(The quickest way to register)

Forum

Dear visitor! The webpage is only available in English. We're sorry for the inconvenience.
  1. User picture
    • amishrabbit on Mon 16 Nov 2009
    • 10:42:34 PM UTC

    fessesbooks.com ~ facebook.com?

    Stumbled upon this weirdness:

    http://www.mywot.com/en/scorecard/fessesbooks.com

    Both that domain and www.facebook.com DNS to 69.63.181.12 which is on Facebook's ASN, AS32934.

    This domain, however, has an oddball WHOIS record:

    http://whois.domaintools.com/fessesbooks.com

    Is that why the site gets a red rating?

Comments:

  2. User picture
    • Sami on Mon 16 Nov 2009
    • 10:50:35 PM UTC

    Re: fessesbooks.com ~ facebook.com?

    I'm not familiar with the domain, but it should be noted that anyone can point their domain's A record to any IP address. In other words, even if this domain currently points to an IP address allocated to Facebook, it doesn't mean that Facebook has anything to do with the domain.
  3. User picture
    • g7w on Tue 17 Nov 2009
    • 01:15:12 AM UTC

    robtex

    Summary
    fessesbooks.com is a domain controlled by two nameservers at ovh.net. They are on the same IP network. Incoming mail for fessesbooks.com is handled by one mailserver also at ovh.net. fessesbooks.com has one IP number , but the reverse is redirect.ovh.net. coleq.com, larka.info, pompeachaleur.be, bestconnection.be, first-assistance.com and at least one other host point to the same IP and also shares both nameservers and mailservers. 96c.fr, serac.fr, ana-wave.com, l-enigme.com, autoeclerc.com and at least three other hosts point to the same IP and also shares nameservers. rimn.org, eafe.org, walan.biz, aback.biz, lellu.com and at least 34 other hosts point to the same IP and also shares mailservers. mr.be, uea.fr, itp.lu, orbes.fr, istar.com and at least 100 other hosts point to the same IP. rscl.be, dhumes.net, equidays.com, desminijeux.com, 1001-attitude.com and at least one other host share both nameservers and mailservers with this domain. idj.be, idm.ch, dfco.fr, ovh.net, ccifc.cd and at least 41 other hosts share nameservers with this domain. kvall.fr, jcldb.com, empire.ma, kartoo.com, synelec.fr and at least 100 other hosts share mailservers with this domain. fessesbooks.com is ranked #8522707 world wide and is hosted on a server in France. Trustworthiness, vendor reliability and privacy of this site is very poor.

    Interestingly, hxxp://www.fessesbooks.com/ redirects to facebook.com
    -------
    WOT Services Ltd. - gives us safety through Web of Trust.
    WOT Community - gives us security through unity.
    Thank you all
    - G7W
  4. User picture
    • demonluo on Tue 17 Nov 2009
    • 01:18:49 PM UTC

    "fessesbooks.com is ranked

    "fessesbooks.com is ranked #8522707 world wide"
    where do u get the ranking?
  5. User picture
    • amishrabbit on Tue 17 Nov 2009
    • 06:38:49 PM UTC

    shoulda consulted robtex

    Of course relying on the A-record is dodgy. Seems to be fishy but it's hard to understand how it could be abused.
    • User picture
      • Sami on Tue 17 Nov 2009
      • 06:59:55 PM UTC

      Re: shoulda consulted robtex

      Seems to be fishy but it's hard to understand how it could be abused.

      That's easy.

      1. Create a domain that points to a popular website.
      2. Wait until enough people are using your domain to access the website. It helps if the domain is easier to type than the original. It will also help attract users from different countries if your domain name is the real website's name translated to a local language.
      3. Change the A record to point to your own server one day and start collecting passwords from people who won't notice they weren't redirected this time. You could even ask for credit card numbers or other personal information, because someone will certainly fall for that too.