Was I hacked again?

Erlier this evening the site messed up. I wasn't sure why, I hadn't changed any features or messed with any code.

I didn't think much of it perhaps I just needed to upgrade, so I did the upgrade to the newest wordpress version 2.0.5. Since I was doing that, I also upgraded to the latest versions of all plugins and deleting unused garbage.

This required me to disable all plugins and test them each at a time to work the kinks out.

However, when I tried to reinstall my theme, I noticed something at the bottom of each page, that I had not put there.

I'm not sure how but i think someone hacked into the site. Each wordpress page had an ammendment to it. I removed them, but I have no idea what that script did, perhaps a password stealer. I just dont know. If anyone hasever seen anything like this before, please let me know so I can prevent it from happening again

Note: side blog does not function correctly due to the upgrade, so it has been turned off until the developer adds a compatibility patch.

I was watching HBO's Deadwood (great show). The phone rings, It's Robin's brother telling me to go check out my website. I come up stairs to the computer room and notice myspace messages and flashing IM's filling the screen. Telling me that my site was HaXoReD, their words not mine.

Damn. Damn. Damn.

He left a strangely apologetic message on the front page, informing me to worry more about security. Also some strange files he seemed to have uploaded. I think they are best left alone until some one smarter than I am can have a look to see what they are.
(more...)