I made a slight change to my footer.php file today and the next Wordfence scan reported the following:
"File contains suspected malware URL: <link to my site>"
My site is currently blacklisted by Google; I am trying to get it cleaned up. Does this message indicate that Wordfence is not actually seeing malware, just seeing this url on Google's list? If so, it may just be that Google needs to re-scan, as there may be no malware present.