftp client and re-upload all my files, knowing I can’t hurt anything by doing so.

Nada.

I’m really getting worried. If it’s not related to files, It’s related to my database.

I open up my host’s control panel thing, check to make sure my databases are alright. Two are left open so I click “Repair”–Then I head to phpMyAdmin.

I notice there’s a database that I hadn’t created in the drop-down: test, and test has one table.

Not knowing or caring if this was something just implemented by phpMyAdmin, I drop the tables in the database and check my site again.

The marquees and blank space are still there.

At first I come to the conclusion spammers have cracked my WP database. But when I run a search on “Xanax” and “marquee” in the search database form, I get nothing.

And if I uploaded all files anew … what’s happening?

Could my host have been cracked in some way?

Edit: sorry, my site is http://bluism.com