A website of mine was recently the target of a conditional redirect attack.
- PHP code was added to my pages to redirect visitors.
- The .htaccess file was edited to redirect visitors.
I’ve re-uploaded my website so the compromised PHP and .htaccess code have both been removed.
My site is mostly handwritten php and static HTML content. I don’t use page comments or any third party libraries.
After removing the compromised php and htaccess files, visitors are still being re-directed.
- What could be the reason that visitors are still being redirected?
- Are there any tools to check where/how redirects are taking place so I can debug the problem?
UPDATE – PROBLEM FIXED
As suggested in the comments, I cleared my Firefox cache and that fixed the problem (for me anyway). Visitors with old cache data will obviously still be re-directed.
Try clearing your browser cache.
This work is licensed under a Creative Commons Attribution-ShareAlike 3.0 Unported License.