[motaaa]

I've gotten the top antivirus, top spyware scanner, top registry cleaner, top internet security, as well as bonuses like the top rootkit scanner (with VERY DEEP scans), something that checks DLL's attached to your running exe's, and several more things. I'm installing SP3 from Microsoft right now (I had SP1) and doing tons of other stuff. I changed all of my passwords on a different computer on a different IP on a school computer and I'm not logging in any of my accounts until I finish this deep scan.

The problem with reinstalling Windows is that I run a business and all of my private source codes (I sell C++ coded programs) are stored on my computer and I have been so scared of this hacking issue that I haven't felt safe putting ANY of my sources on to a remote server anywhere. My CD-Burner is broken and it's far too big for floppy drives (which is also broken, but I can get an external floppy drive.) I am just looking to fully fix this problem but the thing is I have absolutely NO idea how they're doing this.

I was coming up with some ideas on how they could have done this through the information they had as my previous host owners from before that I wanted to run past you.
-Could they possibly put something in the SQL to forward all SQL entries to another remote SQL?
-Could they have passwords sent to a remote SQL in plain text BEFORE md5(hash($hash+salt)) encryption is placed on the text strings?
-Any other possibilities?