I am not getting that same result so I think you must have put more code in there from the index.php file. I am trying to debug and isolate the exact conditions that are not being met for the if statement to produce that error you are getting. Would it be possible for you to create an admin login for me so that I can login to this site and debug the code in-place?
If so, You can email the login details dorectly to me: eli AT gotmls.net
Ah, yes. Now try changing the .htaccess file in that directory so that it redirects to test.php instead on index.php and then call up that gotmls.js path in your browser.
That does seem to work as I expected, so I’m not really sure why the rewrite is not working correctly.
The next step would be to put this code in your test.php file:
< ?php
if (preg_match('|(.*?/gotmls\.js\?SESSION=0)|', GOTMLS_script_URI, $match))
print_r(array(GOTMLS_script_URI=>$match));
else
print GOTMLS_script_URI;
?>
Yes, there is no gotmls.js located in that directory, but there is a rewrite rule in the .htaccess file that is in that directory which should allow it to generate dynamic JavaScript content (not “image/gif” content).
Can you test something for me? Can you make a new file called test.php in that same directory and put this code in that file:
REQUEST_URI=
< ?php echo htmlspecialchars($_SERVER["REQUEST_URI"], ENT_QUOTES); ?>
Then call up that file in your browser and tell me what it says?
Check your browser’s Error Console to see if there are any JavaScript errors on the page when you get the “No response from server” error message. Then check your servers’s error_log files to see if there is any indication as to what exactly is not working right.
Does your new server run nginx or apache? rewrite rules only work in apache so my brute-force patch does not work in nginx.
Yes, I am working on this feature. I will let you know when I have something ready for testing.
Yes, just register all your sites with the same email address and your donation will count for all of them 
Yes, My plugin can scan and clean all subdirectories with your WordPress root install.
If you quarantined the threats then you may just need to request a review in Google Webmaster tools. It will take a little while before the search results are re-indexed to reflect the changes you have made. You don’t need to delete the quarantine records, but if google comes back and says there is still malware on the site or the site is still actively redirecting then you need to keep looking for more threats.
That URL looks fine to me and I don’t think my plugin would block that unless you need XMLRPC access. If that is the problem you can unblock access to your xmlrpc.php file on the Firewall Settings page in your admin or you and add the remote IP of the server that needs access to the whitelist array in you .htaccess file. But I have a feeling it’s not my plugin at all that is causing that error you got. Let me know if you figure it out
Sometimes Google reacts to cached pages they crawled in past, even if the live site is clean. What are the dates on the URLs that Google Webmaster Tools says are compromised?
You can send me these files that are on your list and I will check them for you and add them to my definition updates.
My plugin will remove Known Threats (in Red). If you are removing those Threat with my Automatic Fix and they are coming back the next day then you may need to move you site to a more secure server. I do offer Super Secure Hosting for $12/month per site if you are interested, I can more your site to one of my servers and I guarantee it will not be reinfected again.
If you want to share more info about your problem you can email me directly (a screenshot would be very helpful).
