You really need to look at the log files to determine what's the point of entry for the hack. Somewhere in the log are some lines showing malicious commands, SQL injection, etc etc. Until you know what the point of entry is, I think it would be a waste of time to just keep republishing the site over and over. It'll just get hacked over and over.