I have contacted namecheap and sent a complaint to Google’s copyright removal tool. I am still waiting to hear back. I am from canada and from what I can tell the thief is from Panama.
I don’t understand how this is happening. I haven’t told many people that I have been running this site at all. Also, I don’t understand how the hacker has scraped the entire site including all branding.
The thief pointed CNAME Record to your domain… the best & quick solution for this is move your domain to cloudflare. Once cloudflare propagation is done the thief cant show your contents on his domain
I made a test post to see if it would still show up on https://noworrieddays.com/ and it still seems to show up. When I deleted it, it was deleted as well.
I was able to finally solve it. If this happens to someone else, here’s what worked.
I had to take a snapshot of the current droplet at Digitalocean, recreate the snapshot in a new droplet, and set the new IP address in the Cloudflare console. Then finally, destroy the old droplet.
This problem reminded me about nice way to “punish” the thief - Scott Hanselman blogged about it years back.
You could play around your nginx/apache config to detect traffic coming form thief’s domain through Referer header. Then you can serve thief’s clients with a custom html page with whatever content you see fit.