Tracker

Ransomware Tracker to distinguishes between the following threats:

Each entry in Ransomware Tracker is tagged to a threat and a malware. Currently, the following Ransomware families are tracked:

New submissions for Ransomware Tracker are warmly welcome. You can send new additions to rt-RintANel@abuse.ch (remove all letters in uppercase). Malware binaries that you suspect to be associated with a certain Ransomware family can be send to rt-malwSOareM@abuse.ch (remove all letters in uppercase) for analysis.

Search

You can search for a host or URL using the following search form:

Set a filter for the list below

Below is a list of Ransomware botnet C&C servers tracked by Ransomware Tracker. You have the possibility to filter the list below using certain pre-defined filters shown below.

General filters: Remove filter (Show all) | Online hosts
Filter by threat: Botnet C&Cs | Payment Sites | Distribution Sites
Filter by malware: TeslaCrypt | CryptoWall | TorrentLocker | PadCrypt | Locky | CTB-Locker | FAKBEN | PayCrypt | DMALocker | Cerber | Sage | GlobeImposter

Dateadded (UTC)ThreatMalwareHost (?Domain name or IP address used by the Ransomware. The leading dots (Red, Green, Grey) indicate whether the Host is active or not.

Red = Online
Green = Offline
Grey = Unknown
)
Domain Registrar (?In some cases Ransomware Tracker is not able to determine the sponsoring Registrar of a domain name. Thats either because the Registry does not reveal this information in the whois or because the Registry doesn't offer a whois service.)IP address (ASN, Country)
2016-09-16 13:48Distribution SiteLocky
junhao8.com
HICHINA ZHICHENG TECHNOLOGY LTD.154.95.222.62 (- United States)
2016-09-16 13:48Payment SiteCerber
52uo5k3t73ypjije.o9w43w.bid
Eranet International Limited (n/a)
2016-09-16 13:39Distribution SiteLocky
lexagora.it
REGISTER-REG5.135.179.42 (- France)
2016-09-16 12:25Distribution SiteLocky
swivelsrus.com
DOMAINPEOPLE, INC.64.41.88.104 (- United States)
2016-09-16 12:25Distribution SiteLocky
demo.website.pl
Consulting Service Sp. z o.o.193.218.152.246 (- Poland)
2016-09-16 12:24Distribution SiteLocky
all4supply.com
LIGNE WEB SERVICES SARL DBA LWS91.92.111.112 (- Bulgaria)
2016-09-16 12:23Distribution SiteLocky
malamalamak9.net
NAMESECURE.COM (n/a)
2016-09-16 12:23Distribution SiteLocky
samenart.com
ONLINENIC, INC.5.63.8.245 (- Iran)
2016-09-16 12:22Distribution SiteLocky
curlysol.com
NAMESILO, LLC23.229.73.4 (- United States)
2016-09-16 12:22Distribution SiteLocky
24hourprintshop.com
ENOM, INC. (n/a)
2016-09-16 12:22Distribution SiteLocky
islamiccollege.org
Tucows Inc. (n/a)
2016-09-16 12:20Distribution SiteLocky
sds-india.org
GoDaddy.com, LLC (n/a)
2016-09-16 12:20Distribution SiteLocky
paraspokeri.net
GODADDY.COM, LLC213.175.200.150 (- United Kingdom)
2016-09-16 12:20Distribution SiteLocky
chelsea-west.com
NETOWL, INC.157.112.176.54 (- Japan)
2016-09-16 12:19Distribution SiteLocky
sadeqmedia.com
TUCOWS DOMAINS INC. (n/a)
2016-09-16 12:17Distribution SiteLocky
helpmybathroom.com
GODADDY.COM, LLC184.168.131.241 (- United States)
2016-09-16 12:16Distribution SiteLocky
b-creative.be
Registrar.eu213.136.26.181 (- Netherlands)
2016-09-16 12:15Distribution SiteLocky
salemwitchcat.com
GODADDY.COM, LLC45.250.175.90 (- Hong Kong)
2016-09-16 12:14Distribution SiteLocky
hollystamps.com
TUCOWS DOMAINS INC. (n/a)
2016-09-16 12:14Distribution SiteLocky
urachart.com
ONLINENIC, INC. (n/a)
2016-09-16 12:14Distribution SiteLocky
46709394.com
ENOM, INC.117.18.114.35 (- Hong Kong)
2016-09-16 12:14Distribution SiteLocky
yerndrunk.net
WEB COMMERCE COMMUNICATIONS LIMI[...] (n/a)
2016-09-16 12:13Distribution SiteLocky
lv-nexis.com
IP MIRROR PTE LTD. DBA IP MIRROR103.104.196.34 (- Singapore)
2016-09-16 12:13Distribution SiteLocky
miamilimosina.com
GODADDY.COM, LLC (n/a)
2016-09-16 12:13Distribution SiteLocky
shopmjn.com
MARKMONITOR INC. (n/a)
2016-09-16 12:12Distribution SiteLocky
mclodesigns.com
GODADDY.COM, LLC148.72.1.119 (- United States)
2016-09-16 12:12Distribution SiteLocky
inovsol.com
LIQUIDNET LTD. (n/a)
2016-09-16 12:11Distribution SiteLocky
all4supply.com
LIGNE WEB SERVICES SARL DBA LWS91.92.111.112 (- Bulgaria)
2016-09-16 12:11Distribution SiteLocky
wordpresshosting.co.il
(n/a)
2016-09-16 12:11Distribution SiteLocky
travelvoice.com
NETWORK SOLUTIONS, LLC.223.130.24.150 (- Australia)
2016-09-16 12:09Distribution SiteLocky
psychquiz.com
GODADDY.COM, LLC (n/a)
2016-09-16 12:08Distribution SiteLocky
honeydavis.us
GODADDY.COM, INC. (n/a)
2016-09-16 12:08Distribution SiteLocky
sinergica.cl
104.27.176.220 (- United States) +1 A record(s) 104.27.177.220 (AS13335, - United States)
2016-09-16 12:07Distribution SiteLocky
maggycocoa.net
WEB COMMERCE COMMUNICATIONS LIMI[...] (n/a)
2016-09-16 12:07Distribution SiteLocky
rentvspb.ru
RU-CENTER-RU91.214.71.3 (- Russian Federation)
2016-09-16 12:06Distribution SiteLocky
adityastar.com
GODADDY.COM, LLC (n/a)
2016-09-16 12:05Distribution SiteLocky
tobybender.com
TUCOWS DOMAINS INC. (n/a)
2016-09-16 12:04Distribution SiteLocky
qarmoo.com
ENOM, INC. (n/a)
2016-09-16 12:04Distribution SiteLocky
jsydjc.com
WEB COMMERCE COMMUNICATIONS LIMI[...] (n/a)
2016-09-16 12:04Distribution SiteLocky
apro88.com
ENOM, INC.67.231.248.250 (- United States)
2016-09-16 12:03Distribution SiteLocky
mudelts.com
GODADDY.COM, LLC184.168.221.51 (- United States)
2016-09-16 12:03Distribution SiteLocky
graveyardsofmilwaukee.org
Domain.com, LLC69.41.190.145 (- United States)
2016-09-16 12:02Distribution SiteLocky
bsm.sk
80.94.52.76 (- Slovakia)
2016-09-16 11:28Distribution SiteLocky
yerndrunk.net
WEB COMMERCE COMMUNICATIONS LIMI[...] (n/a)
2016-09-16 11:26Distribution SiteLocky
bulkreasy.com
KEY-SYSTEMS GMBH (n/a)
2016-09-16 11:26Distribution SiteLocky
swivelsrus.com
DOMAINPEOPLE, INC.64.41.88.104 (- United States)
2016-09-16 11:25Distribution SiteLocky
helpmybathroom.com
GODADDY.COM, LLC184.168.131.241 (- United States)
2016-09-16 11:25Distribution SiteLocky
mclodesigns.com
GODADDY.COM, LLC148.72.1.119 (- United States)
2016-09-16 11:25Distribution SiteLocky
jsydjc.com
WEB COMMERCE COMMUNICATIONS LIMI[...] (n/a)
2016-09-16 11:24Distribution SiteLocky
sinergica.cl
104.27.176.220 (- United States) +1 A record(s) 104.27.177.220 (AS13335, - United States)
2016-09-16 11:24Distribution SiteLocky
shopmjn.com
MARKMONITOR INC. (n/a)
2016-09-16 11:23Distribution SiteLocky
travelvoice.com
NETWORK SOLUTIONS, LLC.223.130.24.150 (- Australia)
2016-09-16 11:23Distribution SiteLocky
alexandrkireev.ru
REGRU-RU (n/a)
2016-09-16 11:23Distribution SiteLocky
bulkreasy.com
KEY-SYSTEMS GMBH (n/a)
2016-09-16 11:22Distribution SiteLocky
xsolution.sk
(n/a)
2016-09-16 11:22Distribution SiteLocky
yerndrunk.net
WEB COMMERCE COMMUNICATIONS LIMI[...] (n/a)
2016-09-16 11:21Distribution SiteLocky
maggycocoa.net
WEB COMMERCE COMMUNICATIONS LIMI[...] (n/a)
2016-09-16 11:21Distribution SiteLocky
hollystamps.com
TUCOWS DOMAINS INC. (n/a)
2016-09-16 11:20Distribution SiteLocky
psychquiz.com
GODADDY.COM, LLC (n/a)
2016-09-16 11:20Distribution SiteLocky
maggycocoa.net
WEB COMMERCE COMMUNICATIONS LIMI[...] (n/a)
2016-09-16 11:20Distribution SiteLocky
yerndrunk.net
WEB COMMERCE COMMUNICATIONS LIMI[...] (n/a)
2016-09-16 11:19Distribution SiteLocky
aeroptim.com
ENOM, INC.109.234.161.45 (- France)
2016-09-16 11:19Distribution SiteLocky
sanalnet.org
OnlineNIC Inc.188.124.5.33 (- Turkey)
2016-09-16 11:18Distribution SiteLocky
lv-nexis.com
IP MIRROR PTE LTD. DBA IP MIRROR103.104.196.34 (- Singapore)
2016-09-16 11:18Distribution SiteLocky
tobybender.com
TUCOWS DOMAINS INC. (n/a)
2016-09-16 11:18Distribution SiteLocky
bulkreasy.com
KEY-SYSTEMS GMBH (n/a)
2016-09-16 11:17Distribution SiteLocky
paraspokeri.net
GODADDY.COM, LLC213.175.200.150 (- United Kingdom)
2016-09-16 11:17Distribution SiteLocky
inovsol.com
LIQUIDNET LTD. (n/a)
2016-09-16 11:16Distribution SiteLocky
gumorca.com
NEUBOX INTERNET SA DE CV199.191.50.140 (- Virgin Islands)
2016-09-16 11:16Distribution SiteLocky
markanltd.com
DOMAIN.COM, LLC109.232.217.151 (- Turkey)
2016-09-16 11:16Distribution SiteLocky
turkmennews.com
FBS INC.93.89.226.17 (- Cyprus)
2016-09-16 11:16Distribution SiteLocky
islamiccollege.org
Tucows Inc. (n/a)
2016-09-16 11:16Distribution SiteLocky
rentvspb.ru
RU-CENTER-RU91.214.71.3 (- Russian Federation)
2016-09-16 11:15Distribution SiteLocky
yerndrunk.net
WEB COMMERCE COMMUNICATIONS LIMI[...] (n/a)
2016-09-16 11:14Distribution SiteLocky
bulkreasy.com
KEY-SYSTEMS GMBH (n/a)
2016-09-16 11:14Distribution SiteLocky
salemwitchcat.com
GODADDY.COM, LLC45.250.175.90 (- Hong Kong)
2016-09-16 11:14Distribution SiteLocky
samenart.com
ONLINENIC, INC.5.63.8.245 (- Iran)
2016-09-16 11:14Distribution SiteLocky
maggycocoa.net
WEB COMMERCE COMMUNICATIONS LIMI[...] (n/a)
2016-09-16 11:14Distribution SiteLocky
nipeldogalgaz.com
PDR LTD. D/B/A PUBLICDOMAINREGIS[...]77.245.154.98 (- Turkey)
2016-09-16 11:13Distribution SiteLocky
mahovik-bg.com
ENOM, INC.209.200.154.50 (- United States)
2016-09-16 11:13Distribution SiteLocky
fgspro.com
ONLINENIC, INC.91.206.226.84 (- Ukraine)
2016-09-16 11:12Distribution SiteLocky
bulkreasy.com
KEY-SYSTEMS GMBH (n/a)
2016-09-16 11:12Distribution SiteLocky
maggycocoa.net
WEB COMMERCE COMMUNICATIONS LIMI[...] (n/a)
2016-09-16 11:12Distribution SiteLocky
demo.website.pl
Consulting Service Sp. z o.o.193.218.152.246 (- Poland)
2016-09-16 08:01Payment SiteCerber
wjtqjleommc4z46i.z97f9v.bid
Eranet International Limited (n/a)
2016-09-16 07:37Payment SiteCerber
4kqd3hmqgptupi3p.1zp109.bid
Eranet International Limited (n/a)
2016-09-16 05:01Payment SiteCerber
unocl45trpuoefft.nmit4p.bid
Eranet International Limited (n/a)
2016-09-16 01:33Payment SiteCerber
4kqd3hmqgptupi3p.inforcing.pw
AlpNames Limited141.8.226.58 (- Switzerland)
2016-09-16 01:10Payment SiteCerber
52uo5k3t73ypjije.xjb384.bid
Eranet International Limited (n/a)
2016-09-16 00:49Payment SiteCerber
unocl45trpuoefft.bjahwh.bid
Eranet International Limited (n/a)
2016-09-15 21:31Payment SiteCerber
52uo5k3t73ypjije.aclox4.bid
Eranet International Limited (n/a)
2016-09-15 21:25Payment SiteCerber
unocl45trpuoefft.hyr1h3.bid
Eranet International Limited (n/a)
2016-09-15 20:01Payment SiteCerber
unocl45trpuoefft.hur45z.bid
Eranet International Limited (n/a)
2016-09-15 19:04Payment SiteCerber
wjtqjleommc4z46i.cc0r87.bid
Eranet International Limited (n/a)
2016-09-15 16:08Payment SiteCerber
unocl45trpuoefft.ytbyhs.bid
Eranet International Limited (n/a)
2016-09-15 15:28Payment SiteCerber
unocl45trpuoefft.rgbb50.bid
Eranet International Limited (n/a)
2016-09-15 11:36Payment SiteCerber
4kqd3hmqgptupi3p.endsdoubt.loan
Alpnames Limited (n/a)
2016-09-15 11:32Distribution SiteLocky
mika.tohmon.com
NETWORK SOLUTIONS, LLC.216.177.130.19 (- United States)
2016-09-15 11:32Distribution SiteLocky
insideinsights.net
WILD WEST DOMAINS, LLC23.229.175.169 (- United States)
2016-09-15 11:32Distribution SiteLocky
fenwaycourier.com
WEB COMMERCE COMMUNICATIONS LIMI[...] (n/a)

# of rows displayed: 100
# of entries in database: 13'867

Page 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 >