Question
I uploaded a file, and CXS quarantined it. Why?
Found:
==> /var/log/cxswatch.log <==
cxswatch[pid]: Child 1: (Hits:2) (Viruses:0) (Fingerprints:1)
'/home/user/file.php'
cxswatch[pid]: Child 2: Universal decode regex match = [universal decoder]
'/home/user/file.php'
cxswatch[pid]: Child 2: (quarantined to
/home/quarantine/cxsuser/user/file.php) (decoded file [advanced decoder: 14
(depth: 1)]) Known exploit = [Fingerprint Match] [PHP Exploit [####]]
'/home/user/file.php'
Answer
CXS is developed by ConfigServer™ rather than cPanel L.L.C. It is best to consult your system administrator to verify if the files are an issue, and consider reviewing the CXS forums for topics on whitelisting the file: