Gsyfuy

Solidity! Invalid implicit conversion from string memory to bytes memory requested

Contours of a clandestine nature

What connection does MS Office have to Netscape Navigator?

Is "for causing autism in X" grammatical?

Grabbing quick drinks

Would a galaxy be visible from outside, but nearby?

Written every which way

MessageLevel in QGIS3

How to avoid supervisors with prejudiced views?

What happened in Rome, when the western empire "fell"?

Inappropriate reference requests from Journal reviewers

Why is the US ranked as #45 in Press Freedom ratings, despite its extremely permissive free speech laws?

How long to clear the 'suck zone' of a turbofan after start is initiated?

How do scammers retract money, while you can’t?

Real integral using residue theorem - why doesn't this work?

How did people program for Consoles with multiple CPUs?

What happens if you roll doubles 3 times then land on "Go to jail?"

In excess I'm lethal

Elegant way to replace substring in a regex with optional groups in Python?

Preparing Indesign booklet with .psd graphics for print

Indicator light circuit

Why does the UK parliament need a vote on the political declaration?

Why does standard notation not preserve intervals (visually)

Can I run my washing machine drain line into a condensate pump so it drains better?

Magento Security Tool False Positive? prototype.js identified as compromise injection

2

2

Is anyone else having issues with Magento Security Tool Scanner?
https://account.magento.com/scanner/

Your site is compromised with injected JavaScript. (79)
The malicious code signature(s) has been found in resources:

/js/prototype/prototype.js

/js/prototype/validation.js

/js/scriptaculous/controls.js

I am getting this scan failure on 12 different magento sites so it must be a false positive. Yesterday all sites were passing the scanner. Today they all say they are compromised injected with malware.

All warnings on all sites are pointing to prototype.js

security-scan-tool

share|improve this question

edited 42 mins ago

Teja Bhagavan Kollepara

3,01241949

asked Apr 3 '18 at 14:31

mpersingermpersinger

111

• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  Having the same issue.
  
  – chirag
  Apr 16 '18 at 14:29
  

  
  
  
  

add a comment | 

2

2

Is anyone else having issues with Magento Security Tool Scanner?
https://account.magento.com/scanner/

Your site is compromised with injected JavaScript. (79)
The malicious code signature(s) has been found in resources:

/js/prototype/prototype.js

/js/prototype/validation.js

/js/scriptaculous/controls.js

I am getting this scan failure on 12 different magento sites so it must be a false positive. Yesterday all sites were passing the scanner. Today they all say they are compromised injected with malware.

All warnings on all sites are pointing to prototype.js

security-scan-tool

share|improve this question

edited 42 mins ago

Teja Bhagavan Kollepara

3,01241949

asked Apr 3 '18 at 14:31

mpersingermpersinger

111

• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  Having the same issue.
  
  – chirag
  Apr 16 '18 at 14:29
  

  
  
  
  

add a comment | 

Is anyone else having issues with Magento Security Tool Scanner?
https://account.magento.com/scanner/

Your site is compromised with injected JavaScript. (79)
The malicious code signature(s) has been found in resources:

/js/prototype/prototype.js

/js/prototype/validation.js

/js/scriptaculous/controls.js

I am getting this scan failure on 12 different magento sites so it must be a false positive. Yesterday all sites were passing the scanner. Today they all say they are compromised injected with malware.

All warnings on all sites are pointing to prototype.js

security-scan-tool

share|improve this question

edited 42 mins ago

Teja Bhagavan Kollepara

3,01241949

asked Apr 3 '18 at 14:31

mpersingermpersinger

111

/js/prototype/prototype.js

/js/prototype/validation.js

/js/scriptaculous/controls.js

share|improve this question

edited 42 mins ago

Teja Bhagavan Kollepara

3,01241949

asked Apr 3 '18 at 14:31

mpersingermpersinger

111

share|improve this question

edited 42 mins ago

Teja Bhagavan Kollepara

3,01241949

asked Apr 3 '18 at 14:31

mpersingermpersinger

111

edited 42 mins ago

Teja Bhagavan Kollepara

3,01241949

edited 42 mins ago

Teja Bhagavan Kollepara

3,01241949

asked Apr 3 '18 at 14:31

mpersingermpersinger

111

asked Apr 3 '18 at 14:31

mpersingermpersinger

111

1 Answer
1

active

oldest

votes

0

Run head against the files and tail and see if you have any base64 etc at the top or bottom. Don’t just edit in nano or something. It might be a false positive but most likely will be revealed by head command or tail.

share|improve this answer

answered Apr 3 '18 at 20:04

Timothy FrewTimothy Frew

31929

add a comment | 

Your Answer

StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "479"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);

StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});

function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: false,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: null,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});


}
});

draft saved

draft discarded

Sign up or log in

StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});

Sign up using Google

Sign up using Facebook

Sign up using Email and Password

Post as a guest

Name

Email

Required, but never shown

StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fmagento.stackexchange.com%2fquestions%2f220901%2fmagento-security-tool-false-positive-prototype-js-identified-as-compromise-inje%23new-answer', 'question_page');
}
);

Post as a guest

Name

Email

Required, but never shown

0

Run head against the files and tail and see if you have any base64 etc at the top or bottom. Don’t just edit in nano or something. It might be a false positive but most likely will be revealed by head command or tail.

share|improve this answer

answered Apr 3 '18 at 20:04

Timothy FrewTimothy Frew

31929

add a comment | 

0

Run head against the files and tail and see if you have any base64 etc at the top or bottom. Don’t just edit in nano or something. It might be a false positive but most likely will be revealed by head command or tail.

share|improve this answer

answered Apr 3 '18 at 20:04

Timothy FrewTimothy Frew

31929

add a comment | 

Run head against the files and tail and see if you have any base64 etc at the top or bottom. Don’t just edit in nano or something. It might be a false positive but most likely will be revealed by head command or tail.

share|improve this answer

answered Apr 3 '18 at 20:04

Timothy FrewTimothy Frew

31929

share|improve this answer

answered Apr 3 '18 at 20:04

Timothy FrewTimothy Frew

31929

answered Apr 3 '18 at 20:04

Timothy FrewTimothy Frew

31929

answered Apr 3 '18 at 20:04

Timothy FrewTimothy Frew

31929