Regarding reporting, make the report in such way which explains the situation. In this case, for me, I wrote something similar to this, "I am reporting the domain monero.forex for suspected phishing activities. This domain promotes a link to a fraudulent exchange, https://[exch!cash] [breaking the link] which impersonates the legitimate exchange exch.cx (Cc-ed). I urge immediate action to suspend the domain".
I just noticed that monero[.]forex just removed Exch from their website
https://monero.forex/anonymous-crypto-exchanges/
In fact, I think this will only complicate the situation, and make it harder for the site/domain to go down.
This is because everything indicates that this site will be owned by the same owner or accomplice as the phishing site.
However, in the case of monero[.]forex I found another revealing proof of how the domain is part of the scheme:
https://whoisfreaks.com/tools/whois/history/lookup/monero.forex
In February, the domain was updated to be on the same server as exch[.]cash
This is clear proof that it is the same owner.
https://whoisfreaks.com/tools/whois/history/lookup/monero.forex
In February, the domain was updated to be on the same server as exch[.]cash
This is clear proof that it is the same owner.