How to Handle the Google Attack Page

What Is the Google Attack Page?

Google has an automated system which searches for websites on which malicious activity is detected and creates a blacklist based on their findings. A user attempting to access a blacklisted site can be redirected to an "interstitial page" (the "Reported Attack Site!" page):

Google also attempts to notify the owner of any site it adds to its blacklist.

Note: This warning will only happen in certain browsers such as Mozilla Firefox, Google Chrome and some versions of Safari, because these browsers have a relationship with Google. Not all browsers will display the warning page.

What Is Google Doing to My Site?

Nothing! Google cannot actually change your website. They can only set up a mechanism to display a warning to visitors that Google has detected possible malicious scripts on your site. However, you will need to get your account cleaned and secured before Google will remove their warning page.

How Do I Remove This Warning?

You will need to get a security scan of your site, then request that Google delist your account. We recommend SiteLock and even provide a special offer for our customers to get SiteLock service at a discounted rate:

To have the Google Attack page taken down:

  1. Address the security concern on your website, either by having it scanned and fixed, or by restoring the site to remove malware.
  2. Once your site is cleaned and secured, contact Google to request delisting.

Requesting a Malware Review from Google

Once the account has been cleaned and secured, please request a delisting through your Google Webmaster account. You can can submit a request for review by Google by following the steps below.

Note: You will need to verify site ownership before you can request a site review.
  1. Sign into Webmaster Tools with your Google account.
  2. On the dashboard, select the site you want reviewed.
  3. On the Overview page, click Request a review and follow the instructions.

This is not something that we can do for you, and these are only the basic steps invloved. For detailed instructions on how to handle a compromised site (including requesting a delisting) please refer to Google's own support site: