A site I did for a charity was compromised today.
~ray/results/jpg/88.html started to appear at the end of the domain. They have now been trawled by the search engines also.
I thought the site had been hacked and contacted my host who said it had NOT been hacked but that:
this is actually due to a configuration error on the server and not due to any issues on your account.
I didn't understand this after all how could this urls be created from outside of my account?
When I questioned further they said:
your site was accessed was via the apache mod_dir module.
They asked me would I like this disabled for my account and I have said yes.
Now...I just don't understand what has happened here, was I hacked? Has disabling the apache mod_dir module fixed this issue?
Also, although I've submitted page removal requests to Google and disallowed the pathway in robots.txt - is there anyway to get rid of these pages permanently - I just don't understand how someone else can control my url like this.
Your advice would be appreciated.