rambler.seesaa.net Open in urlscan Pro
143.204.215.107

Go To Rescan
Add Verdict Report

URL:
http://rambler.seesaa.net/article/vex-games.html
Submission: On June 25 via manual (June 25th 2023, 11:25:31 pm UTC) from UA — Scanned from DE

Summary HTTP 6 Redirects Behaviour Indicators

Summary

This website contacted 5 IPs in 1 countries across 2 domains to perform 6 HTTP transactions. The main IP is 143.204.215.107, located in United States and belongs to AMAZON-02, US. The main domain is rambler.seesaa.net.

rambler.seesaa.net scanned 2 times on urlscan.io Show Scans 2

urlscan.io Verdict: No classification

Live information

Google Safe Browsing: No classification for rambler.seesaa.net

Current DNS A record: 143.204.215.73 (AS16509 - AMAZON-02, US)
Domain created: October 24th 2003, 09:30:11 (UTC)
Domain registrar: GMO INTERNET, INC.

Domain & IP information

	IP Address	AS Autonomous System
1	143.204.215.107 143.204.215.107	16509 (AMAZON-02) (AMAZON-02)
2	18.66.192.41 18.66.192.41	16509 (AMAZON-02) (AMAZON-02)
1	13.224.189.115 13.224.189.115	16509 (AMAZON-02) (AMAZON-02)
2	108.138.36.45 108.138.36.45	16509 (AMAZON-02) (AMAZON-02)
6	5

1 143.204.215.107 (United States)

ASN16509 (AMAZON-02, US)
PTR: server-143-204-215-107.fra53.r.cloudfront.net

rambler.seesaa.net	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

2 18.66.192.41 (United States)

ASN16509 (AMAZON-02, US)
PTR: server-18-66-192-41.muc50.r.cloudfront.net

58d183fab08d.280682d7.eu-central-1.token.awswaf.com	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

1 13.224.189.115 (United States)

ASN16509 (AMAZON-02, US)
PTR: server-13-224-189-115.fra2.r.cloudfront.net

58d183fab08d.280682d7.eu-central-1.captcha.awswaf.com	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

2 108.138.36.45 (United States)

ASN16509 (AMAZON-02, US)
PTR: server-108-138-36-45.muc50.r.cloudfront.net

static.captcha.awswaf.com	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

	Apex Domain Subdomains	Transfer
5	awswaf.com 58d183fab08d.280682d7.eu-central-1.token.awswaf.com 58d183fab08d.280682d7.eu-central-1.captcha.awswaf.com static.captcha.awswaf.com — Cisco Umbrella Rank: 131859	372 KB
1	seesaa.net rambler.seesaa.net	2 KB
6	2

	Domain	Requested by
2	static.captcha.awswaf.com	58d183fab08d.280682d7.eu-central-1.captcha.awswaf.com static.captcha.awswaf.com
2	58d183fab08d.280682d7.eu-central-1.token.awswaf.com	rambler.seesaa.net 58d183fab08d.280682d7.eu-central-1.token.awswaf.com
1	58d183fab08d.280682d7.eu-central-1.captcha.awswaf.com	rambler.seesaa.net
1	rambler.seesaa.net
6	4

This site contains no links.

Subject Issuer	Validity	Valid
*.280682d7.eu-central-1.token.awswaf.com Amazon RSA 2048 M02	`2023-02-24` - `2023-09-23`	7 months	crt.sh
*.280682d7.eu-central-1.captcha.awswaf.com Amazon RSA 2048 M02	`2023-02-28` - `2023-09-14`	7 months	crt.sh
static.captcha.awswaf.com Amazon RSA 2048 M01	`2023-02-23` - `2023-09-22`	7 months	crt.sh

This page contains 1 frames:

Primary Page: http://rambler.seesaa.net/article/vex-games.html
Frame ID: A6B031065E8EA48790BBEE2F5F3DF0E9
Requests: 9 HTTP requests in this frame

Screenshot
Live screenshot

Full Image

Page Statistics

6
Requests

83 %
HTTPS

0 %
IPv6

2
Domains

4
Subdomains

5
IPs

1
Countries

374 kB
Transfer

1232 kB
Size

0
Cookies

0 Outgoing links

These are links going to different origins than the main page.

Redirected requests

There were HTTP redirect chains for the following requests:

6 HTTP transactions
3 data transactions

Method Protocol	Status	Resource Path	Size x-fer	Time Latency	Type MIME-Type	IP Location
GET H/1.1	405 Not Allowed	Primary Request vex-games.html Show response rambler.seesaa.net/article/	2 KB 2 KB	28ms 9ms	Document text/html	143.204.215.107 AMAZON-02
General Check archive.org Show headers Download Go to Full URL http://rambler.seesaa.net/article/vex-games.html Protocol HTTP/1.1 Server 143.204.215.107 , United States, ASN16509 (AMAZON-02, US), Reverse DNS server-143-204-215-107.fra53.r.cloudfront.net Software CloudFront / Resource Hash `bc2e0700ac4d0dbb6e502fa10ebf1cb0ddffde1b9f90cc3cd45bd1c89cb1b5e1` Request headers Upgrade-Insecure-Requests 1 User-Agent Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.133 Safari/537.36 accept-language de-DE,de;q=0.9 Response headers Cache-Control no-store, max-age=0 Connection keep-alive Content-Length 2066 Content-Type text/html; charset=UTF-8 Date Sun, 25 Jun 2023 23:25:31 GMT Server CloudFront Via 1.1 7549433a09d06354ea864d169b689e50.cloudfront.net (CloudFront) X-Amz-Cf-Id W8MAhCr2GbCeyy0bM_oEQ9ZOFaR0KbfqFAp0eS7yllq-qsdA3qcAhQ== X-Amz-Cf-Pop FRA53-C1 X-Cache Error from cloudfront x-amzn-waf-action captcha
GET H2	200	challenge.js Show response 58d183fab08d.280682d7.eu-central-1.token.awswaf.com/58d183fab08d/d2d2992ef334/0bf2ee923510/	1 MB 280 KB	122ms 55ms	Script text/javascript	18.66.192.41 AMAZON-02
General Check archive.org Show headers Download Go to Full URL https://58d183fab08d.280682d7.eu-central-1.token.awswaf.com/58d183fab08d/d2d2992ef334/0bf2ee923510/challenge.js Requested by Host: rambler.seesaa.net URL: http://rambler.seesaa.net/article/vex-games.html Protocol H2 Security TLS 1.3, , AES_128_GCM Server 18.66.192.41 , United States, ASN16509 (AMAZON-02, US), Reverse DNS server-18-66-192-41.muc50.r.cloudfront.net Software / Resource Hash `e5560ab5dd545634758f0d002b2e69fc87d9925bdeaffe38b502cec7313b3720` Request headers accept-language de-DE,de;q=0.9 Referer http://rambler.seesaa.net/ User-Agent Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.133 Safari/537.36 Response headers pragma no-cache date Sun, 25 Jun 2023 23:25:31 GMT content-encoding gzip via 1.1 033e374ece012797cbee0d505e2e61b4.cloudfront.net (CloudFront) x-amz-cf-pop MUC50-P1 vary Accept-Encoding x-cache Miss from cloudfront x-amzn-waf-challenge-id Root=1-6498cceb-46359c900dab091f32c3f57e content-type text/javascript cache-control private, max-age=86400 x-amz-cf-id pzpgA3Zwx_4mBQJpOrNEz5xvabtCocRDIP3hncP-pbR6J2pPj_8UgQ== expires 0
GET H2	200	captcha.js Show response 58d183fab08d.280682d7.eu-central-1.captcha.awswaf.com/58d183fab08d/d2d2992ef334/0bf2ee923510/	147 KB 60 KB	64ms 26ms	Script text/javascript	13.224.189.115 AMAZON-02
General Check archive.org Show headers Download Go to Full URL https://58d183fab08d.280682d7.eu-central-1.captcha.awswaf.com/58d183fab08d/d2d2992ef334/0bf2ee923510/captcha.js Requested by Host: rambler.seesaa.net URL: http://rambler.seesaa.net/article/vex-games.html Protocol H2 Security TLS 1.3, , AES_128_GCM Server 13.224.189.115 , United States, ASN16509 (AMAZON-02, US), Reverse DNS server-13-224-189-115.fra2.r.cloudfront.net Software / Resource Hash `042384e3712bf18b79d9b7ff0b8e5854104a92ca3eadd1ae0066e6b61e91b6b8` Request headers accept-language de-DE,de;q=0.9 Referer http://rambler.seesaa.net/ User-Agent Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.133 Safari/537.36 Response headers date Sun, 25 Jun 2023 23:25:31 GMT content-encoding gzip via 1.1 172e63b20fb363ed969de28ae3937e20.cloudfront.net (CloudFront) x-amz-cf-pop FRA2-C1 vary Accept-Encoding x-cache Miss from cloudfront content-type text/javascript x-amzn-waf-captcha-id Root=1-6498cceb-1fc00d2943273d532008b155 x-amz-cf-id 0tOOO0dKK8a8WKMfBuc5qCA6nKLot1Gq2UzeyLwWYC1I-9U0ggYVdw==
POST H2	200	report Show response 58d183fab08d.280682d7.eu-central-1.token.awswaf.com/58d183fab08d/d2d2992ef334/0bf2ee923510/	0 266 B	61ms 30ms	Fetch	18.66.192.41 AMAZON-02
General Check archive.org Show headers Download Go to Full URL https://58d183fab08d.280682d7.eu-central-1.token.awswaf.com/58d183fab08d/d2d2992ef334/0bf2ee923510/report Requested by Host: 58d183fab08d.280682d7.eu-central-1.token.awswaf.com URL: https://58d183fab08d.280682d7.eu-central-1.token.awswaf.com/58d183fab08d/d2d2992ef334/0bf2ee923510/challenge.js Protocol H2 Security TLS 1.3, , AES_128_GCM Server 18.66.192.41 , United States, ASN16509 (AMAZON-02, US), Reverse DNS server-18-66-192-41.muc50.r.cloudfront.net Software / Resource Hash `e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855` Request headers Referer http://rambler.seesaa.net/ accept-language de-DE,de;q=0.9 User-Agent Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.133 Safari/537.36 Content-Type text/plain;charset=UTF-8 Response headers date Sun, 25 Jun 2023 23:25:31 GMT via 1.1 ec12d3de4ccd821a7e749609dcc62010.cloudfront.net (CloudFront) x-amz-cf-pop MUC50-P1 access-control-max-age 86400 access-control-allow-methods POST x-cache Miss from cloudfront access-control-allow-origin * content-length 0 x-amz-cf-id DLaF27XUMUbJhyyT3uqsFmXnkuF-x_bPsgHV9F0II0FIHju9-HOjiQ==
GET H2	200	stylesheet.css static.captcha.awswaf.com/fonts/AmazonEmberLt/	230 B 563 B	57ms 13ms	Stylesheet text/css	108.138.36.45 AMAZON-02
General Check archive.org Show headers Download Go to Full URL https://static.captcha.awswaf.com/fonts/AmazonEmberLt/stylesheet.css Requested by Host: 58d183fab08d.280682d7.eu-central-1.captcha.awswaf.com URL: https://58d183fab08d.280682d7.eu-central-1.captcha.awswaf.com/58d183fab08d/d2d2992ef334/0bf2ee923510/captcha.js Protocol H2 Security TLS 1.3, , AES_128_GCM Server 108.138.36.45 , United States, ASN16509 (AMAZON-02, US), Reverse DNS server-108-138-36-45.muc50.r.cloudfront.net Software AmazonS3 / Resource Hash `2998d81cfd55c682823a732f696790f3745c3c1b394ca6701cc91dda9dc54516` Request headers accept-language de-DE,de;q=0.9 Referer http://rambler.seesaa.net/ User-Agent Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.133 Safari/537.36 Response headers date Sun, 25 Jun 2023 01:21:00 GMT via 1.1 ef6c1b0d6b04f2b7f81eb00fa448b890.cloudfront.net (CloudFront) last-modified Thu, 08 Dec 2022 17:07:34 GMT server AmazonS3 x-amz-cf-pop MUC50-P2 age 79778 etag "d8674d16f372c9cdafa1314ef9710c64" vary Accept-Encoding x-cache Hit from cloudfront content-type text/css accept-ranges bytes content-length 230 x-amz-cf-id OnGd-v120TUYe5cnx1JmkPIxLVuhBuESdW0hefxdLc0YZE-H32Jo3w==
GET DATA	200 OK	truncated /	565 B 0		Image image/svg+xml
General Check archive.org Show headers Download Go to Show image Full URL data:truncated Protocol DATA Server -, , ASN (), Reverse DNS Software / Resource Hash `e3e2b5d869c820ae61b5603c4a05ac50f6a2d22a6a8a7a6637b9933e70291e32` Request headers accept-language de-DE,de;q=0.9 Referer http://rambler.seesaa.net/ User-Agent Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.133 Safari/537.36 Response headers Content-Type image/svg+xml
GET DATA	200 OK	truncated /	253 B 0		Image image/svg+xml
General Check archive.org Show headers Download Go to Show image Full URL data:truncated Protocol DATA Server -, , ASN (), Reverse DNS Software / Resource Hash `7d3ea565b2bae4b523df1a5164ab59d86d0f496432a692b5aaa61a671a206fc4` Request headers accept-language de-DE,de;q=0.9 Referer http://rambler.seesaa.net/ User-Agent Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.133 Safari/537.36 Response headers Content-Type image/svg+xml
GET DATA	200 OK	truncated /	481 B 0		Image image/svg+xml
General Check archive.org Show headers Download Go to Show image Full URL data:truncated Protocol DATA Server -, , ASN (), Reverse DNS Software / Resource Hash `5e5af7cbc4ba6d5e3c5b722393bcae96e599dfad2eca7de444a501e8a1a4a351` Request headers accept-language de-DE,de;q=0.9 Referer http://rambler.seesaa.net/ User-Agent Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.133 Safari/537.36 Response headers Content-Type image/svg+xml
GET H2	200	AmazonEmber-Light.woff2 static.captcha.awswaf.com/fonts/AmazonEmberLt/	30 KB 30 KB	46ms 15ms	Font binary/octet-stream	108.138.36.45 AMAZON-02
General Check archive.org Show headers Download Go to Full URL https://static.captcha.awswaf.com/fonts/AmazonEmberLt/AmazonEmber-Light.woff2 Requested by Host: static.captcha.awswaf.com URL: https://static.captcha.awswaf.com/fonts/AmazonEmberLt/stylesheet.css Protocol H2 Security TLS 1.3, , AES_128_GCM Server 108.138.36.45 , United States, ASN16509 (AMAZON-02, US), Reverse DNS server-108-138-36-45.muc50.r.cloudfront.net Software AmazonS3 / Resource Hash `35e616b44004287518920103bbbc22e18f41fa68b137fd774f8a5388ce9768a8` Request headers Referer https://static.captcha.awswaf.com/fonts/AmazonEmberLt/stylesheet.css Origin http://rambler.seesaa.net accept-language de-DE,de;q=0.9 User-Agent Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.133 Safari/537.36 Response headers date Sun, 25 Jun 2023 06:28:19 GMT via 1.1 3d7648aa47c887339ebd63c859836150.cloudfront.net (CloudFront) x-amz-cf-pop MUC50-P2 age 61183 x-amz-server-side-encryption AES256 x-cache Hit from cloudfront content-length 30648 last-modified Thu, 08 Dec 2022 17:07:34 GMT server AmazonS3 etag "64824a4253db63d5f9a7c4501c702c16" vary Accept-Encoding access-control-allow-methods GET content-type binary/octet-stream access-control-allow-origin * accept-ranges bytes x-amz-cf-id N8fT_Kkt03QM5FDBi4kl6JXy6v-rxXRiz1JgpMfqkxWH-3IfnRP4aw==

Verdicts & Comments Add Verdict or Comment

9 JavaScript Global Variables

These are the non-standard "global" variables defined on the window object. These can be helpful in identifying possible client-side frameworks and code.

0 Cookies

Cookies are little pieces of information stored in the browser of a user. Whenever a user visits the site again, he will also send his cookie values, thus allowing the website to re-identify him even if he changed locations. This is how permanent logins work.

1 Console Messages

A page may trigger messages to the console to be logged. These are often error messages about being unable to load a resource or execute a piece of JavaScript. Sometimes they also provide insight into the technology behind a website.

Source	Level	URL Text
network	error	URL: http://rambler.seesaa.net/article/vex-games.html Message: Failed to load resource: the server responded with a status of 405 (Not Allowed)

Indicators

This is a term in the security industry to describe indicators such as IPs, Domains, Hashes, etc. This does not imply that any of these indicate malicious activity.

58d183fab08d.280682d7.eu-central-1.captcha.awswaf.com
58d183fab08d.280682d7.eu-central-1.token.awswaf.com
rambler.seesaa.net
static.captcha.awswaf.com
108.138.36.45
13.224.189.115
143.204.215.107
18.66.192.41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rambler.seesaa.net Open in urlscan Pro 143.204.215.107

Summary

urlscan.io Verdict: No classification

Live information

Domain & IP information

Screenshot Live screenshot Full Image

Page Statistics

6 Requests

83 %HTTPS

0 %IPv6

2 Domains

4 Subdomains

5 IPs

1 Countries

374 kBTransfer

1232 kBSize

0 Cookies

0 Outgoing links

Redirected requests

6 HTTP transactions Everything HTML Script AJAX CSS Image Expand all 3 data transactions

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Verdicts & Comments Add Verdict or Comment

9 JavaScript Global Variables

0 Cookies

1 Console Messages

Indicators

rambler.seesaa.net Open in urlscan Pro
143.204.215.107

Screenshot
Live screenshot

Full Image

6
Requests

83 %
HTTPS

0 %
IPv6

2
Domains

4
Subdomains

5
IPs

1
Countries

374 kB
Transfer

1232 kB
Size

0
Cookies

6 HTTP transactions
3 data transactions