Hello, I'm on shared hosting and today i discovered there are some backdoor script.. in .htaccess and a php file. So i went to check via FTP, cannot edit nor delete. So i checked with direct admin.. the file permission(GUID, UID) is set by APACHE while rest of file is set by my username, So my question now is.. the trojan did this is originated from my computer or host side?