Tracker

Ransomware Tracker to distinguishes between the following threats:

Each entry in Ransomware Tracker is tagged to a threat and a malware. Currently, the following Ransomware families are tracked:

New submissions for Ransomware Tracker are warmly welcome. You can send new additions to rt-RintANel@abuse.ch (remove all letters in uppercase). Malware binaries that you suspect to be associated with a certain Ransomware family can be send to rt-malwSOareM@abuse.ch (remove all letters in uppercase) for analysis.

Search

You can search for a host or URL using the following search form:

Set a filter for the list below

Below is a list of Ransomware botnet C&C servers tracked by Ransomware Tracker. You have the possibility to filter the list below using certain pre-defined filters shown below.

General filters: Remove filter (Show all) | Online hosts
Filter by threat: Botnet C&Cs | Payment Sites | Distribution Sites
Filter by malware: TeslaCrypt | CryptoWall | TorrentLocker | PadCrypt | Locky | CTB-Locker | FAKBEN | PayCrypt | DMALocker | Cerber | Sage | GlobeImposter

Dateadded (UTC)ThreatMalwareHost (?Domain name or IP address used by the Ransomware. The leading dots (Red, Green, Grey) indicate whether the Host is active or not.

Red = Online
Green = Offline
Grey = Unknown
)
Domain Registrar (?In some cases Ransomware Tracker is not able to determine the sponsoring Registrar of a domain name. Thats either because the Registry does not reveal this information in the whois or because the Registry doesn't offer a whois service.)IP address (ASN, Country)
2016-07-18 10:26Distribution SiteLocky
my-result.ru
RU-CENTER-RU (n/a)
2016-07-18 10:25Distribution SiteLocky
ilkhaberadana.com
GODADDY.COM, LLC95.173.189.182 (- Turkey)
2016-07-18 10:25Distribution SiteLocky
equalityindonesia.com
CV. JOGJACAMP202.52.147.113 (- Indonesia)
2016-07-18 10:25Distribution SiteLocky
cinerd.info
GoDaddy.com, LLC (n/a)
2016-07-18 10:25Distribution SiteLocky
thegracefamilychurch.com
ENOM, INC.144.217.167.154 (- Canada)
2016-07-18 10:25Distribution SiteLocky
containermx.com
INTERNET DOMAIN SERVICE BS CORP (n/a)
2016-07-18 10:25Distribution SiteLocky
gv.com.my
103.6.244.65 (- Malaysia)
2016-07-18 10:25Distribution SiteLocky
bailamecuba.com
SYNERGY WHOLESALE PTY LTD (n/a)
2016-07-18 10:25Distribution SiteLocky
candobetter.net
CRAZY DOMAINS FZ-LLC212.83.147.176 (- France)
2016-07-18 10:25Distribution SiteLocky
acnek.com
GODADDY.COM, LLC184.168.131.241 (- United States)
2016-07-18 10:25Distribution SiteLocky
davisdoherty.co.nz
119.47.117.112 (- New Zealand)
2016-07-18 10:25Distribution SiteLocky
gruposoluciomatica.com.br
204.93.165.28 (- United States)
2016-07-18 10:24Distribution SiteLocky
anchortron.com
GODADDY.COM, LLC192.186.209.130 (- United States)
2016-07-18 10:24Distribution SiteLocky
travelabroadsecret.com
ENOM, INC.204.11.56.48 (- Virgin Islands)
2016-07-18 10:24Distribution SiteLocky
provincialpw.com
GODADDY.COM, LLC160.153.54.35 (- United States)
2016-07-18 10:24Distribution SiteLocky
ahatv.com.au
Web Address Registration103.226.221.161 (- Australia)
2016-07-18 10:24Distribution SiteLocky
wcouto.com.br
(n/a)
2016-07-18 10:24Distribution SiteLocky
ormanstressrelief.com
ENOM, INC.192.185.64.62 (- United States)
2016-07-18 10:24Distribution SiteLocky
smp.com.mx
Hospedando.Com.Mx67.227.237.237 (- United States)
2016-07-18 10:24Distribution SiteLocky
aquatixbottle.com
GODADDY.COM, LLC184.168.221.47 (- United States)
2016-07-18 10:24Distribution SiteLocky
matthewmccright.org
GoDaddy.com, LLC198.71.233.23 (- United States)
2016-07-18 10:24Distribution SiteLocky
serviceautoiasi.com
EURODNS S.A185.53.177.20 (- Germany)
2016-07-18 10:24Distribution SiteLocky
deanstum.com
GODADDY.COM, LLC23.89.15.97 (- United States)
2016-07-18 10:24Distribution SiteLocky
s2mgmt.com
GODADDY.COM, LLC23.236.62.147 (- United States)
2016-07-18 10:24Distribution SiteLocky
colleenthestylist.com
GODADDY.COM, LLC50.63.202.24 (- United States)
2016-07-18 10:24Distribution SiteLocky
ecpi.ro
Romarg SRL89.42.223.64 (- Romania)
2016-07-18 10:24Distribution SiteLocky
blackdildo.net
ENOM, INC. (n/a)
2016-07-18 10:23Distribution SiteLocky
otwayorchard.net
ENOM, INC.202.191.62.205 (- Australia)
2016-07-18 10:23Distribution SiteLocky
bigislandhawaiihilorealestate.com
1&1 INTERNET SE72.52.4.119 (- United States)
2016-07-18 10:23Distribution SiteLocky
tip.ub.ac.id
175.45.184.161 (- Indonesia)
2016-07-18 10:23Distribution SiteLocky
cbactive.com
GODADDY.COM, LLC23.229.171.33 (- United States)
2016-07-18 10:23Distribution SiteLocky
banthaoduoc.com
MAT BAO TRADING & SERVICE COMPAN[...]125.253.113.122 (- Vietnam)
2016-07-18 10:23Distribution SiteLocky
christian-view.com
TUCOWS DOMAINS INC. (n/a)
2016-07-18 10:23Distribution SiteLocky
kouzoncorporation.com
GODADDY.COM, LLC192.185.4.129 (- United States)
2016-07-18 10:23Distribution SiteLocky
cloudbws.com
GODADDY.COM, LLC (n/a)
2016-07-18 10:23Distribution SiteLocky
fusofrance.fr
OVH213.186.33.5 (- France)
2016-07-18 10:08Payment SiteCerber
52uo5k3t73ypjije.g0ots2.top
Eranet International Limited (n/a)
2016-07-18 05:09Payment SiteCerber
52uo5k3t73ypjije.mtxtul.top
Eranet International Limited (n/a)
2016-07-18 04:27Payment SiteCerber
27lelchgcvs2wpm7.tankbe.pro
(n/a)
2016-07-18 03:53Payment SiteCerber
52uo5k3t73ypjije.0n5joc.top
Eranet International Limited (n/a)
2016-07-18 03:09Payment SiteCerber
pmenboeqhyrpvomq.shutlazy.casa
Alpnames (n/a)
2016-07-17 20:15Payment SiteCerber
52uo5k3t73ypjije.9nj8ex.top
Eranet International Limited (n/a)
2016-07-17 17:12Payment SiteCerber
4kqd3hmqgptupi3p.3lhjyx.top
Eranet International Limited (n/a)
2016-07-17 16:07Payment SiteCerber
4kqd3hmqgptupi3p.k7oud1.top
Eranet International Limited (n/a)
2016-07-17 15:59Payment SiteTorrentLocker
mz7oyb3v32vshcvk.toysworlds.at
(n/a)
2016-07-17 15:22Payment SiteCerber
52uo5k3t73ypjije.k7oud1.top
Eranet International Limited (n/a)
2016-07-17 13:35Payment SiteCerber
52uo5k3t73ypjije.mfgb1h.top
Eranet International Limited (n/a)
2016-07-17 12:11Payment SiteCerber
27lelchgcvs2wpm7.uboys5.top
Eranet International Limited (n/a)
2016-07-17 10:57Payment SiteCerber
52uo5k3t73ypjije.imhhwm.top
Eranet International Limited (n/a)
2016-07-17 00:06Payment SiteCerber
27lelchgcvs2wpm7.xmvr54.top
Eranet International Limited (n/a)
2016-07-16 22:53Payment SiteCerber
27lelchgcvs2wpm7.7zv8o2.top
Eranet International Limited (n/a)
2016-07-16 19:24Payment SiteCerber
pmenboeqhyrpvomq.loopsay.link
Alpnames Limited (n/a)
2016-07-16 17:57Payment SiteCerber
27lelchgcvs2wpm7.apperloads.win
Alpnames Limited (n/a)
2016-07-16 17:56Payment SiteCerber
52uo5k3t73ypjije.poplenjohs.review
Alpnames Limited (n/a)
2016-07-16 17:42Payment SiteCerber
pmenboeqhyrpvomq.thyx30.top
Eranet International Limited (n/a)
2016-07-16 17:07Botnet C&CLocky
5.187.0.137
5.187.0.137 (- Germany)
2016-07-16 13:58Distribution SiteLocky
spruielldrilling.com
GODADDY.COM, LLC23.236.62.147 (- United States)
2016-07-16 12:14Payment SiteCerber
52uo5k3t73ypjije.ahvshc.top
Eranet International Limited (n/a)
2016-07-16 12:14Payment SiteCerber
27lelchgcvs2wpm7.marksgain.kim
Alpnames Limited (n/a)
2016-07-16 08:08Payment SiteCerber
52uo5k3t73ypjije.deg5xr.top
Eranet International Limited (n/a)
2016-07-16 07:36Payment SiteCerber
27lelchgcvs2wpm7.9ildst.top
Eranet International Limited (n/a)
2016-07-15 21:28Payment SiteCerber
pmenboeqhyrpvomq.swissprogramms.bid
Alpnames Limited (n/a)
2016-07-15 21:15Payment SiteCerber
pmenboeqhyrpvomq.ka0te8.top
Eranet International Limited (n/a)
2016-07-15 20:59Payment SiteCerber
52uo5k3t73ypjije.zclw5i.top
Eranet International Limited (n/a)
2016-07-15 17:29Payment SiteCerber
pmenboeqhyrpvomq.9nkxd3.top
Eranet International Limited (n/a)
2016-07-15 14:10Distribution SiteLocky
assopeltro.com
REGISTER.IT SPA195.110.124.188 (- Italy)
2016-07-15 14:10Distribution SiteLocky
pmlingua.strefa.pl
Grupa Interia.pl sp. z o.o. sp. [...]217.74.65.23 (- Poland)
2016-07-15 14:10Distribution SiteLocky
larg1.free.fr
ONLINE SAS212.27.63.102 (- France)
2016-07-15 14:10Distribution SiteLocky
tcmandarin.ru
REGRU-RU23.236.62.147 (- United States)
2016-07-15 14:10Distribution SiteLocky
akson52.ru
RU-CENTER-RU (n/a)
2016-07-15 14:10Distribution SiteLocky
artigianasalumi.com
REGISTER.IT SPA195.110.124.188 (- Italy)
2016-07-15 14:10Distribution SiteLocky
dtrealty.us
GODADDY.COM, INC. (n/a)
2016-07-15 14:10Distribution SiteLocky
lilabners.com
NETWORK SOLUTIONS, LLC.23.20.239.12 (- United States)
2016-07-15 14:10Distribution SiteLocky
jorgeloli.com
GODADDY.COM, LLC (n/a)
2016-07-15 14:10Distribution SiteLocky
shaman-studio.com
ONLINENIC, INC. (n/a)
2016-07-15 13:23Payment SiteCerber
pmenboeqhyrpvomq.9ildst.top
Eranet International Limited (n/a)
2016-07-15 10:59Payment SiteCerber
pmenboeqhyrpvomq.7s0g3v.top
Eranet International Limited (n/a)
2016-07-15 10:48Payment SiteCerber
pmenboeqhyrpvomq.paypoints.red
Alpnames Limited (n/a)
2016-07-15 10:13Distribution SiteLocky
zckupila.republika.pl
Domeny.pl sp. z o.o.213.180.141.189 (- Poland)
2016-07-15 10:13Distribution SiteLocky
alexiedb.home.ro
ICI - ROTLD81.196.20.133 (- Romania)
2016-07-15 10:12Distribution SiteLocky
callatisinstitut.fr
OVH (n/a)
2016-07-15 10:12Distribution SiteLocky
strstudio.pl
OVH SAS87.98.239.19 (- Poland)
2016-07-15 10:12Distribution SiteLocky
www.rgtalp14.it
TISCALIDOMAIN-REG213.205.40.169 (- Italy)
2016-07-15 10:12Distribution SiteLocky
www.guapaweb.jazztel.es
62.14.3.195 (- Spain)
2016-07-15 10:12Distribution SiteLocky
83.235.64.44
n/a
2016-07-15 10:12Distribution SiteLocky
178.78.87.8
n/a
2016-07-15 10:12Distribution SiteLocky
www.vedasrestaurant.com
GODADDY.COM, LLC192.186.251.225 (- United States)
2016-07-15 10:12Distribution SiteLocky
tabskillersmachine.com
TUCOWS DOMAINS INC.185.81.0.109 (- Italy)
2016-07-15 10:12Distribution SiteLocky
edelweiss-secretariat.com
OVH213.186.33.19 (- France)
2016-07-15 10:12Distribution SiteLocky
sabplatform.com
GODADDY.COM, LLC107.180.25.1 (- United States)
2016-07-15 10:12Distribution SiteLocky
aberfoyledental.ca
Tucows.com Co.108.179.223.28 (- United States)
2016-07-15 10:12Distribution SiteLocky
sturminvestigations.com
GODADDY.COM, LLC108.179.243.49 (- United States)
2016-07-15 10:12Distribution SiteLocky
exclusive-closet.com
GODADDY.COM, LLC192.186.250.7 (- United States)
2016-07-15 10:12Distribution SiteLocky
ilbalconcino2011.it
WIDE-REG (n/a)
2016-07-15 10:12Distribution SiteLocky
flaglerpower.com
GODADDY.COM, LLC52.58.78.16 (- Germany)
2016-07-15 10:12Distribution SiteLocky
www.digi9.in
GoDaddy.com, LLC (R101-AFIN)160.153.54.105 (- United States)
2016-07-15 10:12Distribution SiteLocky
lerens.com
WILD WEST DOMAINS, LLC80.172.253.133 (- Portugal)
2016-07-15 10:12Distribution SiteLocky
bbvogliadimare.it
WIDE-REG217.73.226.220 (- Italy)
2016-07-15 10:11Distribution SiteLocky
uitindrachten.nl
Mihosnet109.237.208.32 (- Netherlands)
2016-07-15 10:11Distribution SiteLocky
300tomoli.it
WIDE-REG (n/a)

# of rows displayed: 100
# of entries in database: 13'867

Page 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 >