Contact
Statistics
Feeds
Blocklist
Tracker
Mitigation
Home
  1. Main › 
  2. Tracker

Tracker

Ransomware Tracker to distinguishes between the following threats:

Each entry in Ransomware Tracker is tagged to a threat and a malware. Currently, the following Ransomware families are tracked:

New submissions for Ransomware Tracker are warmly welcome. You can send new additions to rt-RintANel@abuse.ch (remove all letters in uppercase). Malware binaries that you suspect to be associated with a certain Ransomware family can be send to rt-malwSOareM@abuse.ch (remove all letters in uppercase) for analysis.

Search

You can search for a host or URL using the following search form:

Set a filter for the list below

Below is a list of Ransomware botnet C&C servers tracked by Ransomware Tracker. You have the possibility to filter the list below using certain pre-defined filters shown below.

General filters: Remove filter (Show all) | Online hosts
Filter by threat: Botnet C&Cs | Payment Sites | Distribution Sites
Filter by malware: TeslaCrypt | CryptoWall | TorrentLocker | PadCrypt | Locky | CTB-Locker | FAKBEN | PayCrypt | DMALocker | Cerber | Sage | GlobeImposter

Dateadded (UTC)ThreatMalwareHost (?Domain name or IP address used by the Ransomware. The leading dots (Red, Green, Grey) indicate whether the Host is active or not.

Red = Online
Green = Offline
Grey = Unknown)		Domain Registrar (?In some cases Ransomware Tracker is not able to determine the sponsoring Registrar of a domain name. Thats either because the Registry does not reveal this information in the whois or because the Registry doesn't offer a whois service.)IP address (ASN, Country)
2016-10-03 10:26Distribution SiteLocky
rosewong.com		PDR LTD. D/B/A PUBLICDOMAINREGIS[...]216.239.32.21 (- United States) +3 A record(s) 216.239.34.21 (AS15169, - United States)
216.239.36.21 (AS15169, - United States)
216.239.38.21 (AS15169, - United States)
2016-10-03 10:26Distribution SiteLocky
medicangka.com		PAKNIC (PRIVATE) LIMITED184.105.192.2 (- United States)
2016-10-03 10:25Distribution SiteLocky
shinipri.com		ONLINENIC, INC. (n/a)
2016-10-03 10:25Distribution SiteLocky
louisirby.com		ONLINENIC, INC.50.116.19.249 (- United States)
2016-10-03 10:25Distribution SiteLocky
yuzhuyuan.com		HICHINA ZHICHENG TECHNOLOGY LTD.156.224.40.17 (- South Africa)
2016-10-03 10:25Distribution SiteLocky
ferumusky.com		PAKNIC (PRIVATE) LIMITED184.105.192.2 (- United States)
2016-10-03 10:25Distribution SiteLocky
welsell.com		ENOM, INC.68.65.120.219 (- United States)
2016-10-03 10:24Distribution SiteLocky
honeine.com		FASTDOMAIN, INC.162.241.216.56 (- United States)
2016-10-03 10:24Distribution SiteLocky
demo.academia-moscow.ru		RU-CENTER-RU62.213.68.172 (- Russian Federation)
2016-10-03 10:23Distribution SiteLocky
vipmarketing.co.il		23.236.62.147 (- United States)
2016-10-03 10:23Distribution SiteLocky
joplinglobeonline.com		TUCOWS DOMAINS INC.12.160.112.27 (- United States)
2016-10-03 10:23Distribution SiteLocky
jetxaviation.com		TUCOWS DOMAINS INC.91.136.49.102 (- United Kingdom)
2016-10-03 10:23Distribution SiteLocky
mrwebdirectory.net		ENOM, INC.93.119.153.41 (- Romania)
2016-10-03 10:22Distribution SiteLocky
crossroadspd.com		TUCOWS DOMAINS INC.208.71.139.66 (- United States)
2016-10-03 10:22Distribution SiteLocky
medicangka.com		PAKNIC (PRIVATE) LIMITED184.105.192.2 (- United States)
2016-10-03 10:21Distribution SiteLocky
arcworks.ca		Promo People Inc.69.90.66.210 (- United States)
2016-10-03 10:21Distribution SiteLocky
dangras.net		PAKNIC (PRIVATE) LIMITED184.105.192.2 (- United States)
2016-10-03 10:20Distribution SiteLocky
superoriente.com		REGISTER.COM, INC.200.13.249.8 (- Colombia)
2016-10-03 10:20Distribution SiteLocky
mucicsitta.net		KEY-SYSTEMS GMBH (n/a)
2016-10-03 10:20Distribution SiteLocky
anthonycarducci.lawyerpublicity.com		GODADDY.COM, LLC162.215.248.207 (- United States)
2016-10-03 10:20Distribution SiteLocky
p2pbikini.com		MAT BAO TRADING & SERVICE COMPAN[...] (n/a)
2016-10-03 10:20Distribution SiteLocky
ferumusky.com		PAKNIC (PRIVATE) LIMITED184.105.192.2 (- United States)
2016-10-03 10:19Distribution SiteLocky
5v5.net		NAME.COM, INC. (n/a)
2016-10-03 10:19Distribution SiteLocky
nonprofitbenefit.com		ONLINENIC, INC.204.11.56.48 (- Virgin Islands)
2016-10-03 10:19Distribution SiteLocky
hoamiu.info		Name.com LLC (n/a)
2016-10-03 10:19Distribution SiteLocky
klipink.com		PDR LTD. D/B/A PUBLICDOMAINREGIS[...]103.31.233.232 (- Indonesia)
2016-10-03 10:18Distribution SiteLocky
dangras.net		PAKNIC (PRIVATE) LIMITED184.105.192.2 (- United States)
2016-10-03 10:18Distribution SiteLocky
rondeaho.com		KEY-SYSTEMS GMBH (n/a)
2016-10-03 10:18Distribution SiteLocky
ferumusky.com		PAKNIC (PRIVATE) LIMITED184.105.192.2 (- United States)
2016-10-03 10:18Distribution SiteLocky
vinabuhmwoo.com		ONLINENIC, INC. (n/a)
2016-10-03 09:51Distribution SiteLocky
new2.aaomg.com		GODADDY.COM, LLC162.215.248.207 (- United States)
2016-10-03 09:51Distribution SiteLocky
mucicsitta.net		KEY-SYSTEMS GMBH (n/a)
2016-10-03 09:50Distribution SiteLocky
ferumusky.com		PAKNIC (PRIVATE) LIMITED184.105.192.2 (- United States)
2016-10-03 09:49Distribution SiteLocky
icdsarch.com		TUCOWS DOMAINS INC. (n/a)
2016-10-03 09:48Distribution SiteLocky
glosalonline.com		ENOM, INC. (n/a)
2016-10-03 09:48Distribution SiteLocky
hrbqcc.com		HICHINA ZHICHENG TECHNOLOGY LTD.125.211.217.121 (- China)
2016-10-03 09:47Distribution SiteLocky
cedrussauna.com		GODADDY.COM, LLC162.215.248.207 (- United States)
2016-10-03 09:47Distribution SiteLocky
acaciainvest.ro		ICI - ROTLD (n/a)
2016-10-03 09:47Distribution SiteLocky
test.cedrussauna.net		GODADDY.COM, LLC (n/a)
2016-10-03 09:47Distribution SiteLocky
far-infraredsaunas.com		GODADDY.COM, LLC162.215.248.207 (- United States)
2016-10-03 09:46Distribution SiteLocky
boservice.info		Tucows Domains Inc.77.79.239.195 (- Poland)
2016-10-03 09:46Distribution SiteLocky
antiquescollectablesandjuststuff.com		TUCOWS DOMAINS INC. (n/a)
2016-10-03 09:45Distribution SiteLocky
ifsaiumumi.com		NICS TELEKOMUNIKASYON TIC LTD. S[...] (n/a)
2016-10-03 09:45Distribution SiteLocky
dickenshandchimes.com		GODADDY.COM, LLC162.215.248.207 (- United States)
2016-10-03 09:45Distribution SiteLocky
arabhashtag.com		NAME.COM, INC.23.20.239.12 (- United States)
2016-10-03 09:44Distribution SiteLocky
yogajourneyretreat.com		ENOM, INC. (n/a)
2016-10-03 09:44Distribution SiteLocky
craftsreviews.com		ENOM, INC.23.20.239.12 (- United States)
2016-10-03 09:43Distribution SiteLocky
lesscellantshautegamme.ca		Tucows.com Co.173.192.139.27 (- United States)
2016-10-03 09:43Distribution SiteLocky
orhangazitur.com		FBS INC.109.232.220.235 (- Turkey)
2016-10-03 09:42Distribution SiteLocky
monkeysdragon.net		FASTDOMAIN, INC. (n/a)
2016-10-03 09:40Distribution SiteLocky
webhost911.com		GODADDY.COM, LLC204.11.56.48 (- Virgin Islands)
2016-10-03 09:39Distribution SiteLocky
villadiana.lv		 (n/a)
2016-10-03 09:39Distribution SiteLocky
catlong.com		P.A. VIET NAM COMPANY LIMITED112.213.86.196 (- Vietnam)
2016-10-03 09:38Distribution SiteLocky
atronis.com		FASTDOMAIN, INC.74.220.219.133 (- United States)
2016-10-03 09:27Distribution SiteLocky
tsukasagiku.com		GMO INTERNET, INC. DBA ONAMAE.CO[...] (n/a)
2016-10-03 09:25Distribution SiteLocky
gcandcbuilderssite.aaomg.com		GODADDY.COM, LLC162.215.248.207 (- United States)
2016-10-03 09:25Distribution SiteLocky
maxleather.aaomg.com		GODADDY.COM, LLC162.215.248.207 (- United States)
2016-10-03 09:24Distribution SiteLocky
bluewaterappco.com		1&1 INTERNET SE (n/a)
2016-10-03 09:23Distribution SiteLocky
mmm2.aaomg.com		GODADDY.COM, LLC162.215.248.207 (- United States)
2016-10-03 09:23Distribution SiteLocky
parkerneem.com		JAPAN REGISTRY SERVICES CO., LTD[...] (n/a)
2016-10-03 09:22Distribution SiteLocky
inmopromo.com		ACENS TECHNOLOGIES, S.L.U.185.50.196.212 (- Spain)
2016-10-03 09:21Distribution SiteLocky
denvertracy.com		GODADDY.COM, LLC151.101.64.119 (- United States)
2016-10-03 06:28Payment SiteCerber
4kqd3hmqgptupi3p.5b4ej6.bid		Eranet International Limited (n/a)
2016-10-03 03:09Payment SiteCerber
52uo5k3t73ypjije.50cs7p.bid		Eranet International Limited (n/a)
2016-10-02 10:34Payment SiteCerber
4kqd3hmqgptupi3p.goodslet.win		Alpnames Limited (n/a)
2016-10-01 13:03Payment SiteCerber
wjtqjleommc4z46i.993hev.bid		Eranet International Limited (n/a)
2016-10-01 12:43Payment SiteCerber
unocl45trpuoefft.88wz5p.bid		Eranet International Limited (n/a)
2016-10-01 12:29Payment SiteCerber
unocl45trpuoefft.7tooul.bid		Eranet International Limited (n/a)
2016-10-01 11:35Payment SiteCerber
52uo5k3t73ypjije.8rrxd9.bid		Eranet International Limited (n/a)
2016-10-01 09:30Payment SiteCerber
52uo5k3t73ypjije.x9a6yb.bid		Eranet International Limited (n/a)
2016-09-30 17:02Payment SiteCerber
unocl45trpuoefft.jnd0bj.bid		Eranet International Limited (n/a)
2016-09-30 12:04Distribution SiteLocky
purebanquet.com		GODADDY.COM, LLC (n/a)
2016-09-30 12:04Distribution SiteLocky
binhminh-group.com		ONLINENIC, INC.42.112.36.73 (- Vietnam)
2016-09-30 12:04Distribution SiteLocky
theweekwines.com		CSC CORPORATE DOMAINS, INC.23.227.38.32 (- Canada)
2016-09-30 12:04Distribution SiteLocky
endwithcare.org		GoDaddy.com, LLC23.229.131.166 (- United States)
2016-09-30 12:03Distribution SiteLocky
bushidotactical.com		GODADDY.COM, LLC64.78.222.79 (- United States)
2016-09-30 12:03Distribution SiteLocky
serwing.com		GODADDY.COM, LLC172.107.145.25 (- United States)
2016-09-30 12:03Distribution SiteLocky
unityquire.com		PAKNIC (PRIVATE) LIMITED184.105.192.2 (- United States)
2016-09-30 12:03Distribution SiteLocky
karacanalbum.com		FBS INC.185.86.13.202 (- Turkey)
2016-09-30 12:03Distribution SiteLocky
hotelikbej.pl		AZ.pl Sp. z o.o.91.219.209.166 (- Poland)
2016-09-30 12:03Distribution SiteLocky
travelnesia.net		HOSTINGER UAB (n/a)
2016-09-30 12:03Distribution SiteLocky
judgedeborahshallcross.com		NETWORK SOLUTIONS, LLC. (n/a)
2016-09-30 12:03Distribution SiteLocky
techscape4.com		ENOM, INC.118.98.75.66 (- Indonesia)
2016-09-30 12:02Distribution SiteLocky
localxmobi.com		GODADDY.COM, LLC198.100.149.32 (- Canada)
2016-09-30 12:02Distribution SiteLocky
puchipuchivirus.com		ENOM, INC.23.254.240.58 (- United States)
2016-09-30 12:02Distribution SiteLocky
fungasoap.net		TUCOWS DOMAINS INC. (n/a)
2016-09-30 12:02Distribution SiteLocky
asotelepathology.org		Register.com, Inc.50.63.202.42 (- United States)
2016-09-30 12:01Distribution SiteLocky
unityquire.com		PAKNIC (PRIVATE) LIMITED184.105.192.2 (- United States)
2016-09-30 12:01Distribution SiteLocky
iambestone.com		KEY-SYSTEMS GMBH (n/a)
2016-09-30 12:01Distribution SiteLocky
ecoledesalsa.com		GODADDY.COM, LLC192.186.239.68 (- United States)
2016-09-30 12:01Distribution SiteLocky
australiandesignerweddings.com		CRAZY DOMAINS FZ-LLC198.46.89.61 (- United States)
2016-09-30 12:01Distribution SiteLocky
juleswham.com		KEY-SYSTEMS GMBH (n/a)
2016-09-30 12:00Distribution SiteLocky
unityquire.com		PAKNIC (PRIVATE) LIMITED184.105.192.2 (- United States)
2016-09-30 12:00Distribution SiteLocky
amsterdamrent.com		GODADDY.COM, LLC (n/a)
2016-09-30 12:00Distribution SiteLocky
sudep-registry.org		eNom, Inc.198.185.159.144 (- United States) +3 A record(s) 198.185.159.145 (AS53831, - United States)
198.49.23.144 (AS53831, - United States)
198.49.23.145 (AS53831, - United States)
2016-09-30 11:59Distribution SiteLocky
resboiu.ro		ICI - ROTLD89.44.138.57 (- Romania)
2016-09-30 11:59Distribution SiteLocky
relaywebsample.com		INTERNET DOMAIN SERVICE BS CORP (n/a)
2016-09-30 11:59Distribution SiteLocky
copsro.sk		217.67.30.55 (- Slovakia)
2016-09-30 11:59Distribution SiteLocky
clsss.ru		R01-RU (n/a)
2016-09-30 11:59Distribution SiteLocky
extramileteam.com		GODADDY.COM, LLC184.168.131.241 (- United States)

# of rows displayed: 100
# of entries in database: 13'865

Page 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 >

Copyright © 2016 ransomwaretracker.abuse.ch version 1.0 / 2016-02-21