Blog for hpHosts, and whatever else I feel like writing about ....

Wednesday, 1 February 2012

Crimeware friendly registrars: NameCheap

Crimeware friendly has a certain connotation to it, that most registrars tend to want to avoid. In NameCheap' case however, it seems they quite like it - or at least, put money above all else, including their reputation.

I've been sending reports for years, and the majority of registrars and hosts, tend to deal with them quickly, or in some cases - eventually. Not NameCheap - all reports result in a reply along the lines of the following (the latest one to come in - I've removed the domain name and ticket ID so it doesn't tip the owner off);


Thank you for your email regarding the domain name {REMOVED}. While the domain name does have as the registrar, we do not own the domain name mentioned in your complaint. We are simply the registrar that the registrant purchased the domain name from.

Please be advised to contact company that provides hosting services for the domain and ask them to assist you with the issue. You could also contact the domain owner directly regarding the issue. Contact details assigned to the domain can be found in the Whois database.

Thank you.

Stas T.
Customer Support

*Visit for up-to-date service status

Ticket Details


Ticket ID: {REMOVED}
Department: Domains -- Legal and Abuse
Type: Issue
Status: Closed
Priority: High

Support Center:

Other variations I've gotten include;


Thank you for your email regarding the domain name {REMOVED}. While the domain name does have as the registrar, we do not have the ability to oversee what data are being transmitted through its site. We do not own the domain name mentioned in your complaint, we are simply the registrar that the registrant purchased the domain name from.

The issue would need to be addressed through the hosting provider to see if any of their terms of service have been violated, and would need to be addressed with the domain registrant as they should be the individual that would control what particular content is being exchanged. We have no way to police these issues as we do not control the hosting company in this instance. Here are the contact details of the company that owns {REMOVED} IP Address which is currently assigned to the domain: {REMOVED}

While I understand your issue, we are not in a position where we can make determination of validity of your statements. If you believe you are the victim of an internet crime, or if you are aware of an attempted crime, you can file a complaint through Internet Crime Complaint Center at . You also may contact either your lawyer(s) or the local authorities in order get the issue resolved. We will assist them any way we can.

Funny thing is - NameCheap Hosting is completely the opposite, and do suspend accounts.

Well NameCheap, as myself and others have pointed out to you, as an ICANN accredited registrar, you have an obligation under the UDRP Policy, to take action on reports - NOT to claim your customers actions aren't your responsibility.

By refusing to suspend domains reported to you, you are in direct violation of your contractual obligation to follow ICANN’s UDRP policy, which requires you (as well as all other accredited registrars) to suspend domains housing and/or leading to, malicious/illegal content.

You can view ICANN’s UDRP Policy here:

"By applying to register a domain name, or by asking us to maintain or renew a domain name registration, you hereby represent and warrant to us that…(c) you are not registering the domain name for an unlawful purpose; and (d) you will not knowingly use the domain name in violation of any applicable laws or regulations"


Fred Harmonium said...

And reporting the registrar to ICANN is a rather futile effort. Good luck in your efforts.


jason_m said...

I am in process of dealing with the SpamCheap domain . Time and time again this spamming creap gets mail past my filters and I report it each time, only to get replied back to me the same exact form letters. Do note, that I also report it to the hosting provider, - but they do nothing, not even an auto-ack. Seeing that Enom (and Namecheap?) have a specific anti-spam policy, there seemed to be hope that this spam tard will be banished.

Each and every spam uses an insecure tell-a-friend script on some websites. SpamCheap have told me a few things. After further replying to their form letters, they told me that they look in a few places such as Spamhaus, and Spamcop, and that the website at is "abusable by design". It is abusale by design due to being an url shortener, ok but the url shortener is created by the spammer himself for his own use, a point I have been unable get across. There is plently of evidence of this on the web since there is nothing but spamvertised links, and that the majority use tell-a-friend scripts to send spam.