size.com, distribute.com, etc.

[GeorgeK]

This gets stranger and stranger -- who is Mr. Basile? Is he related to "Executive Web Design", from the old Alexa info on this domain?

NSI is the laughing stock of the industry. There's no way they'd be picked to run the registry or become a registrar, if folks knew then what we know today.

 

[edg]

This really doesn't make sense. NSI took the name back from eNom because the transfer should not have happened, yet they put it in Ilin's name and claim there is nothing they can do for the legitimate owner of the name? NSI needs to look at this thread and investigate some of the other names listed here.

Also, I don't think NSI originally deleted the name (when it first left Basille's account). I think it was done as a transfer/modification and the original registration date was maintained.

 

[tonyk2000]

It actually looks unusual that the transfer from NSI to ENOM had happened. George or NameGuy - not sure who performed this transfer - you managed to do almost impossible thing.. As far as I remember, new ownership at NSI-regged domain subsequently creates new whois record so NSI can claim "the domain was not registered for 60 days" to deny the transfer. I had such an experience (exactly).

 

[edg]

It looks like the alleged thief managed to sell another one of these names. Bottle.com is now registered to a company in Hong Kong.

REGISTRATION DETAILS (bottle.com):

Registration Service Provided By: Modern Empire Internet Ltd.
Contact: [email protected]

Domain name: bottle.com

Registrant Info:
Modern Empire Internet Ltd.
DNS Administrator ([email protected])
+852.24562565
FAX: +852.24562565
26H Block 7
Beverly Garden
Tseung Kwan O, -
HK


Administrative Info:
Modern Empire Internet Ltd.
DNS Administrator ([email protected])
+852.24562565
FAX: +852.24562565
26H Block 7
Beverly Garden
Tseung Kwan O, -
HK


Billing Info:
Modern Empire Internet Ltd.
DNS Administrator ([email protected])
+852.24562565
FAX: +852.24562565
26H Block 7
Beverly Garden
Tseung Kwan O, -
HK


Technical Info:
Modern Empire Internet Ltd.
DNS Administrator ([email protected])
+852.24562565
FAX: +852.24562565
26H Block 7
Beverly Garden
Tseung Kwan O, -
HK



Status: PROTECTED
Note: To help prevent malicious domain hijacking and domain
transfer errors, the registrar has protected the registrant
of this domain name registrant by locking it. Any attempted
transfers will be denied at the registry until the registrant
requests otherwise. The registrant for the name may unlock
the name at any time at the current registrar in order for
a transfer initiation to succeed

Name servers:
DNS1.NAME-SERVICES.COM
DNS2.NAME-SERVICES.COM
DNS3.NAME-SERVICES.COM
DNS4.NAME-SERVICES.COM
DNS5.NAME-SERVICES.COM

Created: 01/02/1998 00:00:00
Expires: 01/01/2005 00:00:00

 

[edg]

Looks like someone bought a stolen domain:

REGISTRATION DETAILS (distribute.com):

Registration Service Provided By: Future Media Architects, Inc
Contact: [email protected]
Visit: http://www.fma.com

Domain name: distribute.com

Registrant Contact:
Future Media Architects, Inc
FMA.com . ([email protected])
+1.7038686000
FAX: +1.7037804738
P.O. Box 71
Road Town, Tortola 99999
VG


Administrative Contact:
Future Media Architects, Inc
FMA.com . ([email protected])
+1.7038686000
FAX: +1.7037804738
P.O. Box 71
Road Town, Tortola 99999
VG


Billing Contact:
Future Media Architects, Inc
FMA.com . ([email protected])
+1.7038686000
FAX: +1.7037804738
P.O. Box 71
Road Town, Tortola 99999
VG


Technical Contact:
Future Media Architects, Inc
FMA.com . ([email protected])
+1.7038686000
FAX: +1.7037804738
P.O. Box 71
Road Town, Tortola 99999
VG



Status: PROTECTED
Note: To help prevent malicious domain hijacking and domain
transfer errors, the registrar has protected the registrant
of this domain name registrant by locking it. Any attempted
transfers will be denied at the registry until the registrant
requests otherwise. The registrant for the name may unlock
the name at any time at the current registrar in order for
a transfer initiation to succeed

DNS servers:
ns.fma.com
ns2.fma.com

Created: Wed May 24 1995 00:00:00
Expires: Fri May 23 2008 00:00:00

 

[edg]

Size.com also has the same company as a new registrant. It's amazing that Verisign did not put a lock on these names so that they could not be transferred until ownership was resolved.

REGISTRATION DETAILS (size.com):

Registration Service Provided By: Future Media Architects, Inc
Contact: [email protected]
Visit: http://www.fma.com

Domain name- size.com

Nameservers-
DNS1.NAME-SERVICES.COM
DNS2.NAME-SERVICES.COM
DNS3.NAME-SERVICES.COM
DNS4.NAME-SERVICES.COM
DNS5.NAME-SERVICES.COM

Start of registration- 09/22/95 00:00:00
Registered through- 09/21/11 00:00:00

Registrant Contact-
Future Media Architects, Inc.
fma.com . ([email protected])
+1.7038686000
FAX- +1.7037804738
P.O. Box 71
Road Town, TORTOLA 99999
VG


Administrative Contact-
Future Media Architects, Inc.
fma.com . ([email protected])
+1.7038686000
FAX- +1.7037804738
P.O. Box 71
Road Town, TORTOLA 99999
VG


Billing Contact-
Future Media Architects, Inc.
fma.com . ([email protected])
+1.7038686000
FAX- +1.7037804738
P.O. Box 71
Road Town, TORTOLA 99999
VG


Technical Contact-
Future Media Architects, Inc.
fma.com . ([email protected])
+1.7038686000
FAX- +1.7037804738
P.O. Box 71
Road Town, TORTOLA 99999
VG

 

[mole]

Looks like elequa bought those stolen domains

 

[consumernet]

x

 

[mole]

Thanks for the intellectual jog, consumer.

Made me think about email sercurity procedures.

1. Buy a domain specifically for identity verification and register it for 10 years.

2. Get a lawyer to notorize your intent with (1)

3. Put a SnapBack on that domain so that you get notified immediately if anyone tampers with that domain.

4. Use a service like Dotster's Namesafe and lock the domain dead.

5. Get a program like Softnik's Watch My Domain Pro and run it at least once a week to check on all your domains using that verification email.

6. Enable a website with that domain and get one of those downtime service alert providers to monitor that it is always alive.

7. Put a legal consul on retainer basis and make it very clear on that site that all attempts at hijacking and theft will be meticulously traced and prosecuted to the full extent of the law.

8. Screen-capture your domain whois and submit to 3 different witnesses that will testify its accuracy in court.

9. Use similiarly secured domains for the technical and billing contacts as backups.

10. State that all on your domains under theft prevention, so that it will scare the sh*t out of thieves.

If that doesn't do the trick, then go back to the cardinal trick, develop your site, trademark it, and make it popular so you have many witnesses.

I think a legal/security service that provides for monitoring and security of domains seems like a profitable venture today.

 

[Lord Baltimore]

Mole, great post. There's a lot of wisdom there.

 

[jkirker]

So, on distribute.com, I'm still fighting with Verisign/Netsol. This is rediculous. Does anyone know of any legal firms which have competency in this area?

Best,
John

 

[DNWizardX9]

theres a few attorneys on this forum that deal w/ cyberlaw/domain names

 

[edg]

Here's another one. Currently up for sale on eBay.

REGISTRATION DETAILS (radioactive.com):

Registrant:
Ilin, Alexandr (RADIOACTIVE16-DOM)
Chytron 5
Nicosia, Nicosia 1075
CY

Domain Name: RADIOACTIVE.COM

Administrative Contact, Technical Contact:
Ilin, Alexandr (LOADGJSQYI) [email protected]

Chytron 5
Nicosia, Nicosia 1075
CY
37052664610

Record expires on 24-Aug-2003.
Record created on 24-Aug-2001.
Database last updated on 22-Dec-2002 03:22:26 EST.

Domain servers in listed order:

NS1.RADIOACTIVE.COM 172.38.251.0
NS2.RADIOACTIVE.COM 172.38.251.1

 

[fizz]

Very interesting thread edg - thanks for the heads up.

 

[tonyk2000]

former whois info is the following. Naturally, ktelliot.com is invalid domain. Does not even exist now.

Registrant:
Radioactive Records (RADIOACTIVE16-DOM)
156 West 56th St., 4th Floor
New York
NY,10019-3800
US

Domain Name: RADIOACTIVE.COM

Administrative Contact:
Elliott, Katie (KE2141) [email protected]
Full-Court Press
3750 1/2 Curtis Street
San Diego , CA 92106
619-222-5840
Technical Contact:
Chadwick, Shawn (SC1251) [email protected]
Chadwick Graphics
3219 North Star Drive
San Diego, CA 92117-4425
619-581-0172 (FAX) 619-581-1821

Record expires on 24-Aug-2003.
Record created on 24-Aug-2001.
Database last updated on 12-Nov-2002 19:08:22 EST.

Domain servers in listed order:

NS.VALUEWEB.NET 216.219.253.211
NS2.VALUEWEB.NET 216.219.254.10

 

[edg]

Actually ktelliott.com (two T's at the end) does exist, and is registered at godaddy. It was registered about a month ago, probably to gain control of radioactive.com. Registrant info is likely invalid, or possibly lists the owner of a stolen credit card used to register the name.

Registrant:
Cathy Alderman
3002 Ferris Ave.
Royal Oak, Michigan 48073
United States

Registered through: Go Daddy Software (http://www.godaddy.com)
Domain Name: KTELLIOTT.COM
Created on: 18-Nov-02
Expires on: 18-Nov-03
Last Updated on: 18-Nov-02

Administrative Contact:
Alderman, Cathy [email protected]
3002 Ferris Ave.
Royal Oak, Michigan 48073
United States
248-583-2632
Technical Contact:
Alderman, Cathy [email protected]
3002 Ferris Ave.
Royal Oak, Michigan 48073
United States
248-583-2632

Domain servers in listed order:
PARK3.SECURESERVER.NET
PARK4.SECURESERVER.NET

 

[tonyk2000]

Yes, double T, my mistake. I guess they may delete godaddy domain soon in order to hide everything. godaddy has delete future

 

[TurNIC.com]

Ilin guy knows where to live. Go to Praque to steal domains when it is cold and then to Florida to spend them Oh in between he goes to southern cyprus to visit his gramma ?

 

[jkirker]

Right now I'd love to track him down... If anyone has any payment information please forward it to me privately...

 

[tonyk2000]

This guy might received payments from escrow.com. I guess this is the best source to locate him.
He might also use paypal - but paypal is terrible company to deal with, saying nothing about the fact that his paypal acct. most likely contains false registration info.
This thread contains a lot of useful information and I hope FBI or similar authority may use this info someday.
I do not think NSI is willing to help. NSI is a nightmare. I also guess this guy _might_ receive some private assistance from NSI to perform his actions.