Fenix International Limited (OnlyFans) secured the transfer of onlyfunonlyfans24.com after a WIPO panel found the respondent used the domain to impersonate the platform. The domain, which combined the trademark with descriptive terms, was used to host content scraped from the Complainant’s users. The panelist ruled this constituted bad faith registration and use.
Case Snapshot
| Case Number | D2025-4637 |
|---|---|
| Complainant | Fenix International Limited |
| Respondent | asdfasdfasdfas adasdfasdfasdfsa |
| Disputed Domain | onlyfunonlyfans24.com |
| Threat Tactic | Brand Plus Keyword |
| Decision Date | 2025-12-19 |
| Panelist | Gregor Vos |
| Outcome | Transfer |
| Official Source | https://www.wipo.int/amc/en/domains/search/text.jsp?case=D2025-4637 |
Commercial Impersonation and Content Misappropriation Risks
The registration of onlyfunonlyfans24.com represents a calculated commercial threat to the OnlyFans ecosystem by leveraging a brand-plus-keyword structure to divert traffic. By incorporating the ONLYFANS trademark in its entirety and appending the descriptive terms "only fun" and "24," the respondent created a digital environment that falsely suggested an official affiliation or a 24-hour auxiliary service. This tactic was further compounded by the unauthorized republication of audiovisual content scraped directly from the complainant’s legitimate users. For brand owners, this specific form of infringement facilitates the mass dilution of exclusive content, directly undermining the subscription-based revenue model and the platform’s value proposition to its creators.
Beyond the immediate loss of revenue from diverted traffic, the domain presents significant security and trust risks for the brand’s user base. The respondent utilized a privacy service, Withheld for Privacy ehf, to obscure their identity while operating a site that mirrored the complainant’s social media platform. Such impersonation environments are high-risk vectors for credential harvesting or phishing, as users may be tricked into entering sensitive account information on a site they believe is an official subsidiary. The establishment of bad faith in this case highlights how descriptive suffixes do not mitigate the potential for consumer harm; instead, they often serve to broaden the net of potential victims by appearing as specialized or localized brand extensions.
This dispute also underscores the enduring vulnerability of mature trademark portfolios to predatory registrations long after the initial brand launch. Although Fenix International Limited secured EU and US trademark registrations in 2019, the infringing domain was not registered until July 2025, approximately six years later. This gap demonstrates that bad-faith actors continuously monitor well-known trademarks to exploit gaps in domain monitoring, particularly when pairing established marks with generic keywords. The respondent’s failure to file a response to the WIPO administrative proceeding further suggests a hit-and-run operational model designed to monetize unauthorized content for as long as the UDRP process allows, necessitating a proactive and rapid enforcement strategy for intellectual property professionals.
Panel Reasoning: Domain Composition and Impersonation Tactics
The Panelist, Gregor Vos, determined that onlyfunonlyfans24.com is confusingly similar to the protected ONLYFANS trademarks held by Fenix International Limited. Under the first element of the UDRP, the inclusion of the mark in its entirety within the domain string is typically sufficient to establish similarity. The Respondent’s addition of the descriptive prefix "only fun" and the numeric suffix "24" alongside the generic Top-Level Domain ".com" was viewed as insufficient to distinguish the domain from the Complainant’s established brand. For IP professionals, this reinforces the principle that adding descriptive or generic terms to a recognizable trademark does not mitigate the likelihood of consumer confusion in domain registrations.
In assessing rights or legitimate interests, the Panel noted that Fenix International Limited had not authorized the Respondent to use the ONLYFANS trademark or to imply any official connection with the platform. The Respondent, who failed to file a response to the administrative proceeding, was not commonly known by the domain name. The evidence indicated the site hosted audiovisual content scraped directly from the Complainant’s users, a practice that constitutes impersonation rather than a bona fide offering of goods or services. This unauthorized use of third-party content to mimic a social media platform fails to establish any legitimate interest under the Policy, as the primary intent is to divert traffic from the official site.
Bad faith registration and use were confirmed based on the Respondent’s clear awareness of the ONLYFANS brand at the time of registration. The Complainant’s trademark registrations in the European Union and the United States date back to 2019, approximately six years before the domain was registered in July 2025. The Panel found that the Respondent intended to create a false impression of affiliation with the brand to attract users for commercial gain. This is further evidenced by the use of a privacy service provided by Withheld for Privacy ehf and the registration through NameCheap under the name "asdfasdfasdfas." Such tactics demonstrate a calculated attempt to exploit the Complainant’s reputation while shielding the registrant’s identity from legal scrutiny.
The decision to transfer the domain highlights the specific risks faced by content-driven platforms regarding brand dilution and the loss of user trust. When a domain is used to republish scraped user content, it undermines the exclusivity of the original platform and creates potential security risks for users who might provide credentials to a site appearing to be officially affiliated. The Panel’s findings emphasize that the unauthorized republication of exclusive platform content is a key indicator of bad faith. For brand owners, this case demonstrates how the UDRP process effectively addresses impersonation sites that leverage both trademarked strings and harvested digital assets.
Strategy Breakdown: Leveraging Content Scraping and Mark Integration
Fenix International Limited’s strategy focused on the structural incorporation of the ONLYFANS mark within the disputed domain name to satisfy the confusing similarity requirement. By demonstrating that the trademark was included in its entirety, the Complainant successfully argued that the Respondent’s addition of descriptive terms like "only fun" and the numeric suffix "24" did not diminish the core recognizability of the protected mark. This approach was reinforced by the fact that the Complainant’s EU and US trademark registrations, dating back to 2019, predated the domain registration by approximately six years. For IP professionals, this highlights the effectiveness of focusing on the dominant trademark element to overcome complex domain strings that use brand-plus-keyword tactics.
The case was further strengthened by the inclusion of evidence detailing the unauthorized republication of platform-specific audiovisual content. The Complainant presented proof that the domain resolved to a website featuring material scraped directly from OnlyFans users, which served as definitive evidence of bad faith. This demonstrated a deliberate intent to impersonate the platform and create a false impression of official affiliation for the purpose of traffic diversion. The use of a privacy service to mask the Respondent’s identity, combined with the lack of a formal response, allowed the Complainant to clearly establish that the Respondent held no rights or legitimate interests in the domain, resulting in a successful transfer decision.
Practical Recommendations
- Implement automated monitoring for brand-plus-keyword variations that include descriptive or ‘industry-adjacent’ terms (e.g., ‘fun’, ’24’, ‘official’) to detect impersonation sites before they scale their traffic diversion.
- Document evidence of unauthorized content scraping or the republication of platform-exclusive media as primary proof of bad faith; UDRP panels view the use of scraped content as a clear intent to free-ride on a brand’s reputation.
- Utilize the presence of ‘nonsense’ registrant data (e.g., ‘asdfasdfasdfas’) and the use of privacy proxies in legal filings to argue that the Respondent lacks any bona fide intent and is actively evading contact.
- Ensure trademark portfolios include registrations in major jurisdictions (e.g., EUIPO and USPTO) to provide the Panel with clear priority dates that predate infringing registrations, simplifying the establishment of bad faith in registration.
- Integrate UDRP enforcement with broader platform security protocols by treating ‘brand-plus-keyword’ domains as high-risk vectors for credential harvesting and user trust erosion.
Frequently Asked Questions (FAQ)
Why was the domain ‘onlyfunonlyfans24.com’ considered confusingly similar to the OnlyFans trademark?
The WIPO panel determined that the domain was confusingly similar because it incorporated the ‘ONLYFANS’ trademark in its entirety. The addition of descriptive phrases like ‘only fun’ and the number ’24’ did not sufficiently distinguish the domain or negate the risk of consumer confusion regarding the site’s official affiliation.
What evidence did the panel cite to prove bad faith registration and use by the Respondent?
Bad faith was established because the Respondent used the domain to host audiovisual content scraped directly from OnlyFans platform users. This unauthorized republication, combined with the domain’s resemblance to the trademark, was intended to impersonate the brand and create a false impression of association.
How did the Respondent attempt to conceal their identity during the registration process?
The Respondent utilized a privacy protection service provided by ‘Withheld for Privacy ehf’ via the registrar NameCheap, Inc. to mask their contact information. However, this did not prevent the Complainant from successfully identifying the Respondent and proceeding with the UDRP action, which resulted in a transfer of the domain.
What is the primary business risk highlighted by this case regarding third-party domains?
This case underscores the threat of brand dilution and traffic diversion. By scraping exclusive content and using a trademark-heavy domain, the Respondent risks damaging OnlyFans’ reputation and user trust, potentially deceiving platform users into providing credentials or interacting with unauthorized services.
Seeing ‘Brand-Plus’ Impersonation Domains?
Malicious actors are increasingly using descriptive terms and numbers—like ‘onlyfun’ or ’24’—to disguise trademark infringement. Protect your digital footprint before these domains dilute your brand identity or divert your traffic.
This case note is for informational purposes only and is not legal advice.



