my website is developed by ASP.NET
but someone uploaded an ASP file to my site (1.asp) , but I don't know how he upload that file :(
and that file give him full control over my site :(
I am sure there are no ability for SQL Injection because all the transactions with the database made by Stored Procedures
any one can help me with information what the problem could ?? how can I check my website if there's any bug I don't now it ?
I thing that file uploaded by hacking software !!
thanks in advance