I had the same thing happen to me….there is actually another thread about this…but no one seems to know why or how.
Have a look here: http://wordpress.org/support/topic/179428/page/2?replies=54#post-774350
I’m keeping my wordpress site down until I am able to find what caused this or at least get some confirmation.
Best of luck.
My site was hacked as well. Any chance this thread can re-evolve from bickering to helping everyone figure out the cause?
I have the affected script attached to all my files…and although I didn’t find anything tagged with pre_ in front of the filename, I did find that hello.php in my plugins directory was copied to ext_hello.php with some funky code in it.
I have no idea how these guys got in, or how they destroyed my site. Any chance anyone has any ideas before I wipe it and start all over?
Thanks everyone.
