Some details:
The host is HostGator
The hack:
somehow, DZ-Ghost uploaded a php shell file
then from that point – they went thru and changed all of the index files
(like samboll stated)
I dont know how – but it appears, from the logs; that a 404.php was uploaded
What bothers me – is that if someone can upload that kind of php/shell – what’s stopping them from uploading Haxplorer and really doing some damage
Mostly I just would like to know – how they uploaded anything – so I can become better at security……..