Ecrypted Web Link

designedproton · Nov 5, 2006

I ran across a site that gave me a link to http://0x42ce066d/ but it actualy goes to http://66.206.6.109/ What I would like to know is what kind of encription that is or if its not what is it?

tlarkin · Nov 5, 2006

encrypted sites use https:// instead of http:// so that looks like its not encrypted. You can edit the URL with headers. There have been plenty of real sites that have been ripped off (including paypal) that people can code the URL with fake headers and such.

magicman · Nov 5, 2006

Correct, it's not encrypted. The numbers link is simply the IP of the website. I pinged the site just to make sure.

designedproton · Nov 5, 2006

I understand that 66.206.6.109 is the ip address of the server but how does my comptuer get to the ip from http://0x42ce066d/ You mentioned headers and usualy those are in cookies right? I cleared my cookies and still goes to the server. Im just woundering becouse usualy if you have a name like google.com you are registerd in the DNS with google.com and then it goes to some ip address of your sever. how did they go around that and make 0x42ce066d there domain name. At first I though it was some kind of ecription that browsers can translate back to a ip address? The reason im trying to figure out is cause i got a email from a ebay spoofer that send me a invoce that i have to pay him and a like to the item that went to

http://0x42ce066d/0.listing.ebay.com/W0QQfromZR4QQscatZ37974QQsocmdZLstngItmLstQQssPageNameZdcpCollectCrdTextNonFeat/defaul.htm

WARNING THIS IS A FAKE EBAY LOG IN . DO NOT ENTER YOUR REAL INFORMATION, OR SOMEONE WILL STEAL IT!!!

I got the ip address from ipwhois.

When i replaced the 0x42ce066d with the ip it goes to the exact same place. How did thay do that?

tlarkin · Nov 5, 2006

I am not too certain how it exactly works, but it can be encoded via HTML or another web language.

If you look at a web page code there is a <header> </header> tag I believe.

I think a web designer can better answer this.

Cromewell · Nov 5, 2006

For obvious reasons no one here will tell you how to spoof a URL, but this one isn't really spoofed (or it would have ebay instead of the IP). Headers are sent before the HTML code and tell the browser what to expect.

0x42ce066d is a just a spoofed domain name most likely to try and hide the source of the site from unsuspecting users.

Reverse DNS: judithdodington.com.
Reverse DNS authenticity: [Could be forged: hostname judithdodington.com. does not exist]

tlarkin · Nov 5, 2006

lol what crome said

Ecrypted Web Link

designedproton

New Member

tlarkin

VIP Member

magicman

VIP Member

designedproton

New Member

tlarkin

VIP Member

Cromewell

Administrator

tlarkin

VIP Member