bicycletrainers.info (betabot http botnet proxied by cloudflare to 100tb.com)

Server:  bicycletrainers.info
Gate file:  /wheellock/order.php

Alternate domains:
dirtybagmcgee.com
womenhealthbody.pw

It’s been a while since I’ve seen someone trying to use cloudflare with malware. Lets see how long it takes them to block it this time.

Related md5s (Search on malwr.com to download samples)
Betabot: ddb28ce54c501be046400ddaa474f257

EDIT:
It’s been blocked, and I got the hosting info: http://whois.domaintools.com/37.130.224.249
Thanks cloudflare

Categories: Uncategorized