# Domain Registrar Blacklist

#### Background

Munio comes with several configureable heuristic features that gives servers first line of defense against unknown and not yet reported phishing domains. This is enabled by default.

By nature any discord related phishing domains  are registered and spammed under the same day. Majority of the criminals register their domains on infamous "Domain Registrars" that gives them a safe haven.&#x20;

#### Detection condition

The bot will scan all links and determine which registrar a domain is registered under and if the domain was created very recently then Phish Grabber will sanction the users by default.&#x20;

Punishment type is enabled by default that is called "Heurisitic Protection". This can however be disabled by individual server owners.&#x20;

{% hint style="info" %}
**Did you know?**

Content Scan also have heuristic feature in nature that can block newly registered domains before it gets known by Phish Grabber's phishing APIs.&#x20;
{% endhint %}

## Default: <mark style="color:green;">Enabled</mark>

Bot will by default auto delete message and timeout users from all servers if the link match against globally or/and local blacklisted domain registrar.

**Default punishment type:** Delete & Timeout

To configurate this scanner, follow these steps:

> **Step 1:** /settings\
> **Step 2:** *Select* Server scanners\
> **Step 3:** *Click the button* **Domain Registrar Blacklist**


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.dis.tf/scanner-types/domain-registrar-blacklist.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.