Tracker

Ransomware Tracker to distinguishes between the following threats:

Each entry in Ransomware Tracker is tagged to a threat and a malware. Currently, the following Ransomware families are tracked:

New submissions for Ransomware Tracker are warmly welcome. You can send new additions to rt-RintANel@abuse.ch (remove all letters in uppercase). Malware binaries that you suspect to be associated with a certain Ransomware family can be send to rt-malwSOareM@abuse.ch (remove all letters in uppercase) for analysis.

Search

You can search for a host or URL using the following search form:

Set a filter for the list below

Below is a list of Ransomware botnet C&C servers tracked by Ransomware Tracker. You have the possibility to filter the list below using certain pre-defined filters shown below.

General filters: Remove filter (Show all) | Online hosts
Filter by threat: Botnet C&Cs | Payment Sites | Distribution Sites
Filter by malware: TeslaCrypt | CryptoWall | TorrentLocker | PadCrypt | Locky | CTB-Locker | FAKBEN | PayCrypt | DMALocker | Cerber | Sage | GlobeImposter

Dateadded (UTC)ThreatMalwareHost (?Domain name or IP address used by the Ransomware. The leading dots (Red, Green, Grey) indicate whether the Host is active or not.

Red = Online
Green = Offline
Grey = Unknown
)
Domain Registrar (?In some cases Ransomware Tracker is not able to determine the sponsoring Registrar of a domain name. Thats either because the Registry does not reveal this information in the whois or because the Registry doesn't offer a whois service.)IP address (ASN, Country)
2016-07-21 11:20Distribution SiteLocky
mmkk7.web.fc2.com
INSTRA CORPORATION PTY, LTD.104.244.99.38 (- United States)
2016-07-21 10:19Payment SiteCerber
52uo5k3t73ypjije.rnkj09.top
Alpnames Limited (n/a)
2016-07-21 10:08Payment SiteCerber
52uo5k3t73ypjije.laugk2.top
Eranet International Limited (n/a)
2016-07-21 09:47Payment SiteCerber
pmenboeqhyrpvomq.n80yab.top
Alpnames Limited (n/a)
2016-07-21 08:27Payment SiteCerber
pmenboeqhyrpvomq.o08a6d.top
Eranet International Limited (n/a)
2016-07-21 01:56Payment SiteCerber
27lelchgcvs2wpm7.3lhjyx.top
Eranet International Limited (n/a)
2016-07-20 22:59Payment SiteCerber
4kqd3hmqgptupi3p.dmvute.top
Eranet International Limited (n/a)
2016-07-20 19:27Payment SiteCerber
pmenboeqhyrpvomq.a4coac.top
Eranet International Limited (n/a)
2016-07-20 19:05Payment SiteCerber
52uo5k3t73ypjije.jg6jtw.top
Eranet International Limited (n/a)
2016-07-20 15:52Payment SiteCerber
27lelchgcvs2wpm7.liopakerb.black
Alpnames Limited (n/a)
2016-07-20 15:17Payment SiteCerber
pmenboeqhyrpvomq.xx6jck.top
Alpnames Limited (n/a)
2016-07-20 14:24Payment SiteCerber
pmenboeqhyrpvomq.k7oud1.top
Eranet International Limited (n/a)
2016-07-20 11:35Distribution SiteLocky
graficador.ch
hosttech GmbH82.220.37.15 (- Switzerland)
2016-07-20 11:35Distribution SiteLocky
zuerich-gewerbe.ch
hosttech GmbH82.220.37.15 (- Switzerland)
2016-07-20 11:35Distribution SiteLocky
gromantique.com
DREAMHOST, LLC208.113.187.64 (- United States)
2016-07-20 11:35Distribution SiteLocky
dreamsigns.com.au
Web Address Registration87.98.231.3 (- Spain)
2016-07-20 11:35Distribution SiteLocky
biopocasie.sk
92.240.253.2 (- Slovakia)
2016-07-20 11:34Distribution SiteLocky
www.kujunduskuur.com
ENOM, INC.217.146.69.4 (- Estonia)
2016-07-20 11:12Distribution SiteLocky
australiandietitian.com
TPP WHOLESALE PTY LTD.104.27.130.61 (- United States) +1 A record(s) 104.27.131.61 (AS55803, - United States)
2016-07-20 11:12Distribution SiteLocky
iceskochi.org
PDR Ltd. d/b/a PublicDomainRegis[...]144.76.163.171 (- Germany)
2016-07-20 11:12Distribution SiteLocky
nlazovic.mybesthost.com
LIQUIDNET LTD.198.23.57.32 (- United States)
2016-07-20 11:12Distribution SiteLocky
alinmaagroup.com
GODADDY.COM, LLC (n/a)
2016-07-20 11:12Distribution SiteLocky
accendojuris.com
PDR LTD. D/B/A PUBLICDOMAINREGIS[...]209.99.40.223 (- United States)
2016-07-20 11:11Distribution SiteLocky
www.plantengineer.biz
THE REGISTRAR COMPANY B.V. (n/a)
2016-07-20 11:11Distribution SiteLocky
makingitalia.net
INTERNET DOMAIN SERVICE BS CORP209.99.40.223 (- United States)
2016-07-19 19:46Distribution SiteLocky
kveldeil.no
176.111.200.27 (- Norway)
2016-07-19 19:45Distribution SiteLocky
mindfocus.com.br
108.179.193.134 (- United States)
2016-07-19 19:45Distribution SiteLocky
iclaw.co.il
194.213.4.86 (- Israel)
2016-07-19 15:04Distribution SiteLocky
delaemvkusnoe.ru
RU-CENTER-RU (n/a)
2016-07-19 15:04Distribution SiteLocky
zakagimebel.ru
RU-CENTER-RU (n/a)
2016-07-19 15:04Distribution SiteLocky
limpiezamecanizada.com.mx
Akky (Una division de NIC Mexico[...]208.97.178.120 (- United States)
2016-07-19 15:04Distribution SiteLocky
mystyleparrucchieri.com
TUCOWS DOMAINS INC.80.88.87.96 (- Italy)
2016-07-19 14:18Botnet C&CLocky
fyqtguo.biz
DYNADOT LLC69.195.129.70 (- United States)
2016-07-19 13:50Botnet C&CLocky
ohplsuljopekq.biz
BIZCN.COM, INC.195.43.95.198 (- Russian Federation)
2016-07-19 13:50Botnet C&CLocky
194.1.236.126
194.1.236.126 (- Russian Federation)
2016-07-19 13:50Botnet C&CLocky
185.117.153.176
185.117.153.176 (- Russian Federation)
2016-07-19 11:56Distribution SiteLocky
webidator.co.il
(n/a)
2016-07-19 11:56Distribution SiteLocky
lifecare-hc.com
GODADDY.COM, LLC50.63.202.42 (- United States)
2016-07-19 11:56Distribution SiteLocky
www.mystyleparrucchieri.com
TUCOWS DOMAINS INC.80.88.87.96 (- Italy)
2016-07-19 11:56Distribution SiteLocky
ostrovokkrasoty.ru
RU-CENTER-RU195.208.1.106 (- Russian Federation)
2016-07-19 11:56Distribution SiteLocky
choogo.net
GABIA, INC.183.101.113.29 (- Korea)
2016-07-19 11:56Distribution SiteLocky
wacker-etm.ru
RU-CENTER-RU195.208.1.106 (- Russian Federation)
2016-07-19 11:56Distribution SiteLocky
biovinci.com.br
108.179.193.134 (- United States)
2016-07-19 11:55Distribution SiteLocky
hiramteran.com
GODADDY.COM, LLC207.174.215.153 (- United States)
2016-07-19 11:55Distribution SiteLocky
aerosfera.ru
RU-CENTER-RU178.210.92.160 (- Russian Federation)
2016-07-19 11:55Distribution SiteLocky
heonybaby.synology.me
GoDaddy.com, LLC (n/a)
2016-07-19 11:55Distribution SiteLocky
control3.com.br
192.185.209.37 (- United States)
2016-07-19 11:55Distribution SiteLocky
tvernedra.ru
RU-CENTER-RU178.210.88.28 (- Russian Federation)
2016-07-19 11:55Distribution SiteLocky
valsystem.cl
NIC Chile204.93.172.128 (- United States)
2016-07-19 11:55Distribution SiteLocky
wineroutes.ru
R01-RU77.222.56.73 (- Russian Federation)
2016-07-19 09:54Payment SiteCerber
27lelchgcvs2wpm7.wishsends.mobi
PDR Ltd. d/b/a PublicDomainRegis[...] (n/a)
2016-07-19 03:03Payment SiteCerber
27lelchgcvs2wpm7.redefined.click
Alpnames Limited (n/a)
2016-07-19 01:06Payment SiteCerber
pmenboeqhyrpvomq.viceled.pw
AlpNames Limited141.8.226.58 (- Switzerland)
2016-07-18 23:53Payment SiteCerber
52uo5k3t73ypjije.yv7l4b.top
Eranet International Limited (n/a)
2016-07-18 23:30Payment SiteCerber
52uo5k3t73ypjije.3lhjyx.top
Eranet International Limited (n/a)
2016-07-18 23:03Payment SiteCerber
4kqd3hmqgptupi3p.6ogy3i.top
Eranet International Limited (n/a)
2016-07-18 22:21Payment SiteCerber
52uo5k3t73ypjije.o08a6d.top
Eranet International Limited (n/a)
2016-07-18 17:47Payment SiteCerber
52uo5k3t73ypjije.dmvute.top
Eranet International Limited (n/a)
2016-07-18 16:44Payment SiteCerber
27lelchgcvs2wpm7.laverhants.link
Alpnames Limited (n/a)
2016-07-18 16:35Payment SiteCerber
pmenboeqhyrpvomq.mtxtul.top
Eranet International Limited (n/a)
2016-07-18 16:17Payment SiteCerber
4kqd3hmqgptupi3p.6ntrb6.top
Eranet International Limited (n/a)
2016-07-18 16:10Payment SiteCerber
pmenboeqhyrpvomq.factordo.site
AlpNames Limited (n/a)
2016-07-18 16:02Payment SiteCerber
27lelchgcvs2wpm7.bedrastic.bid
Alpnames Limited (n/a)
2016-07-18 14:19Distribution SiteLocky
dottie33.0catch.com
FASTDOMAIN, INC.66.219.202.10 (- United States)
2016-07-18 14:13Distribution SiteLocky
fss.neostrada.pl
AZ.pl Sp. z o.o.217.97.216.17 (- Poland)
2016-07-18 14:12Distribution SiteLocky
matisport.strefa.pl
Grupa Interia.pl sp. z o.o. sp. [...]217.74.65.23 (- Poland)
2016-07-18 13:25Distribution SiteLocky
yifruit.com
GODADDY.COM, LLC120.78.89.68 (- China)
2016-07-18 13:25Distribution SiteLocky
folkstorm.free.fr
ONLINE SAS212.27.63.154 (- France)
2016-07-18 13:25Distribution SiteLocky
mfg.heimat.eu
Key-Systems GmbH (n/a)
2016-07-18 13:25Distribution SiteLocky
city4you.go.ro
ICI - ROTLD81.196.20.134 (- Romania)
2016-07-18 13:24Distribution SiteLocky
shutadds.w.of.pl
Consulting Service Sp. z o.o.194.177.4.239 (- Poland)
2016-07-18 13:24Distribution SiteLocky
iviarc.republika.pl
Domeny.pl sp. z o.o.213.180.141.189 (- Poland)
2016-07-18 12:01Payment SiteCerber
pmenboeqhyrpvomq.g0ots2.top
Eranet International Limited (n/a)
2016-07-18 11:19Payment SiteCerber
4kqd3hmqgptupi3p.mtxtul.top
Eranet International Limited (n/a)
2016-07-18 10:55Distribution SiteLocky
car-sound.go.ro
ICI - ROTLD81.196.20.134 (- Romania)
2016-07-18 10:55Distribution SiteLocky
sgvillage.com
ENOM, INC.23.20.239.12 (- United States)
2016-07-18 10:55Distribution SiteLocky
howtosucceed.tripod.com
CSC CORPORATE DOMAINS, INC.209.202.252.66 (- United States)
2016-07-18 10:55Distribution SiteLocky
marcinek.republika.pl
Domeny.pl sp. z o.o.213.180.141.189 (- Poland)
2016-07-18 10:55Distribution SiteLocky
www.carboplast.it
TIN-REG31.11.33.48 (- Italy)
2016-07-18 10:55Distribution SiteLocky
eightplusnine.com
MISK.COM, INC.202.142.223.132 (- Thailand)
2016-07-18 10:55Distribution SiteLocky
cats.ugu.pl
OVH SAS178.33.49.137 (- Poland)
2016-07-18 10:54Distribution SiteLocky
iss0.tripod.com
CSC CORPORATE DOMAINS, INC.209.202.252.66 (- United States)
2016-07-18 10:54Distribution SiteLocky
klasste.tripod.com
CSC CORPORATE DOMAINS, INC.209.202.252.66 (- United States)
2016-07-18 10:54Distribution SiteLocky
gastro411.com
DINAHOSTING SL82.98.134.249 (- Spain)
2016-07-18 10:54Distribution SiteLocky
static.indirveoyna.com
FBS INC.104.28.6.79 (- United States) +1 A record(s) 104.28.7.79 (AS13335, - United States)
2016-07-18 10:54Distribution SiteLocky
bursaforex.home.ro
ICI - ROTLD81.196.20.133 (- Romania)
2016-07-18 10:54Distribution SiteLocky
pichuile.free.fr
ONLINE SAS212.27.63.110 (- France)
2016-07-18 10:54Distribution SiteLocky
enpitsutenpura.web.fc2.com
INSTRA CORPORATION PTY, LTD.104.244.99.16 (- United States)
2016-07-18 10:54Distribution SiteLocky
dmb.republika.pl
Domeny.pl sp. z o.o.213.180.141.189 (- Poland)
2016-07-18 10:54Distribution SiteLocky
naturopatheenligne.free.fr
ONLINE SAS212.27.63.153 (- France)
2016-07-18 10:54Distribution SiteLocky
pacyna2.republika.pl
Domeny.pl sp. z o.o.213.180.141.189 (- Poland)
2016-07-18 10:26Distribution SiteLocky
bizconsulting.ro
ICI - ROTLD86.35.15.215 (- Romania)
2016-07-18 10:26Distribution SiteLocky
BenavidezHoy.com
FASTDOMAIN, INC. (n/a)
2016-07-18 10:26Distribution SiteLocky
findmobileauto.com
ENOM, INC. (n/a)
2016-07-18 10:26Distribution SiteLocky
leeplastic.com
SHINJIRU MSC SDN BHD111.90.129.100 (- Malaysia)
2016-07-18 10:26Distribution SiteLocky
dnp9.com
ENOM, INC.110.164.189.123 (- Thailand)
2016-07-18 10:26Distribution SiteLocky
bridgeplacements.com
NETWORK SOLUTIONS, LLC.199.191.50.140 (- Virgin Islands)
2016-07-18 10:26Distribution SiteLocky
calcoastlogistics.com
GODADDY.COM, LLC50.63.202.40 (- United States)
2016-07-18 10:26Distribution SiteLocky
travoxsb.com
TUCOWS DOMAINS INC.110.4.45.235 (- Malaysia)
2016-07-18 10:26Distribution SiteLocky
vakantiehuisinauvergne.com
THE REGISTRAR COMPANY B.V.185.182.57.123 (- Netherlands)

# of rows displayed: 100
# of entries in database: 13'867

Page 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 >