Bitdefender IPR Management Ltd. v Ferdinand Loew, N A

ADMINISTRATIVE PANEL DECISION

Bitdefender IPR Management Ltd. v. Ferdinand Loew, N A

Case No. D2025-2163

1. The Parties

The Complainant is Bitdefender IPR Management Ltd., Cyprus, represented by Baciu Bende IP SRL,

Hungary.

The Respondent is Ferdinand Loew, N A, Germany.

2. The Domain Name and Registrar

The disputed domain name <bitdefender-download.com> is registered with GMO Internet, Inc. d/b/a

Discount-Domain.com and Onamae.com (the “Registrar”).

3. Procedural History

The Complaint was filed with the WIPO Arbitration and Mediation Center (the “Center”) on June 3, 2025. On
June 3, 2025, the Center transmitted by email to the Registrar a request for registrar verification in
connection with the disputed domain name. On June 5, 2025, the Registrar transmitted by email to the
Center its verification response disclosing registrant and contact information for the disputed domain name
which differed from the named Respondent (Doe) and contact information in the Complaint. The Center sent
an email communication to the Complainant on June 5, 2025, providing the registrant and contact
information disclosed by the Registrar, and inviting the Complainant to submit an amendment to the

Complaint. The Complainant filed an amendment to the Complaint on June 10, 2025.

The Center verified that the Complaint together with the amendment to the Complaint satisfied the formal
requirements of the Uniform Domain Name Dispute Resolution Policy (the “Policy” or “UDRP”), the Rules for
Uniform Domain Name Dispute Resolution Policy (the “Rules”), and the WIPO Supplemental Rules for
Uniform Domain Name Dispute Resolution Policy (the “Supplemental Rules”).

In accordance with the Rules, paragraphs 2 and 4, the Center formally notified the Respondent of the Complaint, and the proceedings commenced on June 12, 2025. In accordance with the Rules, paragraph 5, the due date for Response was July 2, 2025. The Respondent did not submit any response. Accordingly, the Center notified the Respondent’s default on July 7, 2025.

page 2

The Center appointed Dawn Osborne as the sole panelist in this matter on July 8, 2025. The Panel finds
that it was properly constituted. The Panel has submitted the Statement of Acceptance and Declaration of

Impartiality and Independence, as required by the Center to ensure compliance with the Rules, paragraph 7.

4. Factual Background

The Complainant is an award-winning company, operating across the world in the field of security software
and anti-virus applications and support services relating thereto since 2001, with over 500 million customers.

Its products are available online at <bitdefender.com>.

The Complainant owns the mark BITDEFENDER registered, inter alia as European Union trademark no.
002372506 for computer software since May 14, 2003.

The disputed domain name registered May 10, 2025, displays a warning message as the website has been reported for suspected phishing activities.

5. Parties’ Contentions

A. Complainant

The Complainant contends that it has satisfied each of the elements required under the Policy for a transfer of the disputed domain name.

Notably, the Complainant contends that:

The disputed domain name registered in 2025 is confusingly similar to the Complainant’s BITDEFENDER mark, wholly incorporating it and adding only the dictionary word “download”, a hyphen and the generic Top Level Domain (“gTLD”) “.com” none of which prevents a finding of confusing similarity between the disputed domain name and the Complainant’s mark which is still recognizable within it.

The Respondent has no rights or legitimate interests in the disputed domain name, is not commonly known by it and and is not authorised by the Complainant.

The disputed domain name is suspected in carrying out phishing attacks, tricking users into taking some by cybercriminals to gain control over compromised Windows systems.
action, such as downloading software that benefits the Respondent. The disputed domain name had a

“Download for Windows” button at the landing page, which was triggering a file download from an Amazon

B. Respondent

The Respondent did not reply to the Complainant’s contentions.

6. Discussion and Findings

A. Identical or Confusingly Similar

It is well accepted that the first element functions primarily as a standing requirement. The standing (or threshold) test for confusing similarity involves a reasoned but relatively straightforward comparison between the Complainant’s trademark and the disputed domain name. WIPO Overview of WIPO Panel Views on Selected UDRP Questions, Third Edition, (“WIPO Overview 3.0”), section 1.7.

page 3

The Complainant has shown rights in respect of a trademark or service mark for the purposes of the Policy.
WIPO Overview 3.0, section 1.2.1.

The entirety of the BITDEFENDER mark is reproduced within the disputed domain name. Accordingly, the disputed domain name is confusingly similar to the mark for the purposes of the Policy. WIPO Overview 3.0, section 1.7.

Although the addition of other terms here, “download” may bear on assessment of the second and third elements, the Panel finds the addition of such term does not prevent a finding of confusing similarity between the disputed domain name and the mark for the purposes of the Policy. Nor does the addition of a hyphen. WIPO Overview 3.0, section 1.8.

The Panel finds the first element of the Policy has been established.

B. Rights or Legitimate Interests

Paragraph 4(c) of the Policy provides a list of circumstances in which the Respondent may demonstrate rights or legitimate interests in a disputed domain name.

Although the overall burden of proof in UDRP proceedings is on the complainant, panels have recognized that proving a respondent lacks rights or legitimate interests in a domain name may result in the difficult task of “proving a negative”, requiring information that is often primarily within the knowledge or control of the respondent. As such, where a complainant makes out a prima facie case that the respondent lacks rights or legitimate interests, the burden of production on this element shifts to the respondent to come forward with relevant evidence demonstrating rights or legitimate interests in the domain name (although the burden of proof always remains on the complainant). If the respondent fails to come forward with such relevant evidence, the complainant is deemed to have satisfied the second element. WIPO Overview 3.0, section 2.1.

Having reviewed the available record, the Panel finds the Complainant has established a prima facie case that the Respondent lacks rights or legitimate interests in the disputed domain name. The Respondent has not rebutted the Complainant’s prima facie showing and has not come forward with any relevant evidence demonstrating rights or legitimate interests in the disputed domain name such as those enumerated in the Policy or otherwise.

Panels have held that the use of a domain name for illegal activity here, phishing and distributing malware can never confer rights or legitimate interests on a respondent. WIPO Overview 3.0, section 2.13.1.

The Panel finds the second element of the Policy has been established.

C. Registered and Used in Bad Faith

The Panel notes that, for the purposes of paragraph 4(a)(iii) of the Policy, paragraph 4(b) of the Policy establishes circumstances, in particular, but without limitation, that, if found by the Panel to be present, shall be evidence of the registration and use of a domain name in bad faith.

In the present case, the Panel notes the disputed domain name has been suspected of phishing and the distribution of malware.

Paragraph 4(b) of the Policy sets out a list of non-exhaustive circumstances that may indicate that a domain name was registered and used in bad faith, but other circumstances may be relevant in assessing whether a respondent’s registration and use of a domain name is in bad faith. WIPO Overview 3.0, section 3.2.1.

page 4

Panels have held that the use of a domain name for illegal activity here likely phishing, and the distribution of malware constitutes bad faith. WIPO Overview 3.0, section 3.4. Having reviewed the record, the Panel finds the Respondent’s registration and use of the disputed domain name constitutes bad faith under the Policy.

The Panel finds that the Complainant has established the third element of the Policy.

7. Decision

For the foregoing reasons, in accordance with paragraphs 4(i) of the Policy and 15 of the Rules, the Panel orders that the disputed domain name <bitdefender-download.com> be transferred to the Complainant.

/Dawn Osborne/
Dawn Osborne
Sole Panelist
Date: July 11, 2025