[RealCarAudio]

If anybody has php.ini files on their account you may want to make sure these were not changed. I recall my clients php.ini file being changed but can not remember exactly what the change was that they made.

Also, as I stated before, please make sure your webhost scans files that are in your directories that are located before public_html, as I know when my client got hacked, they placed the iframes also in their stat programs pages.

These are usually located in the /home/yourusername/tmp/ directories.