After installing Content Guard Pro, running your first scan helps establish a security baseline and identifies any existing threats.
Starting Your First Scan #
From the Setup Wizard #
If you completed the Setup Wizard with “Run a quick scan now” enabled, your first scan starts automatically.
Manual Start #
1. Go to Content Guard Pro → Scans
2. Select Quick Scan or Standard Scan
3. Click Start Scan
Understanding the Scan Progress #
While scanning, you’ll see real-time progress:
- Progress bar: Visual percentage completion
- Items scanned: Current count vs. total
- Current phase: What’s being scanned (posts, meta, options)
- Performance metrics: Memory usage and query time
- Estimated time: Approximate completion time
Progress Indicators #
| Status | Meaning |
| ——– | ——— |
| Scanning posts… | Analyzing post content |
| Scanning postmeta… | Checking custom fields |
| Scanning options… | Reviewing widget content |
| Checking reputation… | Verifying URLs against threat databases |
What Happens During a Scan #
Content Guard Pro performs these checks:
1. URL Analysis
– Detects URL shorteners (bit.ly, t.co, etc.)
– Identifies external scripts and iframes
– Checks for suspicious redirects
2. Content Analysis
– Finds hidden elements with external links
– Detects obfuscated JavaScript
– Identifies SEO spam keywords
3. Code Detection
– Inline event handlers (onclick, onerror)
– PHP function patterns
– Cryptocurrency mining scripts
4. Reputation Checks (if enabled)
– Google Safe Browsing verification
– PhishTank phishing database
Reviewing First Scan Results #
After the scan completes:
If No Issues Found #
You’ll see a success message. This means:
- No known threats detected
- Your content appears clean
- Consider enabling scheduled scans for ongoing protection
If Issues Are Found #
Results are categorized by severity:
- Critical: Immediate attention required (malicious scripts, known threats)
- Suspicious: Likely problematic (obfuscation, hidden content)
- Review: Worth checking (unusual patterns, anomalies)
Click View Findings to see detailed results.
Interpreting Common First-Scan Results #
False Positives #
Some legitimate content may trigger alerts:
- Embedded videos: YouTube/Vimeo iframes are allowlisted by default
- Analytics scripts: Google Analytics may need allowlisting
- Social widgets: Twitter/Facebook embeds
See Managing Allow/Deny Lists to add trusted sources.
True Positives #
Actual threats require action:
- External scripts from unknown domains: Investigate immediately
- Hidden links in content: Likely spam injection
- Obfuscated code: Possible malware
See Quarantining Content for remediation steps.
After Your First Scan #
Recommended Next Steps #
1. Review all findings – Don’t ignore “Review” items on first scan
2. Configure allowlists – Add your trusted third-party services
3. Enable scheduled scans – Set up daily automated protection
4. Enable email alerts – Get notified of future critical findings
Setting Up Ongoing Protection #
1. Go to Content Guard Pro → Settings
2. Enable Scheduled Scans
3. Set frequency to Daily
4. Choose a low-traffic time (e.g., 3:00 AM)
5. Enable Real-time On-Save Scanning
6. Click Save Changes
Your site is now protected with continuous monitoring!
