Wordfence is giving me the following warnings
- Filename: wp-content/themes/wplms/functions.php
- File Type: Not a core, theme, or plugin file from wordpress.org.
- Details: This file appears to be installed or modified by a hacker to perform malicious activity. If you know about this file you can choose to ignore it to exclude it from future scans. The text we found in this file that matches a known malicious file is: $div_code_name="wp_vcd";. The infection type is: Backdoor used for backlink injection and other malicious activity..Here is a snapshot: https://gyazo.com/5f849c825dfa3126a5800f9af8b8af99
yes we do not have this kind of code " $div_code_name="wp_vcd"; " anywhere .
It seems like this was put by someone somehow .
This generally happens when you use pirated plugins or themes .
Please immediately update or replace all the themes and plugins in your site.