NotMeNotYou said:
The two malicious file and malicious source options are for the rare case that either a source points towards a malicious page, or that the uploaded file has been tampered with.

By "tampered with", do you mean altering its appearance or injecting code into it?