16 July, 2026

NetEase Interactive Entertainment Pte. Ltd. wins legal battle to secure ownership of wherewindsmeetcheat.com, |, and others

UDRP Cases

NetEase Interactive Entertainment successfully secured the transfer of three domains, including wherewindsmeetcheat.com, after the respondent used them to distribute unauthorized game-hacking software. The WIPO panel ruled the domains were registered in bad faith and caused brand confusion.

Case Snapshot

Case Number D2026-1781
Complainant NetEase Interactive Entertainment Pte. Ltd.
Respondent Mihai Claudiu
Disputed Domain
wherewindsmeetcheat.comwherewindsmeetcheat.net
Threat Tactic Corporate Impersonation
Decision Date 2026-06-22
Panelist Marina Perraki
OutcomeTransfer
Official Source https://www.wipo.int/amc/en/domains/search/text.jsp?case=D2026-1781

Operational and Security Risks of Unauthorized ‘Cheat’ Software Domains

The registration of domains such as wherewindsmeetcheat.com and .net poses a multifaceted threat to the integrity of the WHERE WINDS MEET brand and its player ecosystem. By leveraging the complainant’s trademark, the respondent successfully directed users to websites that facilitated the distribution of unauthorized hacking tools. Beyond the clear intellectual property infringement, this activity introduces significant security risks, as the promotion of ‘cheat’ software often serves as a vector for malware distribution. The monetization strategy, which involved pricing tiers of $14.99 and $49.99 for illicit access, further demonstrates an intent to exploit the complainant’s reputation to engage in commercial fraud at the expense of unsuspecting players.

Such domain tactics inherently damage customer trust and complicate the enforcement of a clean gaming environment. When unauthorized sites appear to be affiliated with an official game, players may inadvertently expose their devices to security vulnerabilities, ultimately eroding the perceived quality and safety of the official product. The potential for reputational harm is compounded by the respondent’s use of domain names that specifically target consumers searching for game modifications. Addressing these threats requires a robust monitoring posture, particularly for ‘brand+keyword’ registrations, to prevent bad-faith actors from hijacking traffic and undermining the security measures implemented by game developers.

Strategy Breakdown: Leveraging Trademark Rights to Combat Malicious Impersonation

NetEase Interactive Entertainment successfully leveraged its strong intellectual property portfolio to secure the transfer of the disputed domains. By providing clear evidence of their EU trademark registration for ‘WHERE WINDS MEET’ and their existing digital footprint across major social media platforms, the complainant established both standing and the necessary legal threshold for confusing similarity. The strategy relied on highlighting the respondent’s bad faith use of the brand—specifically through the ‘brand-plus-keyword’ tactic of appending ‘cheat’ to the mark—to divert traffic and monetize unauthorized hacking software. This proactive identification of infringing domains demonstrated how brand owners can effectively link unauthorized commercial activity to clear policy violations under the UDRP framework.

The respondent’s failure to respond to the complaint reinforced the panel’s findings, but the complainant’s evidence regarding the distribution of game-hacking tools at price points of $14.99 and $49.99 was central to proving a lack of legitimate interest. By documenting the respondent’s use of the websites to host malicious or unauthorized software, NetEase successfully framed the dispute as a clear instance of bad faith registration, precluding any claim of legitimate non-commercial or fair use. This case illustrates that even when a domain is inactive at the time of the decision, providing historical evidence of the site’s commercial intent and trademark infringement is sufficient to meet the evidentiary requirements for a successful transfer and total remediation of the threat.

Practical Recommendations

  • Prioritize monitoring for ‘brand+cheat’ domain registrations, as these are high-risk indicators of unauthorized software distribution and bad-faith intent.
  • Capture and archive screenshots of infringing sites immediately upon discovery, even if the content is ephemeral, as this evidence is critical for establishing bad-faith use under UDRP policy.
  • Include specific pricing details and malicious software claims in your UDRP complaint to provide objective proof that the respondent is operating for commercial gain, which strengthens the lack of legitimate interest argument.
  • Utilize a consolidated UDRP filing for multiple disputed domains belonging to the same respondent to streamline the panel’s review process and reduce legal costs.
  • Maintain a comprehensive record of your active trademark registrations and global social media footprint as foundational evidence to demonstrate your brand’s reputation and the respondent’s clear intent to trade on that goodwill.

Frequently Asked Questions (FAQ)

Why were the domains wherewindsmeetcheat.com and .net considered confusingly similar to the trademark?

The panel found that the disputed domains incorporated the Complainant’s ‘WHERE WINDS MEET’ trademark in its entirety, coupled with descriptive terms like ‘cheat’, which failed to prevent a finding of confusing similarity under the UDRP threshold test.

What evidence did the panel use to determine the Respondent lacked legitimate rights to the domains?

The panel determined that the Respondent had no legitimate interest because the domains were used to distribute unauthorized hacking tools and game cheats. Under UDRP precedents, using a domain to host illegal or malicious software does not constitute a bona fide offering of goods or services.

How did the Complainant establish bad faith given that the sites were inactive at the time of the decision?

Bad faith was established by the Respondent’s prior use of the domains to host websites that prominently featured the Complainant’s branding and sold commercial ‘cheat’ software, demonstrating an intentional effort to attract users for commercial gain by creating a likelihood of confusion.

What practical takeaway should brand protection teams apply from this outcome?

The case highlights the importance of monitoring ‘brand + keyword’ registrations—such as ‘cheat’ or ‘hack’—as these are high-risk indicators of impersonation. Proactive documentation of the respondent’s site content, including pricing tiers for malicious software, is essential for securing a transfer even if the respondent later deactivates the site.

Facing corporate impersonation through a domain?

Unauthorized sites distributing ‘cheat’ software or malware under your brand name pose significant security and reputational risks. Speak with our experts for a UDRP eligibility assessment to secure your digital assets.

Assess impersonation threat

Contact us
We will find the best solution for your business

    Thank you for your request!
    We will contact you within 5 hours!
    Image
    This site uses cookies to improve your experience. By continuing, you agree to our Privacy Policy.

    Privacy settings

    When you visit websites, they may store or retrieve data in your browser. This storage is often required for basic website functionality. Storage may be used for marketing, analytics and site personalization purposes, such as storing your preferences. Privacy is important to us, so you can disable certain types of storage that may not be necessary for the basic functioning of the website. Blocking categories may affect the performance of the website.

    Manage settings


    Necessary

    Always active

    These cookies are necessary for the website to function and cannot be disabled in our systems. They are usually only set in response to actions you take that constitute a request for services, such as adjusting your privacy settings, logging in, or filling out forms. You can set your browser to block these cookies or notify you about them, but some parts of the site will not work. These cookies do not store any personal information.

    Marketing

    These elements are used to show you advertising that is more relevant to you and your interests. They can also be used to limit the number of ad views and measure the effectiveness of advertising campaigns. Advertising networks usually place them with the permission of the site operator.

    Personalization

    These elements allow the website to remember your choices (such as your username, language or region you are in) and provide enhanced, more personalized features. For example, a website may provide you with local weather forecasts or traffic news by storing data about your current location.

    Analytics

    These elements help the website operator understand how their website works, how visitors interact with the site and whether there may be technical problems. This type of storage usually does not collect information that identifies the visitor.