I wonder, I loaded the sitstift script,it took 5 days before it was hacked!! well, I had not yet used it. Maybee I did something wrong?

A lot of sitesift scripts were hacked a month ago. Is it a new attack?

for a few days ago.

I'm sorry to hear about the hack. I don't use siteshift but:
1. Are there files to be used during the install process that should be removed when the install is complete?
2. Did you change all the default passwords?
3. Did you CMOD only the necessary files?
4. Did you use really strong passwords on your admin, FTP and cpanel logins? Meaning no dictionary words, both letters, caps and numbers.

Thanks a Lot for the tips, I see in the log they, bagdad hackers came in throu´ht.acess, I did forget to take away the, ht.acess.txt file, so probly there! I do reinstallation and I am gonna be carefull about the tips I did get from you, the database is intact.

bad news but you have to take care....
completly agree with wslade,