MainReg Inc. is committed to investigating and responding appropriately to reports of abuse in accordance with applicable law, ICANN requirements, and the Registrar Accreditation Agreement (RAA), including Sections 3.18.1, 3.18.2, and 3.18.4. This page explains how to submit reports and how MainReg evaluates and handles all reported abuse.
Abuse reports and related inquiries may be submitted by email to:
To help us investigate quickly, please include (where available):
MainReg reviews and responds appropriately to reports of abuse concerning domain names we sponsor. Reports may include DNS Abuse and other alleged abusive or illegal activity (for example: fraud allegations, scam content, content disputes, trademark-related complaints, or other policy violations). Where a report does not fall within DNS Abuse as defined by ICANN, MainReg will still evaluate the report and take action where required under applicable law, registry requirements, ICANN policies, and/or MainReg’s Terms of Service.
MainReg applies ICANN’s definition of DNS Abuse, which is limited to:
Spam alone is not treated as DNS Abuse unless it is directly connected to one of the categories above.
Upon receipt of an abuse report, MainReg logs the report and provides the reporting party with confirmation that the report has been received. Acknowledgment is sent without undue delay and is typically immediate. This confirmation is an acknowledgment of receipt.
MainReg follows the steps below when handling abuse reports:
| Step | Description | Target timeframe | Method |
|---|---|---|---|
| 1. Receipt and logging | Reports are received via the published abuse channel and logged internally. | Immediate upon receipt | Partially automated |
| 2. Receipt confirmation | Confirmation of receipt is sent to the reporting party. | Without undue delay and typically immediate | Automated |
| 3. Initial triage | Reports are classified (DNS Abuse vs. other abuse) and prioritized based on evidence and risk. | Within 1 business day of receipt | Manual review |
| 4. Investigation | Technical and content review is performed. Credible sources may be considered (for example: CERT or government notices). Unclear cases are escalated internally to a more experienced reviewer. | Initiated within 1 business day of receipt | Manual with internal escalation |
| 5. Determination | MainReg determines whether the evidence supports DNS Abuse or another policy/legal violation and what action is appropriate. | As part of investigation | Manual |
| 6. Mitigation and action | Apply appropriate registrar-level action (for example: suspension) where required based on evidence and risk. For well-evidenced DNS Abuse, action is taken immediately upon confirmation and no later than 1 business day from completion of investigation. | For well-evidenced DNS Abuse: immediate upon confirmation and no later than 1 business day from completion of investigation | Manual |
| 7. Notification and follow-up | MainReg notifies registrants of actions taken or requests remediation/clarification where appropriate. MainReg provides the reporting party with a response where appropriate. | Promptly, based on case circumstances | Manual using templates |
| 8. Weekly oversight review | A different team member reviews processed cases to verify timeliness, correctness, and consistency. | Weekly | Manual |
MainReg treats DNS Abuse as “well-evidenced” where the investigation confirms that the domain is being used primarily and intentionally for DNS Abuse activities (for example: clear phishing content collecting credentials, malware distribution, botnet command-and-control, or pharming through DNS manipulation), and not merely as an incidental or unintended result of compromise.
In well-evidenced DNS Abuse cases, MainReg suspends the domain immediately upon confirmation, and in any case no later than 1 business day from completion of investigation. The registrant is notified of the suspension. If the registrant provides credible counter-evidence or demonstrates compromise and remediation, MainReg may re-evaluate and restore the domain where appropriate and will respond to the reporting party accordingly.
Where the evidence suggests possible compromise or spam used to deliver DNS Abuse, MainReg may request prompt remediation or clarification from the registrant to determine whether the registrant is not directly connected to the activity and whether corrective steps are taken. If no adequate response is received, MainReg may suspend the domain no later than 1 business day from completion of investigation.
For reports that do not constitute well-evidenced DNS Abuse, MainReg evaluates the report and may notify the registrant and allow up to 5 business days for response and remediation, depending on the circumstances and evidence. Where no response is received or the issue is not resolved, MainReg may take appropriate action under applicable law, registry requirements, ICANN policies, and/or MainReg’s Terms of Service.
Escalation is performed based on the initial assessment of the report, severity, and evidence. Unclear cases (for example: suspected phishing that is not obvious) are escalated internally to a more experienced reviewer. The weekly oversight review checks that targeted timeframes were met and that classifications and actions were consistent. Any identified errors or missed timeframes are reported to management and addressed through corrective actions, which may include retraining, template updates, process adjustments, or re-review of affected cases.
MainReg maintains records related to the receipt and handling of abuse reports, including receipt confirmations, investigation notes, actions taken, and communications. Records are retained for the shorter of two (2) years or the longest period permitted by applicable law, and can be provided to ICANN upon reasonable notice.
MainReg maintains a process for investigating reports of inaccurate registration data (RDAP / registration data inaccuracy). Anyone who believes registration data is inaccurate may submit a report to: complain@mainreg.com
Please include the domain name, the alleged inaccuracy, and any supporting evidence.
MainReg will review the report and, where appropriate, contact the registrant to correct or verify the data. Registrants are provided up to fifteen (15) calendar days to respond and correct inaccurate data. Failure to respond or correct inaccuracies may result in suspension or cancellation of the domain name.
This policy may be updated from time to time. The current version is published on this page.