Blaze

It happened to sleazydream and it happened to me. One of my high traffic gallery domains was transfered to anouther registrar without so much as a email to me.

This domain was on directnic and it still shows up in my account, but whois lookups show someone else, and all the traffic is being redircted to spyware virus hell. I have tried contacting both registrars but I doubt I will hear anything till monday.

How is this possible? How can domains be stolen like this?

Darkystar

holy fucking shit, i feel sorry for you
was your domain locked? it should't be transferred anyway without you confirming the transfer, but still?

DarkJedi

Jews strike again

Vox

You mean russians.

__________________
Social profile assassination for hire

brand0n

What domains?

__________________

Relish XXX

I have well over 100 domains at directnic, anyone could take one of my small typo based domains and I doubt I would notice.

__________________

arg

Blaze, there are a lot of ways it can be done. Stolen password to your directnic account or to your email, or another way to intercept your email (packet-sniffing on an intermediary network), spyware/remote control on your computer, using a corrupt "receiving" registrar, using an inept "receiving" registrar (one that doesn't verify domain ownership carefully), and so on. Was the domain name "locked" on directnic? If so, then the thief probably had to get into your directnic account somehow...lots of ways to do it, just like breaking into any computer account. Is the "created" date on the domain the same as when you first registered it, or is it now a recent date?

Blaze

The creation date is the same as when I registared it.

The registrar he transfered it to is www.qnic.com
Anyone know if they are crooked?

David!

Your stupidity seems to be bottomless

__________________
.

Tipsy

I've been wondering much the same.

__________________
Ignorance is never bliss.

Vox

It's a russian company, does that answer your question?

__________________
Social profile assassination for hire

Dirty F

What a fucking suprise.

Honestly, the internet would be a better place if these fuck faces were cut off from the rest of the world. Let them hack their own servers.

Illicit

People gots to learn to Lock their Domains

__________________
Insert Sig Here

directfiesta

///////

__________________
I know that Asspimple is stoopid ... As he says, it is a FACT !

But I can't figure out how he can breathe or type , at the same time ....

SpaceAce

I knew some serious shit was up when I hit the link and got the redirect. I just wish you'd woken up when I called so maybe you could have gotten a new link posted. Not only is the putz using Amateur Pages as a sponsor, he's still using Clickthrough Calvin code.

Time to move this thread back to the top. Watch your domains, guys! I encountered at least two hijacks last night, both going to xybererotica.com.

SpaceAce

arg

I haven't heard of qnic before, but qnic.com lists their authoritative whois server as whois.wildwestdomains.com, which I *think* is related (alias/subsidiary/sibling/partner) to godaddy. Qnic seems US-based to me. Maybe a reseller for wildwestdomains, rather than an ICANN-accredited registrar themselves.

If you haven't checked on the registration info in a while, it's possible that the domain was hijacked months ago. The hijackers could maintain most the same DNS servers for the domain, so that it would operate normally, while transferring the domain between one or more intermediary registrars, before it wound up at qnic. (ICANN limits transfers to I think once every 30 days, 60 days for a new registration). Multiple transfers can make it harder to resolve a hijacking.

Are you pretty sure your contact info (email address in particular) was correct in the whois info for the domain? Theoretically DirectNIC should have mailed that address when a transfer request was made, to let you know it was going to be done unless you canceled it.

It is not uncommon for registrars to list domains in your account even after legitimate transfers away from the registrar.

It sounds like you're going to need to rely on DirectNIC for some investigation and help on this. I would guess they'll be able to resolve the issue. A lot of people on GFY do a lot of business with DirectNIC, and if this goes unresolved, it would tarnish their reputation.

SmokeyTheBear

Im pretty sure if it was transferred recently you can login to directnic and reverse the transfer

__________________
hatisblack at yahoo.com

Dax

Lock Your Shit!!

BlueWire

Well...did you make sure they were locked in the CP? if they were then i feel bad....if they weren't then i dont know what to tell ya man cuz god knows i got a reminder every 5 minutes about that new rule

DEA - banned for life

Fuckin theives man..stealing from the rich and giving it to the richer!!

DaddyHalbucks

ICANN rules changed recently.

As I understand it, registrars now have to automatically approve ("ACK") all transfer requests. It is the responsibility of the receiving registrar to authenticate before initiating the request. All submitted requests are deemed valid.

The only exception is if your domain is on LOCK status. So, lock your domains! And use a good registrar such as Moniker!

This new policy is to prevent crappy registrars such as ItsYourDomain and TotalNIC from holding your domains hostage.

However, it appears that the pendulum has now swung the other way.

__________________
Boner Money