Riddle

[real]

Has anyone ever been contacted about a domain name via a fiddler***.com email address?

I'm curious about the story behind it. On the surface it appears to be a niche e-commerce site, but something doesn't quite add up.

 

[Marek]

On the surface it appears to be a niche e-commerce site, but something doesn't quite add up.

It looks fake as hell. Not one single item is in stock to be purchased, the address on the website is fake, the privacy policy etc are incomplete, can't see any corporate info, no about us page, templated content still in place (A short sentence describing what someone will receive by subscribing)

There might be a legitimate reason behind it, but alarm bells would be ringing on any enquiry from them.

 

[real]

Thanks, just can’t seem to find who is actually behind it?

 

[Ree]

The combination of Shopify build, no purchasable stock, fake address, incomplete legal pages and hidden ownership is a recognisable pattern. This looks like a shell identity assembled to conduct stealth domain outreach, giving the operator a plausible business front when approaching sellers who might otherwise demand more if they knew the real buyer. The "niche ecommerce" cover is just convincing enough from a distance and just thin enough up close. If you've been contacted from a fiddlerhub.com address about a domain, the actual buyer almost certainly isn't a fiddle shop.

 

[real]

assembled to conduct stealth domain outreach

Thanks for the feedback, how would someone find out who is behind it though?

 

[Marek]

Pretend you want to sell the domain and ask them who to invoice.

Unless they've made any wild errors you're not going to find out who's set the website up.

 

[Ree]

Thanks for the feedback, how would someone find out who is behind it though?

Marek is correct, the invoice approach is the most direct and reliable method and should be the first move.

Beyond that, if you have the original outreach email, examine the raw headers rather than just the visible sender details. In Gmail you can access these via the three dot menu and "Show original", in Outlook via File, Properties. The originating IP address and mail server infrastructure can sometimes point back to the real operator even when the domain ownership is fully hidden behind privacy protection.

If the email was dispatched via a generic platform such as Mailchimp or SendGrid, it will likely dead-end as those services mask the true origin. However, if they are sending directly from their own mail server, the infrastructure can tell a story that the WHOIS record deliberately won't. Cross-reference any IP addresses you find against WHOIS, and you may find the hosting account is less carefully anonymised than the domain registration itself.

 

[real]

Thanks for all the replies and suggestions.