Domain > uswfb.adsrvr.org

More information on this domain is in AlienVault OTX

Files that talk to uswfb.adsrvr.org

MD5	A/V
b634df6a6968dcd53bba33592e131a6c	[W32.Clod93f.Trojan.37db] [Trojan/W32.Obfuscated.44544.Q] [Trojan.Obfuscated.aauy] [Trojan/Obfuscated.aauy] [Trojan.Win32.Obfuscated.pklw] [W32/Trojan2.GJJO] [Busky.PSBG] [Trojan.Win32.Obfuscated.aauy] [Mal/Jevafus-A] [UnclassifiedMalware] [Trojan.Bytok.2] [Trojan.Obfuscated.Win32.8467] [Heuristic.BehavesLike.Win32.ModifiedUPX.C] [Trojan/Obfuscated.djtj] [Trojan[:HEUR]/Win32.Unknown] [Win32.Troj.Obfuscated.(kcloud)] [Trojan.Win32.Obfuscated.44544.C] [Trojan/Win32.Jevafus] [Trojan.Win32.Obfuscated.ASI] [Win32/TrojanDownloader.Delf.OLI] [Trojan-Dropper.Win32.Jevafus] [W32/Obfuscated.AAUY!tr] [Trj/Downloa]
2356fae8b35b4fb7c77d0ca0682efb87	[W32.Clod213.Trojan.e26d] [Trojan/W32.Obfuscated.50688.K] [Trojan.Obfuscated.aava] [Trojan/Obfuscated.aava] [Trojan.Win32.Obfuscated.rdyf] [W32/Backdoor2.DTZQ] [Busky.PSAH] [Trojan.Win32.Obfuscated.aava] [Trojan.Obfuscated!1bIASFz6mEw] [Trojan.Win32.Obfuscated.50688.E] [TrojWare.Win32.Obfuscated.aava] [Heuristic.BehavesLike.Win32.ModifiedUPX.C] [Mal/Jevafus-A] [Trojan/Obfuscated.djhu] [Trj/Downloader.XDT] [Trojan-Dropper.Win32.Jevafus] [W32/Obfuscated.AAVA!tr] [Trojan.Win32.Delf.ARcr]
f2f7ca6ceb6be857eb5b6d8d58efff48
718a66a2d5d454fe883d406a97424e38	[WS.Reputation.1] [Trojan.DownLoader11.27583] [Artemis] [Artemis!718A66A2D5D4] [Trojan.Scar]
64081b63119f47212e7b6cb2a131ac02
1f519484a9ad5a51d42e0f57f4e314e0	[Trojan.Win32.FlowSpirit.dgozjr] [W32/Trojan.BPXW-9284] [UnclassifiedMalware] [Trojan.DownLoader11.37669] [Backdoor.PePatch.Win32.48939] [TR/Rogue.640512.1] [Trojan/Win32.Clicker] [Trojan.Rogue] [Riskware/FlowSpirit] [Hacktool.Win32.FlowSpirit.H]
ea655ab5f6395b51af79ddec4906d355	[Artemis!EA655AB5F639] [Trojan.Graftor.D3E6B6] [W32/Trojan.UIYY-6707] [Virus.Win32.Heur.l] [Trojan.Spy.Banker-5118] [Trojan.Graftor!M7sy9+qDtVs] [Trojan.Win32.Z.Graftor.555008.A[h]] [Win32.Trojan.Graftor.Alij] [Adware.BrowseFox.Win32.138398] [BehavesLike.Win32.SoftPulse.hc] [Win32/Trojan.Multi.daf]
dd149fde864b461ffbacf1ada70d1fdc	[Artemis!DD149FDE864B] [PUP.Optional.InstallCore] [Trojan.Packed.25266] [Adware/InstallCore.OG] [Artemis!DD149FDE864B] [Downware.InstallCore] [Riskware/InstallCore]
b192b1969e16105177b3d12b3413daaf	[Artemis!B192B1969E16] [PUP.Optional.InstallCore] [Trojan.Packed.25266] [Adware/InstallCore.OG] [Artemis!B192B1969E16] [Downware.InstallCore] [Riskware/InstallCore]
e1d874da02827333432a2c9ed92bb233
e845335def350a017046ddb1e43d3446

Whois

Property	Value
Name	Registration Private
Organization	Domains By Proxy, LLC
Email	ADSRVR.ORG@domainsbyproxy.com
Zip Code	85260
City	Scottsdale
State	Arizona
Country	US
Phone	+1.4806242599
Fax	+1.4806242598
NameServer	pdns2.ultradns.net
Created	2010-03-29 16:20:39
Changed	2010-12-10 16:27:15
Expires	2016-03-29 16:20:39
Registrar	GoDaddy.com, LLC (R9

DNS Resolutions

Date	IP Address
2014-11-21	207.198.110.38 (ClassC)
2018-09-30	207.198.110.38 (ClassC)
2018-09-30	207.198.110.56 (ClassC)
2018-09-30	207.198.110.39 (ClassC)
2018-09-30	207.198.110.40 (ClassC)
2018-09-30	207.198.110.41 (ClassC)
2018-09-30	207.198.110.42 (ClassC)
2019-11-04	209.15.53.10 (ClassC)
2019-11-04	209.15.53.11 (ClassC)
2019-11-04	209.15.53.198 (ClassC)
2019-11-04	209.15.53.241 (ClassC)
2021-02-27	199.250.160.132 (ClassC)
2025-09-09	199.250.160.129 (ClassC)

Port 80

HTTP/1.1 403 ForbiddenContent-Type: text/htmlServer: Microsoft-IIS/10.0X-Powered-By: ASP.NETDate: Wed, 06 Nov 2019 22:58:19 GMTContent-Length: 1233

!DOCTYPE html PUBLIC -//W3C//DTD XHTML 1.0 Strict//EN http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd>html xmlnshttp://www.w3.org/1999/xhtml>head>meta http-equivContent-Type contenttext/html; charsetiso-8859-1/>title>403 - Forbidden: Access is denied./title>style typetext/css>!--body{margin:0;font-size:.7em;font-family:Verdana, Arial, Helvetica, sans-serif;background:#EEEEEE;}fieldset{padding:0 15px 10px 15px;} h1{font-size:2.4em;margin:0;color:#FFF;}h2{font-size:1.7em;margin:0;color:#CC0000;} h3{font-size:1.2em;margin:10px 0 0 0;color:#000000;} #header{width:96%;margin:0 0 0 0;padding:6px 2% 6px 2%;font-family:trebuchet MS, Verdana, sans-serif;color:#FFF;background-color:#555555;}#content{margin:0 0 0 2%;position:relative;}.content-container{background:#FFF;width:96%;margin-top:8px;padding:10px;position:relative;}-->/style>/head>body>div idheader>h1>Server Error/h1>/div>div idcontent> div classcontent-container>fieldset>  h2>403 - Forbidden: Access is denied./h2>  h3>You do not have permission to view this directory or page using the credentials that you supplied./h3> /fieldset>/div>/div>/body>/html>

Port 443

HTTP/1.1 403 ForbiddenContent-Type: text/htmlServer: Microsoft-IIS/8.5X-Powered-By: ASP.NETDate: Wed, 06 Nov 2019 22:58:19 GMTContent-Length: 1233

Subdomains

Date	Domain	IP
usw-ca2.adsrvr.org	2025-08-31	199.250.160.129
usw-lax2.adsrvr.org	2025-08-18	207.198.110.39
html5.adsrvr.org	2019-10-17	99.86.35.205
a.adsrvr.org	2019-06-16	13.32.202.125
use-bid-admanmedia.adsrvr.org	2025-06-27	199.250.169.129
use-bid-taboola.adsrvr.org	2022-11-17	199.250.162.129
data.adsrvr.org	2013-11-28	46.51.169.79
fb.adsrvr.org	2014-06-27	209.15.224.6
sinfb.adsrvr.org	2025-07-24	3.33.241.113
uswfb.adsrvr.org	2014-11-21	207.198.110.38
offlineattrib.adsrvr.org	2024-10-19	52.54.125.231
use-bid-pubmatic.adsrvr.org	2025-07-24	199.250.173.129
eur-bid-pubmatic.adsrvr.org	2025-07-24	3.33.153.203
ad.adsrvr.org	2013-12-10	54.230.91.199

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]