As did I – any help would be appreciated.
I also realize now that I can’t update plugins following the receipt of this alert.
I got this too and removed the file from my sites. How did this file make it in?
@mp3stevo: Was this file not a part of wordfence plugin?
@rohitbhalara4 it is a part of the .zip download so i’m not sure why it’s considered malware. false positive?
This is the messages wordfence shows on a wordfence scan:
This file contains a suspected malware URL listed on Google’s list of malware sites. Wordfence decodes base64 when scanning files so the URL may not be visible if you view this file. The URL is: http://newstin.com/ – More info available at Google Safe Browsing diagnostic page.
Very strange. I removed this file from the server and I was then able to update plugins as well. Curious.
I checked the wfBrowscapCache.php file and it contains newstin in it.
I think wordfence talks to google so if google says some site has some issue then wordfence sends us the information about it.
What should I do?
Should I just change the “newstin” text in the wfBrowscapCache.php file?
Any suggestion is appreciated.
Thank you.
How authentic http://sitecheck.sucuri.net results are?
It says my site has no malwares.
I haven’t touched the wfBrowscapCache.php file yet.
Hope to get some help on this.
After changing the “newstin” text to something else “blahblah” for example, and then scanning the site using wordfence, it is not giving me any showing me the same problem of “malware in wfBrowscapCache.php” anymore.
Is this a solution?
Hope to get some help on this.
Thanks.
Wordfence reports all urls, even those in text files, that show up in Google Safe Browsing as being infected. In this instance that domain can show, I believe, in a user agent in some bots. This is absolutly a false positive and can be whitelisted or ignored.
JLY
(@jose-luis-yanez)
Please share any new information on this issue. I’ve got it too.
Regards,
From Wordfence via Twitter:
Release out in a few minutes will fix this. Pls upgrade when you see it.
JLY
(@jose-luis-yanez)
Thank you proudlion, good to know 🙂
Cheers,