There still are those of us who can do that. It's a pain in the ass to anyone. I've been hacked, though never through WordPress (just through my own stupidity and a non-secure FTP client, really I know better).
If the hack is in your files, the best thing you can do is this:
Delete EVERYTHING on your server, with the following exceptions:
Everything else? Chuck it.
Change your passwords. ALL of them. Especially your FTP/SSH/control panel one. Make a dedicated SQL user ID and password (if you're using cPanel, this isn't that hard, go in to the database section, make a new user, give it admin rights to your DBs). Then make THAT user the one in your wp-config.php.
Now get a fresh copy of WordPress and upload that. Get fresh copies of all your themes and plugins. Upload them.
Turn it back on.