I seem to be getting extra code at the bottom of my page:

</body>
</html>
<script language="javascript"><!--

var wwOpenInstalled;
if (wwOpenInstalled || parent.wwOpenInstalled) {
if (window.Event) {
document.captureEvents (Event.MOUSEUP);
}
document.onmouseup = (parent.wwOpenInstalled) ? parent.wwOnMouseUp : wwOnMouseUp;
}
//--></script>

and I wonder if it's coming from StatCounter. In the first place none of the other pages are getting it as none of them have the counter code on it and also how can the code be added thru a secure server?

If it absolutely has to be in there for the counters to work I wouldn't have a problem with it but because it's put in after </body></html> then the page fails validation (www.w3.org)

Who's putting it in there?

Hard to guess without an URL to look at the page source in question. What editor do you use to build the pages? Who is your host? How do you upload your files to the server?

Never seen (or heard) anybody getting any "extra" Javascript in general because of Statcounter, and not after the closing </html> tag in particular. So the script in question is coming from somewhere else. Have you tried to open the page in a text editor (e.g. Notepad), remove the script and then upload the page with an FTP client?

I don't have any html editor programs and have always used notepad. I did a test yesterday, I stripped out the offending code, reuploaded it (index.html) and created a copy of the page without the statcounter code in it (index2.html) then revalidated both of them. This morning the code re-appeared in index.html but not in index2.html.

This is leading me to believe statcounter is the culprit.

It's not possible for Statcounter code to bring in something like that. You must have some other problem. Please giva a link to your webpage which exhibits this behaviour.

I don't have any html editor programs and have always used notepad. I did a test yesterday, I stripped out the offending code, reuploaded it (index.html) and created a copy of the page without the statcounter code in it (index2.html) then revalidated both of them. This morning the code re-appeared in index.html but not in index2.html.

This is leading me to believe statcounter is the culprit.

The Statcounter script may be the reason you get that Javascript in the bottom, but it's not Statcounter who add it. My guess is that you have a firewall, spyware or adware removal program who add the script, falsely beliving the Statcounter script is some of sutch and therefore try to prevent the script from working. I have a long time ago seen something similar with other scripts. But as I said in my previous post (and as Christina also say) it's harder to guess when we can't look at the pages our self.

Here is a link to a Google search for "parent.wwOpenInstalled" with only three hits. All links goes to forums with German language so I can't read what they say, but if you understand German you may get something out from it. I have "trunkated" the long Google URL to http://tinyurl.com/ccqp7

Well, I am using a firewall and some assorted anti-crap ware but immediately after uploading the pages I double checked them are they were free of the extra code. If it were something on my end I would think it should appear as soon as I upload them. Here are the pages in question:

www.worldupclose.org/index.html
www.worldupclose.org/index2.html

In looking around the forum I found several other sites that have the same code in it and AFTER the </html>:

http://www.realestateinvestmentsoftware.net/
http://www.fuzzyworld3.com/
http://www.widget-news.com/

There were others but these I pulled out at random and I think it would be unlikely that we all have the same configuration. The only common element would be statcounter.

Well, I am using a firewall and some assorted anti-crap ware but immediately after uploading the pages I double checked them are they were free of the extra code. If it were something on my end I would think it should appear as soon as I upload them. Here are the pages in question:
www.worldupclose.org/index.html
www.worldupclose.org/index2.html

In looking around the forum I found several other sites that have the same code in it and AFTER the </html>:
http://www.realestateinvestmentsoftware.net/
http://www.fuzzyworld3.com/
http://www.widget-news.com/

There were others but these I pulled out at random and I think it would be unlikely that we all have the same configuration. The only common element would be statcounter.

Nope, that code is not in any of the above sites! Now, I know for sure the problem is on your end, since you see the code also in others sites and I don't see it anywhere. Those other sites that's not yours, I have visited before and not even the owners see the code you see on them. E.g. http://www.widget-news.com/ is Christina's (chrisooc) who just said that it's not possible for Statcounter code to bring in something like that. 8)

It is something your firewall/antivirus software is adding when you use view source on a page running scripts. I use Norton firewall and AV and I get something similar.

So do I.

Wow, interesting. I've been logging into my ISP from my work location (a remote site) and came home to find you all are correct that the extra code is not there, even in my page. The only difference being the telephone line (system) that's being used. I'll keep that in mind in the future.

Thanks to all!

volk,

By now you know the code was added by your anti-whatever software on your home computer.

Norton Internet Security Suite was quite notorious for doing this, as far back as 2003. Many forums around the world* had posts blaming their hosting providers for adding code to their pages which broke their javascript. Others posted hacks that, when installed in the head of each page, would break the code breakers, and so on.

Unfortunately, some security software publishers take a brute force approach, and this is the result. Fortunately, not everyone has this type of software installed.

Howard

*Edit: I just found one reference:
http://www.webmasterworld.com/forum91/1696.htm

Howard,

Good source, thanks it does explain a lot. One thing that's curious though is why, since I'm at home, the code doesn't show up but at my work location (same computer, a laptop, same configuration) it does show.

Ahhh... after I clicked the submit button it came to me. At work I'm on dial up and at home I'm on cable modem, same ISP. ANything there might make a difference?

Ahhh... after I clicked the submit button it came to me. At work I'm on dial up and at home I'm on cable modem, same ISP. ANything there might make a difference?

Cable or dial up should not make any difference, if the ISP don't have difference server protection for them? But if you have the same anti-software on both computers, you can compare the protection settings and see if there is something that may make the difference.

volk,

Probably at home, since you are on broadband, your LAN has a firewall, so your computer has the browser firewall disabled, while at work, since you are on dialup, the browser firewall is enabled, and the browser firewall is what is putting the code in the pages.

Howard

Edit: That is to say, when connected at home, you probably use your broadband connector on your PCMCIA card (or your laptop has a broadband connector on the back) whereas at work, you plug in the telephone line and, since you need to go in via this connection, you "connect" via that "service" which is configured differently from the "service" you connect to at home. Each "service" can have different computer settings. Make sense?

I am also assuming, if I read your post correctly, that the code you see is apparent only when you view-source on your web pages after loading them from the dialup connection at work.

Howard,

You're probably correct, the only time I see the code is when I dialup. Intersting also, the code appears when I view source from my work station but then who knows how the IT lads here have things configured.

Good info, thanks.