I have been racking my brain on this for days. 4/8 blogs on my server has been effected. None have the same password. Use different themes and different computers to access (completely separate users) I found the problem through a google alert three days ago. VPS host has been contacted twice and they claim nothing is unusual. Steps taken: Found a user registered as an admin named "feedburner". Had a strange script in the signature. Removed user. Removed all subscribers. Re-uploaded fresh wordpress files using overwrite via FTP. Changed all passwords. Re-wrote .htaccess which had its file permissions changed. Changed back file permissions that seemed to have been modified to 777 Below are images of todays post. Any help or ideas greatly appreciated. Thanks
What version wordpress are you using? Do you have any plugins installed where users can enter data? Would you list the plugins you use?