Tracker

Ransomware Tracker to distinguishes between the following threats:

Each entry in Ransomware Tracker is tagged to a threat and a malware. Currently, the following Ransomware families are tracked:

New submissions for Ransomware Tracker are warmly welcome. You can send new additions to rt-RintANel@abuse.ch (remove all letters in uppercase). Malware binaries that you suspect to be associated with a certain Ransomware family can be send to rt-malwSOareM@abuse.ch (remove all letters in uppercase) for analysis.

Search

You can search for a host or URL using the following search form:

Set a filter for the list below

Below is a list of Ransomware botnet C&C servers tracked by Ransomware Tracker. You have the possibility to filter the list below using certain pre-defined filters shown below.

General filters: Remove filter (Show all) | Online hosts
Filter by threat: Botnet C&Cs | Payment Sites | Distribution Sites
Filter by malware: TeslaCrypt | CryptoWall | TorrentLocker | PadCrypt | Locky | CTB-Locker | FAKBEN | PayCrypt | DMALocker | Cerber | Sage

Dateadded (UTC)ThreatMalwareHost (?Domain name or IP address used by the Ransomware. The leading dots (Red, Green, Grey) indicate whether the Host is active or not.

Red = Online
Green = Offline
Grey = Unknown
)
Domain Registrar (?In some cases Ransomware Tracker is not able to determine the sponsoring Registrar of a domain name. Thats either because the Registry does not reveal this information in the whois or because the Registry doesn't offer a whois service.)IP address (ASN, Country)
2016-12-20 19:28Distribution SiteLocky
kmwine.ge
213.157.215.238 (- Georgia)
2016-12-20 19:28Distribution SiteLocky
frankfoeckler.de
91.233.85.206 (- Germany)
2016-12-20 19:28Distribution SiteLocky
jzcolorful.com
35 TECHNOLOGY CO., LTD122.114.249.28 (- China)
2016-12-20 19:27Distribution SiteLocky
phayamengrai.chiangrai.doae.go.th
T.H.NIC Co., Ltd.122.154.24.201 (- Thailand)
2016-12-20 19:27Distribution SiteLocky
macoinservicios.com
MESH DIGITAL LIMITED176.28.103.205 (- Spain)
2016-12-20 19:27Distribution SiteLocky
revolutionarymom.com
GODADDY.COM, LLC173.236.179.208 (- United States)
2016-12-20 19:27Distribution SiteLocky
stav-reporter.ru
REGISTRATOR-RU (n/a)
2016-12-20 19:27Distribution SiteLocky
theservantsoflove.com
ENOM, INC.88.99.3.75 (- Germany)
2016-12-20 19:27Distribution SiteLocky
aministudio.com
GODADDY.COM, LLC69.28.199.100 (- Canada)
2016-12-20 19:27Distribution SiteLocky
paplanindustries.com
ONLINENIC, INC.88.151.100.224 (- Hungary)
2016-12-20 19:27Distribution SiteLocky
www.rencontreparis.org
OVH91.134.167.248 (- France)
2016-12-20 19:26Distribution SiteLocky
ventureorchestra.com
GMO INTERNET, INC. DBA ONAMAE.CO[...] (n/a)
2016-12-20 19:26Distribution SiteLocky
yorkshire-pm.com
PDR LTD. D/B/A PUBLICDOMAINREGIS[...]103.11.101.46 (- Hong Kong)
2016-12-20 19:26Distribution SiteLocky
www.junaida.com
GMO INTERNET, INC. DBA ONAMAE.CO[...]157.7.188.240 (- Japan)
2016-12-20 19:26Distribution SiteLocky
ipt.se
SE Direkt89.221.250.15 (- Sweden)
2016-12-20 11:27Distribution SiteLocky
www.inglesenveranoenjavea.com
ENOM, INC. (n/a)
2016-12-20 11:27Distribution SiteLocky
www.grupoaex.es
5.56.60.69 (- Spain)
2016-12-20 11:25Distribution SiteLocky
bluelunar.net
GODADDY.COM, LLC108.167.143.111 (- United States)
2016-12-20 11:25Distribution SiteLocky
guide4health.info
GoDaddy.com, LLC68.233.44.59 (- United States)
2016-12-20 11:24Distribution SiteLocky
todoalojamiento.es
81.169.196.2 (- Germany)
2016-12-20 11:24Distribution SiteLocky
www.genesisbilling.net
GODADDY.COM, LLC198.57.247.149 (- United States)
2016-12-20 10:40Distribution SiteLocky
pliki-kirbyworld.50webs.com
GODADDY.COM, LLC162.210.101.117 (- United States)
2016-12-20 10:39Distribution SiteLocky
bastacycling.com
HOSTING CONCEPTS B.V. D/B/A OPEN[...]82.150.137.151 (- Netherlands)
2016-12-20 10:38Distribution SiteLocky
halogen.dp.ua
195.248.190.128 (- Ukraine)
2016-12-20 08:00Payment SiteCerber
ffoqr3ug7m726zou.17vj7b.top
Eranet International Limited (n/a)
2016-12-20 07:24Payment SiteCerber
avsxrcoq2q5fgrw2.17vj7b.top
Eranet International Limited (n/a)
2016-12-20 06:18Distribution SiteLocky
drareum.com
KOREA SERVER HOSTING INC.218.38.136.90 (- Korea)
2016-12-20 06:18Distribution SiteLocky
lombardimobili.it
1API-REG162.210.97.81 (- United States)
2016-12-20 06:18Distribution SiteLocky
hansfilz.de
81.169.145.65 (- Germany)
2016-12-20 06:18Distribution SiteLocky
digital1.50webs.com
GODADDY.COM, LLC162.210.101.126 (- United States)
2016-12-20 06:18Distribution SiteLocky
forhealthatividadesfisicas.com
ENOM, INC.189.38.86.17 (- Brazil)
2016-12-20 06:18Distribution SiteLocky
lib.yoll.net
LIQUIDNET LTD.198.23.52.92 (- United States)
2016-12-20 06:17Distribution SiteLocky
alavatotal.com
DOMAINPEOPLE, INC. (n/a)
2016-12-20 06:17Distribution SiteLocky
drzalai.hu
178.63.68.72 (- Germany)
2016-12-20 06:17Distribution SiteLocky
hiveapps.co
GODADDY.COM, INC.198.23.203.232 (- United States)
2016-12-20 06:17Distribution SiteLocky
followme.si
Gorec d.o.o., registracija domen46.19.9.49 (- Slovenia)
2016-12-20 06:17Distribution SiteLocky
bummeln-um-die-welt.de
81.169.145.157 (- Germany)
2016-12-20 06:17Distribution SiteLocky
www.cryoniq.com
GODADDY.COM, LLC80.79.25.137 (- Czech Republic)
2016-12-20 06:17Distribution SiteLocky
hennesseywelding.com
TUCOWS DOMAINS INC.23.236.62.147 (- United States)
2016-12-20 06:17Distribution SiteLocky
chmedonline.com
BEIJING INNOVATIVE LINKAGE TECHN[...]113.10.199.62 (- Hong Kong)
2016-12-20 06:16Distribution SiteLocky
deltaclub.org
Register.com, Inc.50.59.205.101 (- United States)
2016-12-20 06:16Distribution SiteLocky
www.galerie-idees.fr
OVH213.186.33.5 (- France)
2016-12-20 06:16Distribution SiteLocky
faithfull.kdm.pl
AZ.pl Sp. z o.o.193.239.80.67 (- Poland)
2016-12-20 06:16Distribution SiteLocky
designerdogwear.com
ENOM, INC.172.104.50.36 (- Singapore)
2016-12-20 06:16Distribution SiteLocky
jira.fastfine.ru
REGRU-RU5.45.80.37 (- Russian Federation)
2016-12-20 06:16Distribution SiteLocky
elfrasha.com
GODADDY.COM, LLC75.102.8.51 (- United States)
2016-12-20 06:16Distribution SiteLocky
conor.com.mx
Akky (Una division de NIC Mexico[...]192.185.131.34 (- United States)
2016-12-20 06:16Distribution SiteLocky
hanavanpools.com
DOMAINPEOPLE, INC.216.110.144.152 (- United States)
2016-12-20 01:00Payment SiteCerber
fnmi62725zfti2vy.17vj7b.top
Eranet International Limited (n/a)
2016-12-19 19:48Payment SiteCerber
ftoxmpdipwobp4qy.17vj7b.top
Eranet International Limited (n/a)
2016-12-19 14:02Distribution SiteLocky
baugildealtmark.de
212.227.170.233 (- Germany)
2016-12-19 14:02Distribution SiteLocky
023pc.cn
烟台帝思普网络科技有[...] (n/a)
2016-12-19 14:02Distribution SiteLocky
audehd.com
KOREA SERVER HOSTING INC.121.125.61.123 (- Korea)
2016-12-19 14:02Distribution SiteLocky
aguamineralsantacruz.com.br
188.165.246.203 (- France)
2016-12-19 14:02Distribution SiteLocky
www.foyerstg.pro
213.186.33.5 (- France)
2016-12-19 14:02Distribution SiteLocky
delreywindows.com
NETWORK SOLUTIONS, LLC.24.154.1.97 (- United States)
2016-12-19 14:02Distribution SiteLocky
democracyandsecurity.org
Gransy s.r.o. d/b/a subreg.cz185.183.8.169 (- Czech Republic)
2016-12-19 14:01Distribution SiteLocky
allard-g.be
Telenet BVBA212.123.6.254 (- Belgium)
2016-12-19 14:01Distribution SiteLocky
aspecta-aso.net
GMO INTERNET, INC. DBA ONAMAE.CO[...]157.7.188.176 (- Japan)
2016-12-19 14:01Distribution SiteLocky
audreyetsteve.fr
OVH37.187.126.106 (- France)
2016-12-19 14:01Distribution SiteLocky
brainfreezeapp.com
GODADDY.COM, LLC (n/a)
2016-12-19 14:01Distribution SiteLocky
bperes.com.br
187.45.240.114 (- Brazil)
2016-12-19 14:01Distribution SiteLocky
www.neumayr-alkoven.com
WORLD4YOU INTERNET SERVICES GMBH34.194.244.120 (- United States) +1 A record(s) 52.205.67.62 (AS14618, - United States)
2016-12-19 14:01Distribution SiteLocky
birdhausdesign.com
DOMAINPEOPLE, INC.64.71.33.17 (- United States)
2016-12-19 14:01Distribution SiteLocky
garosero5.com
KOREA SERVER HOSTING INC.218.38.136.90 (- Korea)
2016-12-19 14:00Distribution SiteLocky
as-kanal-rohrreinigung.de
85.13.144.197 (- Germany)
2016-12-19 14:00Distribution SiteLocky
www.globalchristiantrust.com
123-REG LIMITED164.177.154.130 (- United Kingdom)
2016-12-19 14:00Distribution SiteLocky
factoryfreeapparel.com
1&1 INTERNET SE (n/a)
2016-12-18 13:20Botnet C&CLocky
dolfexalto.com
GRANSY S.R.O D/B/A SUBREG.CZ185.162.8.94 (- Netherlands)
2016-12-18 08:02Payment SiteCerber
ffoqr3ug7m726zou.13inb1.top
Eranet International Limited (n/a)
2016-12-18 07:46Payment SiteCerber
avsxrcoq2q5fgrw2.13inb1.top
Eranet International Limited (n/a)
2016-12-18 07:26Payment SiteCerber
pe2cku7pebkpgeko.13inb1.top
Eranet International Limited (n/a)
2016-12-18 03:46Payment SiteCerber
fnmi62725zfti2vy.13inb1.top
Eranet International Limited (n/a)
2016-12-16 17:15Distribution SiteLocky
kirulya.com
GODADDY.COM, LLC37.48.103.240 (- Netherlands)
2016-12-16 17:15Distribution SiteLocky
www.servipisos.com.ar
190.105.238.43 (- Argentina)
2016-12-16 17:15Distribution SiteLocky
kayamuh.sarf.com.tr
(n/a)
2016-12-16 17:15Distribution SiteLocky
ilasd.org
GoDaddy.com, LLC130.211.230.135 (- United States)
2016-12-16 17:15Distribution SiteLocky
store.elixe.net
REGIONAL NETWORK INFORMATION CEN[...] (n/a)
2016-12-16 17:15Distribution SiteLocky
auto-zakaz.com.ua
91.218.212.49 (- Ukraine)
2016-12-16 17:15Distribution SiteLocky
aaryn.net
GODADDY.COM, LLC (n/a)
2016-12-16 17:14Distribution SiteLocky
profitmonster.com
NETWORK SOLUTIONS, LLC.216.53.144.11 (- United States)
2016-12-16 17:14Distribution SiteLocky
fiddlefire.net
IN2NET NETWORK, INC.69.161.143.24 (- Canada)
2016-12-16 17:14Distribution SiteLocky
www.lauraleedonnelly.com
GODADDY.COM, LLC23.235.207.151 (- United States)
2016-12-16 17:14Distribution SiteLocky
topstoneisland.com
HICHINA ZHICHENG TECHNOLOGY LTD.165.231.2.250 (- Seychelles)
2016-12-16 17:13Distribution SiteLocky
nonblockservice08.info
Todaynic.com, Inc. (n/a)
2016-12-16 17:13Distribution SiteLocky
028cdxyk.com
HICHINA ZHICHENG TECHNOLOGY LTD.47.90.42.92 (- Hong Kong)
2016-12-16 17:13Distribution SiteLocky
pcflame.com.au
TPP Wholesale Pty Ltd103.9.170.249 (- Australia)
2016-12-16 17:13Distribution SiteLocky
billionsfamily.com
GODADDY.COM, LLC50.63.124.1 (- United States)
2016-12-16 17:13Distribution SiteLocky
inzt.net
INTERNET INVEST, LTD. DBA IMENA.[...] (n/a)
2016-12-16 17:13Distribution SiteLocky
www.enhansit.com
DOMAIN.COM, LLC67.231.253.89 (- United States)
2016-12-16 17:13Distribution SiteLocky
test1.zrise.top
Alibaba Cloud Computing Ltd. d/b[...]60.205.162.88 (- China)
2016-12-16 17:12Distribution SiteLocky
ledticket.com
HOSTING CONCEPTS B.V. D/B/A OPEN[...]62.210.203.59 (- France)
2016-12-16 17:12Distribution SiteLocky
perspektive-fuer-kinder.de
212.227.168.234 (- Germany)
2016-12-16 17:12Distribution SiteLocky
demo.ahost5.ru
REGRU-RU195.88.209.153 (- Russian Federation)
2016-12-16 17:12Distribution SiteLocky
www.mywoc.ca
Tucows.com Co.143.95.63.253 (- United States)
2016-12-16 17:11Distribution SiteLocky
calderon.com.mx
Akky (Una division de NIC Mexico[...]187.217.78.216 (- Mexico)
2016-12-16 17:11Distribution SiteLocky
promgazenergo34.ru
REGRU-RU91.121.62.162 (- France)
2016-12-16 17:11Distribution SiteLocky
demo.pornuha4you.com
DOMAINCONTEXT, INC. (n/a)
2016-12-16 17:11Distribution SiteLocky
dryerventexpress.com
GODADDY.COM, LLC74.220.215.235 (- United States)
2016-12-16 17:11Distribution SiteLocky
pta-babel.net
CV. RUMAHWEB INDONESIA103.247.9.134 (- Indonesia)

# of rows displayed: 100
# of entries in database: 12'877

Page 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 >