.htaccess question

Having a problem. Have a script on a server and am trying to protect a secure folder with the .htaccess file (below). It appears to work fine....blocks access from any IP except mine. However, there is one person that is able to still get in. The log shows he is coming in from an entirely different IP. He is doing unscrupulous things such as entering fake deposits, etc. I realize I'm not giving much info, but I'm not very knowlegeable about all this. The people who I lease the server from appear to be stumped.....anyone have any suggestions?...would be much appreciated.

AuthUserFile /var/www/virtual/subdomains/admin/trusted/.htpasswd
AuthGroupFile /dev/null

AuthName Members
AuthType Basic
require valid-user
order allow,deny
Allow from <my-IP-address>
Deny from any

This is a longshot, since it's been awhile since I've tinkered with .htacces, but maybe 'deny from all' instead of 'any'?

I agree... I would try Deny from all

Thanks for your replies...will try it.

I'm guessing that if "any" is incorrect and it should be "all" then it wouldn't deny any IP (?yes/no?). Right now it appears to deny all the IPs that I've tested it with (except for mine)...however, my intruder seems able to get in at will....and he doesn't always have the same IP...usually resolves back to an AOL address.

Thanks

Yeah, so this will probably not work. But I guess it's worth a chance Isn't there a global hosts.allow file or something on that machine which is (I don't know how) bypassing your .htaccess? I'm grasping at straws here sorry..