At least, you probably should fill a police report. Would not harm. (not a legal advice). The registrars need to select between various scenarios: - domain was stolen - domain was not stolen, but somebody representing himself as mr. Jose [not real mr. Jose] is trying to steal it right now - there is a business dispute between former business partners - etc, etc, etc How the registrars can decide what really happened? They do not have full picture. Moreover, being IT professionals, they might ask how was it possible to steal the whole webhosting business by just obtaing access to domain name? There are tons of other things. Servers. Domain reselling. Billing agreements (recurring). Bank, paypal, merchant accounts. Just to name a few. Please do not disclose extra details here on public forum though... The registrars cannot decide here. They, however, must do whatever the appropriate court prescribes them to. IMO.