Browse Botnet C&Cs
Here you can browse the list of botnet Command&Control servers (C&Cs) tracked by Feodo Tracker, associated with Dridex and Emotet (aka Heodo). When Feodo Tracker was launched in 2010, it was meant to track Feodo botnet C&Cs. However, Feodo evolved further and different piece of malware of Feodo appeared:
- Emotet: is a successor of the Geodo It first appeared in March 2017 and is also known as Heodo). While it was initially used to commit ebanking fraud, it later turned over to a Pay-Per-Install (PPI)-like botnet which is propagating itself through compromised email credentials. More information about Emotet is available on Malpedia
- TrickBot: has no code base with Emotet. However, TrickBot usually gets dropped by Emotet for lateral movement and to drop additional malware (such as Ryuk ransomware). More information about TrickBot is available on Malpedia
- Dridex: is a successor of the Cridex ebanking Trojan. It first appeared in 2011 and is still very active as of today. There are speculations that the botnet masters behind the ebanking Trojan Dyre moved their operation over to Dridex. More information about Dridex is available on Malpedia
Filter for: Emotet (aka Heodo) TrickBot Dridex
| Firstseen (UTC) | Host | Malware | Status | Network (ASN) | Country |
|---|---|---|---|---|---|
| 2021-01-26 17:53:18 | 200.111.198.76 | AS6471 ENTEL CHILE S.A. |  CL | ||
| 2021-01-26 13:46:53 | 72.188.173.74 | AS33363 BHN-33363 |  US | ||
| 2021-01-26 09:31:14 | 162.241.92.219 | AS46606 UNIFIEDLAYER-AS-1 | US | ||
| 2021-01-26 08:52:43 | 104.131.123.136 | AS14061 DIGITALOCEAN-ASN | US | ||
| 2021-01-26 08:51:41 | 104.131.44.150 | AS14061 DIGITALOCEAN-ASN | US | ||
| 2021-01-26 08:40:08 | 162.243.125.212 | AS14061 DIGITALOCEAN-ASN | US | ||
| 2021-01-26 08:39:44 | 46.105.131.87 | AS16276 OVH |  FR | ||
| 2021-01-26 08:39:38 | 167.86.68.49 | AS51167 CONTABO |  DE | ||
| 2021-01-26 08:39:35 | 85.234.143.94 | AS29550 SIMPLYTRANSIT |  GB | ||
| 2021-01-26 08:38:04 | 51.75.33.120 | AS16276 OVH |  PL | ||
| 2021-01-26 08:37:13 | 103.86.49.11 | AS58955 BANGMODENTERPRISE-TH Bangmod Enterprise Co., Ltd. |  TH | ||
| 2021-01-26 08:36:11 | 94.23.45.86 | AS16276 OVH | FR | ||
| 2021-01-26 08:30:56 | 59.148.253.194 | AS9269 HKBN-AS-AP Hong Kong Broadband Network Ltd. |  HK | ||
| 2021-01-25 14:02:57 | 154.127.113.242 | AS37358 BITCO |  ZA | ||
| 2021-01-25 12:02:10 | 190.240.194.77 | AS13489 EPM Telecomunicaciones S.A. E.S.P. |  CO | ||
| 2021-01-25 11:15:47 | 79.133.6.236 | AS3238 ALCOM |  AX | ||
| 2021-01-25 04:51:40 | 78.206.229.130 | AS12322 PROXAD | FR | ||
| 2021-01-25 00:38:18 | 122.116.104.238 | AS3462 HINET Data Communication Business Group |  TW | ||
| 2021-01-24 03:27:13 | 123.176.25.234 | AS7642 DHIRAAGU-MV-AP DHIVEHI RAAJJEYGE GULHUN PLC |  MV | ||
| 2021-01-24 02:47:23 | 85.105.205.77 | AS9121 TTNET |  TR | ||
| 2021-01-24 01:57:15 | 181.171.209.241 | AS10318 Telecom Argentina S.A. |  AR | ||
| 2021-01-23 20:57:10 | 50.91.114.38 | AS33363 BHN-33363 | US | ||
| 2021-01-23 15:01:01 | 188.135.15.49 | AS50010 NAWRAS-AS Sultanate of Oman |  OM | ||
| 2021-01-23 13:52:13 | 186.146.229.172 | AS10620 Telmex Colombia S.A. | CO | ||
| 2021-01-23 07:12:17 | 88.58.209.2 | AS3269 ASN-IBSNAZ |  IT | ||
| 2021-01-22 19:58:12 | 172.193.14.201 | AS133414 FOXTEL-AS-AP Foxtel Management Pty Ltd |  AU | ||
| 2021-01-22 16:19:51 | 69.38.130.14 | AS26878 TWRS-NYC | US | ||
| 2021-01-22 13:09:11 | 190.18.184.113 | AS10318 Telecom Argentina S.A. | AR | ||
| 2021-01-22 12:59:16 | 197.232.36.108 | AS36866 JTL |  KE | ||
| 2021-01-22 12:48:18 | 95.76.153.115 | AS6830 LIBERTYGLOBAL Liberty Global (formerly UPC Broadband Holding, aka AORTA) |  RO | ||
| 2021-01-22 12:08:15 | 24.69.65.8 | AS6327 SHAW |  CA | ||
| 2021-01-22 12:05:38 | 71.72.196.159 | AS10796 TWC-10796-MIDWEST | US | ||
| 2021-01-22 11:45:55 | 181.10.46.92 | AS7303 Telecom Argentina S.A. | AR | ||
| 2021-01-22 11:45:48 | 98.109.133.80 | AS701 UUNET | US | ||
| 2021-01-22 11:09:43 | 195.159.28.230 | AS2116 ASN-CATCHCOM |  NO | ||
| 2021-01-22 10:59:42 | 79.130.130.240 | AS6799 OTENET-GR Athens - Greece |  GR | ||
| 2021-01-22 10:59:41 | 108.53.88.101 | AS701 UUNET | US | ||
| 2021-01-22 10:49:49 | 85.105.239.184 | AS9121 TTNET | TR | ||
| 2021-01-22 10:49:48 | 209.33.120.130 | AS19108 SUDDENLINK-COMMUNICATIONS | US | ||
| 2021-01-22 10:49:48 | 217.160.169.110 | AS8560 IONOS-AS This is the joint network for IONOS, Fasthosts, Arsys, 1&1 Mail and Media and 1&1 Telecom. Formerly known as 1&1 Internet SE. | DE | ||
| 2021-01-22 10:49:48 | 51.255.203.164 | AS16276 OVH | FR | ||
| 2021-01-22 10:49:48 | 84.232.229.24 | AS8708 RCS-RDS 73-75 Dr. Staicovici | RO | ||
| 2021-01-22 10:49:48 | 201.48.121.65 | AS16735 ALGAR TELECOM S/A |  BR | ||
| 2021-01-22 10:38:04 | 190.55.186.229 | AS27747 Telecentro S.A. | AR | ||
| 2021-01-22 10:09:15 | 109.101.137.162 | AS9050 RTD Bucharest, Romania | RO | ||
| 2021-01-22 07:55:49 | 122.116.104.238 | AS3462 HINET Data Communication Business Group | TW | ||
| 2021-01-22 07:36:58 | 49.206.16.156 | AS24309 CABLELITE-AS-AP Atria Convergence Technologies Pvt. Ltd. Broadband Internet Service Provider INDIA |  IN | ||
| 2021-01-22 07:32:53 | 115.79.195.246 | AS7552 VIETEL-AS-AP Viettel Group |  VN | ||
| 2021-01-22 07:31:26 | 82.78.179.117 | AS8708 RCS-RDS 73-75 Dr. Staicovici | RO | ||
| 2021-01-22 07:30:27 | 152.32.75.74 | AS17639 CONVERGE-AS Converge ICT Solutions Inc. |  PH | ||
| 2021-01-22 07:27:08 | 27.78.27.110 | AS7552 VIETEL-AS-AP Viettel Group | VN | ||
| 2021-01-22 07:19:01 | 78.188.225.105 | AS9121 TTNET | TR | ||
| 2021-01-22 07:18:41 | 185.183.16.47 | AS201453 AKIWIFI AKIWIFI |  ES | ||
| 2021-01-22 07:18:03 | 203.160.167.243 | AS18233 PTTNET Philippine Telegraph and Telephone Corporation | PH | ||
| 2021-01-22 07:16:26 | 120.51.34.254 | AS2519 VECTANT ARTERIA Networks Corporation |  JP | ||
| 2021-01-21 18:41:02 | 161.0.153.60 | AS27800 Digicel Trinidad and Tobago Ltd. |  TT | ||
| 2021-01-21 18:16:30 | 93.146.48.84 | AS30722 VODAFONE-IT-ASN | IT | ||
| 2021-01-21 17:26:28 | 186.96.170.61 | AS22884 TOTAL PLAY TELECOMUNICACIONES SA DE CV |  MX | ||
| 2021-01-21 16:49:03 | 187.161.206.24 | AS11888 Television Internacional, S.A. de C.V. | MX | ||
| 2021-01-21 16:40:35 | 190.64.88.186 | AS6057 Administracion Nacional de Telecomunicaciones |  UY | ||
| 2021-01-21 16:40:02 | 82.48.39.246 | AS3269 ASN-IBSNAZ | IT | ||
| 2021-01-21 16:32:13 | 190.45.24.210 | AS22047 VTR BANDA ANCHA S.A. | CL | ||
| 2021-01-21 16:32:08 | 190.251.216.100 | AS13489 EPM Telecomunicaciones S.A. E.S.P. | CO | ||
| 2021-01-21 16:31:38 | 105.209.235.113 | AS16637 MTNNS-AS | ZA | ||
| 2021-01-21 16:30:56 | 191.241.233.198 | AS28669 America-NET Ltda. | BR | ||
| 2021-01-21 16:30:26 | 200.75.39.254 | AS19429 ETB - Colombia | CO | ||
| 2021-01-21 14:47:53 | 91.233.197.70 | AS212755 EXACLOUD http://www.exacloud.net | ES | ||
| 2021-01-21 14:47:53 | 78.182.254.231 | AS9121 TTNET | TR | ||
| 2021-01-21 14:47:53 | 201.212.61.66 | AS10481 Telecom Argentina S.A. | AR | ||
| 2021-01-21 14:47:50 | 180.222.161.85 | AS45510 TELCOINABOX-AU Level 10, 9 Hunter Street | AU | ||
| 2021-01-21 14:47:50 | 75.113.193.72 | AS33363 BHN-33363 | US | ||
| 2021-01-21 14:47:44 | 70.183.211.3 | AS22773 ASN-CXA-ALL-CCI-22773-RDC | US | ||
| 2021-01-21 14:47:43 | 190.19.169.69 | AS10318 Telecom Argentina S.A. | AR | ||
| 2021-01-21 14:15:14 | 167.99.105.11 | AS14061 DIGITALOCEAN-ASN | US | ||
| 2021-01-21 13:53:37 | 78.189.148.42 | AS9121 TTNET | TR | ||
| 2021-01-21 13:53:36 | 89.106.251.163 | AS5563 URAL Ural Regional Net |  RU | ||
| 2021-01-21 13:26:31 | 82.208.146.142 | AS6830 LIBERTYGLOBAL Liberty Global (formerly UPC Broadband Holding, aka AORTA) | RO | ||
| 2021-01-21 12:58:18 | 201.163.74.204 | AS11172 Alestra, S. de R.L. de C.V. | MX | ||
| 2021-01-21 12:34:44 | 51.38.71.84 | AS16276 OVH | GB | ||
| 2021-01-21 12:32:22 | 190.251.200.206 | AS13489 EPM Telecomunicaciones S.A. E.S.P. | CO | ||
| 2021-01-21 11:27:36 | 177.85.167.10 | AS52743 Twister Soft Net Ltda | BR | ||
| 2021-01-21 11:17:45 | 201.185.69.28 | AS13489 EPM Telecomunicaciones S.A. E.S.P. | CO | ||
| 2021-01-21 11:17:09 | 118.83.154.64 | AS4721 JCN Jupiter Telecommunications Co., Ltd. | JP | ||
| 2021-01-21 11:16:44 | 197.211.245.21 | AS30969 ZOL-AS |  ZW | ||
| 2021-01-21 11:16:06 | 2.82.75.215 | AS3243 MEO-RESIDENCIAL |  PT | ||
| 2021-01-21 11:15:37 | 152.169.22.67 | AS10318 Telecom Argentina S.A. | AR | ||
| 2021-01-21 10:57:56 | 31.27.59.105 | AS30722 VODAFONE-IT-ASN | IT | ||
| 2021-01-21 10:40:08 | 217.160.19.232 | AS8560 IONOS-AS This is the joint network for IONOS, Fasthosts, Arsys, 1&1 Mail and Media and 1&1 Telecom. Formerly known as 1&1 Internet SE. | DE | ||
| 2021-01-21 10:39:55 | 93.149.120.214 | AS30722 VODAFONE-IT-ASN | IT | ||
| 2021-01-21 10:38:35 | 190.162.232.138 | AS22047 VTR BANDA ANCHA S.A. | CL | ||
| 2021-01-21 10:26:27 | 139.5.101.203 | AS58659 QCPL-IN Quest Consultancy Pvt Ltd | IN | ||
| 2021-01-21 10:20:10 | 24.164.79.147 | AS10796 TWC-10796-MIDWEST | US | ||
| 2021-01-21 10:19:38 | 181.165.68.127 | AS10318 Telecom Argentina S.A. | AR | ||
| 2021-01-21 10:19:36 | 47.144.21.37 | AS5650 FRONTIER-FRTR | US | ||
| 2021-01-21 10:12:40 | 190.210.246.253 | AS16814 NSS S.A. | AR | ||
| 2021-01-21 10:12:39 | 143.0.85.206 | AS263998 SIM Telecom | BR | ||
| 2021-01-21 10:12:29 | 45.230.228.26 | AS267226 Wagner Rafael Eckert | BR | ||
| 2021-01-21 10:11:58 | 109.116.245.80 | AS30722 VODAFONE-IT-ASN | IT | ||
| 2021-01-21 10:10:57 | 175.207.12.52 | AS4766 KIXS-AS-KR Korea Telecom |  KR | ||
| 2021-01-21 10:10:54 | 75.109.111.18 | AS19108 SUDDENLINK-COMMUNICATIONS | US | ||
| 2021-01-21 10:10:44 | 110.145.101.66 | AS1221 ASN-TELSTRA Telstra Corporation Ltd | AU | ||
| 2021-01-21 10:10:43 | 24.230.124.78 | AS11232 MIDCO-NET | US | ||
| 2021-01-21 10:10:31 | 82.145.43.153 | AS20860 IOMART-AS | GB | ||
| 2021-01-21 10:10:26 | 191.223.36.170 | AS8167 Brasil Telecom S/A - Filial Distrito Federal | BR | ||
| 2021-01-21 10:09:54 | 110.145.11.73 | AS1221 ASN-TELSTRA Telstra Corporation Ltd | AU | ||
| 2021-01-21 10:09:51 | 80.249.176.206 | AS31376 SMART-AS | RU | ||
| 2021-01-21 10:09:32 | 172.245.248.239 | AS36352 AS-COLOCROSSING | US | ||
| 2021-01-21 10:09:31 | 93.146.143.191 | AS30722 VODAFONE-IT-ASN | IT | ||
| 2021-01-21 10:09:30 | 110.39.162.2 | AS38264 WATEEN-IMS-PK-AS-AP National WiMAX/IMS environment |  PK | ||
| 2021-01-21 10:09:26 | 152.231.89.226 | AS6471 ENTEL CHILE S.A. | CL | ||
| 2021-01-21 10:09:00 | 195.159.28.244 | AS2116 ASN-CATCHCOM | NO | ||
| 2021-01-21 10:02:58 | 70.92.118.112 | AS10796 TWC-10796-MIDWEST | US | ||
| 2021-01-21 10:02:58 | 59.21.235.119 | AS4766 KIXS-AS-KR Korea Telecom | KR | ||
| 2021-01-21 10:02:39 | 110.172.180.180 | AS18002 WORLDPHONE-IN AS Number for Interdomain Routing | IN | ||
| 2021-01-21 10:02:21 | 181.30.61.163 | AS10318 Telecom Argentina S.A. | AR | ||
| 2021-01-21 10:02:17 | 202.79.24.136 | AS24492 IIT-WICAM-AS-AP WiCAM Corporation Ltd. |  KH | ||
| 2021-01-21 10:01:56 | 115.21.224.117 | AS4766 KIXS-AS-KR Korea Telecom | KR | ||
| 2021-01-21 10:01:24 | 50.116.78.109 | AS46606 UNIFIEDLAYER-AS-1 | US | ||
| 2021-01-21 10:00:56 | 180.148.4.130 | AS45557 VNTT-AS-VN Vietnam Technology and Telecommunication JSC | VN | ||
| 2021-01-21 10:00:55 | 223.17.215.76 | AS9304 HUTCHISON-AS-AP HGC Global Communications Limited | HK | ||
| 2021-01-21 10:00:28 | 104.236.52.89 | AS14061 DIGITALOCEAN-ASN | US | ||
| 2021-01-21 10:00:23 | 109.99.146.210 | AS9050 RTD Bucharest, Romania | RO | ||
| 2021-01-21 10:00:17 | 46.105.114.137 | AS16276 OVH | FR | ||
| 2021-01-21 10:00:11 | 62.84.75.50 | AS42334 BBP-AS |  LB | ||
| 2021-01-21 09:59:57 | 74.40.205.197 | AS5650 FRONTIER-FRTR | US | ||
| 2021-01-21 09:59:56 | 75.177.207.146 | AS11426 TWC-11426-CAROLINAS | US | ||
| 2021-01-21 09:59:55 | 132.248.38.158 | AS278 Universidad Nacional Autonoma de Mexico | MX | ||
| 2021-01-21 09:59:53 | 12.162.84.2 | AS7018 ATT-INTERNET4 | US | ||
| 2021-01-21 09:59:53 | 206.189.232.2 | AS14061 DIGITALOCEAN-ASN | US | ||
| 2021-01-21 09:59:53 | 51.89.36.180 | AS16276 OVH | GB | ||
| 2021-01-21 09:59:52 | 121.124.124.40 | AS9318 SKB-AS SK Broadband Co Ltd | KR | ||
| 2021-01-21 09:59:50 | 24.179.13.119 | AS20115 CHARTER-20115 | US | ||
| 2021-01-21 09:59:48 | 37.187.72.193 | AS16276 OVH | FR | ||
| 2021-01-21 09:59:39 | 213.52.74.198 | AS2116 ASN-CATCHCOM | NO | ||
| 2021-01-21 09:59:25 | 187.162.248.237 | AS6503 Axtel, S.A.B. de C.V. | MX | ||
| 2021-01-21 09:59:25 | 110.39.160.38 | AS38264 WATEEN-IMS-PK-AS-AP National WiMAX/IMS environment | PK | ||
| 2021-01-21 09:59:22 | 80.15.100.37 | AS3215 France Telecom - Orange | FR | ||
| 2021-01-21 09:59:22 | 117.2.139.117 | AS7552 VIETEL-AS-AP Viettel Group | VN | ||
| 2021-01-21 09:59:22 | 152.170.79.100 | AS10318 Telecom Argentina S.A. | AR | ||
| 2021-01-21 09:59:22 | 211.215.18.93 | AS9318 SKB-AS SK Broadband Co Ltd | KR | ||
| 2021-01-21 09:59:21 | 190.103.228.24 | AS27983 Red Intercable Digital S.A. | AR | ||
| 2021-01-21 09:59:20 | 188.165.214.98 | AS16276 OVH | FR | ||
| 2021-01-21 09:59:20 | 50.116.111.59 | AS46606 UNIFIEDLAYER-AS-1 | US | ||
| 2021-01-21 09:59:19 | 91.75.75.46 | AS15802 DU-AS1 |  AE | ||
| 2021-01-21 09:59:19 | 185.201.9.197 | AS395111 KVCNET-2009 | DE | ||
| 2021-01-21 09:59:19 | 163.53.204.180 | AS58898 RAINBOWISP-AS Rainbow communications India Pvt Ltd | IN | ||
| 2021-01-21 09:59:19 | 203.157.152.9 | AS9649 MOPH-TH-AP Information Technology Office | TH | ||
| 2021-01-21 09:59:19 | 185.208.226.142 | AS43359 TARHELY |  HU | ||
| 2021-01-21 09:59:19 | 190.85.46.52 | AS14080 Telmex Colombia S.A. | CO | ||
| 2021-01-21 09:59:18 | 172.125.40.123 | AS7018 ATT-INTERNET4 | US | ||
| 2021-01-21 09:59:18 | 45.16.226.117 | AS7018 ATT-INTERNET4 | US | ||
| 2021-01-21 09:59:18 | 110.37.224.243 | AS38264 WATEEN-IMS-PK-AS-AP National WiMAX/IMS environment | PK | ||
| 2021-01-21 09:59:18 | 103.93.220.182 | AS17639 CONVERGE-AS Converge ICT Solutions Inc. | PH | ||
| 2021-01-21 09:59:08 | 120.150.218.241 | AS1221 ASN-TELSTRA Telstra Corporation Ltd | AU | ||
| 2021-01-21 09:58:52 | 64.207.182.168 | AS398110 GO-DADDY-COM-LLC | US | ||
| 2021-01-21 09:58:51 | 65.32.168.171 | AS33363 BHN-33363 | US | ||
| 2021-01-21 09:58:50 | 78.90.78.210 | AS35141 MEGALAN |  BG | ||
| 2021-01-21 09:58:50 | 177.23.7.151 | AS262886 LansofNet LTDA ME | BR | ||
| 2021-01-21 09:58:50 | 161.49.84.2 | AS17639 CONVERGE-AS Converge ICT Solutions Inc. | PH | ||
| 2021-01-21 09:58:50 | 85.105.111.166 | AS9121 TTNET | TR | ||
| 2021-01-21 09:58:49 | 60.93.23.51 | AS17676 GIGAINFRA Softbank BB Corp. | JP | ||
| 2021-01-21 09:58:47 | 12.163.208.58 | AS7018 ATT-INTERNET4 | US | ||
| 2021-01-21 09:58:47 | 81.215.230.173 | AS9121 TTNET | TR | ||
| 2021-01-21 09:58:26 | 110.142.236.207 | AS1221 ASN-TELSTRA Telstra Corporation Ltd | AU | ||
| 2021-01-21 09:58:25 | 120.150.60.189 | AS1221 ASN-TELSTRA Telstra Corporation Ltd | AU | ||
| 2021-01-21 09:58:24 | 220.245.198.194 | AS7545 TPG-INTERNET-AP TPG Telecom Limited | AU | ||
| 2021-01-21 09:58:22 | 81.214.253.80 | AS9121 TTNET | TR | ||
| 2021-01-21 09:58:21 | 115.94.207.99 | AS3786 LGDACOM LG DACOM Corporation | KR | ||
| 2021-01-21 09:58:20 | 200.116.145.225 | AS13489 EPM Telecomunicaciones S.A. E.S.P. | CO | ||
| 2021-01-21 09:58:19 | 95.9.5.93 | AS9121 TTNET | TR | ||
| 2021-01-21 09:58:18 | 167.114.153.111 | AS16276 OVH | CA | ||
| 2021-01-21 09:58:18 | 194.190.67.75 | AS50804 BESTLINE-NET-PROTVINO | RU | ||
| 2021-01-21 09:58:18 | 61.19.246.238 | AS9335 CAT-CLOUD-AP CAT Telecom Public Company Limited | TH | ||
| 2021-01-21 09:58:17 | 69.49.88.46 | AS33734 MPW-MACHLINK-NET | US | ||
| 2021-01-21 09:57:49 | 175.103.38.146 | AS38320 MMS-AS-ID PT Maxindo Mitra Solusi |  ID | ||
| 2021-01-21 09:57:48 | 75.127.14.170 | AS36352 AS-COLOCROSSING | US | ||
| 2021-01-21 09:57:47 | 24.178.90.49 | AS20115 CHARTER-20115 | US | ||
| 2021-01-21 09:52:40 | 12.175.220.98 | AS7018 ATT-INTERNET4 | US |