View Single Post
  #4 (permalink)  
Old March 30th, 2016
ale5000's Avatar
ale5000 ale5000 is offline
Mad developer
Join Date: August 18th, 2006
Posts: 44
ale5000 is flying high

This apparent GWC url "" with IP "" that appears sometimes as "Skulls 0.3.2c" and sometimes as "Cachechu 1.6" get inserted inside Cachechu urls list.

The domain is reported by Firefox as malicious.
The IP belong to Amazon Technologies Inc.
The Amazon Cloud can be rented and it is often used by malicious people.

Edit: the site redirect to another url, that when scanned give this:

Edit2: Loading the url now doesn't appears a valid GWebCache, so I wonder how it get inserted; it appears only on Cachechu caches and not in other caches so it possibly use a Cachechu vulnerability or just targetting Cachechu.

Edit3: The domain now point to the IP "" that belong "ESOTERICA (VIA NET.WORKS Portugal - Tecnologias de Informa,cao, SA)" that resolve to
It is really ironic.
Skulls! Multi-Network WebCache

Last edited by ale5000; May 1st, 2016 at 01:33 AM.
Reply With Quote