How does Imunify360 Malware Cleanup work? What are the benefits of Imunify360 Malware Cleanup?
Is it possible Malware Cleanup can break my websites’ operation?
How does Malware Cleanup module decide on when to remove a file or trim it?
What does Cleanup all button actually perform?
Can Malware Cleanup clean files that were detected by any of anti-malware engines of Imunify360?
What kind of malicious code/content can Malware Cleanup remove?
Malware Cleanup did not clean up some of malicious files. What to do next?
How does Imunify360 Malware Cleanup work? What are the benefits of Imunify360 Malware Cleanup?
Malware Cleanup can remove malicious code from users' files or remove them completely if they cannot be cured. It works in a user-assisted way - i.e. a user has to choose the files to be cleaned up.
Is it possible Malware Cleanup can break my websites’ operation?
Malware Cleanup is designed to decrease the possibility of data loss and website malfunction after cleanup. It backs up an infected file before cleanup and trims a file instead of removing it.
The backup of an infected file let a user restore the file in a state, it had before cleanup.
File backups are stored in special folders outside user home directories and shouldn’t be managed manually. Names of these files are not altered.
How does Malware Cleanup module decide on when to remove a file or trim it?
This is a configurable option that can be set in Malware settings. Trimming is the default.
What does Cleanup all button actually perform?
It will try to remove harmful content from all files, detected as infected or quarantined.
Can Malware Cleanup clean files that were detected by any of anti-malware engines of Imunify360?
Yes, all the files marked as Infected or Quarantined can be cleaned up or trimmed.
How can I clean/rotate the list of malicious files in Malware Scanner → Dashboard tab of Imunify360 UI?
Older entries are automatically removed as soon as the backup file of the cleaned file is removed (14 days by default).
What kind of malicious code/content can Malware Cleanup remove?
The cleanup engine detects and performs a cleanup for all content that might be considered as malicious: web-shells, backdoors, phishing pages, virus injections, doorways, droppers, miners, uploaders, etc.
Malware Cleanup did not clean up some of malicious files. What to do next?
There might be the following causes:
- Infected file or its folder is write-protected so Malware Cleanup could not write or delete it. Contact your server administrator for clarification.
- Infected file was missing or not readable at the time of the cleanup attempt. Check if the file is in place and if its permissions are correct.
Comments
1 comment
## Can we see contents of quarantined files
Starting from ImunifyAV(+) v.6.2, the Quarantine and Delete actions were removed permanently from the UI as well as the CLI in Imunify360. More on the reasons is in the following article:
https://blog.imunify360.com. Please be informed that the original files are stored in the following directory after the clean up:
/var/imunify360/cleanup_storage.
You can also change the number of days the original files will be kept on the server after the cleanup in the following settings: https://docs.imunify360.com/dashboard/#cleanup so it would be possible to compare the content of the files while the names are absent.
If files such as PHP shells can not be cleaned, those are trimmed or deleted.
Please sign in to leave a comment.