Tracker

Ransomware Tracker to distinguishes between the following threats:

Each entry in Ransomware Tracker is tagged to a threat and a malware. Currently, the following Ransomware families are tracked:

New submissions for Ransomware Tracker are warmly welcome. You can send new additions to rt-RintANel@abuse.ch (remove all letters in uppercase). Malware binaries that you suspect to be associated with a certain Ransomware family can be send to rt-malwSOareM@abuse.ch (remove all letters in uppercase) for analysis.

Search

You can search for a host or URL using the following search form:

Set a filter for the list below

Below is a list of Ransomware botnet C&C servers tracked by Ransomware Tracker. You have the possibility to filter the list below using certain pre-defined filters shown below.

General filters: Remove filter (Show all) | Online hosts
Filter by threat: Botnet C&Cs | Payment Sites | Distribution Sites
Filter by malware: TeslaCrypt | CryptoWall | TorrentLocker | PadCrypt | Locky | CTB-Locker | FAKBEN | PayCrypt | DMALocker | Cerber

Dateadded (UTC)ThreatMalwareHost (?Domain name or IP address used by the Ransomware. The leading dots (Red, Green, Grey) indicate whether the Host is active or not.

Red = Online
Green = Offline
Grey = Unknown
)
Domain Registrar (?In some cases Ransomware Tracker is not able to determine the sponsoring Registrar of a domain name. Thats either because the Registry does not reveal this information in the whois or because the Registry doesn't offer a whois service.)IP address (ASN, Country)
2016-08-15 11:40Distribution SiteLocky
www.bozenan.swk.vectranet.pl
OVH SAS88.156.222.94 (- Poland)
2016-08-15 11:40Distribution SiteLocky
www.scoutvda.it
TISCALIDOMAIN-REG213.205.40.169 (- Italy)
2016-08-15 11:39Distribution SiteLocky
devierdemuur.50webs.com
GODADDY.COM, LLC198.23.52.99 (- United States)
2016-08-15 11:18Payment SiteCerber
unocl45trpuoefft.zn9cme.bid
Eranet International Limited (n/a)
2016-08-15 10:12Distribution SiteLocky
marcinha.50webs.com
GODADDY.COM, LLC162.210.101.23 (- United States)
2016-08-15 10:11Distribution SiteLocky
www.reniero.org
Ascio Technologies, Inc. Danmark[...]213.205.40.169 (- Italy)
2016-08-15 10:11Distribution SiteLocky
www.vinyljazzrecords.com
ASCIO TECHNOLOGIES, INC. DANMARK[...]213.205.40.169 (- Italy)
2016-08-15 10:11Distribution SiteLocky
xn--kukuk-gstrow-jlb.de
81.169.145.80 (- Germany)
2016-08-15 10:10Distribution SiteLocky
marimo1963430.web.fc2.com
INSTRA CORPORATION PTY, LTD.208.71.106.45 (- United States)
2016-08-15 10:09Distribution SiteLocky
www.pescatoridelpontile.it
TOPHOST-REG178.20.112.144 (- Italy)
2016-08-15 10:09Distribution SiteLocky
orquestracaravan.com
REGISTER.IT SPA81.88.57.70 (- Italy)
2016-08-15 10:08Distribution SiteLocky
mondialmt2.hi2.ro
ICI - ROTLD (n/a)
2016-08-15 10:07Distribution SiteLocky
www.lancerortho.com
NETWORK SOLUTIONS, LLC.209.240.146.111 (- United States)
2016-08-15 08:54Payment SiteCerber
pmenboeqhyrpvomq.gnuvaw.bid
Eranet International Limited (n/a)
2016-08-15 06:42Payment SiteCerber
unocl45trpuoefft.9lx4s6.bid
Eranet International Limited (n/a)
2016-08-15 06:21Payment SiteCerber
52uo5k3t73ypjije.snwy26.top
Alpnames Limited (n/a)
2016-08-15 04:02Payment SiteCerber
unocl45trpuoefft.sp4o1t.bid
Eranet International Limited (n/a)
2016-08-15 03:25Payment SiteCerber
unocl45trpuoefft.lk0bzc.top
Eranet International Limited (n/a)
2016-08-14 21:18Payment SiteCerber
unocl45trpuoefft.knowhands.us
PDR Ltd. d/b/a PublicDomainRegis[...] (n/a)
2016-08-14 20:59Payment SiteCerber
52uo5k3t73ypjije.hv42mo.bid
Eranet International Limited (n/a)
2016-08-14 19:33Payment SiteCerber
52uo5k3t73ypjije.ep493u.top
Eranet International Limited (n/a)
2016-08-14 18:13Payment SiteCerber
52uo5k3t73ypjije.dkro3u.top
Eranet International Limited (n/a)
2016-08-14 14:34Payment SiteCerber
52uo5k3t73ypjije.eoivrm.bid
Eranet International Limited (n/a)
2016-08-14 13:54Payment SiteCerber
52uo5k3t73ypjije.u2r7tm.bid
Eranet International Limited (n/a)
2016-08-14 13:21Payment SiteCerber
52uo5k3t73ypjije.xtppp8.bid
Eranet International Limited (n/a)
2016-08-14 11:56Payment SiteCerber
52uo5k3t73ypjije.7asel7.top
Eranet International Limited (n/a)
2016-08-14 11:13Payment SiteCerber
52uo5k3t73ypjije.5zxii2.bid
Eranet International Limited (n/a)
2016-08-14 10:12Payment SiteCerber
unocl45trpuoefft.086ux2.top
Eranet International Limited (n/a)
2016-08-14 09:57Payment SiteCerber
unocl45trpuoefft.rie9py.bid
Eranet International Limited (n/a)
2016-08-14 07:24Payment SiteCerber
52uo5k3t73ypjije.gnuvaw.bid
Eranet International Limited (n/a)
2016-08-14 06:59Payment SiteCerber
unocl45trpuoefft.givxuf.bid
Eranet International Limited (n/a)
2016-08-14 06:41Payment SiteCerber
unocl45trpuoefft.uaol08.bid
Eranet International Limited (n/a)
2016-08-14 04:41Payment SiteCerber
52uo5k3t73ypjije.vt3dg6.bid
Eranet International Limited (n/a)
2016-08-14 02:49Payment SiteCerber
52uo5k3t73ypjije.sx90yk.bid
Eranet International Limited (n/a)
2016-08-14 00:46Payment SiteCerber
unocl45trpuoefft.9u3iy1.top
Eranet International Limited (n/a)
2016-08-13 23:03Payment SiteCerber
52uo5k3t73ypjije.en3oyw.bid
Eranet International Limited (n/a)
2016-08-13 22:34Payment SiteCerber
unocl45trpuoefft.meetsface.win
Alpnames Limited (n/a)
2016-08-13 21:48Payment SiteCerber
52uo5k3t73ypjije.7wrwp4.top
Eranet International Limited (n/a)
2016-08-13 18:03Payment SiteCerber
52uo5k3t73ypjije.gtnfgj.top
Eranet International Limited (n/a)
2016-08-13 17:32Payment SiteCerber
52uo5k3t73ypjije.ywszbe.bid
Eranet International Limited (n/a)
2016-08-13 14:26Botnet C&CLocky
gsmdqrmqddqtuv.xyz
Gandi SAS54.67.27.43 (- United States)
2016-08-13 12:48Payment SiteCerber
pmenboeqhyrpvomq.y7fjr4.bid
Eranet International Limited (n/a)
2016-08-13 10:28Payment SiteCerber
52uo5k3t73ypjije.0nyi6l.bid
Eranet International Limited (n/a)
2016-08-13 09:55Payment SiteCerber
52uo5k3t73ypjije.r2ok0b.bid
Eranet International Limited (n/a)
2016-08-13 09:01Payment SiteCerber
52uo5k3t73ypjije.uw7w05.bid
Eranet International Limited (n/a)
2016-08-13 08:40Distribution SiteLocky
digiwebstore.fr
OVH213.186.33.19 (- France)
2016-08-12 15:51Payment SiteCerber
52uo5k3t73ypjije.lrraca.bid
Eranet International Limited (n/a)
2016-08-12 13:22Payment SiteCerber
pmenboeqhyrpvomq.0nyi6l.bid
Eranet International Limited (n/a)
2016-08-12 13:21Distribution SiteLocky
portraitstaffa.de
89.110.129.54 (- Germany)
2016-08-12 13:21Distribution SiteLocky
sportpferde-weihmayer.homepage.t-online.de
80.150.6.138 (- Germany)
2016-08-12 13:21Distribution SiteLocky
www.bitupont.hu
5.9.43.15 (- Germany)
2016-08-12 13:21Distribution SiteLocky
files.zdaspb.ru
R01-RU80.64.104.213 (- Russian Federation)
2016-08-12 13:20Distribution SiteLocky
www.herinvest.be
Telenet BVBA195.130.132.84 (- Belgium)
2016-08-12 13:20Distribution SiteLocky
www.milleniumbar.it
TISCALIDOMAIN-REG213.205.40.169 (- Italy)
2016-08-12 13:19Distribution SiteLocky
muteofficial.web.fc2.com
INSTRA CORPORATION PTY, LTD.208.71.106.61 (- United States)
2016-08-12 13:19Distribution SiteLocky
broda.50webs.com
GODADDY.COM, LLC162.210.101.86 (- United States)
2016-08-12 13:19Distribution SiteLocky
www.ceccosport.it
TISCALIDOMAIN-REG141.8.224.153 (- Switzerland)
2016-08-12 13:19Distribution SiteLocky
scom2.web.fc2.com
INSTRA CORPORATION PTY, LTD.208.71.106.61 (- United States)
2016-08-12 13:19Distribution SiteLocky
kolkhoz.web.fc2.com
INSTRA CORPORATION PTY, LTD.208.71.106.61 (- United States)
2016-08-12 13:19Distribution SiteLocky
studiocorrado.org
Ascio Technologies, Inc. Danmark[...]79.98.45.16 (- Italy)
2016-08-12 13:18Distribution SiteLocky
bonmoment.web.fc2.com
INSTRA CORPORATION PTY, LTD.208.71.106.49 (- United States)
2016-08-12 13:17Distribution SiteLocky
www.meteoerba.it
TISCALIDOMAIN-REG31.11.34.46 (- Italy)
2016-08-12 13:17Distribution SiteLocky
birthday-cards.50webs.com
GODADDY.COM, LLC162.210.101.23 (- United States)
2016-08-12 13:17Distribution SiteLocky
www.hi-segno.com
ASCIO TECHNOLOGIES, INC. DANMARK[...]213.205.40.169 (- Italy)
2016-08-12 13:16Distribution SiteLocky
tianooze.web.fc2.com
INSTRA CORPORATION PTY, LTD.208.71.106.41 (- United States)
2016-08-12 13:16Distribution SiteLocky
dopelx.com
REGISTER.IT SPA81.88.57.70 (- Italy)
2016-08-12 13:16Distribution SiteLocky
www.nikawilliam.net
TUCOWS DOMAINS INC.195.238.0.64 (- Belgium)
2016-08-12 13:16Distribution SiteLocky
preglitzer.heimat.eu
Key-Systems GmbH213.208.133.41 (- Austria)
2016-08-12 13:15Distribution SiteLocky
www.oxxengarde.de
80.150.6.143 (- Germany)
2016-08-12 13:15Distribution SiteLocky
einfachwalter.homepage.t-online.de
80.150.6.138 (- Germany)
2016-08-12 13:15Distribution SiteLocky
www.homesplus.nf.net
NETWORK SOLUTIONS, LLC.216.251.43.11 (- United States)
2016-08-12 13:15Distribution SiteLocky
sv-sportscars.nl
WebReus46.235.42.86 (- Netherlands)
2016-08-12 11:59Payment SiteCerber
52uo5k3t73ypjije.2gbbja.top
Eranet International Limited (n/a)
2016-08-11 16:36Distribution SiteLocky
agarty.kz
ICPS195.210.46.61 (- Kazakhstan)
2016-08-11 11:04Distribution SiteLocky
www.EastsideAutoSalvage.com
GODADDY.COM, LLC216.116.20.36 (- United States)
2016-08-11 11:04Distribution SiteLocky
iceninegr.web.fc2.com
INSTRA CORPORATION PTY, LTD.208.71.106.49 (- United States)
2016-08-11 11:03Distribution SiteLocky
www.halloweenparty.go.ro
ICI - ROTLD81.196.20.134 (- Romania)
2016-08-11 11:03Distribution SiteLocky
www.tommasobovone.com
ASCIO TECHNOLOGIES, INC. DANMARK[...]213.205.40.169 (- Italy)
2016-08-11 11:02Distribution SiteLocky
momoselok.ru
RU-CENTER-RU5.79.72.215 (- Netherlands)
2016-08-11 11:01Distribution SiteLocky
mccrarys.us
DELUXE SMALL BUSINESS SALES, INC[...]64.29.151.209 (- United States)
2016-08-11 11:01Distribution SiteLocky
antonello.messina.it
EUTELIA-REG83.211.227.140 (- Italy)
2016-08-11 11:00Distribution SiteLocky
151.ru
RU-CENTER-RU90.156.201.38 (- Russian Federation) +3 A record(s) 90.156.201.75 (AS25532, - Russian Federation)
90.156.201.77 (AS25532, - Russian Federation)
90.156.201.86 (AS25532, - Russian Federation)
2016-08-11 10:59Distribution SiteLocky
fcm-makler.de
217.119.54.192 (- Germany)
2016-08-11 10:59Distribution SiteLocky
www.fasulo.org
Ascio Technologies, Inc. Danmark[...]213.205.40.169 (- Italy)
2016-08-11 10:59Distribution SiteLocky
sando.oboroduki.com
GMO INTERNET, INC. DBA ONAMAE.CO[...]112.140.42.29 (- Japan)
2016-08-10 12:42Distribution SiteLocky
bfc-sas.fr
LIGNE WEB SERVICES - LWS91.216.107.44 (- France)
2016-08-10 12:42Distribution SiteLocky
user48339.vs.easily.co.uk
Ascio Technologies Inc. Denmark [...]91.194.151.38 (- United Kingdom)
2016-08-10 12:42Distribution SiteLocky
www.monzesetraslochi.it
TISCALIDOMAIN-REG213.205.40.169 (- Italy)
2016-08-10 12:41Distribution SiteLocky
nuestraskejas.50webs.com
GODADDY.COM, LLC162.210.101.105 (- United States)
2016-08-10 12:41Distribution SiteLocky
www.rocchienoteca.it
TISCALIDOMAIN-REG213.205.40.169 (- Italy)
2016-08-10 12:41Distribution SiteLocky
colpi.telerete.it
TELERETE-REG217.148.123.3 (- Italy)
2016-08-10 12:41Distribution SiteLocky
hbfx.home.ro
ICI - ROTLD81.196.20.133 (- Romania)
2016-08-10 12:40Distribution SiteLocky
www.locgest.com
ASCIO TECHNOLOGIES, INC. DANMARK[...]213.205.40.169 (- Italy)
2016-08-10 12:40Distribution SiteLocky
www.forestg.com
NETWORK SOLUTIONS, LLC. (n/a)
2016-08-10 12:40Distribution SiteLocky
www.xback.be
Telenet BVBA195.130.132.84 (- Belgium)
2016-08-10 12:39Distribution SiteLocky
zsz_szyn.republika.pl
213.180.150.17 (- Poland)
2016-08-10 12:39Distribution SiteLocky
computekpdx.comcastbiz.net
CSC CORPORATE DOMAINS, INC.216.87.186.166 (- United States)
2016-08-10 12:39Distribution SiteLocky
helloworldfc2.web.fc2.com
INSTRA CORPORATION PTY, LTD.208.71.106.46 (- United States)
2016-08-10 12:39Distribution SiteLocky
sibkojin.web.fc2.com
INSTRA CORPORATION PTY, LTD.208.71.106.48 (- United States)
2016-08-10 12:38Distribution SiteLocky
www.portuense.it
TISCALIDOMAIN-REG213.205.40.169 (- Italy)

# of rows displayed: 100
# of entries in database: 9'210

Page 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 >