Abuse Contact
The RDAP/WHOIS contact responsible for handling abuse reports (spam, phishing, malware) for a domain or IP block.
The abuse contact is the email address or role published in a domain's RDAP/WHOIS record (or an IP block's RIR record) for reporting abusive behaviour originating from that resource. ICANN requires every gTLD registrar to publish an abuse email and respond within defined timeframes, and RIRs require the same for IP allocations. A working abuse contact is the single most important piece of public contact data for security responders: when it is missing, role-shared with a parking team, or auto-bounced, takedowns stall. DNS Checker's WHOIS lookups extract abuse contacts into a dedicated field so they are easy to find.
Reference
Related terms
See also
Referenced on
- DMCA Takedown Notice Template: How to Report Copyright Infringement to a Hosting Provider
- DNS Checker Bot & Scanner Documentation
- Geo
- How to Report a DDoS Attack to Your ISP: Evidence, Templates, and Escalation Steps
- How to Report a Hacked Server: Filing Abuse Reports After a Compromise
- How to Report Brute Force SSH and RDP Attacks: Log Evidence and Abuse Report Templates
- How to Report Child Exploitation Material (CSAM) Online: Emergency Contacts and Reporting Steps
- How to Report IP Address Abuse: The Complete Guide to Filing Reports That Get Results
- How to Report Malware and Botnet Command-and-Control Traffic From an IP Address
- How to Report Phishing Emails and Websites Hosted on an IP Address
- How to Report Port Scanning and Network Reconnaissance to an ISP
- How to Report Spam From an IP Address: Abuse Reports for Unsolicited Email
- How to Report Usenet Abuse: Spam, Piracy, and Illegal Content on Newsgroup Servers
- What Is My IP Address?
- WHOIS Lookup