Lots of Stolen Domains

December 3, 2008 · Print This Article

Over 1,000 high quality domains have been stolen by a thief in Iran.  He has brazenly set up a website to sell the domains – LuxaryDomains.com.  As well, he is sending out lots of emails to domainers informing them of the domains he has available.  Here is a partial list of domains stolen:

Problems.com
Mistake.com
Enroll.com
Damaged.com
Statement.com
Evaluate.com
UnClear.com
Upset.com
Shetty.com
Pleased.com
Returns.com
Suggestion.com
Suggestions.com
Replacement.com
Explanation.com
Explanations.com
Failures.com
Inquiries.com
Apologize.com
Volunteer.com
WebsiteFinder.com
Confusing.com
Witnessed.com
Concerns.com
Changed.com
Credit-Application.com
CreditApplication.com
Credit-Report.com
Interview.net
MortgageLoan.net
Notions.net
ProductSupport.com
Recommendations.com
Registration-Card.com
RegistrationCard.com
Technical-Support.com
ServeAuction.com
Shopping-Info.com
Service-Info.com
Service-Information.com
UserFeedback.com
Flaws.com
Free-Catalog.com
Free-Product.com
Free-Service.com
HouseAdditions.com
Howdoi.com
Improvements.com
Inefficient.com
Users-Guide.com
Internet-Info.com
Legal-Advice.com
Message-Center.com
ControlYourCredit.com
Cords.com
Product-Info.com
Product-Information.com
Product-Support.com
Criticisms.com
Customer-Complaint.com
Customer-Feedback.com
Customer-Satisfaction.com
Customer-Survey.com
DisAgree.com
DisLike.com
E-Message.com
E-Messages.com
Electronic-Message.com
ElectronicMessage.com
Airport-Info.com
UsersGuide.com
Business-Info.com
Service-Support.com
Computer-Info.com
WarrantyManagement.com
Consumer-Comments.com
Consumer-Feedback.com
Consumer-Help.com
Consumer-Ideas.com
Consumer-Info.com
Consumer-Poll.com
Consumer-Problems.com
Consumer-Product.com
Consumer-Products.com
Consumer-Questions.com
Consumer-Survey.com
Owners-Manual.com

Messages.net
Payment.net
Jennifer.net
Sensitivity.net
Unclear.net
Upset.net
UserFeedback.net
Organization.net
Suggestion.net
Suggestions.net
Payments.net
Pleased.net
Reactions.net
Replacement.net
Requests.net
Replace.net
Return.net
Rules.net
Opinions.net
Evaluate.net
Twenty.net
Experiences.net
Explanation.net
Explanations.net
Failures.net
Feelings.net
Flaws.net
Improvements.net
Product.org
Products.org
Programs.org
Credit-Application.net
CreditcardApplication.net
CreditApplication.net
Criticisms.net
Directions.net
Electronic-Banking.net
ElectronicBanking.net
Emessage.net
Additions.net
Advise.net
Advisory.net
Cadillacs.net
Checking.net
Concerns.net
Consumer-Product.net
Consumer-Questions.net
Consumer-Support.net
CustomerFeedback.net
Comments.net
Cconfusing.net

Pay.org
Register.org
Copy.org
Organization.org
Samples.org
Schedule.org
Sensitivity.org
Services.org
Statement.org
Suggestions.org
Technical.org
TechnicalSupport.org
Theft.org
Unclear.org
Upset.org
UserFeedback.org
Visit.org
Visitor.org
Worship.org
Opinions.org
Organizations.org
Ownersmanual.org
Payment.org
Payments.org
Pleased.org
Postage.org
Problems.org
Product-Information.org

Recipes.org
Redemption.org
Refund.org
Refunds.org
Religion.org
Repair.org
Replace.org
Replacement.org
Report.org
Request.org
Requests.org
Return.org
Reviews.org
Opinion.org
Evaluate.org
Evaluation.org
Experiences.org
Explanations.org
Exploitation.org
FeedBack.org
Feelings.org
FileShare.org
Flaws.org
Grammar.org
Gro.org
GuestBook.org
HelpDesk.org
Helpful.org
HouseBuilders.org
HouseLoan.org
Impressions.org
Improvements.org
Ingredients.org
Inquiries.org
Interview.org
JunkYard.org
Markets.org
MessageBoard.org
Metals.org
Military.org
Mistakes.org
Conversions.org
Covers.org
Credit-Aplication.org
Credit-Reports.org
CreditApplication.org
Criticisms.org
Customer-Support.org
Customer.org
CustomerFeedback.org
Defective.org
Delivery.org
Directions.org
Distance.org
Electronic-Mail.org
ElectronicMail.org
Electronics.org
Additions.org
Advertisement.org
Advertisements.org
Advise.org
Analysis.org
Answer.org
Application.org
Assistance.org
Cables.org
Cadillacs.org
Comments.org
Commercial.org
Concerns.org
Confessions.org
Consumer-Comments.org
Consumer-Feedback.org
Consumer-Product.org
Consumer-Products.org
Easy.org

OwnersManual.info
Explanations.info
Failures.info
Inefficient.info
Emessages.info
Comments.info
Concerns.info

Suggestions.us
Questions.us
Improvements.us
Comments.us

DO NOT PURCHASE ANY OF THESE DOMAINS FROM HIM! You’ll only lose the domain afterwards.  The whois email on many of the stolen domains is imenhost@gmail.com.  Most of the domains are at 1and1.com and some are at Name.com.  You can learn more here about how to protect yourself from domain fraud.

Comments

40 Responses to “Lots of Stolen Domains”

  1. Francois on December 3rd, 2008 9:29 am

    He contacted me this morning, we exchanged few emails:

    I wanted Improvements.com but he said it was already sold or no longer for sale.
    So I ask hime about Evaluate.com and Enroll.com and he responded me 50k each one.

    I asked for stats and he told me the names were not parked.

    I finish the exchange saying without metrics we could not pursue.

    What a surprise!?

  2. admin on December 3rd, 2008 9:37 am

    He’s very brazen…

  3. RegFeeNames.com on December 3rd, 2008 9:40 am

    We had an encounter with them also – I was pitching the sale of Problem.com to the whois owner of Problems.com and he asked me to help him sell Problems.com for $300K

    I wasnt aware that he had stolen this domain and I shall not be contacting him and pulling out all the stops to help him get caught!

    Here is the email details I have for him – :”imenhost@gmail.com”

    Please be careful everyone out there!

    Regards,

    Robbie

  4. Huge Number of Stolen Domains - Indian Domain Names Forum on December 3rd, 2008 9:47 am

    […] make sure to research a domain and its history before you buy. Details of the domains stolen: Lots of Stolen Domains : Domain Bits Protect yourself from domain fraud: Fucked Up – The Theft of Fucked.com and Pornos.com : Domain […]

  5. admin on December 3rd, 2008 9:49 am

    Thanks RegFeeNames.com – I’ve added that info to the post.

  6. Stolen Domains A Big Problem at Conceptualist.com, By Sahar Sarid on December 3rd, 2008 9:56 am

    […] NamePros, DomainBits, and DNForum: Over 1,000 high quality domains have been stolen by a thief in Iran. He has brazenly […]

  7. Warning: Lots of Quality Domains Stolen Recently | Fka200.com on December 3rd, 2008 10:31 am

    […] Stolen Domains […]

  8. Sammy Ashouri on December 3rd, 2008 10:41 am

    This is absolutely saddening. I’ve been looking over logs just to see if there’s anything fishy going on with my account. I actually had an “unauthorized transfer” about 2 months ago and didn’t really think anything of it… just some guy trying to get a domain I refused to sell.

  9. Lawrence on December 3rd, 2008 11:42 am

    I feel insulted that I wasn’t contacted about these domains.

  10. FreshAvails.com on December 3rd, 2008 12:32 pm

    They are some very nice names. When were they stolen? Have we heard from any of the original owners? How did this person get access to the names? Is it from a single portfolio or a bunch of different sources. if it is multiple sources, that makes it even more hard to believe. Good luck and remember to protect yourself people!

  11. admin on December 3rd, 2008 12:59 pm

    @FreshAvails.com – my understanding is that the names are completely or almost completely from the same person. I’m not sure how the thief got access to the names – that would be good to know, for sure!

  12. Over 1,000 High Quality Domains Stolen | Domain Name News | Domain News | Expired Domains on December 3rd, 2008 3:44 pm

    […] story is doing the rounds on NamePros, DomainBits, DNForum and Conceptualist about an Iranian hacker who has managed to amass a collection of over […]

  13. RKB on December 3rd, 2008 9:26 pm

    Nice work to let others know about it before they make the mistake. The deals for some unsuspecting buyers will be very tempting. Hopefully they will come across your post before buying.

    Thanks.

  14. Hati - hati terhadap pencurian domain! | Moeghan Network on December 4th, 2008 8:06 am

    […] Seperti biasa, begitu datang ke warnet langsung check email di GMail, terkejut sesaat saat melihat headlines CAUTION – Spammer is contacting for sell STOLEN DOMAINS! dari DOMAINING.COM NEWSLETTER sampai akhirnya langsung klik linknya dan dibawa menuju ke halaman DomainBits – Lots of Stolen Domains. […]

  15. Obada on December 4th, 2008 8:14 am

    Very high quality domains , who was the owner of this domains ?
    and if they were stolen , no way to get them back ?
    A great portfolio , who is the petty guy that lost this gems ?

  16. JB on December 4th, 2008 8:25 am

    How in this day and age does a guy like this steal domains?

  17. Telephos on December 4th, 2008 8:44 am

    Without subtantial facts at least indicating how some of the domains have been stolen and from whom, the original post including the follow up’s till here amount to nothing but pure speculation and quite possibly false accusation.

    The fact that an Iranian man holds a collection of superb domains, some of which he is trying to find suitable buyers for, not necessarily typical PPC monitizers included, does obviously not mean that they have been stolen. I’m not saying they haven’t been stolen, I simply do not know. It does not appear as if anyone else having posting comments on this blog so far knows either.

  18. Stephen Douglas on December 4th, 2008 8:53 am

    Playing Devil’s Advocate:

    Proof and description of procedures used that these domains are stolen, including PREVIOUS OWNERS AND REGISTRARS STOLEN FROM.

    Other than that, this is just an allegation. Let’s see the details!

  19. Huw Williams on December 4th, 2008 9:46 am

    If he IS a hacker, it means he has probably found a hack to access some “lower end” hosting portals so he can take over your account, there are rumors in the coding community that this is the case.

    This is why we register/transfer all our domain portfolios to either GD or Moniker – safe and sound.

    Best regards

  20. DDomains on December 4th, 2008 10:16 am

    Oh please. Non story.
    Why was this posted without any backup information?
    Assuming its true, fine. But posting a story with no info. is a waste of everyones time.

  21. DNyap » Stolen Domains A Big Problem on December 4th, 2008 11:34 am

    […] NamePros, DomainBits, and DNForum: “Over 1,000 high quality domains have been stolen by a thief in Iran. He has […]

  22. Joan Toher on December 4th, 2008 2:32 pm

    I don’t really understand what this guy expected to gain by stealing domains. How is he going to sell them, and how would any buyer be able to use them under these circumstances?

    i.e. someone gains my password & user name, transfers the name to their account… they don’t think I am going to notice? And then when the put them on the market, how do they expect no one to know they were stolen?

    Still scratching my head on this one.

  23. Christian H on December 4th, 2008 3:15 pm

    @ Telephos
    @Stephen Douglas (hey, Chinese Democracy finally came out!

    From
    http://www.webdesigntalk.net/showthread.php?t=538934&page=2

    “I’m the guy that owns those names listed for sale on http://www.luxarydomains.com (except serveauction.com and twenty.net) that is the victim of domain theft. Also hundreds others not included in that list. Including donate.com and my company home page sagacity.com. My co. name is Sagacity Corporation. I’m the founder of Complaints.com.

    Volunteer.com is on the list of stolen names, enroll.com, problems.com, etc.

    My account at 1and1.com got hacked a few weeks ago without me knowing it. I just found out Tues. night about 9 pm Chicago time. Alerted by several kind people asking if the names were hijacked.

    I’m trying to work with 1and1.com now. I’m locked out of the account. My name and address was left unchanged on the whois, but the phone number isn’t mine and the email address imenhost.com isn’t mine. The ‘seller’ the hacker is pretending to be me in selling the names.”

    Also, the LegendaryJP from DNForum believes this is the same guy who stole f*cked.com among other domains back in March:
    http://www.dnforum.com/f26/warning-domain-theif-starts-site-sale-names-thread-337954.html

    If you want to read the full saga of the above domain name:
    http://www.dnforum.com/f417/unresolved-namess-sale-thread-282204.html
    It’s 36 pages long, though. A real page-turner!

  24. admin on December 4th, 2008 3:27 pm

    Thanks for the update Christian! Also, Monte from Moniker has confirmed that the same thief tried to steal names from Moniker. Kellie from Name.com has also confirmed that the names at their company are stolen. Finally, if you look at the whois history of the domains, you’ll see that they are pretty suspicious.

  25. Sean A. Hoch on December 4th, 2008 4:03 pm

    We received an offer to buy twenty.net .

  26. Telephos on December 5th, 2008 3:14 am

    Christian, that certainly sheds the light on the situation. I’m not going to read the 36-page report, anyway, the dnforum page does not load right now.

    But any idea how unauthorized access was gained? Could the hacker just have best-guessed passwords, perhaps using a dictionary hack for example? Or are 1&1 not using HTTPS for their domain management interface? Or is perhaps your own machine compromised, revealing a remote user keyboard input?

    If 1&1’s machines are compromised, in which case all passwords files could been accessed and decryped, 1&1 should also be held responsible.

    Perhaps many users passwords are therefore in possession of the hacker, who must simply have found your collection of the domains the most appealing…. Good luck in winning them back!

  27. Hacker on December 6th, 2008 5:43 pm

    Nice man . Not everyone can hack domains they want 🙂

    RESPECT FOR HIM.

  28. Shabu Anower on December 7th, 2008 11:16 am

    Ooh, he took many premium domain names. Strange case for sure, how he did? By hacking account ID and pass?

  29. admin on December 7th, 2008 11:45 am

    I’m not entirely sure – my understanding is that it was by hacking the person’s email account.

  30. Telephos on December 8th, 2008 10:21 am

    For example, one may log into a mail account via a compromized wlan or public internet access, such as a internet cafe, thinking this is secure just because the web mail system is using https. However, not even https will prevent typical viruses from giving hackers remote access to keyboard input. Public internet terminals, such as those using MS-Windows, should be avoided wherever possible since they are often compromised.

    Simply changing your passwords often using non-dictionary terms, while monitoring log-ins, and of course, securing your own system can be important precautions against domain theft.

  31. wannadevelop.com on December 20th, 2008 5:53 am

    Some people will never change, eh…

    Mike
    http://www.wannadevelop.com

  32. Iran Blocked from INForum - Indian Domain Names Forum on December 25th, 2008 4:27 pm

    […] here with jj1 / Get+1 11 LLLL,com Offer Wanted Another recent large scale theft by an Iranian: Lots of Stolen Domains : Domain Bits Last month Twenty.net was stolen by an Iranian. In September ESE.com was hijacked by an Iranian. […]

  33. Mar on December 31st, 2008 3:30 am

    It looks like the problem got resolved (or never existed?)
    I checked on the Whois of Problems.com, Volunteers.com, and Changed.com.
    The owner is a Matthew Smith from Chicago, IL (not “Christian H.” as stated in an earlier post), all domains are locked, the e-mail is baileythomas@gmail.com (not an “e-mail address at immenhost.com”).
    According to the Registrar (1&1 Internet AG) all of these domains had uninterrupted registration since the mid-1990’s.
    Hmmm…….

  34. Technolojik - Whois Search on January 20th, 2009 6:53 am

    who was the owner of this domains ?

  35. innerclick on February 1st, 2009 4:04 pm

    Some time I wounder if domains is all what it is made of … Right the older the net become the better that we as a whole have been making it I hope soon that this is just a thing of the pasted..

    Just airing out my mind.

  36. Kevin on March 6th, 2009 8:27 pm

    How did he actually steal these???
    I really don’t understand how this could be accomplished.

  37. Transferring domain and website - Indian Domain Names Forum on March 25th, 2009 7:37 pm

    […] can happen, but would like to be forewarned.) Yes, fake ownership most definitely happens! See: Lots of Stolen Domains and Domain Theft. The last article offers tips on how to protect yourself from domain fraud. […]

  38. executive mba on April 7th, 2009 1:56 am

    Phew, was not aware of this….

  39. Paul on July 18th, 2009 9:48 am

    Stealing domains is new to me. I am convinced however that Registars log the url searches and at times accidentally break connection so user is logged of and they can register it withour a problem. ‘ve been there nce already http://www.jerleaw.com

  40. Carrie Trevarse on February 17th, 2010 10:30 am

    I wonder if ICANN can help in this case I mean I had a domain suspended just for putting wrong information on the contact info.