Thank you for all the helps from our forum members!!! All the domains in this list, which I can remember, are back now.
First of all, many thanks to all our forum members: Gerry, Guy, Adam, theinvestor in DNF; cuv, xserver, cn170 in domain.cn/club(also in DNF). With all your help and efforts, I know my domains were stolen at the first time, and your guys told me how to proceed with Godaddy, and more. I got phone call, email, PM etc at the first time. When the two NNNN.com was in sale in NP, and the whois is still mine, I got the phone call and email from our domain.cn/club members. Unfortunately, I am in the meeting and didn't get the call. One hour later, when I call back, check my email, but all is late.
From this nightmare, I have some lessons to share with all of us.
1. select secure email provider
msn, hotmail, gmail, yahoo etc are the targets by thief.
One thing I am not sure is that what email will be safe!
Is the webhosting email with our self domain is safe? I have concerns as well.
Welcome your comments to select secure email provider
2. Keep a complete domains list and whois in your local copy, also have the comprehensive info about the account
When the account was compromised, and domains was moved out, you have to know the complete domains list, and the whois information. The account info is necessary as well. It is the things you can claim your domains. As you may know, when hundreds domains were moved from registrar, your email will include several of them, and says how much in total, no whole list.
3. whois info must be accurate
If you have no company, don't put it in the whois. If your name, address, phone was updated, please update it. Or how can you claim the domains is yours.
4. Select secure and trusted registrar
I got my domains back because it is Godaddy, I trusted the company. Godaddy has the 60 days limit after push, it is really a secure way, which earns the time for victims.
According to the different secure requirement on password recover and anti-thief features, I find the Moniker and Dynadot has one good features each.
Moniker: even one got the email to reset the password, it still requires to answer one questions. It has the second secure answer.
Dynadot: even one compromise the account, one has to input the birthday or something else to unlock the anti-thief, and then can start move or transfer.
Just for myself, I am considering extra secure from registrars, like the MaxLock from Moniker.
5. Don't store your email online
If all your emails are online, you will find how easy it is to find the enough information to compromise the account.
6. Use different email for forum, whois, registrar accounts, PayPal and others...
In this way, even one email account was compromised, we will not lost all our accounts. If we lost our domains, and at the same time lost the PayPal, forum ID as well, you will find that how easy the thief can sell domains just like you sell it.
Lesson is lesson, expect it is helpful for you to make sure your domains are secure.
Again, thanks to all my friends in DNF, NP, Mobility, and domain.cn!