nattheman

@rapcik @zainvirgo – This is an issue with WPML and has been reported on the following threads.

https://wpml.org/errata/yoast-seo-strip-the-category-base-does-not-work-in-the-second-language/comment-page-1/#comment-2023989
https://wpml.org/forums/topic/category-redirect-broker-version-4-2/

Currently the best work around is to disable YoastSEO and enable the “No category base WPML” plugin. Just flush your permalinks after you have disabled YoastSEO.

• This reply was modified 6 years, 1 month ago by nattheman.

I have an open support ticket with WPML for this -> seems it has not been fully acknowledged yet, but there is for sure a problem.

https://wpml.org/forums/topic/category-redirect-broker-version-4-2/

• This reply was modified 6 years, 1 month ago by nattheman.

@dammy van Kooten,

Fully understood that you can’t help me with this particular issue as i’m using a competitors plugin. hehe :).

Just some added information, i also was on chat with Godaddy for about an hour yesterday in which they confirmed that the IP was blacklisted and that their system is setup to auto request the removal from blacklists.

They also said that it takes 7 days to be removed from a blacklist (industry standard).

This would also explain why it “broke” for us over the xmas break and was ok aprox 7 days later… until it broke again.

I of course moaned and complained to godaddy to improve their detection of sites causing the blacklisting to occur… who knows if they will actually act on it.

Personally if i were a host and it was affecting thousands of small blogs on the same IP, i’d be finding a solution pretty darn quick! I can only imagine at how many other subscriber forms are impacted by this without the customer being unaware.

Similar issue from my side on godaddy managed wordpress with different plugins that also connect to the Mailchimp API.

From my side i get a null error – sadly i have the starter package with godaddys managed wordpress an unable to run any curl commands for the API test.

Be interested to know if you find a solution for this.

Hi Taraclaeys,

When did your problem with godaddy start ? was this recent as well ?

Hi Evan,

Thanks for your prompt response.

Even with the debug defined, it is still only throwing the null error without any detailed information.

Tested by removing the API key, saving, disabling the plugin and inputting the API key again with no luck.

I’ve also tried toggling the debug information which also shows the null error within the logs with no additional info.

I contacted Mailchimp to ensure the IP address of our shared hosting with godaddy wasn’t blocked in which they confirmed there were no issues from there side.

I’m assuming right now that godaddy shared hosting has for some reason decided to block the MC API, but it’s hard to confirm without a detailed error.

Thoughts ?

Thanks,
Nathan

Hi Timmiieehh,

It’s highly likely that this problem has nothing to do with the caching plugin you are using (unless the plugin you’re using has compromised code in it).

Best way to test would be to disable the caching plugins and then check 5 – 10 random pages/posts on your site to see if there malicious code is still visible.

If this doesn’t work, disable all plugins and enable them one by one checking 5 – 10 random pages each time you enable a plugin to try and find the bad plugin.

When checking pages also ensure that you’re not logged in as an admin – my suggestion is to use Firefox or Chrome incognito mode.

If you’re using GOTMLS, ensure you’re registered the plugin and downloaded the latest updates before scanning.

Personally i used String Locator https://www.ads-software.com/plugins/string-locator/ and searched for the string wp_func_jquery

Hope this helps.

hehe, no problem – you should credit a review to GOTMLS plugin though ??
Eli was very responsive to me when i first had this issue yesterday.

Hi Vini,

I would suggest you first install and do a full scan with Eli’s plugin

https://www.ads-software.com/plugins/gotmls/

Just make sure you register the plugin first and then download the latest definitions.

Do a full site scan to see if any threats are detected.

If this doesn’t work, scan your site using the String locator for “wp_func_jquery”

Hi Guys,

Just so you know i was able to fix this problem.

Using the String Locator to find the bad strings
https://www.ads-software.com/plugins/string-locator/

Either disable or remove the bad strings.

Also, for reference
https://blog.sucuri.net/2015/05/fake-jquery-scripts-in-nulled-wordpress-pugins.html

Hope this helps

Hi Guys,

To add some notes…

I have also noticed in addition to the original URL posted, “https://www.wpsource.org/jquery.js” is in some pages.

We use cloudflare for all our page caching – after clearing the cache on ‘infected’ pages, the page comes good on a refresh.

Cleared the whole cache to test, still no good, seems that 50% of my pages have the bad url to jquery.js

Hi Guys,
Same issue – adwords account site blocked today with malicious code “https://www.wp6.xyz/jquery.min.js”.

Still trying to isolate the issue, will post back if i have any news.