Scan Settings
Configure scan behavior including pattern categories, scan scope, and performance tuning.
Scan Settings
Fine-tune how the malware scanner operates.
Scan Modes
| Mode | Scope | Use Case |
|---|---|---|
| Full Scan | All files in PrestaShop root | Initial baseline, periodic deep scan |
| Quick Scan | modules, themes, overrides, controllers, classes, uploads, img | Routine daily/weekly checks |
| Custom Scan | User-selected directories | Targeted investigation |
Pattern Categories
Enable or disable individual pattern categories. All 15+ categories are enabled by default:
- Backdoor, Shell Execution, Code Injection, File Manipulation
- Credit Card Skimmer, Remote File Dropper, Hidden Backdoor
- Credential Stealer, Obfuscation, Suspicious Functions
- Crypto Miner, Data Exfiltration, Stealth Operations
- Config Probing, Info Disclosure
Disabling a category means files will not be checked against those patterns. Only disable categories if you have a specific reason (e.g., your codebase legitimately uses patterns that trigger a category).
Comment Filtering
When enabled, the scanner filters out detections found in PHP comment lines (// and /* */). This significantly reduces false positives in well-commented code while keeping the scanner effective.
Disguised File Detection
Check image files (PNG, JPG, GIF, WebP, ICO) for invalid headers. A common attack technique hides PHP code inside fake image files. The scanner reads the first bytes of each image file and flags those that don't match their extension's expected header.
Performance Tuning
- Batch Size — Files per batch (default: 500). Reduce for servers with short max_execution_time.
- Max File Size — Skip files larger than this threshold (default: 10 MB).
- Excluded Extensions — File extensions to skip (e.g.,
.zip,.sql,.gz).