May want to check your index pages, I found one which had been injected.
I haven't tried to track it yet. It occurred @ 4am MST
This is a safe screenshot of the seeded code:
w w w.lcc-consultants.com/injection.gif
I haven't posted enough to add a real link
Regards,
Bookmarks