Quick answer: At global.sitesafety.trendmicro.com, check your URL, click Reclassify Request, suggest the correct rating, and confirm via the email verification link. Reviews take about 2–7 days.
Is Trend Micro flagging your website?
If Trend Micro is warning visitors about your site — with something like Web Reputation rating of “Dangerous” or “Suspicious” (also “Untested”) — it means one of two things: your WordPress site really is infected, or it is a false positive left over from a problem that was already fixed. Either way, here is exactly how to get the warning removed.
Step 1 — Confirm it is really a false positive
Before you ask Trend Micro for a review, make sure the site is actually clean. If you request removal while malware is still present, the flag comes straight back (and some vendors rate-limit repeat requests). Check it two ways:
- Run it through my free Is My Site Hacked? checker for a fast look at injected code, spam and cloaking.
- Cross-check on VirusTotal to see every engine that is flagging you.
If anything turns up, get it fully cleaned first — deleting the visible malware is not enough if a hidden backdoor remains.
Step 2 — Report the false positive to Trend Micro
Trend Micro’s Site Safety Center lets anyone request reclassification. Submit here: global.sitesafety.trendmicro.com
- Go to the Site Safety Center, paste your URL and click “Check Now”.
- Click “Reclassify Request,” then “Proceed to URL reclassification request.”
- Choose the correct Safety Rating and suggest the right category.
- Tick that you own the site, enter your email, pass reCAPTCHA and submit.
- Click the email validation link to confirm; reviews take ~2–7 days.
Good to know: The submission must be email-verified or it is dropped. This rating drives all Trend Micro Web Reputation blocks.
Step 3 — If the warning keeps coming back
A warning that returns after you have been delisted almost always means the infection was never fully removed — usually a backdoor in a theme file, a rogue admin user, or malware stored in the database. That is exactly what I fix. I am a USA-based WordPress security specialist: I remove the infection completely, submit the delisting on your behalf, and harden the site so it stays clean.
Get my site cleaned · See how it works · read my client reviews.
Frequently asked questions
How long does Trend Micro take to remove the warning? Once your site is genuinely clean and you have submitted the request, most reviews clear within a few days — see the timing note above. Submitting while still infected only restarts the clock.
It keeps coming back — why? Because the real infection (a backdoor, rogue admin, or database payload) is still there. A full cleanup stops the loop.