May want to check your index pages, I found one which had been injected.
I haven't tried to track it yet. It occurred @ 4am MST

This is a safe screenshot of the seeded code:
w w w.lcc-consultants.com/injection.gif

I haven't posted enough to add a real link

Regards,