You may skip outside/external scan for each sub-domain because it would require a separate configuration to scan each site from outside. For cost saving purpose, you may limit your options to only server side scans. Anyway most of the malware would be injected in your server side files other than WP database.
-
This reply was modified 7 years, 9 months ago by scanbuffer.
