Hello cmh, and thanks for the question. Unfortunately the phishing URL that you mentioned was not something that was actually hosted on your website. It looks like what a hacker did was upload a malicious phishing site to another account on the server, then they went to Google and started reporting the temporary URL format but for other domains such as your own. This sort of tricked Google into thinking the domain name (mail.asc-cybernetics.org) was hosting the phishing site. When in reality it was the temporary URL getting processed by (~thatsr5), that actually had the files there. It looks like the affected account has already had their website quarantined by us so the phishing site is gone, and the URL mentioned above is no longer valid. As such Google should see this and remove your URLs from their index as phishing ones. You can also attempt to speed up this de-listing process by following Google's instructions at the following URL after step #4 Ask Google to review your site: Cleaning your site I've also gone ahead and filled out their report incorrect phishing warning for you: http://www.google.com/safebrowsing/report_error/ Please let us know if you have any further questions at all. - Jacob