advice What’s happened to my domain?

[Blueforever]

Yesterday (November 18th) I received an email from namesilo that my domain name (TokenizeEverything.com) was to be transferred out to another registrar, there was also an option to cancel if i follow the URL which I quickly did.

I logged into my account to find the name missing. I spoke to support who had said that ‘When you cancelled the transfer it was deactivated’ although they reinstated the name to my account which I can see is there and thought that was the end of it.
A few hours later I check the domain to find it has a different landing page. Wtf!
Go to Whois to find it’s under a network solutions registry owned by a guy named David shoop jr. Fb profile https://m.facebook.com/DavidShoopJr

I log into my namesilo account, and there it is. The name is still in my account.

I try to make changes, nameservers, make Whois private, but none of it works. It’s like the domain is only there in text but it’s not in my account as I have no control on it, if that makes sense.
I spoke to namesilo, they have given me no answers except their IT people are looking into it.
Now I see this guy has added a WordPress site to my domain name. Whats odd, is when looking at the login history, there is no unusual login to my account.
Any thoughts on what is going on? Has my name been stolen? If it has why show your full name on Whois? Or is this a glitch on namesilos end?

 

[tonyk2000]

On a side note: Checking any new domain acquisition with Sedo and Afternic is something that should never be forgotten about. Both for aftermarket purchases and for expired/dropped purchases. Also for handregs. Even if the domain is not for sale yet, or at all, or on Sedo/Afternic. Very easy with Afternic: try to add it (copypaste a list of 1...50 domains into ADD form from inside afternic account, press submit, wait a few seconds /scroll up and down/, and it would show conflicting domains). No need to finish the process by accepting T&C etc. if it just conflicts check. Not so easy with Sedo (domainsearch 1 by 1 on sedo.com). Or, by really adding the domainlist to sedo account (without sales setup and without parking if it is for conflicts check only). Anybody who did not yet perform this should find some time and try (whole portfolio, both platforms). Obviously excluding domains you already listed on the platform in question. You will be (unpleasantly) surprised

 

[tonyk2000]

Well, anything like this can be technically reversed. Including refunding the buyer and the domain being transferred back to NameSilo. As per ICANN 60 days no-transfer rule we frequently see in auth emails: "A domain name is within 60 days (or a lesser period to be determined) after being transferred (apart from being transferred back to the original Registrar in cases where both Registrars so agree and/or where a decision in the dispute resolution process so directs)". I see no reason why would netsol/namesilo/marketplace refuse to do this. Yeah, they might already pay the "seller" - which is the only issue here, but it should not prevent them from fixing the things. Also, who knows - maybe the party who was paid is a genuine domainer who simply forgot to remove the domain from the aftermarket platform, and he would be willing to return the funds. Or is already trying to return the funds... The question is - are we speaking about Sedo or Afternic?

I would also try find out the $$$ amout involved. Maybe it is something acceptable. I mean that an option to let this "Texas pest control" have the domain, and ask for $$$ to be paid to the right owner is something that should at least be considered. Of course with some extra bonus as a compensation for all the inconvinience.

 

[Blueforever]

Well, anything like this can be technically reversed. Including refunding the buyer and the domain being transferred back to NameSilo. As per ICANN 60 days no-transfer rule we frequently see in auth emails: "A domain name is within 60 days (or a lesser period to be determined) after being transferred (apart from being transferred back to the original Registrar in cases where both Registrars so agree and/or where a decision in the dispute resolution process so directs)". I see no reason why would netsol/namesilo/marketplace refuse to do this. Yeah, they might already pay the "seller" - which is the only issue here, but it should not prevent them from fixing the things. Also, who knows - maybe the party who was paid is a genuine domainer who simply forgot to remove the domain from the aftermarket platform, and he would be willing to return the funds. Or is already trying to return the funds... The question is - are we speaking about Sedo or Afternic?

I would also try find out the $$$ amout involved. Maybe it is something acceptable. I mean that an option to let this "Texas pest control" have the domain, and ask for $$$ to be paid to the right owner is something that should at least be considered. Of course with some extra bonus as a compensation for all the inconvinience.

Yes it should be a simple process to reverse this, then investigate. Even namesilo said this at first and they were willing to take the dollar loss.
I have written to the previous owner, but they haven’t replied.
At the very least I should receive the payment even though I wasn’t ready to sell as yet.

 

[trelgor]

@Joe Styler

 

[nhauctions]

Is it only sedo and afternic that do faser transfer?

 

[55Domains]

Thanks @Ryan217. Appreciate it. I have written a firm reply to @namesilo and await their response.

I would do the same with the platform it sold over, and the registrar it is now at, these are involved parties.

 

[55Domains]

On a side note: Checking any new domain acquisition with Sedo and Afternic is something that should never be forgotten about. Both for aftermarket purchases and for expired/dropped purchases. Also for handregs. Even if the domain is not for sale yet, or at all, or on Sedo/Afternic. Very easy with Afternic: try to add it (copypaste a list of 1...50 domains into ADD form from inside afternic account, press submit, wait a few seconds /scroll up and down/, and it would show conflicting domains). No need to finish the process by accepting T&C etc. if it just conflicts check. Not so easy with Sedo (domainsearch 1 by 1 on sedo.com). Or, by really adding the domainlist to sedo account (without sales setup and without parking if it is for conflicts check only). Anybody who did not yet perform this should find some time and try (whole portfolio, both platforms). Obviously excluding domains you already listed on the platform in question. You will be (unpleasantly) surprised

I actually disagree, this should not be our responsibility, the involved parties committed theft, and we should not be the ones responsible after purchasing a domain that they dont do so, they are, they are responsible for not committing theft by taking names from someone they have no agreement in place for - They are VERY lucky they did this to someone who came on here and not a different player who would have kept their mouth shut until ready to go to court and then slapping them left and right with legal action for theft.

 

[tonyk2000]

this should not be our responsibility

If you are selling the domain on lets say Sedo, and somebody else has it listed on Afternic - then Netsol, Registercom and other partners of both networks may prefer to show the domain using Afternic channel. Yeah, they will not be able to deliver the domain if sold. Yeah, they will refund the buyer. A legitimate domain owner will have a lost sale then. He expected the distribution to all external Sedo partners, including Netsol. But, it did not work because of a false duplicate Afternic listing. Or vice versa - lost Afternic sale because of a duplicate Sedo listing.

So, not checking for conflicts may affect $$$ income of a legitimate owner.

Another scenario. You are not selling the domain at all, or asking a "modest" amount. Somebody else has your domain listed on Afternic or Sedo with a cosmic price. There is always a possibility for a domainer to receive UDRP, and the Complainant may try to use "for sale" (Afternic/Sedo and their partners) status against you. It happened before. The Respondent will then need to explain that he did not list the domain for sale at all.

There may be other negative scenarios. In fact, another negative and unexpected scenario is what this thread is about.

So... prevention is better than cure

 

[Abdullah Abdullah]

@Blueforever Any updates to this? Did you find out how much it sold and if the payout was made?

 

[7363824]

@Blueforever Any updates to this? Did you find out how much it sold and if the payout was made?

@Abdullah Abdullah can your confirm with Epik if you deauthorize fast transfer/mls on account change so this wouldn't happen with Epik?

 

[Blueforever]

@Blueforever Any updates to this? Did you find out how much it sold and if the payout was made?

Still waiting for an outcome. It has been confirmed that it was sold via fast transfer through afternic. No idea on sale price, but yes payment was made and went to previous owners afternic account. I wrote to the previous owner a few days ago but stil no reply. @namesilo have been responsive and are working with afternic to get my name back. Thanks

 

[7363824]

Still waiting for an outcome. It has been confirmed that it was sold via fast transfer through afternic. No idea on sale price, but yes payment was made and went to previous owners afternic account. I wrote to the previous owner a few days ago but stil no reply. @namesilo have been responsive and are working with afternic to get my name back. Thanks

Well at least namesilo has changed their tune and are working to fix this.

 

[nhauctions]

I actually disagree, this should not be our responsibility, the involved parties committed theft, and we should not be the ones responsible after purchasing a domain that they dont do so, they are, they are responsible for not committing theft by taking names from someone they have no agreement in place for - They are VERY lucky they did this to someone who came on here and not a different player who would have kept their mouth shut until ready to go to court and then slapping them left and right with legal action for theft.

It looks like a mistake to me not theft. It doesn't seem like anyone planned to steal the domain.

 

[NicTraders]

It looks like a mistake to me not theft. It doesn't seem like anyone planned to steal the domain.

Correct, but it seems that it's a mistake which has only been enabled by inadequate systems at NameSilo / Afternic (and I wonder how many other registrars)?... A concern for sure.

 

[55Domains]

It looks like a mistake to me not theft. It doesn't seem like anyone planned to steal the domain.

Correct, however, if they then do not fix their "mistake" immidiately, and dont also make sure this cannot happen again, it dosnt matter, "if they knew", atleast in court it would not, they took/transferred a name without authorization and did not go on to fix the issue, then its theft. And to me it looks like that if Blueforever was an end-user here and didnt know about domaining etc, this would have gone unanswered and Namesilo would have just ignored it.

 

[Abdullah Abdullah]

@Abdullah Abdullah can your confirm with Epik if you deauthorize fast transfer/mls on account change so this wouldn't happen with Epik?

Yes, this would not happen at all at Epik.
Also, with MaxLock on the account you can block all MLS authorizations as confirmed also with our CEO @Rob Monster

 

[Internet.Domains]

This is an eye opening situation. To call it "very scary" may not do it justice. I sincerely hope all parties involved do the right thing and return the domain.

 

[namesilo]

Given that this concerns a private user account, we will not disclose any sensitive details publicly but we are working with the registrant and the involved parties to resolve this matter. The domain owner can update you on the outcome and results if they wish.

But we did want to address the concerns around security post transfers and domain pushes - rest assured there are no issues with security on our end or working with our partners. This was a case where the domain listing on Afternic was mistakenly approved by the owner of the domain and that's what enabled the fast-transfer to occur once it was sold at Afternic.

 

[Dave]

Given that this concerns a private user account, we will not disclose any sensitive details publicly but we are working with the registrant and the involved parties to resolve this matter. The domain owner can update you on the outcome and results if they wish.

But we did want to address the concerns around security post transfers and domain pushes - rest assured there are no issues with security on our end or working with our partners. This was a case where the domain listing on Afternic was mistakenly approved by the owner of the domain and that's what enabled the fast-transfer to occur once it was sold at Afternic.

Sounds like Afternic and all partners like NameSilo are just using one dodgy system. Whenever a transfer or account change takes place at any registrar the domain should be delisted at Afternic, or at least an option should be provided to do so.

 

[55Domains]

Given that this concerns a private user account, we will not disclose any sensitive details publicly but we are working with the registrant and the involved parties to resolve this matter. The domain owner can update you on the outcome and results if they wish.

But we did want to address the concerns around security post transfers and domain pushes - rest assured there are no issues with security on our end or working with our partners. This was a case where the domain listing on Afternic was mistakenly approved by the owner of the domain and that's what enabled the fast-transfer to occur once it was sold at Afternic.

That does not make sense, thanks for showing up and making a statement, however, admitting an error and making sure this cannot happen (Like Epik Stated, Not possible there.) is probably better then trying to cover it, the domain owner as reported did not authorize anything.

I would also like to invite @Joe Styler to coment on this case, to make sure this cannot happen at godaddy, once there is an account change, previous agreements are not further valid, i hope.

Users who buy hundreds/thousands of names each month/every few months, need to know that agreements someone else agreed to, dont just roll-over and that their name could sell at any moment, oh, and them not even getting paid for it.

 

[Jona4s]

I remember I once received an unsolicited listing on Afternic in my email:

You are receiving this email as a result of the Afternic listing process being invoked through an Afternic account, on the following domain(s):

• xxxxx.com

A listing on these domain(s) has just been attempted.

I obviously didn't click the link to accept the listing, as I didn't request any listing, someone who didn't own my domain apparently tried listing it. I wonder if that was the case with the OP, as namesilo says he mistakenly approved a listing.

 

[Blueforever]

I remember I once received an unsolicited listing on Afternic in my email:

You are receiving this email as a result of the Afternic listing process being invoked through an Afternic account, on the following domain(s):

• xxxxx.com

A listing on these domain(s) has just been attempted.

I obviously didn't click the link to accept the listing, as I didn't request any listing, someone who didn't own my domain apparently tried listing it. I wonder if that was the case with the OP, as namesilo says he mistakenly approved a listing.

Yes, it seems this was the issue @Jona4s
after siphoning through my emails i found that in May this year i received this email, i didn't understand it and overlooked it as i didn't list the domain at afternic.

I must have clicked the first link not understanding that my domain was being listed with a price. (it seems that when you click the link, your domain is automatically listed without anything else to do.) But how is it that someone else can list my domain name even though i had owned it for 4 months. How can they link it to their afternic account and list prices etc also receiving the payment. This is obviously a flaw in the system

 

[Jona4s]

It happens quite often. See: namepros.com/threads/unwanted-afternic-listing-request.1033373/

 

[7363824]

Yes, it seems this was the issue @Jona4s
after siphoning through my emails i found that in May this year i received this email, i didn't understand it and overlooked it as i didn't list the domain at afternic.

I must have clicked the first link not understanding that my domain was being listed with a price. (it seems that when you click the link, your domain is automatically listed without anything else to do.) But how is it that someone else can list my domain name even though i had owned it for 4 months. How can they link it to their afternic account and list prices etc also receiving the payment. This is obviously a flaw in the system

Unfortunately unless the domain is already listed there is no verification of ownership. Now if someone lists their domain then sells it to me if I go to list it then I have to (manually) verify I own it first so they can remove the existing listing. They just need to auto verify every listing via dns text record. Just give me a code to put as a text record on every domain I own so that that domain can only be listed by me. I would even add to recheck in occasion to make sure ownership hasn't changed. I can easily setup default dns records at the registrar that would automatically be applied to each new domain that is added to my account. That would have prevented this, and also that manual verification isn't needed when ownership changes. Afternic is really behind the times on this.

 

[Ostrados]

Yes, it seems this was the issue @Jona4s
after siphoning through my emails i found that in May this year i received this email, i didn't understand it and overlooked it as i didn't list the domain at afternic.

I must have clicked the first link not understanding that my domain was being listed with a price. (it seems that when you click the link, your domain is automatically listed without anything else to do.) But how is it that someone else can list my domain name even though i had owned it for 4 months. How can they link it to their afternic account and list prices etc also receiving the payment. This is obviously a flaw in the system

It is clear this is theft attempt not honest mistake, some scammer listed the domain at Afternic, then you accepted.. after that he might set the domain at $20 BIN then buy it himself from Network Solution and get the domain in his account for free!

That is very possible scenario if true then it is huge loophole in Afternic system anyone can do trial and error and list hundreds of domains, some non zero percentage my click Afternic approval email by mistake as @Blueforever did, then scammer will easily steal those domains that were added to his Afternic account.

We are summoning @Joe Styler to shed light on this loophole