Despite what I was told by my host, a very popular, reputable company, I don't see how it could have been a password issue. The password is kept 100% secure and changed often.
The site is(well, was-it's dead now) interactive so members can upload their own content. People can leave comments. etc.
Anyway, what happened is a .com site, broke into my server and added an encrypted java script code to the footer of every page.
But de-coded it looks like this:
document.write('<ifra><iframe>'); -- Well, WebmasterWorld won't let me enter the code, but it's a one pixel by one pixel iframe that tries to re-direct people to an external size.
You can't search your files for it because it's encrypted! The above gibberish is taken from the encrypted code opened in notepad, so hopefully it can be found by doing an exact search. Any help with this would be appreciated. I'm more of a publisher than a techie but did manage to find out this much.
[edited by: phranque at 1:10 pm (utc) on Feb 11, 2010]
[edit reason] No urls, please. See TOS [webmasterworld.com] [/edit]