.ASIA domain name scams still going strong

Today I received the following message in my inbox, claiming to be from the Asian Domain Registration Service and warning me that the eset brand was in danger of being registered by a third-party.   Here is the message I received, which I’ve included in its entirety, except for a few bits:

Received: from mail.umail168.cn4e.com (mail.umail168.cn4e.com [117.27.141.168]) by [...].eset.com (Postfix) with ESMTP id 83EB18000B0;      Mon, 23 Jul 2012 04:26:56 +0200 (CEST)
Received: from ?????? (localhost.localdomain [127.0.0.1]) by mail.umail168.cn4e.com (Postfix) with SMTP id 4B426A2804E; Mon, 23 Jul 2012 10:26:34 +0800 (CST)
Received: from ?????? (unknown [114.97.226.112]) by mail.umail168.cn4e.com (Postfix) with ESMTPA;      Mon, 23 Jul 2012 10:26:33 +0800 (CST)
Reply-To: <richard@dcidc.a***>
From: richard zhang <richard@dcidc.a***>
To:
Subject: URGENT eset Brand Registration Confirmation
Date: Mon, 23 Jul 2012 10:25:48 +0800
Message-ID: <DreamMail__102548_82822228707@mail.dcidc.a***>
MIME-Version: 1.0
Content-Type: multipart/related; boundary=”—- =_NextPart_12072310232006281362145_001″
X-Priority: 1
X-Mailer: DreamMail 4.4.1.0
Disposition-Notification-To: <richard@dcidc.a**>
Return-Path: richard@dcidc.a***

Dear Sir/Madam,

We are the department of Asian Domain Registration Service in China. Here I have something to confirm with you. We formally received an application on July 20,2012 that a company claimed YDai Investment Ltd were applying to register “eset” as their Net Brand and some domain names through our firm.

Now we are handling this registration, and after our initial checking, we found the name were similar to your company’s, so we need to check with you whether your company has authorized that company to register these names. If you authorized this, we would finish the registration at once. If you did not authorize, please let us know within 7 workdays, so that we could handle this issue better. After the deadline we will unconditionally finish the registration for YDai Investment Ltd.Looking forward to your prompt reply.

Best Regards,

Richard Zhang
Head of Registration Department
Tel:+86-551-3434624 || Fax:+86-551-3434924
Address:No.99 JiuHuaShan Road,Hefei,Anhui,China

image with address of scammer's web site

 

If this sounds the least bit suspicious, well, there’s a reason for that.

There’s no scam like an old scam.

This is a repeat of the Asian ccTLD domain registration scam which we have discussed over the years and I last blogged about back in March 2010 as The Return of Jacques Tits—a scam which was at least three years old when I wrote that article.

The scam has not changed much over the years.   The scammer reports that someone is attempting to register your domain name in a different part of the world using country- and region-specific top level domains.   For example, ESET.CN for China, ESET.CO.JP for Japan, ESET.ASIA for the Asia Pacific region and so forth. The scammer's web site

In this case, the scammer has made a few small changes to the content of their warning message, using a new company name Asian Domain Registration Service for their organization, a fake   name for the company trying to register my domain name in Asia, and putting the address of their web site in a picture; techniques have been used by spammers for many years in order to slow detection of their messages by antispam engines. They also no longer include the actual domain names in the body of the message, perhaps realizing that many of them may now be in use, or perhaps because it creates additional work for them. The scammer’s actual web site, though, has remained largely unchanged over the years. This makes sense; aside from the image-based link included in the email, it it not referenced in detail until the time comes for the “payment” from the victim.

Scam Mechanics

How does the actual scam work? By abusing the trust of the recipient.  If I were to reply to the above message, Richard Zhang of the Asian Domain Registration Service (or whomever in the organization behind the scam is monitoring the mailbox) would notify me that unless I register my domain names with them for a fee, they will be given to the other party. I might even have to participate in a fake bidding war against the imaginary company trying to register my domain names.  If I ask for the contact information for the company trying to register my domains, I will be told it cannot be given out for privacy reasons. And, of course, since it is a fictitious company name, I will not be able to find it by searching on it.

All in all, it’s a simple way for a scammer to take someone’s money: They don’t have to write any malicious software, hack into any systems or have any technical expertise beyond running a real domain registration business. They simply use social engineering techniques to trick you into registering domains with them that you do not need, do not use and no one else is buying, either.

Countering the Wily Domain Registration Scammer

The techniques to counter social engineering-based scams such as this fake Asian domain registration scam remain unchanged since I blogged about them in 2010 and reprinted, below.

  1. If, despite all of the warning signs, you feel for some reason that the message might be legitimate, open a new instance of your web browser, visit your favorite search engine, and type in the name of the domain name registrar along with keywords such as hoax, scam and spam. For example, if the domain name registrar is named “Worldwide Network Services” then you should type in “Worldwide Network Services + spam” for your search terms.
  2. The scammers behind these types of messages often make small changes to them in order to make it more difficult for anti-spam tools to detect them. If the messages did not get sent to the spam folder in your email client, be sure to flag them as spam to help better classify them in the future.
  3. Review what email addresses are made available on your web site, including old press releases and downloadable documents. It may be those addresses no longer need to be displayed, could be obfuscated better, or replaced by a contact form.
  4. You should never reply to messages sent by scammers. By replying, you let them know that not only have they found a valid email address at your company but that they can also send you additional emails and share your email address with other scammers.<br >[Source: ESET Threat Blog. The Return of Jacques Tits,     March 30, 2010.]

By far, the most effective countermeasure against such scammy, scummy business is to educate yourself about how such scams work, and if you come across them in the future, to simply ignore them.  These scammers prey on the unwitting by making their sales pitches sound like a legitimate business communication. As soon as you understand what their scam is, you can defend against them using the best means possible: The delete button.

For more reading about domain registration scams, please see the following earlier ESET Threat Blog articles:

My colleague David Harley reports seeing this scam as far back as 2004, which makes this scam eight years old, at least. It also points out the difficulty of combating social engineering, which attacks people instead of computers.

Regards,

Aryeh Goretsky, MVP, ZCSE
Distinguished Researcher


Have you received a fake domain registration scam?   If so, who was it from, and how did you respond?  Please let us know in the comments, below.

Author Aryeh Goretsky, ESET

  • Andrew Zizzo

    It appears ESET Smart Security has filtering for this email scam, because it classified *this blog post* (received via email) as and moved it to my “Junk e-mail” folder!

    “By far, the most effective countermeasure against such scammy, scummy business is to educate yourself about how such scams work” – Absolutely, Mr. Goretsky. I really appreciate the social engineering awareness ESET promotes

    • Aryeh Goretsky

      Hello,

      ESET’s antispam engine can detect the type of spam used to promote this scam, so it’s unsurprising that it was blocked. In retrospect, I probably did not need to include the header on the email message, but did so because I think it can be helpful in showing how these messages make their way to your inbox.

      Thanks for your kind words.

      Regards,

      Aryeh Goretsky

      • Sasan

        The same: in French we say ” arnaque ”
        (Letter to Head of Brand
        Business or CEO, thanks)

        Dear Sir or Madam,

        This is a formal email. We
        are the department of Asian Domain Registration Service in China. Here I have
        ….
        If you did not authorize, please let us know within 7
        workdays, so that we could handle this issue better. After the deadline we will
        unconditionally finish the registration for Win Hua Investments Ltd. Looking
        forward to your prompt reply.

        Best Regards

        Derek Lau

        Senior Consultant

        Tel:+86.551-6349-5334

        Fax:+86.551-6349-5344

        Address:Tai
        Hu Lu 15 Hefei, Anhui, China

  • Erin

     
    Another scam going around at the moment:
     
     
    (Letter to the President or Brand Owner, thanks)
     
    Dear President,
     
    We are the department of Asian Domain Registration Service in China. Here I have something to confirm with you. We formally received an application on August 23 2012 that a company claimed Casier Industrial Co. Ltd were applying to register "maverickengineering" as their Net Brand and some domain names through our firm.
     
    Now we are handling this registration, and after our initial checking, we found the name were similar to your company's, so we need to check with you whether your company has authorized that company to register these names. If you authorized this, we would finish the registration at once. If you did not authorize, please let us know within 7 workdays, so that we could handle this issue better. After the deadline we will unconditionally finish the registration for Casier Industrial Co. Ltd. Looking forward to your prompt reply.
     
    Best Regards,
                                        
    Ashin Yang
     
    Registration Dept.
     
    Tel: +0086-28-8591-5586  ||  Fax: +0086-28-8591-2116
    Address:8/F XiYu building No,52 JinDun Road,QingYang District,Chengdu City,China.
     
     
    ? Please consider the environment before you print this e-mail.

    • Aryeh Goretsky

      Hello,

      Thank you for letting us know, Erin.

      Regards,

      Aryeh Goretsky

  • Datvad

        Another variation , I paste it here to help the search engine finding your brillant guide ( thx! ) :

            (Letter to the president or brand owner, thanks)

            Dear President,

            We are the department of Asian Domain Registration Service in china. I have something to confirm with you. We formally received an application on September 13, 2012 that a company which self-styled "Pufly Int'l  Ltd" were applying to register "***********" as their Net Brand and some asia domain names through our firm.

            Now we are handling this registration, and after our initial checking, we found the name were similar to your company's, so we need to check with you whether your company has authorized that company to register these names. If you authorized this, we will finish the registration at once. If you did not authorize, please let us know within 7 workdays, so that we will handle this issue better. Out of the time limit we will unconditionally finish the registration for "Pufly Int'l  Ltd".Looking forward to your prompt reply and have a nice day.

            Best Regards

            Linda  Lv
            Registration Dept.
            Tel:+86-5515184482 || Fax:+86-551-5123308
            Address:No.699 HuangShan Road,GaoXin District,Hefei,Anhui,China
            2012-9-13

    I can see the pattern is similar to here, only city , phone, names are differents. This can be random fields filled by a bot.

    • Aryeh Goretsky

      Hello,

      Thank you for letting us know about this new variation.

      Regards,

      Aryeh Goretsky

  • Stan Firebaugh

    Thank you for the information.
    We received a spam email today with
    The name Linda lv is electronically ‘ signed ‘
    At bottom of page.
    Thanks again for exposing this to light.

  • Rob Bogaards

    Hi,
    I was so stupid to reply to Linda. Here is her reply;
    Dear  Rob,
    Thanks for your confirmation. According to your reply, I know that your company has not authorized the company "Pufly  Int'l  Ltd " to register the Net Brand and domain names. As soon as receiving the application of Pufly  Int'l  Ltd we checked and found " ******* " is your company's registered trademark. So we sent email to inform you. I would like to inform you that the domain names registration is open in China, Pufly  Int'l  Ltd also has the right to apply for the available domain names. For this reason Pufly  Int'l  Ltd is also an licit applicant and we have no right to reject them. Your company only own the preferential right to register these names.
    At present, we haven't passed their application, we need your opinion. If your company consider these names of importance to your company's business or interest, I suggest that your company register these names first so as to avoid confusion or speculation. Of course, each company has their own idea. If you don't think their application will affect your company in the future, or you have no marketplace in Asia and you don't intend to develop business in Asia, then my suggestion is your company give up these names so that we can finish registering for them as per our duty. Please give me your company's decision as soon as possible in order to handle this issue better.
    Following Net Brand and domain names are applied for by Pufly  Int'l  Ltd :
    Net Brand:
    ****** 
    Domain Name:
     *******.asia
     *******.cn
     *******.co
     *******.com.cn
     *******.com.tw
     *******.hk
     *******.tw
    Best Regards,
    Linda Lv
    Registration Department
    Tel:+86-551-5184482 || Fax:+86-551-5123308

    Address:Address:No.699 HuangShan Road,GaoXin District,Hefei,Anhui,China 
    2012-09-14

    We'll see what comes next. Succes to all fighting this.
    Rob
     
     

    • Aryeh Goretsky

      Hello,

      It looks like the scammers behind this are quite active around the world. Thank you for your report.

      Regards,

      Aryeh Goretsky

  • John

     
    Yup, they are back at it again… Just got this today.
    ——————————————————————-
    (Letter to the President or Brand Owner, thanks)
    Dear President,
    We are the department of Asian Domain Registration Service in China. I have something to confirm with you. We formally received an application on September 18,2012 that a company which self-styled "ZOX Intl Ltd" were applying to register"xxxxxxxxxxxx"as their Net Brand and some domain names through our firm.
    Now we are handling this registration, and after our initial checking, we found the name were similar to your company's, so we need to check with you whether your company has authorized that company to register these names. If you authorized this, we will finish the registration at once. If you did not authorize, please let us know within 7 workdays, so that we will handle this issue better. Out of the time limit we will unconditionally finish the registration for "ZOX Intl Ltd".Looking forward to your prompt reply.
    Best Regards,

    David Zhao
    Head of Registration Department
    Tel:+86-551-3434624 || Fax:+86-551-3434924
    Address:No.99 JiuHuaShan Road,Hefei,Anhui,China

     
     

    • Aryeh Goretsky

      Hello John,

      Thank you for your report. It looks like the scammers behind this are still going strong.

      Regards,

      Aryeh Goretsky

  • Randy

    Just got one too. Was unsure of how to advise client until I found this post.  I first tried to search for the "competing company" and found nothing. Then I searched for the physical address at the bottom of the email and this blog post was the top result. Thanks!  Here is the email we recieved:
     
    (Mail to the brand holder, thanks)

    Dear Brand Holder,

    We are the department of Asian Domain Registration Service in China. I have something to confirm with you. We formally received an application on September 26, 2012 that a company which self-styled "Dunys International Co.,Ltd" were applying to register "——–" as their Net Brand and some domain names through our firm.

    Now we are handling this registration, and after our initial checking, we found the name were similar to your company's, so we need to check with you whether your company has authorized that company to register these names. If you authorized this, we will finish the registration at once. If you did not authorize, please let us know within 7 workdays, so that we will handle this issue better. Out of the time limit we will unconditionally finish the registration for "Dunys International Co.,Ltd". Looking forward to your prompt reply.

    Best Regards,

    Coral Wu
    Head of Auditing Department
    Tel:+86-551-5184482 || Fax:+86-551-5123308
    Website:www.pwsol.org
    Address:No.699 HuangShan Road, GaoXin District, Hefei, Anhui, China

    • Aryeh Goretsky

      Hello,

      Thanks for letting us know. It looks like the scam is still quite active.

      Regards,

      Aryeh Goretsky

  • uisystems.us

    Message received, with the same format. Asian domain register report Dunys International ltd. wants to register my domain. I dont know if spam filter caught this or not, does not matter anyway. They could not register that domain name unless they jacked our hosting companies DNS servers, with open resolvers.

    I will probably have some fun now that they have given a reply address.

    Thanks for the info..

    • Aryeh Goretsky

      Hello,

      As far as I know, they have not hijacked the registration of any domain so far. Instead, they seem to rely on these fake billing notices, which seem to be the 21st century equivalent of bills for fake phone book listings.

      Regards,

      Aryeh Goretsky

  • Another One

    (Mail to the brand holder, thanks)

    Dear Brand Holder,

    We are the department of Asian Domain Registration Service in China. I have something to confirm with you. We formally received an application on October 4, 2012 that a company which self-styled 'Dunys International Co.,Ltd' were applying to register "******" as their Net Brand and some domain names through our firm.

    Now we are handling this registration, and after our initial checking, we found the name were similar to your company's, so we need to check with you whether your company has authorized that company to register these names. If you authorized this, we will finish the registration at once. If you did not authorize, please let us know within 7 workdays, so that we will handle this issue better. Out of the time limit we will unconditionally finish the registration for 'Dunys International Co.,Ltd'. Looking forward to your prompt reply.

    Best Regards,

    Coral Wu
    Head of Auditing Department
    Tel:+86-551-5184482 || Fax:+86-551-5123308

    Address:No.699 HuangShan Road, GaoXin District, Hefei, Anhui, China

     

  • Anonymous

     

    another similar email
    Coral Wu
    (Mail to the brand holder, thanks)

    Dear Brand Holder,

    We are the department of Asian Domain Registration Service in China. I have something to confirm with you. We formally received an application on October 4, 2012 that a company which self-styled 'Dunys International Co.,Ltd' were applying to register "xxxx" as their Net Brand and some domain names through our firm.

    Now we are handling this registration, and after our initial checking, we found the name were similar to your company's, so we need to check with you whether your company has authorized that company to register these names. If you authorized this, we will finish the registration at once. If you did not authorize, please let us know within 7 workdays, so that we will handle this issue better. Out of the time limit we will unconditionally finish the registration for 'Dunys International Co.,Ltd'. Looking forward to your prompt reply.

    Best Regards,

    Coral Wu
    Head of Auditing Department
    Tel:+86-551-5184482 || Fax:+86-551-5123308

    Address:No.699 HuangShan Road, GaoXin District, Hefei, Anhui, China

  • Jesse

    As a hosting company and domain registrar, I see scams a lot.  My customers constantly get emails and letters saying their domians are expiring but they arent from me.  Most of these scammers are using the whois data to prey on them.  Today, I saw this one for the first time when a customer forwarded it to me.  They had, unfortunatly, alreadyr eplied and started dialog with the scammers.  Luckily, they contacted me after only a few email exchanges and I was able to keep them from doing business with these scammers.

    • Aryeh Goretsky

      Hello,

      Glad to hear that you caught it before your customer was affected, Jesse. Do you regularly notify your customers about scams and threats? If not, that might be something to consider doing in the future.

      Regards,

      Aryeh Goretsky

  • Lorna

    I have received one too thought it was a bit strange so I googled the address and came up with this page…. they will try anythig these days to scam anyone.
     
    To whom it may concern:
    We are the Department of Asian Domain Registration Service in China. We have something to confirm with you. On October 10, 2012 we received an application in which a company by the name "Tyrsc Co., Ltd" applied to register "gthomasandson" as their Net Brand and some Asia domain names through our firm.
    Now we are handling this registration. After our initial checking, we found that the name are identical to your company's. We need to check with you whether your company has authorized that company to register these names. If you have authorized this, we will finish the registration at once. If not, please let us know within 7 workdays, in which case we will dicuss the matter more thoroughly. If not otherwise advised within that time limit we will proceed with the registration for "Tyrsc Co., Ltd". We will be waiting for your reply. Have a nice day!
    Best Regards
    Daniel Wen
    Registration Department
    Tel:+86-551-5184482 || Fax:+86-551-5123308

    Address:Address:No.699 HuangShan Road,GaoXin District,Hefei,Anhui,China 
    2012-10-10

    • Aryeh Goretsky

      Hello,

      Thank you for the report. It seems the scam continues on unabated.

      Regards,

      Aryeh Goretsky

  • David

    Our company has also received one of these emails from Jessie Leung claiming to be from The Department of Asian Domain Registration Service in China. We replied to the initial email and got quick response below.
    Dear******,
     
    Thanks for your confirmation. According to your reply, I know that yourcompany has not authorized the company Valtcg International Co.,Ltd toregister the Net Brand and domain names.As soon as receiving theapplication of Valtcg International Co.,Ltd, we checked and found "********  " is your company's registered. So we sent email to inform you. You should know that the domain names registration is open in China, Valtcg International Co.,Ltd also has the right to apply for the available domain names.  For this reason Valtcg International Co.,Ltd, is also an licit applicant and we have no right to reject them. Your company only own the preferential rights to register these names.
    At present, we haven't passed their application, we need your opinion.If your company consider these names of importance to your company's business or interest, I suggest that your company register these names first so as to avoid confusion or speculation. If you want to register the domain names and net brand, please let me know, we will send a domain name application form and the procedure to you so that you can register the domains. Of course, each company has their own idea. If you don't think their application will affect your company in the future, or you have no marketplace in Asia and you don't intend to develop business in Asia, then my suggestion is your company give up these names so that we can finish registering for them as per our duty. Please give me your company's decision as soon as possible in order to handle this issue better.
    Following Net Brand and domain names are applied for by Valtcg
    International Co.,Ltd :
    Net Brand:
    **********
    Domain Name:
     ******.asia
     ******.cn
     ******.co
     ******.com.cn
     ******.hk
    ******.in
    ******.net
     ******.tw
     
     
    Best Regards
     
    Jessie Leung
    Registration Dept.
     
    Tel:+86-5515184482 || Fax:+86-551-5123308
     
    Address:Address:No.699  HuangShan Road,GaoXin District,Hefei,Anhui,China
     
     

    • Aryeh Goretsky

      Hello,

      Thanks for sharing that with us, David. These scammers must have enough success getting people to pay for this (or their operating costs must be very low) for them to have such success continuing this scam for such a long period of time.

      Regards,

      Aryeh Goretsky

  • Kirsty Effiong

    I received this one last week:
     

     
    From: Jessie Leung
    Sent: Thursday, October 11, 2012 18:54
    Subject: About pkl Brand Registration
    Importance: High

     
    To whom it may concern:
     
    We are the Department of Asian Domain Registration Service in China. We have something to confirm with you. On October 10, 2012 we received an application in which a company by the name 'Valtcg International Co.,Ltd' applied to register " pkl " as their Net Brand and some Asia domain names through our firm.
     
    Now we are handling this registration. After our initial checking, we found that the name are identical to your company's. We need to check with you whether your company has authorized that company to register these names. If you have authorized this, we will finish the registration at once. If not, please let us know within 7 workdays, in which case we will dicuss the matter more thoroughly. If not otherwise advised within that time limit we will proceed with the registration for 'Valtcg International Co.,Ltd'. We will be waiting for your reply. Have a nice day!
     
    Best Regards
     

    Jessie Leung
    Registration Dept.

    Tel:+86-5515184482 || Fax:+86-551-5123308

    Address:Address:No.699 HuangShan Road,GaoXin District,Hefei,Anhui,China

    2012-10-11

     

    • Aryeh Goretsky

      Hello,

      Thank you for the report, Kirsty.

      Regards,

      Aryeh Goretsky

  • tom

    pwsol.com.cn
    pipnet.asia
    pipnet.com.cn
    pwsol.com.cn
    publicip.asia
    pwsol.org
    Public IP Network Ltd
    Public IP Network Ltd
    Public Web Solutions Ltd

    • Aryeh Goretsky

      Hello Tom,

      Thanks for the list of domains and company names.

      Regards,

      Aryeh Goretsky

  • Arek

     
    Hello,
    I have also received an email about brand registration in China. 

    (Letter to the president or brand owner, thanks)

    Dear President,

    We are the department of Asian Domain Registration Service in china.I have something to confirm with you. We formally received an application on October 24, 2012 that a company which self-styled "Egawa International Co.,Ltd" were applying to register "ecolab-sklep" as their Net Brand and some asia domain names through our firm.

    Now we are handling this registration, and after our initial checking, we found the name were similar to your company's, so we need to check with you whether your company has authorized that company to register these names. If you authorized this, we will finish the registration at once. If you did not authorize, please let us know within 7 workdays, so that we will handle this issue better. Out of the time limit we will unconditionally finish the registration for "Egawa International Co.,Ltd". Looking forward to your prompt reply.

    Best Regards 

    Cherry Chen
    Registration Department
    Tel:+86-551-5184482 || Fax:+86-551-5123308

    Address:Address:No.699 HuangShan Road,GaoXin District,Hefei,Anhui,China  
    2012-10-24

     

  • Siamak

    Well I almost found this amusing. Here is the one I just got a few weeks ago:
    We are the department of Asian Domain Registration Service in China. Here I have something to confirm with you. We formally received an application on September 27 2012 that a company self-styled "PUFLY CO., LTD" were applying to register "******" as their Net Brand and some domain names through our firm.
     
    Now we are handling this registration, and after our initial checking, we found the name were similar to your company's, so we need to check with you whether your company has authorized that company to register these names. If you authorized this, we would finish the registration at once. If you did not authorize, please let us know within 7 workdays, so that we could handle this issue better. After the deadline we will unconditionally finish the registration for PUFLY CO., LTD. Looking forward to your prompt reply.

  • Mantas

    We also has received this kind of email and thanks to this post we did not register domain names we don't need. 
    However I did send them an email asking to reject the application and asking what steps should I take next. It will be interesting to see what they will reply.

  • Dita

     
    Hello Aryeh,
    Just received a similar email, now from Richard Zhang again. It confused me at first since it looked serious. Also, the web address they give exists and looks real. Thank you for the warning!
     
    (Letter to the President or Brand Owner, thanks)
    Dear Sir/Madam,
    We are the department of Asian Domain Registration Service in China. Here I have something to confirm with you. We formally received an application on October 29, 2012 that a company claimed YSD Investment Ltd were applying to register ".." as their Net Brand and some domain names through our firm.
    Now we are handling this registration, and after our initial checking, we found the name were similar to your company's, so we need to check with you whether your company has authorized that company to register these names. If you authorized this, we would finish the registration at once. If you did not authorize, please let us know within 7 workdays, so that we could handle this issue better. After the deadline we will unconditionally finish the registration for YSD Investment Ltd.Looking forward to your prompt reply.

    Best Regards,
    Richard Zhang
    Head of Registration Department
    Tel:+86-551-3434624 || Fax:+86-551-3434924
    Address:No.99 JiuHuaShan Road,Hefei,Anhui,China

     

  • Yaha

    Hi Dita,
    I recieved exacly the same today. Richard Zhang keeps himself busy it seems ;

  • Cthonus

    Received 20 mins ago:

    “(It’s very urgent, Please transfer this email to your CEO or appropriate person, thanks)

    Dear Sir or Madam,
    We are the department of Asian Domain Registration Service in China. I have something to confirm with you. We formally received an application on November 1, 2012 that a company which self-styled “yyyy” were applying to register “xxxxx” as their Net Brand and some domain names through our firm.
    Now we are handling this registration, and after our initial checking, we found the name were similar to your company’s, so we need to check with you whether your company has authorized that company to register these names. If you authorized this, we will finish the registration at once. If you did not authorize, please let us know within 7 workdays, so that we will handle this issue better. Out of the time limit we will unconditionally finish the registration for “yyyy”.Looking forward to your prompt reply.
    Best Regards,
    Jim Wong
    Head of Registration Department
    Tel:+86-551-3434624 || Fax:+86-551-3434924
    Address:No.99 JiuHuaShan Road,Hefei,Anhui,China”

    Anyone have any friends in the Chinese police force? ;)

  • Marc

    Thanks for the explanation! Got one this week from “William Wu”.

    • Stephen Cobb

      Thanks for sharing Marc!

  • OneEyed

    Since the domain in question belonged to a minor country & western band, I had no reservations about foreign domain TLDs, especially .CN and .ASIA, haha.

    From: Danny Ge
    Date: Mon, Mar 11,
    2013 at 1:43 AM
    Subject: Notice about dispute domain ####### registration
    To:

    (Letter to Head of Brand Business or CEO, thanks)

    Dear Sir or Madam,

    This is a formal email. We are the department of Asian Domain Registration Service in China. Here I have something to confirm with you. We formally received an application on March 11, 2013 that a company claimed E-Key International Ltd were applying to register “#######” as their Brand Name and some rogermarin Asian countries top-level domain names through our firm.

    Now we are handling this registration, and after our initial checking, we found the name were similar to your company’s, so we need to check with you whether your company has authorized that company to register these names. If you authorized this, we would finish the registration at once. If you did not authorize, please let us know within 7 workdays, so that we could handle this issue better. After the deadline we will unconditionally finish the registration for E-Key International Ltd. Looking forward to your
    prompt reply.

    Best Regards,

    Danny Ge

    Tel: +86.551/63495334
    Fax:+86.551/63495344
    Address:HuiZhou Ave# 700, Hefei, Anhui, China

    • Stephen Cobb

      Thanks for sharing!

  • Stephen Cobb

    Well done Paul, you did not fall for their tactics. This is a really pernicious scheme and one we are watching closely.

  • Stephen Cobb

    Helping out around the world, it’s what we live for!

  • http://learntipsandtricks.com/ Damu

    today i got same email for my brand “codefight”, it seemed almost real :)

  • john

    Thanks for the post. I just got this variation of the e-mail. (Note: I replaced our company name with “XXX” for anonymity.

    ++++++++++++++++++
    From: Mark
    Ren

    Date: Tue, 26 Mar 2013 18:19:16 +0800

    Subject: URGENT “XXX” Brand
    Registration Confirmation

    (Letter to Head of Brand
    Business or CEO, thanks)

    Dear Sir or Madam,

    This is a formal email. We
    are the department of Asian Domain Registration Service in China. Here I have
    something to confirm with you. We formally received an application on March
    25,2013 that a company claimed LOE Int’l Ltd were applying to register
    “XXX” as their Brand Name and some domain names through our firm.

    Now we are handling this
    registration, and after our initial checking, we found the name were similar to
    your company’s, so we need to check with you whether your company has
    authorized that company to register these names. If you authorized this, we
    would finish the registration at once. If you did not authorize, please let us
    know within 7 workdays, so that we could handle this issue better. After the
    deadline we will unconditionally finish the registration for that
    company.Looking forward to your prompt reply.

    Best Regards,

    Mark Ren

    Tel:
    +86.551/63434624

    Fax:+86.551/63434924

    Address:No.650 HuiZhou Ave,Hefei,Anhui,China

    • Stephen Cobb

      Thanks for sharing John.

  • Vedrana Vrebac

    Hello from Croatia! Today I got same e-mail from Danny Ge, danny@d3-net.org.cn. Glad I searched for him in Google before replying. Thanks for sharing this information!

  • Silvia

    I have just received a mail from a department of Asian Domain
    Registration Service in China :D

  • patrick.burke123@btinternet.co

    I’ve taken a look at the mail server they’re sending from:

    Registrant:
    35.com technology co.,ltd. +86.5925391800 +86.5925391808
    35.com technology co.,ltd.
    35.COM BLDG, 8th Guanri Road, Software Park
    XIAMEN,FUJIAN,CN 361008

    Domain Name:cn4e.com
    Record last updated at 2013-03-13 02:04:31
    Record created on 8/13/2000
    Record expired on 08/13/2014

    Domain servers in listed order:
    ns1.dns-diy.com ns2.dns-diy.com

    Administrator:
    name:(Gongshaohui)
    Email:() tel– +86.5925391800
    fax:(+86.5925391808)
    35.com technology co.,ltd.
    35.COM BLDG, 8th Guanri Road, Software Park
    XIAMEN
    FUJIAN,
    CN

    zipcode:361008

    Technical Contactor:
    name:(35.com technology co.,ltd.)
    Email:() tel– +86.5925391800
    fax:(+86.5925391808)
    35.com technology co.,ltd.
    35.COM BLDG, 8th Guanri Road, Software Park
    XIAMEN
    FUJIAN,
    CN

    zipcode:361008

    Billing Contactor:
    name:(35.com technology co.,ltd.)
    Email:() tel– +86.5925391800
    fax:(+86.5925391808)
    35.com technology co.,ltd.
    35.COM BLDG, 8th Guanri Road, Software Park
    XIAMEN
    FUJIAN,
    CN

    zipcode:361008
    Feel free to use as you wish.

  • Giselle Vassaux

    Thanks for posting this, I received a similar scam mail like the ones described, from:
    ashin@tsnettech.com
    I did not respond.

  • NLW

    As the domain owner is a live music venue in North America, this too was a out-of-context phish.

    Received 2013-04-19
    ——————————————————————————————-
    From Sylvia Lee Tue Apr 9 17:48:59 2013
    X-Apparently-To: ZZZZZZZ@ZZZZZZ via 98.138.210.232; Tue, 09 Apr 2013 17:49:14 -0700
    Return-Path:
    Received-SPF: none (domain of publicbrand.org does not designate permitted sender hosts)
    X-Originating-IP: [209.190.25.90]
    Authentication-Results: mta1122.mail.gq1.yahoo.com from=publicbrand.org; domainkeys=neutral (no sig); from=publicbrand.org; dkim=neutral (no sig)
    Received: from 127.0.0.1 (EHLO mail3.ZZZZZZZZZ) (209.190.25.90)
    by mta1122.mail.gq1.ZZZZZZZZZ with SMTP; Tue, 09 Apr 2013 17:49:13 -0700
    Received: from mail.mail14.cn4e.com (mail.mail14.cn4e.com [218.85.138.14])
    by mail3.ZZZZZZZZZZZZ (Postfix) with ESMTP id 451812C4651;
    Tue, 9 Apr 2013 17:31:05 -0700 (PDT)
    Received: from sylviapc (unknown [114.96.136.244])

    by mail.mail14.cn4e.com (Postfix) with ESMTPA id C14941900DA;
    Wed, 10 Apr 2013 08:48:53 +0800 (CST)
    From: “Sylvia Lee”
    To:
    Subject: URGENT: ZZZZZZZZZZZ Brand Registration Confirmation!
    Date: Wed, 10 Apr 2013 08:48:59 +0800
    Message-Id:
    X-Mailer: DreamMail 4.6.9.2
    URGENT: ZZZZZZZZZZ Brand Registration Confirmation!
    (Please forward to the President or Brand Owner, thank you)

    Dear Sir/Madam,

    We are a registration agency of Asian Domain Registration Organization in China. I have something to confirm with you. We formally received an application on April 9, 2013 that a company which self-styled “Pus Int’l Co Ltd” were applying to register “zzzzzzzzzzzzz” as their Brand Name and some domain names through our firm.

    Now we are handling this registration, and after our initial checking, we found these names were similar to your company’s, so we need to check with you whether your company has authorized that company to register these names. If you authorized this, we will finish the registration at once. If you did not authorize, please let us know within 7 workdays, so that we will handle this issue better. Out of the time limit we will unconditionally finish the registration for “Pus Int’l Co Ltd”. Looking forward to your prompt reply.

    Best Regards,

    Sylvia Lee
    Registration Department
    Tel: +86-551-65184482 || Fax: +86-551-65123308

    Address: No.288 Jinzhai Road, ShuShan District, Hefei, Anhui, China
    2013-4-9

  • NLW

    They seem to have changed the template. Received today.
    “Thanks and br” ???

    Wendy
    Apr 23
    to booking

    Dear CEO or Director,
    We are a senior domain registrar in Hong Kong.

    1.On Apr.22, 2013, a company named Seinid Investment Co.applied for registering the following Top-Level-Domains with us.

    DomainName.asia
    DomainName.cn
    DomainName.com.cn
    DomainName.com.hk
    DomainName.com.tw

    2.Whether did you consign Seinid to register these Domains? Or are they your subbranch?

    Should you have any questions, pls do not hesitate to contact me.

    Tks & br,
    Wendy Cheng
    Tel: +852_3050_6765
    Fax: +852_3069_7409
    wch@hkcreating.com
    http://www.hkcreating.hk/

    • dhherold

      Received the identical letter from “Wendy Chang,” except for date – May 3, 2013. Thanks for posting!

  • Yonas

    URGENT Brand Registration Confirmation:

    (Letter to Head of Brand Business or CEO, thanks)

    Dear Sir or Madam,

    This is a formal email. We are the department of Asian Domain Registration
    Service in China. Here I have something to confirm with you. We formally
    received an application on April 29,2013 that a company claimed BEZX Investment
    Ltd were applying to register “example” as their Brand Name and some domain
    names through our firm.

    Now we are handling this registration, and after our initial checking, we
    found the name were similar to your company’s, so we need to check with you
    whether your company has authorized that company to register these names. If you
    authorized this, we would finish the registration at once. If you did not
    authorize, please let us know within 7 workdays, so that we could handle this
    issue better. After the deadline we will unconditionally finish the registration
    for that company.Looking forward to your prompt reply.

    Best Regards,

    Mark Ren

    Tel:
    +86.551/63434624
    Fax:+86.551/63434924
    Address:No.650 HuiZhou
    Ave,Hefei,Anhui,China

    • Stephen Cobb

      Thanks for sharing.

  • Alex Schindler

    Yes. I have received this email. Is there any one I can report this to. Local Police…FBI, State Department? Any advice is helpful.

    • dharleyatESET

      These scams tend not to originate within the US and are very numerous, so reporting it within the US won’t necessarily inspire much action. You could try this site for information on where to report scams: http://www.consumerfraudreporting.org/reporting.php

  • Maxo

    From: Derek Lau [mailto:derek@d3-network.org.cn]
    Sent: Thursday, April 25, 2013 6:12 AM
    Subject: “cityislanders”
    Importance: High

    (Letter to Head of Brand Business or CEO, thanks)
    Dear Sir or Madam,
    This is a formal email. We are the department of Asian Domain Registration Service in China. Here I have something to confirm with you. We formally received an application on April 25, 2013 that a company claimed E. Long investment Ltd were applying to register “cityislanders” as their brand name and some cityislanders Asian countries top-level domain names through our firm.
    Now we are handling this registration, and after our initial checking, we found the name were similar to your company’s, so we need to check with you whether your company has authorized that company to register these names. If you authorized this, we would finish the registration at once. If you did not authorize, please let us know within 7 workdays, so that we could handle this issue better. After the deadline we will unconditionally finish the registration for E. Long investment Ltd. Looking forward to your prompt reply.

    Best Regards

    Derek Lau

    Senior Consultant
    Tel:+86.551/63495334 Fax:+86.551/63495344

    Address:HuiZhou Ave# 700, Hefei, Anhui, China

  • Maxo

    From: Derek Lau [mailto:derek@d3-network.org.cn]
    Sent: Friday, May 03, 2013 3:34 AM
    To: john
    Subject: Re: Re: Re: RE: “xxxxxxxxxx”
    Importance: High

    Notice: Hi, I am Derek Lau. We had discussed the case about disputing your company’s domain names and Brand Name. You have never registered these domain names and Brand Name, and I had told you that the domain name registration is open. The dispute period will expire soon. If your company does not register these domain names and Brand Name, we will finish aforesaid company registration within 2 workdays. that company will become the legal owner of these domain names in the world. We had notified you, so we are not responsible for any dispute question about your intellectual property right and trademark after they succeed in registration. If you have any questions, pls contact us within 2 workdays.

    Best Regards,

    Derek Lau
    Senior Consultant || Tel:+86.551/63495334 Fax:+86.551/63495344

  • fake

    e formally received an application on November 1, 2012 that a company which self-styled “yyyy” were applying to register “xxxxx” as their Net Brand and

  • STANDOUT INTERNSHIPS

    I received this email last week from ethan@tsnetnic.com … unfortunately I replied and now I am being hounded to register the domain. Fortunately I found your website and am going to just delete the emails from now on … THANK YOU!

    “Dear President,

    We are the department of Asian Domain Registration Service in China. I have something to confirm with you. We formally received an application on May 25, 2013 that a company which self-styled “Kuea Co.,Ltd”. were applying to register some “standoutinternships” Asian countries top-level domain names.

    Now we are handling this registration, and after our initial checking, we found the name were similar to your company’s, so we need to check with you whether your company has authorized that company to register these names. If you authorized this, we will finish the registration at once. If you did not authorize, please let us know within 7 workdays, so that we will handle this issue better.

    Best Regards,
    Ethan Jiang
    Senior Manager
    Tel: +0086-28-85915586 || Fax: +0086-28-85912116
    9/F,No.4 Guanghua building,JiangDong Road,Chenghua District,Chengdu City,China”

  • scam

    Here is my Scam – but the funny thing is that ‘Sandy’ doesn’t say a word that she could register these domain names for me!? Normally there is a BIG link, instructions, etc to do so – but with this Scam NOTHING. I am a bit surprised…

    here is her email (sent from Sandy Sun )

    ——————————————————-
    (Letter to the President or Brand Owner, thanks)

    Dear President,

    We are the department of Asian Domain Registration Service in China. I
    have something to confirm with you. We formally received an application on
    June 18, 2013 that a company which self-styled “SHT Int’l Investment
    Ltd” were applying to register “YOUR COMPANY NAME HERE” as their Brand Name and some
    domain names through our firm.

    Now we are handling this registration, and after our initial checking, we
    found the name were similar to your company’s, so we need to check with you
    whether your company has authorized that company to register these names. If
    you authorized this, we will finish the registration at once. If you did not
    authorize, please let us know within 7 workdays, so that we will handle this
    issue better. Out of the time limit we will unconditionally finish the
    registration for “SHT Int’l Investment Ltd”. Looking forward to your
    prompt reply.

    Best Regards,
    Sandy Sun

  • hillel sims

    I just got the same message, but I knew it looked fake, so I did not reply.

    (It’s very urgent, so please transfer
    this email to your CEO or appropriate person. Thanks a lot.)

    Dear CEO/Principal,

    We are the department of Asian Domain
    Registration Service in China. Here I have something to confirm with you. We
    formally received an application on June 20, 2013
    that a company claimed “Cantyeng Company” were
    applying to register “xxxxx” as their Net
    Brand and some “xxxxx” Asian countries
    top-level domain names through our firm.

    Now we are handling this
    registration, and after our initial checking, we found the name were similar to
    your company’s, so we need to check with you whether your company has authorized
    that company to register these names. If you authorized this, we would finish
    the registration at once. If you did not authorize, please let us know within 7
    workdays, so that we could handle this issue better. After the deadline we will
    unconditionally finish the registration for “Cantyeng Company” Looking
    forward to your prompt
    reply.

    Best Regards,

    Andy Zhang
    Senior Consultant
    Manager

  • Dario Maggio

    Just received 5 min ago… It looks they are still alive.. but now Derek Lau is the Senior Consultant, but extremly nice is the applying company Name: KICK SAS Limited :)

    “(Letter to
    Head of Brand Business or CEO, thanks)

    Dear Sir or
    Madam,

    This is a
    formal email. We are the department of Asian Domain Registration Service in
    China. Here I have something to confirm with you. We formally received an
    application on July 3, 2013 that a company claimed KICK SAS LIMITED were
    applying to register “xxxxxx” as their brand name and some xxxxx
    Asian countries top-level domain names through our firm.

    Now we are handling this registration, and after our initial checking, we found the name were similar to your company’s, so we need to check with you whether your
    company has authorized that company to register these names. If you authorized
    this, we would finish the registration at once. If you did not authorize,
    please let us know within 7 workdays, so that we could handle this issue
    better. After the deadline we will unconditionally finish the registration for
    KICK SAS LIMITED. Looking forward to your prompt reply.”

  • MemyselfandI

    Received this one last week:

    (Letter to the President or Brand Owner, thanks)

    Dear President,

    We are a domain name registration and protection agency in Asia. I have
    something to confirm with you. We formally received an application on June
    26,2013 that a company which self-styled”Woj International Holdings Ltd”were
    applying to register”xxx”as their Brand Name and some domain names through
    our firm.

    Now we are handling this registration, and after our initial checking, we
    found the name were similar to your company’s, so we need to check with you
    whether your company has authorized that company to register these names. If you
    authorized this, we will finish the registration at once. If you did not
    authorize, please let us know within 7 workdays, so that we will handle this
    issue better. Out of the time limit we will unconditionally finish the
    registration for”Woj International Holdings Ltd”.Looking forward to your prompt
    reply.

    Best Regards,

    David Zhao

    Tel:+86(0551)63434624

    Fax:+86(0551)63434924
    Add:MaAnShan Road 688, Hefei,
    Anhui,China

    —————————

    Unfortunately and ashamedly I DID reply to state that the company was not authorized and told them not to proceed, and asked them what this other company’s business is. Their reply, which stated that they are in the same business I am but that it’s a secret and I shouldn’t ask again is what confirmed for me that it was a scam. I haven’t responded since and so have now received several emails from them, each one more and more urgent (read as “desperate”) and telling me I need to register these domain names before the other company if I feel it’s important to protect my brand. Again, haven’t responded to any of these.

    This was the latest email received yesterday:

    Dear Sir,

    In the “xxx” related Domain name dispute case processing,we will no
    long give you more time to delayed forever.
    I had divert this case to our
    registration department already. Now you understood the policy of Domain name
    dispute and registration very clear. But you still have not give us a reply till
    now. According to the policy we see you give up all those Domain names.
    If
    you can not give us a reply before July
    5,
    2013, we shall Formally pass through that company’s
    registration.And we will not bear any responsibility due this

    registration.

    Best Regards,

    David Zhao ||
    Tel:86(0551)63434624|| Fax:86(0551)63434924

  • PTGuy

    Received: 07/2013
    Subject: Urgent notice about “XXXXXX” Brand dispute and registration

    (Letter to the President or Brand Owner, thanks)

    Dear Sir/Madam,

    We are the department of Asian Domain Registration Service in China. Here I have something to confirm with you. We formally received an application on July 15, 2013 that a company claimed “Pom Global Ltd” were applying to register “XXXXXX” as their Brand Name and some domain names through our firm.

    Now we are handling this registration, and after our initial checking, we found the name were similar to your company’s, so we need to check with you whether your company has authorized that company to register these names. If you authorized this, we would finish the registration at once. If you did not authorize, please let us know within 7 workdays, so that we could handle this issue better. After the deadline we will unconditionally finish the registration for “Pon Global Ltd”Looking forward to your prompt reply.

    Gavin Hai
    Tel:+86.55163434624 || Fax:+86.55163434924
    Address:HuiZhou Ave 999, Hefei, Anhui, China
    Website:www.des-registry.org

  • McInk

    Rec’d July 30 2012

    (Letter to the President or Brand Owner, thanks)

    Dear President,

    We are a domain name registration and protection agency in Asia. I have
    something to confirm with you. We formally received an application on July
    29,2013 that a company which self-styled”Pau Investment Co.,Ltd”were applying to
    register”xxxxxxx”as their Brand Name and some domain names through our
    firm.

    Now we are handling this registration, and after our initial checking, we
    found the name were similar to your company’s, so we need to check with you
    whether your company has authorized that company to register these names. If you
    authorized this, we will finish the registration at once. If you did not
    authorize, please let us know within 7 workdays, so that we will handle this
    issue better. Out of the time limit we will unconditionally finish the
    registration for”Pau Investment Co.,Ltd”.Looking forward to your prompt
    reply.

    Best Regards,

    David Zhao

    Tel:+86.55163495334
    Fax:+86.55163495344
    Address:MaAnShan Road
    700, Hefei, Anhui, China
    http://www.dsa.register.org

  • http://www.chicshop.com.au/ ChicShop.com.au

    Received the same letter. Thank you for the info.

  • ACJ

    Thanks for this very helpful article!! I just received this morning the same spam from this address louis@dus-web.org.cn:

    (It’s very urgent, Please transfer this email to your CEO or appropriate person, thanks)

    Dear CEO,

    We are the institution for registration service in the People’s Republic of China.We formally received an application on August 5th, 2013 that a company claimed ”Q.Z. Int’l Co., Ltd” were applying to register”yyy”as their Brand name and some “yyy” domain names through us.

    Now we are handling this registration, and after our initial checking, we found the name were similar to your company’s, so we need to check with you whether your company has authorized that company to register these names. If you authorized this, we would finish the registration at once. If you did not authorize, please let us know within 5 workdays, so that we could handle this issue better. After the deadline we will unconditionally finish the registration for ”Q.Z. Int’l Co., Ltd”.

    Looking forward to your prompt reply.

    Best Regards,

    Louis Zha
    Tel:+86-0551-63495334
    Fax:+86-0551-63495344
    Address:WangJiang East Road 20, Hefei, Anhui, China

  • JM

    (Please forward to the President or Brand Owner, thanks)

    Dear Brand Holder,
    We are a registration agency of
    Asian Domain Registration Organization in China. I have something to confirm
    with you. We formally received an application on August 7, 2013 that a company
    which self-styled “Huanghe International Co.,Ltd” were applying to register
    “xxxxxxxxxxxxxx” as their brand name and some domain
    names through our firm.

    Now we are handling this registration, and after our
    initial checking, we found the name were similar to your company’s, so we need
    to check with you whether your company has authorized that company to register
    these names. If you authorized this, we will finish the registration at once. If
    you did not authorize, please let us know within 7 workdays, so that we will
    handle this issue better. Out of the time limit we will unconditionally finish
    the registration for “Huanghe International Co.,Ltd”. Looking forward to your
    prompt reply.

    Best
    Regards,

    ——————————

    Mike Cao

    Registration Department

    Office:
    +86-551-6512-0117
    Fax Number:
    +86-551-6512-3308

  • Yury

    Thank you, Aryeh!
    I just received a similar e-mail and suspected fraud. I found your article and all became clear.

  • Dee

    Received today:

    I’m sorry to disturb you so abruptly. But we need to confirm something important with you.

    We are a department of registration service in China.On August 29,2013, we received an application form from a company named “WanJin international Co.,Ltd” who applied for the Brand Name “xxxxxxxxxx” and some relevant domain names registration through us. However,we need to confirm a couple of things with you before we finish the registration of that company:

    1. If your company consigns that company to register these domain names and Brand Name, we will help them finish the registration at once.

    2. If your company has nothing to do with that company, then they maybe have other purposes to register these domain names and Brand Name.

    In order to deal with this issue better, please contact us by telephone or email within 7 workdays. otherwise we will unconditionally approve the application submitted by that company.

    Best Regards,

    Ann An

    Registration Department
    Phone: +86-55165120117
    Fax: +86-55165123308
    Fax: +86-55165123308

  • DonZalmrol

    Received today:

    (To anyone who might be concerned)

    Dear Sir/Madam,

    We are the department of Asian Domain Registration Service in China. Here I have something to confirm with you. We formally received an application on Sept.12,2013 that a company claimed TBC-Intl Co.,LTD were applying to register “xxxxxx” as their Brand Name and some yyyyyyy Asian countries top-level domain names through our firm.

    Now we are handling this registration, and after our initial checking, we found the name were similar to your company’s, so we need to check with you whether your company has authorized that company to register these names. If you authorized this, we would finish the registration at once. If you did not authorize, please let us know within 7 workdays, so that we could handle this issue better. After the deadline we will unconditionally finish the registration for TBC-Intl Co.,LTD.Looking forward to your prompt reply.

    Best Regards,
    Bob Zhu
    Tel: +86-551-64653920 || Fax: +86-551-64653980
    Address:No.155, Jinzhai Road, Shushan District, Hefei gold square Building 5. China.

  • LukasEder

    Got this just now:

    (Letter to Head of Brand
    Business or CEO, thanks)

    Dear Sir or Madam,

    This is a formal email. We
    are the department of Asian Domain Registration Service in China. Here I have
    something to confirm with you. We formally received an application on October
    10,2013 that a company claimed GJHG Co.,Ltd were applying to register
    “datageekery” as their Brand Name and some domain names through our
    firm.

    Now we are handling this
    registration, and after our initial checking, we found the name were similar to
    your company’s, so we need to check with you whether your company has
    authorized that company to register these names. If you authorized this, we
    would finish the registration at once. If you did not authorize, please let us
    know within 7 workdays, so that we could handle this issue better. After the
    deadline we will unconditionally finish the registration for that
    company.Looking forward to your prompt reply.

    Best Regards,

    Lex Ren

    Tel:+86-551-6343 4624

    Fax:+86-551-6343 4924

    Address:Ningguo South Road 14, Hefei, Anhui, CN

    • UKlou

      Funny that, I had that exact email word for word apart from the company name from someone else today who calls himself Nicholas Chen from the D.U. Net Information Center Ltd, 124, Changjiang Road, Hefei 230001, Anhui, China

  • shawnsBrain

    We got on today. I immediately determined it was a scam. This site affirmed my suspicion. Thanks.

  • Luobo Ye

    Reply by NiceNIC.NET http://nicenic.net

    To avoid such scam, we would suggest domainers/domain Registrants to register/transfer .CN, .HK domain names with Accredited domain Registrars.

    To check whether a website/company got accredited or not, the following links for Asian domain Registries would be required

    For .CN Domain Registration:

    http://www.cnnic.cn/jczyfw/CNym/cnzcfwjgcx/cnzcjg_ndsq/201206/t20120614_28273.htm (Domestic CNNIC Accredited Registrar)

    http://www.cnnic.cn/jczyfw/CNym/cnzcfwjgcx/cnzcjg_ndsq/201207/t20120702_30267.htm (Overseas CNNIC Accredited Registrar)

    For .HK Domain Registration:

    https://www.hkirc.hk/content.jsp?id=280

  • Gerd A. Zimmermann

    We received today (Nov.10) the scam message from the Asians about our domain usgermanlawyers. Thanks for your good report

  • stormuk69

    Confirmed my suspicions….Thanks.

    Carol Sun [mailto:Carol@wnservice.cn]

    (Letter to the President or Brand Owner, thanks)

    Dear Sir or Madam,

    We are the department of Asian
    Domain Registration Service in China. Here I have something to confirm with
    you. We formally received an application on November11, 2013 that a company
    claimed “Ya & DT Export Corporation” were applying to register
    “your domain” as their Brand Name and some domain names through our
    firm.

    Now we are handling this
    registration and after our initial checking, we found the names are similar to
    your company’s, so we need to check with you whether your company has
    authorized that company to register these names. If you authorized this, we
    would finish the registration at once. But if you did not authorize, please let
    us know within 7 workdays, so that we could handle this issue better. After the
    deadline, we will unconditionally finish the registration for “Ya & DT
    Export Corporation”. I am looking forward to your prompt reply.

    Best
    Regards,

    Carol Sun

  • Alex Alex

    (To anyone who might be
    concerned)

    Dear Sir or Madam,

    This is a formal email. We are the department of Asian Domain Registration Service in China. Here I have something to confirm with you. We formally received an application on November 22, 2013 that a company claimed “Toco industries” were applying to register “xxxxxxx” as their Brand Name and some “xxxxxxx” Asian
    countries top-level domain names through our firm.

    Now we are handling this registration, and after our initial checking, we found the name were similar to your company’s, so we need to check with you whether your company has authorized that company to register these names. If you authorized this, we would finish the registration at once. If you did not authorize, please let us
    know within 7 workdays, so that we could handle this issue better. After the
    deadline we will unconditionally finish the registration for “Toco
    industries”. Looking forward to your prompt reply.

    Best Regards,
    Mark Wong
    Tel: +86-551-64653920 || Fax: +86-551-64653980
    Address:No.155, Jinzhai Road, Shushan District, Hefei gold square Building 5. China.

  • winfriend

    A new version from ‘powerwebsolutions.org’. On this fake website they are offering all kinds of domain name packages.

    ****
    To whom it may concern:

    We are the Department of Asian Domain Registration Service in China. We have something to confirm with you. On November 27, 2013, we received an application in which a company by the name Wabc Group applied to register ” sjokoladefossen” as their Brand Name and some Asia domain names through our firm.

    Now we are handling this registration. After our initial checking, we found that the name are identical to your company’s. We need to check with you whether your company has authorized that company to register these names. If you have authorized this, we will finish the registration at once. If not, please let us know within 7 workdays, in which case we will dicuss the matter more thoroughly. If not otherwise advised within that time limit we will proceed with the registration for Wabc Group . We will be waiting for your reply. Have a nice day!

    Best Regards

    Bruce Jin

    Registration Dept. Manager
    Phone: +86.55165184482

    Fax: +86.55165128742

    Address:AnGao World Cities,No. 88, Hezuohua South Road,HeFei City,AnHui Province,China

    (including a small jpeg with their names and a hotlink )

  • Richard Leedham

    Here it is again on December 2013
    Quote:
    (Letter to Head of Brand Business or CEO, thanks)
    Dear Sir or Madam,
    This is a formal email. We are the department of Asian Domain Registration Service in China. Here I have something to confirm with you. We formally received an application on December 17, 2013 that a company claimed “Pen Industrial Co. Ltd” were applying to register as their Brand Name and some Asian countries top-level domain names through our firm.
    Now we are handling this registration, and after our initial checking, we found the name were similar to your company’s, so we need to check with you whether your company has authorized that company to register these names. If you authorized this, we would finish the registration at once. If you did not authorize, please let us know within 7 workdays, so that we could handle this issue better. After the deadline we will unconditionally finish the registration for “Pen Industrial Co. Ltd”. Looking forward to your prompt reply.
    Best Regards,

    Sandy Yang

    Senior ConsultantAddress:No.124 Changjiang Road,Hefei 230001,Anhui,China
    Tel: (+86) 739-5266069
    Fax:(+86) 739-5266169
    UNQUOTE
    This is followed by the website address which is in the form of a link:
    “outbind://29-0000000059ADB4EA63A0D3119A380000B49D031104809D00/cid:Attr_12548281682″ and which shows as “www.dunic.org”

  • http://www.twiter.com/jibon Shafiqul Islam Jibon

    Hi,

    We are also wondering that we received the following scam to our company mail. The concerned authority should punish them.

    We are the department of Asian Domain Registration Service in China. I have
    something to confirm with you. We formally received an application on December
    24, 2013 that a company which self-styled “DVO nvestment Co” were applying to
    gister “gscl” as their Brand Name and some domain names through our
    firm.Now we are handling this registration, and after our initial checking, we
    found the name were similar to your company’s, so we need to check with you
    whether your company has authorized that company to register these names. If you
    authorized this, we will finish the registration at once. If you did not
    authorize, please let us know within 7 workdays, so that we will handle this
    issue better. Out of the time limit we will unconditionally finish the
    registration for “DVO nvestment Co”. Looking forward to your prompt reply.

  • paula

    we just receive same email:
    ——-
    (Please forward to the President or Brand Owner, thanks)

    Dear Brand Holder,

    We are a registration agency of Asian Domain Registration Organization in China. I have something to confirm with you. We formally received an application on December 18th, 2013 that a company which self-styled “Shengfeng Investment Co.,Ltd” were applying to register “serbalencanapin” as their brand name and some domain names through our firm.

    Now we are handling this registration, and after our initial checking, we found the name were similar to your company’s, so we need to check with you whether your company has authorized that company to register these names. If you authorized this, we will finish the registration at once. If you did not authorize, please let us know within 7 workdays, so that we will handle this issue better. Out of the time limit we will unconditionally finish the registration for “Shengfeng Investment Co.,Ltd”. Looking forward to your prompt reply.

    Best Regards,

    Mayer Lu
    Registration Department
    Office: +86-551-6512 0117
    Fax: +86-551-6512 3308
    =====

    we should carefull of scam like this but still aware to secure domain and brand that important to your company.

  • Anonymous Me

    Received one just now & panicked!!! Thank you for sharing this information!

Follow Us

Automatically receive new posts via email:

Delivered by FeedBurner

2 articles related to:
Hot Topic
ESET Virus Radar

Archives

Select month
Copyright © 2014 ESET, All Rights Reserved.