Randy C. Ramsdell wrote: > Just some info: A good hack or rootkit will clean the clean logs. > Well, I found a glaring vulnerability that's probably what bit me... unpatched PHP XML RPC library in my Drupal installation. I'll check as you advise. --