Contact
Statistics
Feeds
Blocklist
Tracker
Mitigation
Home
  1. Main › 
  2. Tracker

Tracker

Ransomware Tracker to distinguishes between the following threats:

Each entry in Ransomware Tracker is tagged to a threat and a malware. Currently, the following Ransomware families are tracked:

New submissions for Ransomware Tracker are warmly welcome. You can send new additions to rt-RintANel@abuse.ch (remove all letters in uppercase). Malware binaries that you suspect to be associated with a certain Ransomware family can be send to rt-malwSOareM@abuse.ch (remove all letters in uppercase) for analysis.

Search

You can search for a host or URL using the following search form:

Set a filter for the list below

Below is a list of Ransomware botnet C&C servers tracked by Ransomware Tracker. You have the possibility to filter the list below using certain pre-defined filters shown below.

General filters: Remove filter (Show all) | Online hosts
Filter by threat: Botnet C&Cs | Payment Sites | Distribution Sites
Filter by malware: TeslaCrypt | CryptoWall | TorrentLocker | PadCrypt | Locky | CTB-Locker | FAKBEN | PayCrypt | DMALocker | Cerber | Sage | GlobeImposter

Dateadded (UTC)ThreatMalwareHost (?Domain name or IP address used by the Ransomware. The leading dots (Red, Green, Grey) indicate whether the Host is active or not.

Red = Online
Green = Offline
Grey = Unknown)		Domain Registrar (?In some cases Ransomware Tracker is not able to determine the sponsoring Registrar of a domain name. Thats either because the Registry does not reveal this information in the whois or because the Registry doesn't offer a whois service.)IP address (ASN, Country)
2016-08-15 11:40Distribution SiteLocky
www.scoutvda.it		TISCALIDOMAIN-REG213.205.40.169 (- Italy)
2016-08-15 11:39Distribution SiteLocky
devierdemuur.50webs.com		GODADDY.COM, LLC198.23.52.99 (- United States)
2016-08-15 11:18Payment SiteCerber
unocl45trpuoefft.zn9cme.bid		Eranet International Limited (n/a)
2016-08-15 10:12Distribution SiteLocky
marcinha.50webs.com		GODADDY.COM, LLC162.210.101.23 (- United States)
2016-08-15 10:11Distribution SiteLocky
www.reniero.org		Ascio Technologies, Inc. Danmark[...]213.205.40.169 (- Italy)
2016-08-15 10:11Distribution SiteLocky
www.vinyljazzrecords.com		ASCIO TECHNOLOGIES, INC. DANMARK[...]213.205.40.169 (- Italy)
2016-08-15 10:11Distribution SiteLocky
xn--kukuk-gstrow-jlb.de		 (n/a)
2016-08-15 10:10Distribution SiteLocky
marimo1963430.web.fc2.com		INSTRA CORPORATION PTY, LTD.104.244.99.44 (- United States)
2016-08-15 10:09Distribution SiteLocky
www.pescatoridelpontile.it		TOPHOST-REG (n/a)
2016-08-15 10:09Distribution SiteLocky
orquestracaravan.com		REGISTER.IT SPA81.88.57.70 (- Italy)
2016-08-15 10:08Distribution SiteLocky
mondialmt2.hi2.ro		ICI - ROTLD (n/a)
2016-08-15 10:07Distribution SiteLocky
www.lancerortho.com		NETWORK SOLUTIONS, LLC.85.187.149.233 (- Bulgaria)
2016-08-15 08:54Payment SiteCerber
pmenboeqhyrpvomq.gnuvaw.bid		Eranet International Limited (n/a)
2016-08-15 06:42Payment SiteCerber
unocl45trpuoefft.9lx4s6.bid		Eranet International Limited (n/a)
2016-08-15 06:21Payment SiteCerber
52uo5k3t73ypjije.snwy26.top		Alpnames Limited (n/a)
2016-08-15 04:02Payment SiteCerber
unocl45trpuoefft.sp4o1t.bid		Eranet International Limited (n/a)
2016-08-15 03:25Payment SiteCerber
unocl45trpuoefft.lk0bzc.top		Eranet International Limited (n/a)
2016-08-14 21:18Payment SiteCerber
unocl45trpuoefft.knowhands.us		PDR Ltd. d/b/a PublicDomainRegis[...] (n/a)
2016-08-14 20:59Payment SiteCerber
52uo5k3t73ypjije.hv42mo.bid		Eranet International Limited (n/a)
2016-08-14 19:33Payment SiteCerber
52uo5k3t73ypjije.ep493u.top		Eranet International Limited (n/a)
2016-08-14 18:13Payment SiteCerber
52uo5k3t73ypjije.dkro3u.top		Eranet International Limited (n/a)
2016-08-14 14:34Payment SiteCerber
52uo5k3t73ypjije.eoivrm.bid		Eranet International Limited (n/a)
2016-08-14 13:54Payment SiteCerber
52uo5k3t73ypjije.u2r7tm.bid		Eranet International Limited (n/a)
2016-08-14 13:21Payment SiteCerber
52uo5k3t73ypjije.xtppp8.bid		Eranet International Limited (n/a)
2016-08-14 11:56Payment SiteCerber
52uo5k3t73ypjije.7asel7.top		Eranet International Limited (n/a)
2016-08-14 11:13Payment SiteCerber
52uo5k3t73ypjije.5zxii2.bid		Eranet International Limited (n/a)
2016-08-14 10:12Payment SiteCerber
unocl45trpuoefft.086ux2.top		Eranet International Limited (n/a)
2016-08-14 09:57Payment SiteCerber
unocl45trpuoefft.rie9py.bid		Eranet International Limited (n/a)
2016-08-14 07:24Payment SiteCerber
52uo5k3t73ypjije.gnuvaw.bid		Eranet International Limited (n/a)
2016-08-14 06:59Payment SiteCerber
unocl45trpuoefft.givxuf.bid		Eranet International Limited (n/a)
2016-08-14 06:41Payment SiteCerber
unocl45trpuoefft.uaol08.bid		Eranet International Limited (n/a)
2016-08-14 04:41Payment SiteCerber
52uo5k3t73ypjije.vt3dg6.bid		Eranet International Limited (n/a)
2016-08-14 02:49Payment SiteCerber
52uo5k3t73ypjije.sx90yk.bid		Eranet International Limited (n/a)
2016-08-14 00:46Payment SiteCerber
unocl45trpuoefft.9u3iy1.top		Eranet International Limited (n/a)
2016-08-13 23:03Payment SiteCerber
52uo5k3t73ypjije.en3oyw.bid		Eranet International Limited (n/a)
2016-08-13 22:34Payment SiteCerber
unocl45trpuoefft.meetsface.win		Alpnames Limited (n/a)
2016-08-13 21:48Payment SiteCerber
52uo5k3t73ypjije.7wrwp4.top		Eranet International Limited (n/a)
2016-08-13 18:03Payment SiteCerber
52uo5k3t73ypjije.gtnfgj.top		Eranet International Limited (n/a)
2016-08-13 17:32Payment SiteCerber
52uo5k3t73ypjije.ywszbe.bid		Eranet International Limited (n/a)
2016-08-13 14:26Botnet C&CLocky
gsmdqrmqddqtuv.xyz		Gandi SAS54.67.27.43 (- United States)
2016-08-13 12:48Payment SiteCerber
pmenboeqhyrpvomq.y7fjr4.bid		Eranet International Limited (n/a)
2016-08-13 10:28Payment SiteCerber
52uo5k3t73ypjije.0nyi6l.bid		Eranet International Limited (n/a)
2016-08-13 09:55Payment SiteCerber
52uo5k3t73ypjije.r2ok0b.bid		Eranet International Limited (n/a)
2016-08-13 09:01Payment SiteCerber
52uo5k3t73ypjije.uw7w05.bid		Eranet International Limited (n/a)
2016-08-13 08:40Distribution SiteLocky
digiwebstore.fr		OVH213.186.33.19 (- France)
2016-08-12 15:51Payment SiteCerber
52uo5k3t73ypjije.lrraca.bid		Eranet International Limited (n/a)
2016-08-12 13:22Payment SiteCerber
pmenboeqhyrpvomq.0nyi6l.bid		Eranet International Limited (n/a)
2016-08-12 13:21Distribution SiteLocky
portraitstaffa.de		 (n/a)
2016-08-12 13:21Distribution SiteLocky
sportpferde-weihmayer.homepage.t-online.de		80.150.6.138 (- Germany)
2016-08-12 13:21Distribution SiteLocky
www.bitupont.hu		185.51.191.25 (- Hungary)
2016-08-12 13:21Distribution SiteLocky
files.zdaspb.ru		R01-RU80.64.105.78 (- Russian Federation)
2016-08-12 13:20Distribution SiteLocky
www.herinvest.be		Telenet BVBA (n/a)
2016-08-12 13:20Distribution SiteLocky
www.milleniumbar.it		TISCALIDOMAIN-REG213.205.40.169 (- Italy)
2016-08-12 13:19Distribution SiteLocky
muteofficial.web.fc2.com		INSTRA CORPORATION PTY, LTD.104.244.99.16 (- United States)
2016-08-12 13:19Distribution SiteLocky
broda.50webs.com		GODADDY.COM, LLC162.210.101.86 (- United States)
2016-08-12 13:19Distribution SiteLocky
www.ceccosport.it		TISCALIDOMAIN-REG188.116.55.57 (- Poland)
2016-08-12 13:19Distribution SiteLocky
scom2.web.fc2.com		INSTRA CORPORATION PTY, LTD.104.244.99.16 (- United States)
2016-08-12 13:19Distribution SiteLocky
kolkhoz.web.fc2.com		INSTRA CORPORATION PTY, LTD.104.244.99.16 (- United States)
2016-08-12 13:19Distribution SiteLocky
studiocorrado.org		Ascio Technologies, Inc. Danmark[...]79.98.45.16 (- Italy)
2016-08-12 13:18Distribution SiteLocky
bonmoment.web.fc2.com		INSTRA CORPORATION PTY, LTD.104.244.99.42 (- United States)
2016-08-12 13:17Distribution SiteLocky
www.meteoerba.it		TISCALIDOMAIN-REG31.11.34.54 (- Italy)
2016-08-12 13:17Distribution SiteLocky
birthday-cards.50webs.com		GODADDY.COM, LLC162.210.101.23 (- United States)
2016-08-12 13:17Distribution SiteLocky
www.hi-segno.com		ASCIO TECHNOLOGIES, INC. DANMARK[...]213.205.40.169 (- Italy)
2016-08-12 13:16Distribution SiteLocky
tianooze.web.fc2.com		INSTRA CORPORATION PTY, LTD.104.244.99.38 (- United States)
2016-08-12 13:16Distribution SiteLocky
dopelx.com		REGISTER.IT SPA204.11.56.48 (- Virgin Islands)
2016-08-12 13:16Distribution SiteLocky
www.nikawilliam.net		TUCOWS DOMAINS INC.195.238.0.64 (- Belgium)
2016-08-12 13:16Distribution SiteLocky
preglitzer.heimat.eu		Key-Systems GmbH213.208.133.41 (- Austria)
2016-08-12 13:15Distribution SiteLocky
www.oxxengarde.de		80.150.6.143 (- Germany)
2016-08-12 13:15Distribution SiteLocky
einfachwalter.homepage.t-online.de		80.150.6.138 (- Germany)
2016-08-12 13:15Distribution SiteLocky
www.homesplus.nf.net		NETWORK SOLUTIONS, LLC.216.251.43.11 (- United States)
2016-08-12 13:15Distribution SiteLocky
sv-sportscars.nl		WebReus46.235.42.86 (- Netherlands)
2016-08-12 11:59Payment SiteCerber
52uo5k3t73ypjije.2gbbja.top		Eranet International Limited (n/a)
2016-08-11 16:36Distribution SiteLocky
agarty.kz		ICPS195.210.46.61 (- Kazakhstan)
2016-08-11 11:04Distribution SiteLocky
www.EastsideAutoSalvage.com		GODADDY.COM, LLC216.116.20.36 (- United States)
2016-08-11 11:04Distribution SiteLocky
iceninegr.web.fc2.com		INSTRA CORPORATION PTY, LTD.104.244.99.42 (- United States)
2016-08-11 11:03Distribution SiteLocky
www.halloweenparty.go.ro		ICI - ROTLD81.196.20.134 (- Romania)
2016-08-11 11:03Distribution SiteLocky
www.tommasobovone.com		ASCIO TECHNOLOGIES, INC. DANMARK[...]213.205.40.169 (- Italy)
2016-08-11 11:02Distribution SiteLocky
momoselok.ru		RU-CENTER-RU (n/a)
2016-08-11 11:01Distribution SiteLocky
mccrarys.us		DELUXE SMALL BUSINESS SALES, INC[...]64.29.151.209 (- United States)
2016-08-11 11:01Distribution SiteLocky
antonello.messina.it		EUTELIA-REG83.211.227.140 (- Italy)
2016-08-11 11:00Distribution SiteLocky
151.ru		RU-CENTER-RU90.156.201.30 (- Russian Federation) +3 A record(s) 90.156.201.38 (AS25532, - Russian Federation)
90.156.201.77 (AS25532, - Russian Federation)
90.156.201.86 (AS25532, - Russian Federation)
2016-08-11 10:59Distribution SiteLocky
fcm-makler.de		91.195.240.126 (- Germany)
2016-08-11 10:59Distribution SiteLocky
www.fasulo.org		Ascio Technologies, Inc. Danmark[...]213.205.40.169 (- Italy)
2016-08-11 10:59Distribution SiteLocky
sando.oboroduki.com		GMO INTERNET, INC. DBA ONAMAE.CO[...]112.140.42.29 (- Japan)
2016-08-10 12:42Distribution SiteLocky
bfc-sas.fr		LIGNE WEB SERVICES - LWS91.216.107.44 (- France)
2016-08-10 12:42Distribution SiteLocky
user48339.vs.easily.co.uk		Ascio Technologies Inc. Denmark [...]91.194.151.38 (- United Kingdom)
2016-08-10 12:42Distribution SiteLocky
www.monzesetraslochi.it		TISCALIDOMAIN-REG (n/a)
2016-08-10 12:41Distribution SiteLocky
www.italius.com		ASCIO TECHNOLOGIES, INC. DANMARK[...]35.169.58.188 (- United States) +1 A record(s) 54.208.77.124 (AS14618, - United States)
2016-08-10 12:41Distribution SiteLocky
nuestraskejas.50webs.com		GODADDY.COM, LLC162.210.101.105 (- United States)
2016-08-10 12:41Distribution SiteLocky
www.rocchienoteca.it		TISCALIDOMAIN-REG213.205.40.169 (- Italy)
2016-08-10 12:41Distribution SiteLocky
colpi.telerete.it		TELERETE-REG217.148.123.3 (- Italy)
2016-08-10 12:41Distribution SiteLocky
hbfx.home.ro		ICI - ROTLD81.196.20.133 (- Romania)
2016-08-10 12:40Distribution SiteLocky
www.locgest.com		ASCIO TECHNOLOGIES, INC. DANMARK[...]213.205.40.169 (- Italy)
2016-08-10 12:40Distribution SiteLocky
www.forestg.com		NETWORK SOLUTIONS, LLC. (n/a)
2016-08-10 12:40Distribution SiteLocky
www.xback.be		Telenet BVBA195.130.132.84 (- Belgium)
2016-08-10 12:39Distribution SiteLocky
zsz_szyn.republika.pl		213.180.141.189 (- Poland)
2016-08-10 12:39Distribution SiteLocky
computekpdx.comcastbiz.net		CSC CORPORATE DOMAINS, INC.216.87.186.166 (- United States)
2016-08-10 12:39Distribution SiteLocky
helloworldfc2.web.fc2.com		INSTRA CORPORATION PTY, LTD.104.244.99.45 (- United States)
2016-08-10 12:39Distribution SiteLocky
sibkojin.web.fc2.com		INSTRA CORPORATION PTY, LTD.104.244.99.47 (- United States)
2016-08-10 12:38Distribution SiteLocky
www.portuense.it		TISCALIDOMAIN-REG213.205.40.169 (- Italy)

# of rows displayed: 100
# of entries in database: 13'865

Page 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 >

Copyright © 2016 ransomwaretracker.abuse.ch version 1.0 / 2016-02-21