Tracker

Ransomware Tracker to distinguishes between the following threats:

Each entry in Ransomware Tracker is tagged to a threat and a malware. Currently, the following Ransomware families are tracked:

New submissions for Ransomware Tracker are warmly welcome. You can send new additions to rt-RintANel@abuse.ch (remove all letters in uppercase). Malware binaries that you suspect to be associated with a certain Ransomware family can be send to rt-malwSOareM@abuse.ch (remove all letters in uppercase) for analysis.

Search

You can search for a host or URL using the following search form:

Set a filter for the list below

Below is a list of Ransomware botnet C&C servers tracked by Ransomware Tracker. You have the possibility to filter the list below using certain pre-defined filters shown below.

General filters: Remove filter (Show all) | Online hosts
Filter by threat: Botnet C&Cs | Payment Sites | Distribution Sites
Filter by malware: TeslaCrypt | CryptoWall | TorrentLocker | PadCrypt | Locky | CTB-Locker | FAKBEN | PayCrypt | DMALocker | Cerber | Sage | GlobeImposter

Dateadded (UTC)ThreatMalwareHost (?Domain name or IP address used by the Ransomware. The leading dots (Red, Green, Grey) indicate whether the Host is active or not.

Red = Online
Green = Offline
Grey = Unknown
)
Domain Registrar (?In some cases Ransomware Tracker is not able to determine the sponsoring Registrar of a domain name. Thats either because the Registry does not reveal this information in the whois or because the Registry doesn't offer a whois service.)IP address (ASN, Country)
2016-09-14 13:21Distribution SiteLocky
shawnbrothers.com
GODADDY.COM, LLC174.127.105.141 (- United States)
2016-09-14 13:20Distribution SiteLocky
deligoods.com
HOSTING CONCEPTS B.V. D/B/A OPEN[...]185.14.57.93 (- Spain)
2016-09-14 11:50Distribution SiteLocky
janie-royce.com
FASTDOMAIN, INC. (n/a)
2016-09-14 11:50Distribution SiteLocky
nas.com.eg
104.31.14.184 (- United States) +1 A record(s) 104.31.15.184 (AS13335, - United States)
2016-09-14 11:50Distribution SiteLocky
dropsheep.com
TUCOWS DOMAINS INC.62.94.11.253 (- Italy)
2016-09-14 11:49Distribution SiteLocky
bostonbruinsfan.net
FASTDOMAIN, INC.74.220.199.8 (- United States)
2016-09-14 11:49Distribution SiteLocky
cramjuice.com
GODADDY.COM, LLC204.11.56.48 (- Virgin Islands)
2016-09-14 11:49Distribution SiteLocky
infosors.com
ENOM, INC.69.65.3.251 (- United States)
2016-09-14 11:49Distribution SiteLocky
agetsoft.com
DOTNAME KOREA CORP (n/a)
2016-09-14 11:48Distribution SiteLocky
old-sinks.com
GODADDY.COM, LLC107.180.51.27 (- United States)
2016-09-14 11:48Distribution SiteLocky
kafemar.com
FBS INC.185.149.101.248 (- Turkey)
2016-09-14 11:48Distribution SiteLocky
rentmanager.ph
72.52.179.175 (- United States)
2016-09-14 11:48Distribution SiteLocky
thermalthermostat.com
GODADDY.COM, LLC23.229.183.136 (- United States)
2016-09-14 11:47Distribution SiteLocky
mediainnovationtech.com
GODADDY.COM, LLC204.11.56.48 (- Virgin Islands)
2016-09-14 11:47Distribution SiteLocky
vinaxanh.com
ONLINENIC, INC.112.213.94.125 (- Vietnam)
2016-09-14 11:46Distribution SiteLocky
asunaz.com
NAMESILO, LLC (n/a)
2016-09-14 11:45Distribution SiteLocky
allchannel.net
GODADDY.COM, LLC (n/a)
2016-09-14 11:44Distribution SiteLocky
cic-integration.com
ENOM, INC.202.67.9.246 (- Indonesia)
2016-09-14 11:44Distribution SiteLocky
amicentng.com
ACTIVE REGISTRAR, INC.207.210.200.135 (- United States)
2016-09-14 11:43Distribution SiteLocky
harrisonboileau.com
GODADDY.COM, LLC185.119.173.181 (- United Kingdom)
2016-09-14 11:43Distribution SiteLocky
creditvalleyca.ca
eNom Canada Corp.50.28.10.129 (- United States)
2016-09-14 11:43Distribution SiteLocky
twdct.com
GODADDY.COM, LLC192.74.245.187 (- United States)
2016-09-14 11:42Distribution SiteLocky
msayin.com
PDR LTD. D/B/A PUBLICDOMAINREGIS[...]188.124.5.33 (- Turkey)
2016-09-14 11:42Distribution SiteLocky
morerevista.com
ENOM, INC.192.186.135.74 (- United States)
2016-09-14 11:42Distribution SiteLocky
eupos.org
PDR Ltd. d/b/a PublicDomainRegis[...]85.10.254.98 (- Germany)
2016-09-14 11:42Distribution SiteLocky
elvox.pl
nazwa.pl sp. z o.o.81.2.195.145 (- Czech Republic)
2016-09-14 11:41Distribution SiteLocky
cghponyclub.com
ENOM, INC. (n/a)
2016-09-14 11:41Distribution SiteLocky
jonathankimsey.com
TUCOWS DOMAINS INC.198.49.23.144 (- United States)
2016-09-14 11:41Distribution SiteLocky
joydetergent.com
GODADDY.COM, LLC173.57.204.44 (- United States)
2016-09-14 11:41Distribution SiteLocky
sexturbo.ru
REGRU-RU (n/a)
2016-09-14 11:41Distribution SiteLocky
amaranthine-deerplacenta.com
SHINJIRU MSC SDN BHD (n/a)
2016-09-14 11:40Distribution SiteLocky
thcsgoxoai.com
ENOM, INC. (n/a)
2016-09-14 11:40Distribution SiteLocky
lifeforbody.com
GODADDY.COM, LLC67.227.156.32 (- United States)
2016-09-14 11:40Distribution SiteLocky
teksunrobot.com
HICHINA ZHICHENG TECHNOLOGY LTD.119.29.144.76 (- China)
2016-09-14 11:40Distribution SiteLocky
kinabalustudios.com
SHINJIRU MSC SDN BHD103.72.163.13 (- Malaysia)
2016-09-14 11:40Distribution SiteLocky
stratageeks.com
ENOM, INC.162.241.194.56 (- United States)
2016-09-14 11:40Distribution SiteLocky
directdesignsny.com
GODADDY.COM, LLC107.180.50.238 (- United States)
2016-09-14 11:39Distribution SiteLocky
loansbypeople.com
ASCIO TECHNOLOGIES, INC. DANMARK[...] (n/a)
2016-09-14 11:39Distribution SiteLocky
mayuliang.com
1&1 INTERNET SE69.65.28.126 (- United States)
2016-09-14 11:39Distribution SiteLocky
cyborgminds.com
FASTDOMAIN, INC. (n/a)
2016-09-14 11:39Distribution SiteLocky
tenalpsebooks.com
DEMYS LIMITED209.97.176.71 (- United States)
2016-09-14 11:39Distribution SiteLocky
liyuesheng.com
HICHINA ZHICHENG TECHNOLOGY LTD.154.210.174.108 (- United States)
2016-09-14 11:38Distribution SiteLocky
adventurevista.com
ENOM, INC.204.11.56.48 (- Virgin Islands)
2016-09-14 11:38Distribution SiteLocky
subuys.com
1&1 INTERNET SE74.220.199.8 (- United States)
2016-09-14 11:37Distribution SiteLocky
roome.co.il
192.124.249.165 (- United States)
2016-09-14 11:37Distribution SiteLocky
miprimercole.org
PlanetDomain Pty Ltd5.39.82.224 (- France)
2016-09-14 11:37Distribution SiteLocky
kristinchurch.ca
Promo People Inc.70.33.241.150 (- United States)
2016-09-14 11:37Distribution SiteLocky
ygc1688.com
HICHINA ZHICHENG TECHNOLOGY LTD.115.159.122.40 (- China)
2016-09-14 11:37Distribution SiteLocky
olevendingcanarias.com
SOLUCIONES CORPORATIVAS IP, SL139.162.216.32 (- United Kingdom)
2016-09-14 11:36Distribution SiteLocky
outformat.com
GODADDY.COM, LLC204.11.56.48 (- Virgin Islands)
2016-09-14 11:36Distribution SiteLocky
1jamprofit.com
ENOM, INC.101.50.1.11 (- Indonesia)
2016-09-14 11:36Distribution SiteLocky
onlypost.ru
RU-CENTER-RU (n/a)
2016-09-14 02:19Payment SiteCerber
4kqd3hmqgptupi3p.asfall.in
Endurance Domains Technology Pvt[...] (n/a)
2016-09-14 01:22Payment SiteCerber
unocl45trpuoefft.78of7m.bid
Eranet International Limited (n/a)
2016-09-14 00:02Payment SiteCerber
52uo5k3t73ypjije.n8niwa.bid
Eranet International Limited (n/a)
2016-09-13 21:53Payment SiteCerber
52uo5k3t73ypjije.7ud98m.bid
Eranet International Limited (n/a)
2016-09-13 21:53Payment SiteCerber
wjtqjleommc4z46i.c3fz3z.bid
Eranet International Limited (n/a)
2016-09-13 21:38Payment SiteCerber
52uo5k3t73ypjije.bipa9k.bid
Eranet International Limited (n/a)
2016-09-13 15:25Payment SiteCerber
unocl45trpuoefft.36u6mp.bid
Eranet International Limited (n/a)
2016-09-13 13:41Payment SiteCerber
52uo5k3t73ypjije.cc0r87.bid
Eranet International Limited (n/a)
2016-09-13 12:07Payment SiteCerber
unocl45trpuoefft.s7b63k.bid
Eranet International Limited (n/a)
2016-09-13 08:17Payment SiteCerber
52uo5k3t73ypjije.2ym6om.bid
Eranet International Limited (n/a)
2016-09-13 05:17Payment SiteCerber
wjtqjleommc4z46i.jujthy.bid
Eranet International Limited (n/a)
2016-09-12 23:47Payment SiteCerber
52uo5k3t73ypjije.r4z3o5.bid
Eranet International Limited (n/a)
2016-09-12 20:16Payment SiteCerber
52uo5k3t73ypjije.kyjw0g.bid
Eranet International Limited (n/a)
2016-09-12 20:14Payment SiteCerber
unocl45trpuoefft.4bb9vz.bid
Eranet International Limited (n/a)
2016-09-12 19:02Payment SiteCerber
unocl45trpuoefft.l69xgc.bid
Eranet International Limited (n/a)
2016-09-12 17:07Botnet C&CLocky
yofkhfskdyiqo.biz
DYNADOT LLC69.195.129.70 (- United States)
2016-09-12 17:07Botnet C&CLocky
51.255.105.2
51.255.105.2 (- France)
2016-09-12 17:00Payment SiteCerber
unocl45trpuoefft.c3fz3z.bid
Eranet International Limited (n/a)
2016-09-12 16:33Payment SiteCerber
52uo5k3t73ypjije.zed84j.bid
Eranet International Limited (n/a)
2016-09-12 15:29Payment SiteCerber
unocl45trpuoefft.mezy7j.bid
Eranet International Limited (n/a)
2016-09-12 15:29Payment SiteCerber
52uo5k3t73ypjije.nmapwy.bid
Eranet International Limited (n/a)
2016-09-12 15:25Payment SiteCerber
52uo5k3t73ypjije.csdbnk.bid
Eranet International Limited (n/a)
2016-09-12 15:06Payment SiteCerber
52uo5k3t73ypjije.209kai.bid
Eranet International Limited (n/a)
2016-09-12 14:58Payment SiteCerber
unocl45trpuoefft.ttabop.bid
Eranet International Limited (n/a)
2016-09-10 19:02Payment SiteCerber
4kqd3hmqgptupi3p.bestergo.pw
AlpNames Limited141.8.226.58 (- Switzerland)
2016-09-10 12:31Payment SiteCerber
wjtqjleommc4z46i.bipa9k.bid
Eranet International Limited (n/a)
2016-09-09 20:16Payment SiteCerber
52uo5k3t73ypjije.7j6htz.bid
Eranet International Limited (n/a)
2016-09-09 20:14Payment SiteCerber
4kqd3hmqgptupi3p.mustspace.us
PDR LTD. D/B/A PUBLICDOMAINREGIS[...] (n/a)
2016-09-09 19:04Payment SiteCerber
52uo5k3t73ypjije.i8zh1k.bid
Eranet International Limited (n/a)
2016-09-09 18:46Payment SiteCerber
unocl45trpuoefft.ev6i0x.bid
Eranet International Limited (n/a)
2016-09-09 18:29Payment SiteCerber
wjtqjleommc4z46i.kyjw0g.bid
Eranet International Limited (n/a)
2016-09-09 18:26Payment SiteCerber
unocl45trpuoefft.54m2k3.bid
Eranet International Limited (n/a)
2016-09-09 18:05Payment SiteCerber
52uo5k3t73ypjije.5ctoeb.bid
Eranet International Limited (n/a)
2016-09-09 17:32Payment SiteCerber
4kqd3hmqgptupi3p.seemby.loan
Alpnames Limited (n/a)
2016-09-09 17:27Botnet C&CLocky
91.214.71.101
91.214.71.101 (- Russian Federation)
2016-09-09 17:00Payment SiteCerber
unocl45trpuoefft.kg5bof.bid
Eranet International Limited (n/a)
2016-09-09 16:51Payment SiteCerber
unocl45trpuoefft.lcyznu.bid
Eranet International Limited (n/a)
2016-09-09 16:08Payment SiteCerber
52uo5k3t73ypjije.uwckha.bid
Eranet International Limited (n/a)
2016-09-09 14:53Payment SiteCerber
52uo5k3t73ypjije.9bjnlk.bid
Eranet International Limited (n/a)
2016-09-09 14:53Botnet C&CLocky
ifohvkxmyp.biz
NAMECHEAP, INC.95.211.174.92 (- Netherlands)
2016-09-09 14:46Payment SiteCerber
4kqd3hmqgptupi3p.stageend.link
Alpnames Limited (n/a)
2016-09-09 08:54Payment SiteCerber
4kqd3hmqgptupi3p.5ctoeb.bid
Eranet International Limited (n/a)
2016-09-09 03:29Payment SiteCerber
4kqd3hmqgptupi3p.ownamount.pro
(n/a)
2016-09-08 23:30Payment SiteCerber
4kqd3hmqgptupi3p.foodtopic.mobi
PDR Ltd. d/b/a PublicDomainRegis[...] (n/a)
2016-09-08 14:55Payment SiteCerber
52uo5k3t73ypjije.rexjyp.bid
Eranet International Limited (n/a)
2016-09-08 12:41Payment SiteCerber
unocl45trpuoefft.3n9lut.bid
Eranet International Limited (n/a)
2016-09-08 10:40Payment SiteCerber
52uo5k3t73ypjije.86rhzr.bid
Eranet International Limited (n/a)
2016-09-08 10:22Distribution SiteLocky
www.association-julescatoire.fr
LIGNE WEB SERVICES - LWS87.98.154.146 (- France)

# of rows displayed: 100
# of entries in database: 13'867

Page 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 >