Do Not Install – Spam Plugin

  • This plugin installs malicious scripts into the header of your blog. Do not use. I suggest you check your theme settings to install a google analytics code to avoid load time slow downs and unauthorized data being sent to sharethis.

Viewing 7 replies - 1 through 7 (of 7 total)

  • Hi @eric2236 thank you for leaving us feedback.

    Can you please identify the code you are concerned about? This plugin injects lines of code into the header in order to add Google Analytics tracking. Those lines are:

    <script>
    (function (i, s, o, g, r, a, m) {
        i['GoogleAnalyticsObject'] = r;
        i[r] = i[r] || function () {
                (i[r].q = i[r].q || []).push(arguments)
            }, i[r].l = 1 * new Date();
        a = s.createElement(o),
            m = s.getElementsByTagName(o)[0];
        a.async = 1;
        a.src = g;
        m.parentNode.insertBefore(a, m)
    })(window, document, 'script', 'https://www.google-analytics.com/analytics.js', 'ga');

    ga('create', 'UA-ID', 'auto');
    ga('send', 'pageview');
</script>

    If you can let us know that would be awesome, would love to clarify!

    Thread Starter eric2236

    (@eric2236)

    The plugin and all it’s data are long gone from my blog. If I remember correctly one was ps.eyeota.net. Don’t play dumb. I’ve had this same problem with your sharethis button injecting scripts into my header file too. There were 3 scripts that I did not authorize which this plugin in question added to my code.

    • This reply was modified 8 years, 1 month ago by eric2236.

    Hi @eric2236,

    We appreciate that you’ve taken the time to provide feedback. We take all such comments very seriously.

    Just to confirm once more, there is no malicious code within the Google Analytics plugin, all it does is add the code I posted before into your blog in order to enable Google Analytics.

    Hope that clears things up, we’re sorry to see you go but hope to win you back one day!

    Thread Starter eric2236

    (@eric2236)

    You may not call it malicious code but I do. ShareThis wouldn’t have bought the google analytics plugin from the original private creator if you didn’t have a motive. That motive was to use the current users to provide you with data on their blog visitors and enhance your business. It’s the simplest plugin and you could have built it yourself and put it in the plugin directory within a couple days. Instead you created an update that changed the original creators plugin to install scripts into the header of everyone’s blog.

    Thread Starter eric2236

    (@eric2236)

    here is some of the code i could find related to sharethis.

    <?php if( is_single() ): ?>
    <script>var switchTo5x=true;</script>
    <script src=”https://w.sharethis.com/button/buttons.js”></script&gt;
    <script>stLight.options({publisher: “ur-6568e777-919c-a5dd-ac31-98a6fa2e6b2d”}); </script>
    <?php endif; ?>
    <?php do_action(‘wp_seo’); ?>

    @brandonsharethis or any sharethis support folks – Any update? I just purged it from my site for the same thing. I did not ask nor want anything other than the GOOGLE ANALYTICS code injected into my site.

    I now just toss the actual google analytics code snippit direct into the headers as I should have done originally.

    Hi @hadley1210,

    Thanks for reaching out, I’d be happy to help.
    You’re able to remove all coding of ShareThis by enabling the “Disable All Features”. If you want to just inject the Google Analytics code, you can use the Insert Manual Tracking option.

    Hope this helps please let me know if you have any other questions!

Viewing 7 replies - 1 through 7 (of 7 total)
  • The topic ‘Do Not Install – Spam Plugin’ is closed to new replies.