Wierd sizing issue

[stevesh]

If you haven't discovered where and/or how they got in, they'll be back.

[fwtools]

I am working on that but so far no luck. It also appears that they had done something else as I am now getting numerous reports of virus warnings. I had recieved a few logging into the admin side but none on the main site itself. Any ideas where to start folks? Also feel free to move this to the hacked thread if need be.
Thanks

[lhungil]

You might start with Recovering From Hacks. Your hosting provider may be able to help determine how the site was compromised and help stop the site from being compromised in the future. If you or the hosting provider have known clean backups for the files and database those will come in handy for recovering.

If you are on shared hosting the attack may not have been directly against your website - but against another site on the same shared hosting server... You may want to run some malware checks against any computer used to upload files to web server or the admin interface just to make sure your own systems are clean...

If the intrusion method can be determined, it would be interesting to hear what the attack vectors were and how the perpetrators got unauthorized access to your site.

Note: Just saw Kobra's response - beat me to the answer ;)