[How to article] Takedown phishing URLs/ domains registered on Namecheap

  1. Access the Namecheap website (https://www.namecheap.com/ ) through your preferred web browser. The demonstration provided below pertains to the Chrome browser.

  1. Upon reaching the designated webpage, proceed to scroll to the lowermost section until you encounter the specified content area as illustrated below.

  1. Locate the term “Guru Guides” on the page, and directly beneath that, identify and click on the option labeled “Report Abuse.” Upon initiating the click, you will be redirected to the page displayed below.

  1. While on this page, kindly identify the “Submit a Ticket” option highlighted in orange within the middle of the paragraph.

  1. Upon selecting “Submit a Ticket,” you will be redirected to the page depicted below.

  1. Once on the page, proceed to scroll down until you reach the section labeled “Abuse Reports,” then select that option. The ensuing action will reveal the following dropdown.

  1. Upon viewing the dropdown options, please select the relevant type of abuse. For the purpose of this scenario, choose “Fraud/Phishing Report” to report a malicious site.

  1. After selecting “Fraud/Phishing,” proceed by clicking on the “Next” button which will redirect to the report page.

  1. Initiate the process by completing the “General Information” section, providing your First and Last Name, as well as your Email. Please refer to the example provided below for guidance.

  1. Upon completing the “General Information” section, proceed to the “Abuse Domain(s) / URL(s)” section. Fill out the Abusive Domain, identify the bad actor, and include the malicious URLs associated with that domain. Reference the example provided below for guidance.

  1. Upon completing the “Abuse Domain(s) / URL(s)" section, proceed to the "Fraud / Phishing Details” section. In the “Targeted Websites” section, enter the legitimate website that the malicious actors are targeting. Fill out this information accordingly to report the targeting of the genuine website by malicious entities. Refer to the example provided below for guidance.

  1. Following the completion of the “Fraud / Phishing Details” section, proceed to the “Subject and Message” part of the form. Fill out the content you wish to communicate to the registrar, articulating the necessary information to request the suspension of the malicious domain. Craft your message effectively to convey the urgency and severity of the situation. Refer to the example provided below for guidance. Refer to the example provided below for guidance.

  1. After composing your message, navigate to the “Attached Files” section and proceed to attach the following files: trademark, letter of authority, abusive website screenshot with a timestamp, and the corresponding URL. Once these files are successfully attached, follow the subsequent steps until you reach the “Submit” button. Click on “Submit” to complete the process.

  1. Following the submission of your request, the registrar will review it and respond within a few days. If your report is accurate and valid, the registrar will allow the domain owner to remove the content. However, if the domain owner fails to take corrective action, the registrar will eventually suspend the domain.

If your report is deemed inaccurate or not legitimate, the registrar may request additional details or ask you to resubmit the report. This would entail repeating steps 1-13 of the process.

1 Like