<?xml version="1.0" encoding="UTF-8"?>
	<rss version="2.0"
		xmlns:content="http://purl.org/rss/1.0/modules/content/"
		xmlns:wfw="http://wellformedweb.org/CommentAPI/"
		xmlns:dc="http://purl.org/dc/elements/1.1/"
		xmlns:atom="http://www.w3.org/2005/Atom"

			>

	<channel>
		<title>BlueOwlCreative  &#187;  Topic: Malicious detection at Aqua/fuctions.php</title>
		<atom:link href="http://blueowlcreative.com/support_wp/forums/topic/malicious-detection-at-aquafuctions-php/feed/" rel="self" type="application/rss+xml" />
		<link>http://blueowlcreative.com/support_wp/forums/topic/malicious-detection-at-aquafuctions-php/feed/</link>
		<description></description>
		<pubDate>Fri, 17 Jul 2026 10:13:59 +0000</pubDate>
		<generator>http://bbpress.org/?v=2.5.3-5249</generator>
		<language>en-US</language>

		
														
					
				<item>
					<guid>http://blueowlcreative.com/support_wp/forums/topic/malicious-detection-at-aquafuctions-php/#post-33135</guid>
					<title><![CDATA[Malicious detection at Aqua/fuctions.php]]></title>
					<link>http://blueowlcreative.com/support_wp/forums/topic/malicious-detection-at-aquafuctions-php/#post-33135</link>
					<pubDate>Thu, 16 Aug 2018 17:52:35 +0000</pubDate>
					<dc:creator>truongson0528</dc:creator>

					<description>
						<![CDATA[
						<p>Dear,<br />
Google Ads detect that our website contain malware with link:<br />
- <a href="https://cobalten.com" rel="nofollow">https://cobalten.com</a><br />
- <a href="https://go.onclasrv.com" rel="nofollow">https://go.onclasrv.com</a><br />
So, when we check website by using Wordfence Plugin show that: Aqua/functions.php contain backlink injection and malicious activity. Scanning information as below:<br />
<strong>Filename: wp-content/themes/Aqua/functions.php<br />
File Type: Not a core, theme, or plugin file from wordpress.org.<br />
Details: This file appears to be installed or modified by a hacker to perform malicious activity. If you know about this file you can choose to ignore it to exclude it from future scans. The text we found in this file that matches a known malicious file is: $div_code_name=&#8221;wp_vcd&#8221;;. The infection type is: Backdoor used for backlink injection and other malicious activity..</strong><br />
Please support me to clear Aqua/functions.php.<br />
My website here: <a href="https://tktg.vn" title="cong ty ve sinh" target="_blank" rel="nofollow">https://tktg.vn</a></p>
						]]>
					</description>

					
					
				</item>

			
				<item>
					<guid>http://blueowlcreative.com/support_wp/forums/topic/malicious-detection-at-aquafuctions-php/#post-33139</guid>
					<title><![CDATA[Reply To: Malicious detection at Aqua/fuctions.php]]></title>
					<link>http://blueowlcreative.com/support_wp/forums/topic/malicious-detection-at-aquafuctions-php/#post-33139</link>
					<pubDate>Fri, 17 Aug 2018 07:15:33 +0000</pubDate>
					<dc:creator>BlueOwl</dc:creator>

					<description>
						<![CDATA[
						<p>Hi there,</p>
<p>It&#8217;s not a theme issue, most likely your hosting got hacked, if that&#8217;s truly the case.<br />
Cleaning up the functions.php file would be easy, simply redownload the package from TF and overwrite the file, bu you may want to contact your hosting provider and ask them for assistance for checking your whole WP installation, usually if hacked you would have scripts all over your WP installation, so you need to clean it up thoroughly. Good luck!</p>
						]]>
					</description>

					
					
				</item>

					
		
	</channel>
	</rss>

