Skip to main content
Security fix guide

Site Flagged in Malicious/Phishing Reputation Check

The domain appears on malicious or phishing reputation lists (Google Safe Browsing, PhishTank, etc.). This can cause browser warnings, email blacklisting, and complete loss of organic traffic.

Issue ID: SEC-REPUTATION-001
Severity: critical
Impact: High
Effort: L

Use this article when

  • You need deeper remediation guidance than the issue card can show.
  • You want CMS-specific steps before handing the fix to a developer.
  • You want a repeatable re-check path after shipping the change.
Re-run full audit

What this issue is

The domain appears on malicious or phishing reputation lists (Google Safe Browsing, PhishTank, etc.). This can cause browser warnings, email blacklisting, and complete loss of organic traffic.

Why it matters

The domain appears on malicious or phishing reputation lists (Google Safe Browsing, PhishTank, etc.). This can cause browser warnings, email blacklisting, and complete loss of organic traffic. This affects browser trust signals and whether visitors feel safe submitting contact details.

How we detect it

  • FreeSiteAudit flags this issue when the rule for SEC-REPUTATION-001 fails and the page evidence points to Http headers.
  • You can usually confirm this by checking the page source or the relevant page settings inside your CMS.

Evidence examples

Check the affected page source, rendered output, or relevant CMS setting to confirm the missing or incorrect element.

How to fix it

  1. 1Investigate and remove any malicious code or redirects
  2. 2Scan the site for malware using a security scanner
  3. 3Submit a review request through Google Search Console
  4. 4Implement security hardening to prevent future compromises

How to re-check it

  • Check Google Safe Browsing status and confirm the site is no longer flagged

Related tools

This issue is best verified with the full FreeSiteAudit crawl rather than a single-point mini tool.