The malware scanner checks all folders and files on your website for malicious code. Even correct and non-malicious code can sometime look malicious under different circumstances. This is called a false positive.
Sometimes it is quite obvious and even specific viruses or attacks can be identified by name. Other times it could be legit programming made with no malicious intent, or it is malicious code trying to hide.
This is where you should start looking if you are getting warnings or suspect your website is hacked.
Although we try to limit the number of files that are wrongly identified, we also want to be thorough and rather show you a couple of wrong identified files than miss something malicious.
This means we can sometime show a file as suspicious, but it does not mean they will do harm to your site. It just means you need to have a closer look at their content.
Please do not just delete a file because the scanner has marked it for your attention, this file could be legitimate and do no harm, but for some reason has indicators it is suspicious. Deleting the wrong file could also break a part or your whole website.