oh, ok. and one more thing. just wanna re-confirm. this is what happend.
they put files in our web server, and (i think) they ran that file to make changes in out pages, coz i downloaded thus files and ran it.
my question is,
1. would changing the File Permission of our files and folders to 555 (Read-Execute) solve the problem of them putting something in our folders?
- can the hackers use SQL Injection to retrieve values from our database?
this hacker are becomming annoying, they keep doing it and they are toying with the datas which are of business use.