Roblox - URL Scan Results

Summary

A Concise Overview of the scan result of url https://www.roblox.com/request-error?code=404

Document
HTML
2
StyleSheets
26
Scripts
104
Font
0
Images
9
Links
2
JavaScript Variables
65
Console log messages
0
Network
Requests
158
Bytes Transferred
2.84MB
Bytes Total
11.42MB

DNS Record
CNAME Record
6
A Record
1
Technology
PaaS
1
JavaScript frameworks
1
Security
1
CDN
1
Miscellaneous
1

Links

The outgoing links identified from the page.

Link	Text
https://create.roblox.com/	Create
https://create.roblox.com/store/models?keyword=	in Creator Store

JavaScript Variables

Global JavaScript variables are variables that are defined outside of any function or block scope in JavaScript.

0objecteventundefinedonbeforetoggleobjectfenceobjectsharedStorageobjectdocumentPictureInPictureobjectfetchLaterfunctiononpageswapobjectonpagerevealobjectmodelobjectonscrollendobjectRobloxobject$functionjQueryfunctionminifyTestfunctionclearImmediatefunctionsetImmediatefunctionregeneratorRuntimeobjectHeaderScriptsobjectRobloxTracerobject_gaqobjecteventsArrobjectGoogleAnalyticsDisableRoblox2booleanEventTrackerobjectIntlPolyfillobjectGoogleAnalyticsEventsobjectmakeGoogleAnalyticsLogObjectfunctionGoogleAnalyticsTimingTrackerfunctionRBXBaseEventListenerfunctionRobloxErrorfunctionjQuery1111034753943724844216object_functionRobloxEventManagerobjectGoogleListenerobjectmCustomScrollbarbooleanCoreUtilitiesobjectCoreRobloxUtilitiesobjectReactobjectReactJSXobjectReactDOMobjectReactDOMServerobjectReactReduxobjectReactRouterobjectReactRouterDOMobjectReduxobjectReduxThunkobjectPropTypesobjectTanstackQueryobjectWebBloxobject__SENTRY__objectReactUtilitiesobjectflatpickrfunctionReactStyleGuideobjectSentryobject__sentry_instrumentation_handlers__objectConfigureWebAppsobjectStaticBundlesInfoobjectrobloxAppobjectangularobjectRobloxThumbnailsobjectRobloxPresenceobject2f1acc6c3a606b082e5eef5e54414ffbnumberRobloxBadgesobjectRobloxItemPurchaseobjecteventKeystring

Technology

The technologies identified are present on the scanned URL.

Name	Description	Detected patterns
JavaScript frameworks
AngularJS https://angularjs.org	AngularJS is a JavaScript-based open-source web application framework led by the Angular Team at Google.	Type: html Regex: <(?:div\|html)[^>]{1,250}ng-app=
Security
HSTS https://www.rfc-editor.org/rfc/rfc6797#section-6.1	HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.	Type: headers Name: strict-transport-security Regex: (?:)
Miscellaneous
HTTP/3 https://httpwg.org/	HTTP/3 is the third major version of the Hypertext Transfer Protocol used to exchange information on the World Wide Web.	Type: headers Name: alt-svc Regex: h3
CDN
Amazon S3 https://aws.amazon.com/s3/	Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.	Type: headers Name: server Regex: s3[^ ]{0,250}amazonaws\.com
PaaS
Amazon Web Services https://aws.amazon.com/	Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.	Dependent on Amazon S3

DNS Record

A DNS record maps a domain name to an IP address or other resource information.

Type	Name	Content	DNSSEC
CNAME	www.roblox.com	titanium.roblox.com.	no
CNAME	titanium.roblox.com	edge-term4.roblox.com.	no
CNAME	edge-term4.roblox.com	edge-term4-ams2.roblox.com.	no
A	edge-term4-ams2.roblox.com	128.116.21.3	no
CNAME	www.roblox.com	titanium.roblox.com.	no
CNAME	titanium.roblox.com	edge-term4.roblox.com.	no
CNAME	edge-term4.roblox.com	edge-term4-ams2.roblox.com.	no

SSL Certificate

An SSL certificate is a digital certificate that verifies the authenticity and encrypts the communication between a website and its visitors.

Subject	Issue date	Expiry date	Valid
www.roblox.com	3/8/2026	3/9/2027	1 year 1 day
css.rbxcdn.com	3/8/2026	3/9/2027	1 year 1 day
static.rbxcdn.com	3/8/2026	3/9/2027	1 year 1 day
js.rbxcdn.com	3/8/2026	3/9/2027	1 year 1 day
images.rbxcdn.com	3/8/2026	3/9/2027	1 year 1 day
roblox.com	3/8/2026	3/9/2027	1 year 1 day
metrics.roblox.com	3/8/2026	3/9/2027	1 year 1 day
ecsv2.roblox.com	3/8/2026	3/9/2027	1 year 1 day
apis.roblox.com	3/8/2026	3/9/2027	1 year 1 day

HTTP Header

An HTTP header is a component of an HTTP request or response that contains additional information about the message being sent or received.

Name	Value
cache-control	no-store, must-revalidate, no-cache
content-encoding	br
content-security-policy	report-uri https://metrics.roblox.com/v1/csp/report?type=enforce; upgrade-insecure-requests; script-src 'self' 'unsafe-inline' apis.roblox.com roblox.com .evidon.com .gigya.com .google-analytics.com .ns1p.net adservice.google.com cdn.arkoselabs.com connect.facebook.net funcaptcha.com js.rbxcdn.com js.stripe.com long.open.weixin.qq.com midas.gtimg.cn radar.cedexis.com res.wx.qq.com roblox-api.arkoselabs.com arkoselabs.roblox.com roblox-load-generator-configuration.s3.us-east-2.amazonaws.com s.ytimg.com sb.scorecardresearch.com static.rbxcdn.com www.google.com www.gstatic.com www.youtube.com h.online-metrix.net request.eprotect.vantivcnp.com request.eprotect.vantivpostlive.com .googletagmanager.com .googleadservices.com googleads.g.doubleclick.net cdn.veriff.me .lightstep.com client-api.arkoselabs.com api.arkoselabs.com .sierra.chat sierra.chat sc-static.net .sc-static.net .snapchat.com .tapad.com analytics.tiktok.com cdn.safecharge.com; img-src 'self' data: .cloudfront.net .gilcdn.com .gldcdn.com .google-analytics.com .google.com .kaptcha.com .rblx.org .rbxcdn.com .roblox.com .robloxlabs.com googleads.g.doubleclick.net i.ytimg.com www.googletagmanager.com robloxcorp.s.llnwi.net roblox-poc.global.ssl.fastly.net d1unuk07s6td74.cloudfront.net .sierra.chat sierra.chat .stripe.com .tarobicdn.com .tarobidevsandboxcdn.com www.facebook.com .snapchat.com .safecharge.com; connect-src 'self' .roblox.com .robloxlabs.com .rblx.org .rbx.com .rbxcdn.com .roblox.cn .simulpong.com .lightstep.com .ns1p.net .arkoselabs.com .kaptcha.com .google.com .google-analytics.com .doubleclick.net .sentry.io wss://realtime.roblox.com wss://realtime.sitetest1.robloxlabs.com wss://realtime.sitetest2.robloxlabs.com wss://realtime.sitetest3.robloxlabs.com wss://realtime-signalr.roblox.com .braintree-api.com .braintreegateway.com d1q2u37vreaobr.cloudfront.net funcaptcha.com robloxcorp.s.llnwi.net roblox-poc.global.ssl.fastly.net d1unuk07s6td74.cloudfront.net .sierra.chat sierra.chat sc-static.net .sc-static.net .snapchat.com .tapad.com analytics.tiktok.com *.safecharge.com;
content-type	text/html; charset=utf-8
cross-origin-opener-policy	same-origin-allow-popups
date	Mon, 09 Mar 2026 05:30:40 GMT
nel	{"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1}
report-to	{"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://ncs.roblox.com/upload"}]}
roblox-machine-id	8edaba42-22fb-0f5e-4f08-1f3188868ca9
server	website
strict-transport-security	max-age=31536000
transfer-encoding	chunked
vary	Accept-Encoding
x-frame-options	SAMEORIGIN
x-roblox-edge	c096
x-roblox-region	us-central_rbx

Content Security Policy

Content Security Policy (CSP) is a security mechanism that helps prevent cross-site scripting (XSS) and other code injection attacks by specifying which content sources are allowed to be loaded on a web page.

Name	Value
report-uri	https://metrics.roblox.com/v1/csp/report?type=enforce
upgrade-insecure-requests
	script-src'self''unsafe-inline'apis.roblox.comroblox.com.evidon.com.gigya.com.google-analytics.com.ns1p.netadservice.google.comcdn.arkoselabs.comconnect.facebook.netfuncaptcha.comjs.rbxcdn.comjs.stripe.comlong.open.weixin.qq.commidas.gtimg.cnradar.cedexis.comres.wx.qq.comroblox-api.arkoselabs.comarkoselabs.roblox.comroblox-load-generator-configuration.s3.us-east-2.amazonaws.coms.ytimg.comsb.scorecardresearch.comstatic.rbxcdn.comwww.google.comwww.gstatic.comwww.youtube.comh.online-metrix.netrequest.eprotect.vantivcnp.comrequest.eprotect.vantivpostlive.com.googletagmanager.com.googleadservices.comgoogleads.g.doubleclick.netcdn.veriff.me.lightstep.comclient-api.arkoselabs.comapi.arkoselabs.com.sierra.chatsierra.chatsc-static.net.sc-static.net.snapchat.com*.tapad.comanalytics.tiktok.comcdn.safecharge.com
	img-src'self'data:.cloudfront.net.gilcdn.com.gldcdn.com.google-analytics.com.google.com.kaptcha.com.rblx.org.rbxcdn.com.roblox.com.robloxlabs.comgoogleads.g.doubleclick.neti.ytimg.comwww.googletagmanager.comrobloxcorp.s.llnwi.netroblox-poc.global.ssl.fastly.netd1unuk07s6td74.cloudfront.net.sierra.chatsierra.chat.stripe.com.tarobicdn.com.tarobidevsandboxcdn.comwww.facebook.com.snapchat.com.safecharge.com
	connect-src'self'.roblox.com.robloxlabs.com.rblx.org.rbx.com.rbxcdn.com.roblox.cn.simulpong.com.lightstep.com.ns1p.net.arkoselabs.com.kaptcha.com.google.com.google-analytics.com.doubleclick.net.sentry.iowss://realtime.roblox.comwss://realtime.sitetest1.robloxlabs.comwss://realtime.sitetest2.robloxlabs.comwss://realtime.sitetest3.robloxlabs.comwss://realtime-signalr.roblox.com.braintree-api.com.braintreegateway.comd1q2u37vreaobr.cloudfront.netfuncaptcha.comrobloxcorp.s.llnwi.netroblox-poc.global.ssl.fastly.netd1unuk07s6td74.cloudfront.net.sierra.chatsierra.chatsc-static.net.sc-static.net.snapchat.com.tapad.comanalytics.tiktok.com.safecharge.com

Cookies

Cookies are small pieces of data stored on a user's web browser to track and remember information about their browsing activity on a website.

Name	Value	Domain/Path	Expires	Secure	HTTP Only
rbx-ip2	1	.roblox.com/	3/9/2026, 6:30:42 AM	no	no
RBXEventTrackerV2	CreateDate=03/09/2026 00:30:41&rbxid=&browserid=1773034241137002	.roblox.com/	4/13/2027, 5:30:41 AM	no	no
GuestData	UserID=-1899277624	.roblox.com/	4/13/2027, 5:30:41 AM	no	no
RBXPaymentsFlowContext	ce479f82-8419-4ee6-816f-a8e5a3b20fff,	.roblox.com/	3/9/2026, 5:40:42 AM	no	no

URL Scan Results for the page [Roblox](https://www.roblox.com/request-error?code=404)

URL basic Information and screenshot