Just finished cleaning up infected wordpress and mediawiki installations. It's amazing how annoying it is to chase down the exact php file that is creating spammy .htaccess files and inserting spammy php code in every index.php it can find.
Now all the directories are git repositories, so next time, to clean up I'll just run "git clean -f".