Nameservers Changed Issues on Sav.com

[xmarthost]

My nameservers for all domains have been changed to ns1.all-harmless.domains and ns2.all-harmless.domains, and I am unable to change the DNS again. What could be the issue?

Also, a friend of mine is facing the same problem with over 600 domains. What's going on with sav.com?

 

[zotix]

Ok this makes it more clear now.
AML related things are never communicated before.
Go to a bank, cash in 10k fake money, they’ are not allowed to tell you that this was suspicious neither ask any questions, they take the money, give you the receipt and your bank account goes straight to compliance with yellow / red flag. Then it’s not this transaction, but the whole account.

I understand your point but i assume the bank / credit card issuer for this bank is flagged.

 

[webinhost]

I think we should take legal action against sav.com he is saying message to safety team but safety team is not replying

 

[dirk]

I would really recommend people to take this to ICANN.

The number of domains affected is just insane.

If they have somehow been magically flagging 2% (let's assume this is a reasonable number) of 'sales' (DUMs) this should trigger a lot of alarms.

Not only a major issue for the registrants but also for the registrar.

It calls for an explanation.

 

[Grilled]

I would really recommend people to take this to ICANN.

Which complaint category do you think this issue falls under?

https://www.icann.org/compliance/complaint

Issue	Additional information & Submit Complaint
A registrar's failure to: Display abuse contacts and procedures. Investigate and respond to an abuse report involving a domain name registered with the registrar. Take mitigation action(s) to stop or disrupt the use of a domain name for DNS Abuse (malware, botnets, phishing, pharming, and spam when spam is used to deliver any of the other four types of DNS Abuse). A registry operator's failure to: Display abuse contact. Take mitigation action(s) to contribute to stopping or disrupting the use of a domain name for DNS Abuse (malware, botnets, phishing, pharming, and spam when spam is used to deliver any of the other four types of DNS Abuse).	Abuse/DNS Abuse (Registrar) DNS Abuse (Registry that operates the TLD)
The transfer of a domain name to a different registrar and/or registrant	Transfer
The renewal and/or redemption of a domain name	Renewal/Redemption
The Registration Data associated with a domain name	Registration Data is inaccurate or missing Request for disclosure of Registration Data by a third party with legitimate interest was denied or not responded to Registrant requested and consented to the display of their own Registration Data, but it is not displayed
The suspension or deletion of a domain name for which I am or was the holder	Domain name remains suspended or deleted even after responding to Registration Data verification inquiries
The service through which a registrar or registry operator is displaying Registration Data	The WHOIS/RDAP service is not operative
Dispute Resolution Policies & Procedures	Uniform Domain-Name Dispute-Resolution Policy (UDRP) Uniform Rapid Suspension System (URS) Public Interest Commitments Dispute Resolution Procedure (PICDRP) Registry-Restriction Dispute Resolution Procedure (RRDRP) Trademark Post-Delegation Dispute Resolution Procedure (Trademark PDDRP)
A Privacy/Proxy registration or service	Privacy/Proxy
Access to the zone file of a TLD	Zone File Access
A name that has been or must have been reserved by the registry operator	Reserved Names
A registry operator not abiding by the code of conduct of its Registry Agreement	Code of Conduct
A contractual compliance issue not identified above	Generic Registrar Complaint Generic Registry Complaint

If they have somehow been magically flagging 2% (let's assume this is a reasonable number) of 'sales' (DUMs) this should trigger a lot of alarms.

For baseline purposes, any idea what the amount of flagged domains compared to dum's are at other registrars?

Do all registrars have a specific email they send their flagged domains to like Sav did, if so, that could make it easier for somebody to check...

 

[dirk]

Investigate and respond to an abuse report involving a domain name registered with the registrar.

The transfer of a domain name to a different registrar and/or registrant

The suspension or deletion of a domain name for which I am or was the holder

I would start using one of the above,depending on th tld(s) affected.

For baseline purposes, any idea what the amount of flagged domains compared to dum's are at other registrars?

No,but from a business perspective, loosing 2% in DUMs would equal loosing 2% of Business. I dunno about other people but loosing 2% of business is kinda a big deal if there's no good reason.

Do all registrars have a specific email they send their flagged domains to like Sav did, if so, that could make it easier for somebody to check...

No.,not that I'm aware of.

 

[webengine]

Refresh your browser cache I run into this Problem make sure your able to change the DNS and that you haven't forwarded it

 

[Nicca]

Claiming these are due to AML is missing the point. It's absurd to blame regulations when the real problem lies with Sav.com's technical failures. Their poor handling of false reports and system malfunctions is causing chaos for domain investors. Don't let loyalty or convenience get you repeatedly screwed over. It's just a matter of time.

 

[zotix]

Claiming these are due to AML is missing the point. It's absurd to blame regulations when the real problem lies with Sav.com's technical failures. Their poor handling of false reports and system malfunctions is causing chaos for domain investors. Don't let loyalty or convenience get you repeatedly screwed over. It's just a matter of time.

What ?

 

[zotix]

Claiming these are due to AML is missing the point.

Explain me. And you know (even with using ChatGPT or google) how aml handling even is implemented in company’s? What are your assumptions to say missing the point?

Are there countries that are affectted maybe?
That’s something you can even google.

 

[Webcane Host]

Welcome to the forum. Do you have more details about your situation? Thanks.

I am still waiting for their email... I talked to online chat support multiple times and they saying i have to wait.. don't know how much time they will take.

 

[ryan87]

Even though the fraction affected was probably small, to them it was a huge thing to have (in some cases) suddenly all of their domain names inactive, including at least a few used by businesses.

This is something I try to explain to anyone who will listen. A failure that affects 1% of your customers isn’t ok if it’s a catastrophic, 100% failure rate for those affected. It can be life altering for those impacted.

Ok this makes it more clear now.
AML related things are never communicated before.

What’s making you think this has to do with AML?

I’m sure that handling abuse is extremely difficult for all registrars, but I’m skeptical of secrecy. Opaque abuse handling doesn’t stop bad actors from sharing information and it makes it more likely that good faith participants end up as victims of false positives without any recourse.

I often think the main reason tech companies don’t give explanations for banning accounts / users is because the policy enables substandard investigating and decision making which is cheaper than an equitable process.

@themuhammadahmed The domains I checked were registered recently. That matches part of their explanation. Were you using any of the domains for anything that might trigger abuse reports?

 

[tamannawd]

My 70 domain lock 1 domain not lock same account!! Any one get any solution I’m big tense !!

 

[zotix]

What’s making you think this has to do with AML?

First, I'm / my parents are from Pakistan - transfers get regulary blocked and transactions are sorted out to check manually, thus I can confirm from personal experience that these are things that even happen to countries who are not officially on any "AML"-flagged list, like Iran for example. Trading with those countries, especially in USD, since USD are cleared in NY are not allowed - otherwise banks risk that they are prohibited to trade with USD.

Wise for example is offering transactions to Pakistan, but if you try to make your initial payment from a Pakistan card / stable with good liquidity, it gets declined (not by the bank in Pakistan). Transactions going out are mostlikely always in manuell path.

The list of domains which was sent, was an indicator that this user is from Pakistan, so that's why i asked. If you look on the people's profiles from trustpilot who have commented recently - you will see that most of them are either from this area, or are definitely from their.

The user over my comment (tamannwd) seems to be from Pakistan, India or Bangladesh as well- mostlikely Pakistan, because "Naweed" is an Urdu (PK) name.

Additionally I know how AML systems work, risk factors etc.

It was nothing I said with 100% confidence and guarantee. Nobody here can say that, if they don't have any inside information from SAV.

I literally wrote

I understand your point but i assume the bank / credit card issuer for this bank is flagged.

"Assume"

Since there is many stuff going on in our beautiful world, which is very sad - domains could be abused to shift money from here to there. Especially for countries where banking systems are not good regulated, it's even easier.
At least this was something for me, that made more sense than SAV has financial troubles, no representing person here (bad signal anyways), less official communication, wrong pricing strategy with new gTLD

---

Claiming these are due to AML is missing the point. It's absurd to blame regulations when the real problem lies with Sav.com's technical failures. Their poor handling of false reports and system malfunctions is causing chaos for domain investors. Don't let loyalty or convenience get you repeatedly screwed over. It's just a matter of time.

This message i can't even understand.
First question was not answered by this user, who it's a missing point. Secondly "absurd to blaming regulations"
Who did this?
I just said what the root cause might be - now with examples, never said that regulations like AML are wrong.

Where is your explanation?

Writing something without (possible) evidence is nothing worth.

Zotix

 

[zotix]

@themuhammadahmed The domains I checked were registered recently. That matches part of their explanation. Were you using any of the domains for anything that might trigger abuse reports?

I also experienced the same thing at the beginning of my Domain with GoDaddy. It flagged me because I buy too fast in short-term Domains, always with the same payment method.
It was not Paypal or American Express; they just asked for every relevant KYC document to validate my account. And the funny part: three times in a row. And those, in total, at least gave me this pattern.
If you have any doubts or if there are probably better / more logical reasons, let me know. I am always willing to learn more about Domaining.
Btw. I would also report this to ICAN.
The only thing I'm concerned about is that they point this out as a "final decision," etc.

• Investigate and respond to an abuse report involving a domain name registered with the registrar. +
• A contractual compliance issue not identified above

Kind regards,
Mustafa

 

[Nick R]

Hello All. We just wanted to jump in and comment on this thread real quick. Sav does not tolerate domain abuse and takes abuse reports very seriously. We recently disabled a number of customer account’s and their domains after receiving verifiable evidence of one or more domains engaged per our Domain Name Registration Agreement. A few accounts were re-enabled after the customer agreed to make changes but this was not the majority. While we will be improving the notifications sent out to customers with domains engaged in abuse we will take action on any accounts and domains involved in abuse to do our part to help continue to make the Internet a safer place each and every day.

 

[dirk]

Sav does not tolerate domain abuse and takes abuse reports very seriously.

Thanks for taking the time to respond.

A) maybe you take things a bit too seriously or lack resources to confirm abuse.

B) you attract an insanely high number of dodgy customers.

Given your size, blackholing 40K domains in a short timespan really should make you wonder what's going on.

 

[Future Sensors]

 

[zotix]

Hello All. We just wanted to jump in and comment on this thread real quick. Sav does not tolerate domain abuse and takes abuse reports very seriously. We recently disabled a number of customer account’s and their domains after receiving verifiable evidence of one or more domains engaged per our Domain Name Registration Agreement. A few accounts were re-enabled after the customer agreed to make changes but this was not the majority. While we will be improving the notifications sent out to customers with domains engaged in abuse we will take action on any accounts and domains involved in abuse to do our part to help continue to make the Internet a safer place each and every day.

I clicked on Disagree in that case.
So, if there is no pattern with payment methods or other factors, why did you suddenly decide to block such many accounts? I see on Trustpilot only People from Pakistan and India, anyway—this is then not the reason.
I reviewed your Domain Name Registration Agreement. Can you give an example of a red flag?
What kind of Domains were abusive? How many reports did you receive per account? (in average?)

To understand how you filtered out and even closed WHOLE Accounts.

How you communicate this here - I mean even little things like Thanks for your understanding - shows that you act unprofessional.

Kind regards,
zotix

 

[Future Sensors]

How you communicate this here - I mean even little things like Thanks for your understanding - shows that you act unprofessional.

Damage control in action.

 

[zotix]

I write a WhatsApp message this way to my girlfriend, but I don't communicate relevant messages to one of the biggest Domain communities.

zotix.
Grab my popcorn for now & start sorting out my Domains.