Your First Scan
A step-by-step guide to running your first malware scan and understanding the process.
Your First Scan
After installing the module, we recommend running a Full Scan to establish a security baseline for your store.
Starting the Scan
- Open the module configuration page
- Go to the Scanner tab
- Select Full Scan from the scan type dropdown
- Click Start Scan
What Happens During a Scan
The scanner processes your files in batches of 500 to stay within PHP execution time limits:
- File Discovery — The scanner lists all files in the selected scope
- Batch Processing — Files are scanned in batches against all pattern categories
- Pattern Matching — Each file is checked against 15+ malware pattern categories
- Comment Filtering — Lines that are comments are optionally filtered to reduce false positives
- Results Collection — Matches are stored with file path, line number, matched code, category, and severity
During the Scan
- A progress bar shows real-time status with files scanned / total files
- The scan runs in the browser — keep the tab open until it completes
- For large stores (50,000+ files), a full scan may take 5–15 minutes depending on server performance
After the Scan
When the scan completes, you'll see a summary showing:
- Total files scanned
- Total threats detected
- Breakdown by severity (critical / warning / info)
- Scan duration
Navigate to the Threats tab to review any detections. See Understanding Results for details on how to interpret and act on findings.
Quick Scan for Routine Checks
After the initial Full Scan, you can use Quick Scan for daily or weekly routine checks. It targets only high-risk directories (modules, themes, overrides, controllers, classes, uploads, images) and completes much faster.