Domain > s.glbimg.com

More information on this domain is in AlienVault OTX

Is this malicious?

Most users have voted this as not malicious

Files that talk to s.glbimg.com

MD5	A/V
ada65a369fb7e526273925951172fb3d
277c84feb227d6e9cba17a376161c1d1	[Artemis!277C84FEB227] [W32/Banload.UKZ!tr.dldr]
2df7675d8bb3d5561d68d20e405886e2	[Mal/Banload-AB] [BehavesLike.Win32.Obfuscated.th] [Trojan/Win32.Banker] [Trojan.Win32.ChePro]
0e04e6d9142e579c446d00c262fe5dd2	[WS.Reputation.1] [Trojan[Ransom]/Win32.Gimemo] [Trojan.Win32.Banker.BABMP]
262BD287FD22080D64582E3E36CF9F49
cf5db741b63c535362bdf469060103a0	[W32.Clod18a.Trojan.ca72] [Trojan.Downloader.Banload.NVY] [TrojanDownloader.Dadobra.amb] [Trojan.Banker.FI] [Trojan/Downloader.Dadobra.amb] [Trojan.DL.Dadobra!C3uwuhebdHo] [Downloader.Bancos] [Downloader] [Mal_Banld-3] [Trojan.Downloader-25597] [Trojan-Downloader.Win32.Dadobra.amb] [Trojan.Downloader.Banload.NVY] [Trojan.Win32.Banload.covlmz] [Trojan.Win32.A.Downloader.65536.UK] [Win32.Trojan-Downloader.Dadobra.dant] [Trojan.Downloader.Banload.NVY] [Mal/DelpDldr-A] [Trojan.Downloader.Banload.NVY] [Trojan.DownLoader.46503] [Mal_Banld-3] [Trojan[Downloader]/Win32.Banload] [Win32.TrojDownloader.Banload.44544] [TrojanDownloader:Win32/Tearspear!gmb] [Win-Trojan/Downloader.65536.AT] [Trojan.Downloader.Banload.NVY] [Trj/Nabload.DFB] [PE:Trojan.DL.Win32.Dadob]
8ef2cb22932c11ab16edb7b7a6e189f4	[W32.Clod6ac.Trojan.17ab] [PWS-Banker] [Trojan/Downloader.Dadobra.aee] [Trojan.DL.Dadobra!aw7m9xPRBuE] [W32/Trojan-disguised-based!Maxi] [Suspicious.MH690.A] [Win32/FakeIE_i] [TROJ_DLOADER.VTF] [Trojan-Downloader.Win32.Dadobra.aee] [Trojan.Win32.Banload.tuab] [Trojan.DownLoad.1022] [TROJ_DLOADER.VTF] [Heuristic.BehavesLike.Win32.Suspicious-BAY.G] [Mal/Behav-130] [TrojanDownloader.Dadobra.ake] [Trojan[Downloader]/Win32.Dadobra] [Win32.TrojDownloader.Banload.(kcloud)] [Trojan/Win32.Banker] [W32/Trojan-disguised-based!Maxi] [Trojan.Win32.Dadobra.AKi] [Trojan-Downloader.Win32.Dadobra] [W32/Dadobra.AEE!tr.dldr] [Downloader.Rozena] [Trj/Dadobra.ASB]
b210a5117d36b99c3621e78c7484e97c	[W32.Clod550.Trojan.55d7] [Trojan-Spy/W32.Banker.745536] [Artemis!B210A5117D36] [Malware.Packer] [Trojan/Banker.gzb] [TrojanSpy.Banker!QK6gSA2HVTU] [Win32/FakeIE_i] [Trojan-Banker.Win32.Banker.ham] [Trojan.Win32.Banker.tmvj] [Trojan.Win32.A.Banker.745536] [PE:Virus.Mian007!1.9AEA] [Trojan.PWS.Banker.12842] [Mal_Banker] [Heuristic.LooksLike.Win32.Suspicious.F] [Mal/EncPk-DM] [TrojanSpy.Banker.mxx] [TrojanSpy:Win32/Bancos.DI] [Win32/MalPackedB.suspicious] [TrojanBanker.Banker] [Trojan.Win32.Banker.as] [Trojan-Downloader.Win32.Banload] [Malware_fam.gw] [Win32/Delf] [Win32/Trojan.Spy.374]
a9597af92b90ca5fb08827c98e0e81b6	[W32.Clod5f8.Trojan.fed3] [Trojan/W32.Small.46592.FK] [Trojan.Downloader] [W32/Downldr2.ELDP] [Downloader] [Downloader] [TROJ_DLOADE.CJY] [Trojan.Downloader-54538] [Trojan.Win32.Downloader.46592.AL] [Trojan.DownLoad.12773] [TROJ_DLOADE.CJY] [Mal/DelpDldr-C] [Trojan[Downloader]/Win32.Banload] [TrojanDownloader:Win32/Banload.NJ] [W32/Downloader.XJQU-1691] [Trj/Downloader.MDW] [Trojan-Downloader.Win32.Banload] [W32/DelpDldr.C] [Win32/DH{gQwlVyNiTg}] [Trojan.Win32.Downloader.AQ]
83194be7a8e2183e452a7e56855bb829	[W32.Clodabf.Trojan.830e] [W32/Downldr2.FUCA] [Suspicious.MH690.A] [TROJ_DLVB.SMIB] [Trojan.Win32.Downloader.46592.B] [Mal/VB-YZ] [Trojan.DownLoad1.14652] [TROJ_DLVB.SMIB] [Heuristic.BehavesLike.Win32.Suspicious-BAY.G] [Trojan/Win32.CSon] [W32/Downloader.FLDR-3775] [Trj/Downloader.MDW] [Trojan-Banker.Win32.Banker] [Downloader.Rozena] [Trojan.Win32.Downloader.aZ] [Win32/Trojan.Downloader.963]
b7ec9f005bb01516d943f9e331f4ae3c
b864b751794de64e6e50742cb5af3f33

Whois

Property	Value
Name	Domain Contact
Organization	GLOBO Comunicacao e Participacoes S.A.
Email	fapesp@corp.globo.com
Address	Av. Afranio de Melo Franco, 135 - 3rd Fl
Zip Code	22430-060
City	Rio de Janeiro
State	RJ
Country	BR
Phone	+55.2125404720
Fax	+55.2125401086
NameServer	ns03.globo.com
Created	2007-03-05 21:46:15
Changed	2007-03-05 21:46:16
Expires	2016-03-05 00:00:00
Registrar	Register.com, Inc.

DNS Resolutions

Date	IP Address
2013-10-18	186.192.82.11 (ClassC)
2014-09-27	186.192.84.11 (ClassC)
2014-11-14	186.192.84.11 (ClassC)
2024-10-07	34.36.46.241 (ClassC)
2025-05-16	186.192.91.5 (ClassC)

HTTP/1.1 403 ForbiddenDate: Thu, 15 Aug 2019 23:22:00 GMTContent-Type: text/htmlVary: Accept-Encoding, OriginAccess-Control-Allow-Headers: Content-TypeX-XSS-Protection: 1; modeblockX-Content-Type-Opti

!DOCTYPE html PUBLIC -//W3C//DTD XHTML 1.0 Strict//EN http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd>html dirltr xml:langpt-br langpt-br xmlnshttp://www.w3.org/1999/xhtml>head>    meta http-equivContent-Type contenttext/html; charsetUTF-8 />    title>Globo.com - Desculpe-nos, página não encontrada/title>    meta namekeywords content />    meta namedescription content />    link relcopyright href# />    script src//www.google-analytics.com/urchin.js typetext/javascript>/script>    script typetext/javascript>    _uacct  UA-296593-2;    _udn  www.globo.com;    urchinTracker();    function trackerPortal(obj, index)    {        try {            re  /https?://^\+/;            array  obj.href.match(re);            if (array ! null && array.length > 0)            {                str  array0.replace(/^https?:///, );                urchinTracker(/out/ + index + / + str);            }        }catch(e){}    }    /script>    !-- ESTILOS -->    link typetext/css relstylesheet href//s.glbimg.com/er/c/glb-reset.css>    link typetext/css relstylesheet href//s.glbimg.com/er/c/glb-grid.css>    link typetext/css relstylesheet href//s.glbimg.com/er/c/paginas-erros.css>    style> .paginas-erro form inputtypesubmit { margin-top: 12px; } /style>    link typetext/css relstylesheet href//s.glbimg.com/gl/ba/css/barra-globocom.min.css>    script typetext/javascript src//s.glbimg.com/er/j/jquery-1.3.2.min.js>/script>/head>body>    script typetext/javascript>        (function() {            var sc document.createElement(script);            sc.type  text/javascript;            sc.src//s.glbimg.com/gl/ba/js/barra-globocom.min.js;            sc.async  true;            (document.getElementsByTagName(head)0 || document.getElementsByTagName(body)0).appendChild(sc);        })();        function submitForm(formElm) {          var currentFormAction  formElm.action;          var urlParts  currentFormAction.split(busca);          if (urlParts.length > 1) {            frm.action  urlParts0 + busca/;          }          return true;

Port 443

HTTP/1.1 403 ForbiddenDate: Thu, 15 Aug 2019 23:22:01 GMTContent-Type: text/htmlTransfer-Encoding: chunkedConnection: keep-aliveVary: Accept-Encoding, OriginAccess-Control-Allow-Headers: Content-TypeX

Subdomains

Date	Domain	IP
s2-g1.glbimg.com	2025-05-09	186.192.91.9
s2.glbimg.com	2025-04-28	186.192.91.9
s3.glbimg.com	2023-12-04	186.192.83.22
s2-extra.glbimg.com	2025-05-09	186.192.91.9
s2-ge.glbimg.com	2025-05-09	186.192.91.9
s2-vogue.glbimg.com	2025-05-09	186.192.91.9
s2-casavogue.glbimg.com	2025-05-01	186.192.91.9
s2-screening.glbimg.com	2025-05-09	186.192.91.9
s2-valorinternational.glbimg.com	2025-05-05	186.192.91.9
s2-quem.glbimg.com	2025-04-03	186.192.91.9
s2-home-globo.glbimg.com	2025-05-09	186.192.91.9
s2-redeglobo.glbimg.com	2025-05-09	186.192.91.9
s2-oglobo.glbimg.com	2025-05-09	186.192.91.9
s2-techtudo.glbimg.com	2025-05-09	186.192.91.9
s01.video.glbimg.com	2025-05-08	186.192.91.2
s02.video.glbimg.com	2025-05-08	186.192.91.2
s03.video.glbimg.com	2025-04-06	186.192.91.2
s04.video.glbimg.com	2025-05-05	186.192.91.2
p.glbimg.com	2025-04-17	186.192.91.5
s2-crescer.glbimg.com	2025-03-04	186.192.91.9
s2-glamour.glbimg.com	2025-05-09	186.192.91.9
s.glbimg.com	2014-11-14	186.192.84.11
s2-epocanegocios.glbimg.com	2025-05-09	186.192.91.9
s2-monet.glbimg.com	2025-05-08	186.192.91.9
s2-galileu.glbimg.com	2025-03-04	186.192.91.9
s2-gshow.glbimg.com	2025-05-09	186.192.91.9
s2-globo-play.glbimg.com	2025-05-09	186.192.91.9

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]