This might be of interest. Out of 33 tables in the database that could be infected, only one, the BLOG table, was infected. Do you think a client (family) could have infected the DB when viewing and updating? There is another PW protected private site that allows family members to make blog entries and upload pictures but I would not have thought a client could get past NS SQL servers. I’m on hold with NS right now.