4
heh, I *know* that too much info is bad, but no info is even worse...
Have you asked you host to look into this? Perhaps they didn't come in via your site, but infected the whole server. If the apache logs don;t show anything out of the ordinary (have you checked the access logs too?), then htey didn't come in via the site.
Herko