Comments on: Google Analytics is an Intermediary in Malware Distribution http://blog.unmaskparasites.com/2009/03/26/google-analytics-is-an-intermediary-in-malware-distribution/ Website insecurity by example Fri, 03 Sep 2010 20:05:44 +0000 http://wordpress.org/?v=2.9.1 hourly 1 By: Denis http://blog.unmaskparasites.com/2009/03/26/google-analytics-is-an-intermediary-in-malware-distribution/comment-page-1/#comment-453 Denis Sat, 28 Mar 2009 10:34:28 +0000 http://blog.unmaskparasites.com/?p=130#comment-453 Leigh, I no longer see both of your sites being blacklisted. You've managed to remove the malicious code. I hope you'll be able to prevent reinfection. I talked with Google developers about the code on your site. Although it was a related exploit, it wasn't the reason why Google Analytics domain was mistakenly identified as an intermediary (the reason was much more complex). In your case it was just a coincedence that hackers used the Google Analytics script block to attach the malicious code. This way they tried to make it harder to detect when webmasters look through HTML code. Leigh,

I no longer see both of your sites being blacklisted. You’ve managed to remove the malicious code. I hope you’ll be able to prevent reinfection.

I talked with Google developers about the code on your site. Although it was a related exploit, it wasn’t the reason why Google Analytics domain was mistakenly identified as an intermediary (the reason was much more complex).

In your case it was just a coincedence that hackers used the Google Analytics script block to attach the malicious code. This way they tried to make it harder to detect when webmasters look through HTML code.

]]> By: leigh bradley http://blog.unmaskparasites.com/2009/03/26/google-analytics-is-an-intermediary-in-malware-distribution/comment-page-1/#comment-452 leigh bradley Sat, 28 Mar 2009 00:27:23 +0000 http://blog.unmaskparasites.com/?p=130#comment-452 Message to Denis on his website Denis Thank you for you help I really am grateful I just hope I have moved all the code from my sites so that Google will reinstate us. It would appear that we are the recipient of the same problem you have highlighted on your website I have been hit by this same issue as this link shows according to badware.org http://blog.unmaskparasites.com/2009/03/26/google-analytics-is-an-intermediary-in-malware-distribution/ All I am interested in is getting the block on my domain removed I don’t like what the information contained in the link implies but there appears to be something in what the information is implying that there was spurious code attached to Google analytics! So the plot thickens I have not posted this sentiment on the forum because it would appear that Google know more about this than they are letting on to so I feel that any noise I make from now on will only make matters worse for my situation can you help me I am somewhat of a novice with regards to technical issues and with out your kind assistance so far I would not have known the other code existed. It was on every page and the templates for my site I trust I have now removed the same but as I have said I am no expert so I would be very grateful if you could tell me that our two sites are free from malware Thanks Leigh Message to Denis on his website
Denis
Thank you for you help I really am grateful I just hope I have moved all the code from my sites so that Google will reinstate us.
It would appear that we are the recipient of the same problem you have highlighted on your website I have been hit by this same issue as this link shows according to badware.org
http://blog.unmaskparasites.com/2009/03/26/google-analytics-is-an-intermediary-in-malware-distribution/
All I am interested in is getting the block on my domain removed I don’t like what the information contained in the link implies but there appears to be something in what the information is implying that there was spurious code attached to Google analytics!
So the plot thickens I have not posted this sentiment on the forum because it would appear that Google know more about this than they are letting on to so I feel that any noise I make from now on will only make matters worse for my situation can you help me I am somewhat of a novice with regards to technical issues and with out your kind assistance so far I would not have known the other code existed. It was on every page and the templates for my site I trust I have now removed the same but as I have said I am no expert so I would be very grateful if you could tell me that our two sites are free from malware
Thanks Leigh

]]>