I am on shared hosting with hostgator. I sent in a security request to them telling them about the malware on my account and they have been quick to respond.
They believe the cause of the problem is in timthumb.php. A script that many wordpress plugins use for resizing images. They have already fixed up my problem.
