{"report_id":"65d307e9-8653-47ae-9589-fe4db3d86a26","version":6,"status":"done","tags":[],"date":"2026-02-22T13:36:37Z","url":{"schema":"http","addr":"wap.tiktokshopwholesale.com","fqdn":"wap.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"162.0.220.217","port":0,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"wap.tiktokshopwholesale.com/#/","fqdn":"wap.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"title":"Tiktok-Wholesale","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"wap.tiktokshopwholesale.com","fqdn":"wap.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"162.0.220.217","port":0,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-03-29T13:36:37Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":7}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-22","alert":"Phishing Block","trigger":"wap.tiktokshopwholesale.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"tiktokshopwholesale.com","ip":{"addr":"162.0.220.217","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"domain_registered":"2024-11-21","domain_rank":0,"first_seen":"2025-07-18T14:09:17.689558Z","last_seen":"2026-02-22T11:44:14.294516Z","alert_count":17,"request_count":17,"received_data":71939,"sent_data":9424,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"go.detmir.st","ip":{"addr":"95.129.232.180","port":443,"asn":57724,"as":"Ddos-guard Ltd","country":"Russia","country_code":"RU"},"domain_registered":"2017-05-05","domain_rank":2937470,"first_seen":"2018-12-26T07:29:19Z","last_seen":"2026-02-22T11:44:13.391Z","alert_count":0,"request_count":1,"received_data":124270,"sent_data":550,"comment":"","tags":null,"fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}]},{"fqdn":"n.nordstrommedia.com","ip":{"addr":"151.101.130.132","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2016-04-05","domain_rank":171403,"first_seen":"2016-05-14T02:03:11Z","last_seen":"2026-02-22T11:44:13.393076Z","alert_count":0,"request_count":1,"received_data":16373,"sent_data":491,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.27.5","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}]},{"fqdn":"cdn.dcloud.net.cn","ip":{"addr":"124.220.205.65","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"domain_registered":"2013-07-17","domain_rank":296858,"first_seen":"2018-09-15T09:18:08Z","last_seen":"2026-02-18T18:45:46.380812Z","alert_count":0,"request_count":1,"received_data":578,"sent_data":458,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"imgs.tiktokshopwholesale.com","ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"domain_registered":"2024-11-21","domain_rank":0,"first_seen":"2025-07-18T14:09:17.69346Z","last_seen":"2026-02-22T11:44:14.133986Z","alert_count":66,"request_count":66,"received_data":6254653,"sent_data":37417,"comment":"","tags":null,"fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"wap.tiktokshopwholesale.com","ip":{"addr":"162.0.220.217","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"domain_registered":"2024-11-21","domain_rank":0,"first_seen":"2025-07-18T14:09:17.692226Z","last_seen":"2026-02-22T11:44:13.171654Z","alert_count":90,"request_count":18,"received_data":5202293,"sent_data":8720,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"wap.tiktokshopwholesale.com/","fqdn":"wap.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"162.0.220.217","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"93368157fb131b56a45d6f60f8b40342","sha1":"ea2a25edb7b00c3e0a06650f02fded5bd87dfa20","sha256":"c48d4859bc082aa591168f7d7230bef438ecc2b3074e707c83864e11ec1a891f","sha512":"366c90d022f7fd6718d76460de51a154cf6cf8bf8e3aefa2e0e736cbba24ec53506485331abd3c3c2a7e6ae00c9a3b957a9aa675ecdd389afca7863ad8365908","ssdeep":"","tlshash":"c8e068c260a6294c02208016304ac1031bb608729ec149613c4c67a58fb9f4bc46e859","size":352,"data":"","first_seen":"2023-03-07T01:10:06Z","last_seen":"2026-06-27T06:17:23.727094Z","times_seen":4148,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wap.tiktokshopwholesale.com/static/js/chunk-vendors.04b28ea6.js","fqdn":"wap.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"162.0.220.217","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"b3e9c9c18a6673ed7a025d74840e70d0","sha1":"68f5961fe90b9aeb21ede16f10263ca9fe765e4a","sha256":"75fd0a9bee8383e05e5db603a4f1e222fc7cd2b5feb3f420247427be6d829ed8","sha512":"4f04127f082a109e4abf061995c590f425e94b500ee3ff53c0251ef6960d606e34c59a2405a575adc9c92fdb2a13a6fd0f5c371e257b2ee287ab5a5e5a3f5007","ssdeep":"6144:KXpQLqqDHdeGOFQXtwTf374bM3XYmvkNTMGYEvm/40+QhRV1vSz/eGgEYJRh:KZgWrQdwTfvXY4ktai0jvSz8Eu","tlshash":"0605f88df281b0b60ae760b5403f220bb2376959b40a84d8f675e4d4ad78d4e6237f7d","size":846036,"data":"","first_seen":"2025-11-28T00:42:08.748299Z","last_seen":"2026-04-25T02:59:25.322621Z","times_seen":12,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wap.tiktokshopwholesale.com/static/js/index.363cbbaf.js","fqdn":"wap.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"162.0.220.217","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"c2ded1b6a6df057d26bd2f0de415be40","sha1":"1e796cabc3158656fb4a233ef633fbcbf9b2194d","sha256":"03e0645843b22347fd1e8c1fc0f7b073b8a231c066f021ac32f98a45a7d2930d","sha512":"ec6a75c8c08ca0b90fbb908cc5cb5101fc0ed422d6f3ee7337718bd3aed7162e2acda5e01cffdd7499df2ca99e8533986aaa4ef65bae81f0a4cbee3e5a84d161","ssdeep":"24576:CidRomFbCoxa5Q8CgsaIc1l4QeagfAAhU51u2AG690N4InOwIdjIr9R:CidRomFblxa5Q8CgsaIc1l4QeagfAAhi","tlshash":"6a057d0d507d1caf164d928af48f1a0d72f4199686c9f870b7b9c8ecbf99a19b3d3214","size":805313,"data":"","first_seen":"2025-11-28T00:42:08.876441Z","last_seen":"2026-04-25T02:59:25.415289Z","times_seen":12,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wap.tiktokshopwholesale.com/static/js/pages-cart-cart~pages-category-category~pages-categorys-categorys~pages-detail-detail~pages-index-in~253c8084.759513e9.js","fqdn":"wap.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"162.0.220.217","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"78ce4310437dfad9124e1426f48f03b9","sha1":"2681ae74dd6e175fafcc89fc1088fac619b23113","sha256":"ce80d8e925a726dec835d4b6def538ed1882ae30c65cd4da26d6c6215549a5ce","sha512":"e7d2b2bf849bf496d017e7e734edb213b9e42ff2cab4805e5f9218e77acf2d774cd9e9065d373fe40833ca261fdfcc2d526ce53085fb1716c53a2ba964629885","ssdeep":"384:E3ChtgcdCHkLAz7Vxr0DRYYxU1IEGbUcGTaERUSAcxEwcu:MCscdCHkLAz7VxrKRLxU1IEGbCRRZVEy","tlshash":"7b72e988f4c6f44601d360b2803f8209513bb9997567a55c77baeaf24e6ca8d2353f3c","size":16895,"data":"","first_seen":"2025-11-28T00:42:08.714535Z","last_seen":"2026-04-25T02:59:25.386479Z","times_seen":12,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wap.tiktokshopwholesale.com/static/js/pages-cart-cart~pages-category-category~pages-detail-detail~pages-index-index~pages-member-member~pa~396c1bec.a8e477c4.js","fqdn":"wap.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"162.0.220.217","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"d8402f403f44f6fc06766a31c76d0f2b","sha1":"547bcd7fbe32294c1029e7e50cc57d70b55d0748","sha256":"f76118c699decb32c039d40e779c9957b304586c2381e0fd8486f82bcf06bab9","sha512":"544df44d15534390bd6f91078531c2f969d2f71c9fb2ab2ee0251843fe366807ba2cec31dadcb2a5ac5c9c6f50b97cfbdfcbf29282b421b0df42dfd66e02f2cd","ssdeep":"3072:ImuSfb0K+ds4YjESFNOBuLgGC1dq74pJIkj6JhMKSiX+F8Ot2tNtdtcoj3Tzg4TB:IWfbX4YTFNOBbGC1dqSiX+F8cLhhe","tlshash":"9ff4d9713aac708ca037c3224ad15be923297f03b75356ea6753a167ce475623b1fb84","size":787283,"data":"","first_seen":"2025-11-28T00:42:08.756234Z","last_seen":"2026-04-25T02:59:25.31875Z","times_seen":12,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wap.tiktokshopwholesale.com/static/js/pages-index-index.d941c3da.js","fqdn":"wap.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"162.0.220.217","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"ef0250a5a6ff4f72d5d31326dacb5464","sha1":"e3414cc8a3e7819c247f408bb884643616db2dac","sha256":"eebd0bc98a85ad31868dcb9cef6cc620828c294667bcc058e061e5f619903671","sha512":"c8cfb3f5e1126742ef9907d8bf83c2f523989556bfbd5340d91eda7f9ed94e19c97912955738dc141b6e0ac64c30de83be5a0536b22389bd664577e80d1cb135","ssdeep":"12288:XrwnPCpZFMSAnmsGgDwHXSvZqKF2tQCBv:XrwPCvFMSAdGgDaXShq1v","tlshash":"9f8531616a4c3359603fc02668a3574c7319b3d76742dfeeb6a52d25ef436b2323b248","size":1768684,"data":"","first_seen":"2025-11-28T00:42:08.873565Z","last_seen":"2026-04-25T02:59:25.413035Z","times_seen":11,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":[{"md5":"3d5272693eb411e5b8b13a243f76c720","sha1":"6a586ab8e0a4bf12bbc60eea6ca9f2418625a22c","sha256":"9582f31f9eb892b8823a780e579d464d54e26d97d65dc327d2b2bdd92d47c4b8","sha512":"03fc5614f48fc9a2e3c4a30626fdbacde74c1fda09ffa9d1cde0393d31cd5fe1588e270c241f4cedb473c6e5cc224ff16c141468a29519ea6159accf3e3a18f1","ssdeep":"","tlshash":"a4c08c8350e2080c8210861b848880050b8808b04f9308a22cd85b7ecc9ae88c8f804c","size":148,"data":"","first_seen":"2023-03-07T01:10:06Z","last_seen":"2026-06-07T08:18:02.151537Z","times_seen":15899,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"console":null},"http":[{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/2913/2913.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:Dngz49L5GGVj9jIjEEq-9vfSpaU=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.737Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/2913/2913.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:Dngz49L5GGVj9jIjEEq-9vfSpaU= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 175544\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"2913.jpg\"; filename*=utf-8''2913.jpg\r\ncontent-md5: OHQ/sPsNjwJ1RiNHR8ucpw==\r\ncontent-transfer-encoding: binary\r\netag: \"FtOAPpYQTkiFZonDI70-RQLnv99p\"\r\nlast-modified: Tue, 11 Jun 2024 21:46:28 GMT\r\nx-private: 1\r\nx-reqid: ndsAAPdVUjEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":175544,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 1395x1500, components 3","md5":"38743fb0fb0d8f027546234747cb9ca7","sha1":"d3803e96104e48856689c323bd3e4502e7bfdf69","sha256":"7a4d5515823cbfb1db273211ad5843844cbbe0f7482099af8d4c7b9cfde708de","sha512":"b678b37039dd0089bc3e30338abd91e2bd3d3a50c621e86456d951800c868ef969af080bfccd3ae2739b92147959049a2a197a244441140ce35bbfb23822f046","ssdeep":"3072:F90qxyGw/vx/0dVTYO81ZRul8H2f5GavqLiiv42+Ujnw8BPmrCBMd/:nTTevxMd5k1Zcl8H2fcgqLiRUjw8QCBQ","tlshash":"1d047e539c4587c3e52987e8be131eac6f196b4de9963aff05620fc73a216324d4e02d","first_seen":"2026-02-22T13:36:51.186087Z","last_seen":"2026-02-22T13:36:51.186087Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1754,"timings":{"blocked":496,"dns":0,"connect":0,"send":0,"wait":656,"receive":602,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"wap.tiktokshopwholesale.com/favicon.ico","fqdn":"wap.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"162.0.220.217","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:12.114Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"wap.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 08 Jan 2026 15:40:42 GMT","end":"Wed, 08 Apr 2026 15:40:41 GMT"},"fingerprint":{"sha1":"4D:90:8B:48:5A:03:E7:A1:F8:40:19:BC:A1:8F:2B:93:9A:B2:DF:2E","sha256":"65:5C:25:EF:07:09:08:81:9D:DC:30:11:6A:82:A4:A1:56:2F:4B:8B:53:73:1F:74:73:58:C4:5F:33:C6:D1:7D"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: wap.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Sun, 22 Feb 2026 13:36:12 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-06-27T07:33:32.646081Z","times_seen":531684,"resource_available":true,"data":null}},"time_used":155,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":155,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-22","alert":"Phishing Block","trigger":"wap.tiktokshopwholesale.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"wap.tiktokshopwholesale.com/static/iconfont.ttf?t=1743818639692","fqdn":"wap.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"162.0.220.217","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:12.860Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"wap.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 08 Jan 2026 15:40:42 GMT","end":"Wed, 08 Apr 2026 15:40:41 GMT"},"fingerprint":{"sha1":"4D:90:8B:48:5A:03:E7:A1:F8:40:19:BC:A1:8F:2B:93:9A:B2:DF:2E","sha256":"65:5C:25:EF:07:09:08:81:9D:DC:30:11:6A:82:A4:A1:56:2F:4B:8B:53:73:1F:74:73:58:C4:5F:33:C6:D1:7D"}}},"request":{"raw":"GET /static/iconfont.ttf?t=1743818639692 HTTP/1.1\r\nHost: wap.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 22 Feb 2026 13:36:12 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 27500\r\nlast-modified: Sun, 16 Nov 2025 20:07:14 GMT\r\netag: \"691a2ef2-6b6c\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":27500,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, 11 tables, 1st \"GSUB\", 18 names, Macintosh, Created by iconfonticonfontRegulariconfonticonfontVersion 1.0iconfontGenerated by svg2ttf from F","md5":"62b83cf1aa547694accde3af627d9d65","sha1":"76d307374e0cc27d4bd5c8f956bfd901ee16228b","sha256":"abdf7e68457f96de20758ab77e3f32934fa656bee428f2ea46bec7db4128132c","sha512":"6e640b0e5a01c324080628cb4f7d465c0a2dde28ffedf3df4e50a8ed886ee535398878b1cc50f11d47a1c53034db3bf07161b7dda0d1781912542cbe9e8a3e11","ssdeep":"768:jjYzhhG1a/O6XCf7Mf+IIxdiJ45InkLGF:jmhGa/O6XCfof+II6ka","tlshash":"70c27e9113fd5e2aee79867f0c6b92038ff9ba20e130e6a7fd8d655a540a4f404d4b0c","first_seen":"2025-07-18T14:09:30.955125Z","last_seen":"2026-04-25T02:59:25.342869Z","times_seen":17,"resource_available":false,"data":null}},"time_used":287,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":282,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-22","alert":"Phishing Block","trigger":"wap.tiktokshopwholesale.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tiktokshopwholesale.com/web/v1/category/getCategoryList","fqdn":"tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"162.0.220.217","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.272Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 08 Jan 2026 15:39:21 GMT","end":"Wed, 08 Apr 2026 15:39:20 GMT"},"fingerprint":{"sha1":"AC:F7:E9:AC:82:C3:F4:D3:BF:C1:5B:2F:0E:5B:97:D8:66:42:8D:89","sha256":"33:E2:5F:E7:5D:B5:BA:9F:52:13:33:4E:EE:09:06:3A:A6:2B:B9:29:E2:29:0F:B9:5F:34:02:5E:D8:F9:4D:40"}}},"request":{"raw":"POST /web/v1/category/getCategoryList HTTP/1.1\r\nHost: tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-us\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 0\r\nOrigin: https://wap.tiktokshopwholesale.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 22 Feb 2026 13:36:13 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\naccess-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS\r\naccess-control-allow-headers: Authorization, Content-Type, If-Match, If-Modified-Since, If-None-Match, If-Unmodified-Since, X-CSRF-TOKEN, X-Requested-With\r\naccess-control-allow-origin: https://wap.tiktokshopwholesale.com\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":34213,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"30004dfb4c7981451a18f27ce85f3250","sha1":"4079f2f7966c3d8e78a9d09dd2d33b8f640444d4","sha256":"313c5376640258c878c269d233cd0f2e1f45c3c20f8c52052b6dad0ccf603ced","sha512":"cabf1f2275fd42482327095bab4c424e865d88e4c7e4ef1be30156ef4afdf19cd9e1bf76ed7d3a9d0e0aa055d5ce1803bdb5da05ca87685a160251df99d4c557","ssdeep":"768:b3Vw+UlLhiIMt0zt0Cud4XwvLFmvDzqR4UZacQ:blD7GxVXnzqR4UZacQ","tlshash":"f7e28efd09141dbfe63429f898cb239ef6e85c5f39e93fc814404b28914ead62d0656b","first_seen":"2025-07-18T14:09:31.03369Z","last_seen":"2026-04-25T02:59:25.37758Z","times_seen":17,"resource_available":false,"data":null}},"time_used":187,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":187,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/35139/35139.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:XyyjVTtukdJ3_9x9ho_FYUZHYrA=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.548Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /uploads/goods/35139/35139.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:XyyjVTtukdJ3_9x9ho_FYUZHYrA= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-27T07:34:25.483791Z","times_seen":16755627,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/53105/53105.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:YiIONSxuuVOFcE2J5GYz3fCNZ74=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.724Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/53105/53105.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:YiIONSxuuVOFcE2J5GYz3fCNZ74= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 111843\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"53105.jpg\"; filename*=utf-8''53105.jpg\r\ncontent-md5: SfbdvJtv9r5fuZWPoC4lDg==\r\ncontent-transfer-encoding: binary\r\netag: \"Fr2owcU8Sh1qT9BRAjBraTPmO0RC\"\r\nlast-modified: Fri, 14 Jun 2024 22:12:07 GMT\r\nx-private: 1\r\nx-reqid: SN0AAP7UEjEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":111843,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 800x800, components 3","md5":"49f6ddbc9b6ff6be5fb9958fa02e250e","sha1":"bda8c1c53c4a1d6a4fd05102306b6933e63b4442","sha256":"cd48a202b00c36b2f8b0a91b22b3f4f9a747c9707ae58ce76141bbdbe8be2ff0","sha512":"80d45249e8e67af99c7794d032c3632a976a652047936a0df21fabdf6e04a98d6eb6764e4eac37fd0dad1635c19cb7ba9fe7437263ef7810daa2f73529de08b1","ssdeep":"3072:4QRUTCWE6QoAHroqGSCXGU/uPAz0aM1k08l79Y:4QiTCWlyGSrU/CAz3c34W","tlshash":"93b312ae506bc704d3d0286a26fcb93e49c35ea4c4c34fb97f5384b0910be6dca46392","first_seen":"2026-02-22T13:36:51.190817Z","last_seen":"2026-02-22T13:36:51.190817Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1634,"timings":{"blocked":508,"dns":0,"connect":0,"send":0,"wait":656,"receive":470,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/58427/58427.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:w4l94HJ6D_LrY3DVteSLpFn2W8U=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.826Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/58427/58427.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:w4l94HJ6D_LrY3DVteSLpFn2W8U= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 79521\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"58427.jpg\"; filename*=utf-8''58427.jpg\r\ncontent-md5: /ViF56XEODQkJDFBX5rWfA==\r\ncontent-transfer-encoding: binary\r\netag: \"FvDXG7USNIaCnpN99CziFOoGULx1\"\r\nlast-modified: Sun, 16 Jun 2024 11:34:29 GMT\r\nx-private: 1\r\nx-reqid: ndsAAEwNXDEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":79521,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 750x750, components 3","md5":"fd5885e7a5c43834242431415f9ad67c","sha1":"f0d71bb5123486829e937df42ce214ea0650bc75","sha256":"9b1521f6f0f110c5d60ce45ac01ca7829d5178ca27ab224e740e3fcc623cbb05","sha512":"ba8f31b82547ff9ab9b0a0c378b266dc00060e0bc0e5c1b11da75d52476c44a647d3fad86f1fc4207bfc56e4b962a46ec838b52e30a3a1608f43315ea0c0000e","ssdeep":"1536:Z23k3r9qEe3HQ3zIT6yjhltjfbDU3jYiHD7cWF0ZVeH1BeFv+WnENH+:Z2KSw3sT3jhTjfkTYcMBjQWRae","tlshash":"937302972b264c27eb01963b22e1eec78db3f3d056858df1b2770654b5843d6e30b299","first_seen":"2026-02-22T13:36:51.192027Z","last_seen":"2026-02-22T13:36:51.192027Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1463,"timings":{"blocked":410,"dns":0,"connect":0,"send":0,"wait":643,"receive":410,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/57197/57197.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:zLMpm8Ot2FflPbIOmScaA8Z6bDY=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.829Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/57197/57197.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:zLMpm8Ot2FflPbIOmScaA8Z6bDY= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 34052\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"57197.jpg\"; filename*=utf-8''57197.jpg\r\ncontent-md5: ZHTR1AVfzTTrQcBFTQ0eQA==\r\ncontent-transfer-encoding: binary\r\netag: \"FojnwHhoOtrWAaOcJlJesDQn7xas\"\r\nlast-modified: Sun, 16 Jun 2024 02:13:43 GMT\r\nx-private: 1\r\nx-reqid: L7gAAARAUTEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":34052,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 800x800, components 3","md5":"6474d1d4055fcd34eb41c0454d0d1e40","sha1":"88e7c078683adad601a39c26525eb03427ef16ac","sha256":"9e3b31d5ad0b4672987ac695f6537553050c446ef9e1a52bfbb2f72df0a65f46","sha512":"e7b1009ffd21fb0466c6844458ef828ff36849cb382451cb5fbe836038ab1e26c4274f49ecbcb77cdaf7f67f9fceca7d14acec21cb611345bcc73b2329a08a66","ssdeep":"768:zLwZOee5wFVFsEDCoEo8eRcpujDO1Pm6ouig5FeMx3M4wd5c5Sq:zeOf5HAE6RdO1+6zig59wdqL","tlshash":"dae2f10b55616fc1fb78073ef31f6a96d1bcd6aad994723b3a0a827d2332d312c94911","first_seen":"2026-02-22T13:36:51.192804Z","last_seen":"2026-02-22T13:36:51.192804Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1664,"timings":{"blocked":408,"dns":0,"connect":0,"send":0,"wait":644,"receive":612,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"wap.tiktokshopwholesale.com/static/index.883130ca.css","fqdn":"wap.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"162.0.220.217","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:10.609Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"wap.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 08 Jan 2026 15:40:42 GMT","end":"Wed, 08 Apr 2026 15:40:41 GMT"},"fingerprint":{"sha1":"4D:90:8B:48:5A:03:E7:A1:F8:40:19:BC:A1:8F:2B:93:9A:B2:DF:2E","sha256":"65:5C:25:EF:07:09:08:81:9D:DC:30:11:6A:82:A4:A1:56:2F:4B:8B:53:73:1F:74:73:58:C4:5F:33:C6:D1:7D"}}},"request":{"raw":"GET /static/index.883130ca.css HTTP/1.1\r\nHost: wap.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 22 Feb 2026 13:36:10 GMT\r\ncontent-type: text/css\r\nlast-modified: Sun, 16 Nov 2025 20:07:14 GMT\r\nvary: Accept-Encoding\r\netag: W/\"691a2ef2-1793e\"\r\nexpires: Mon, 23 Feb 2026 01:36:10 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":96574,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"2de2f2d3943b4b382a28a439daff5939","sha1":"70d04e1c3567cb4f248b29046b98386f215a4d38","sha256":"8a35934d019c2b120a31ae6c51c75b2327f22637824b2a2c2faf4ce17ae9d4d8","sha512":"eba9271e30d6e4b21954078e3ccd839a55e1dcc8212fa375c18dce42104d19a92655c2f289401525b0c9565971a31573b928666515a3ca89b1801bbd48c1de95","ssdeep":"1536:OlIApuK7hmVmb2RS1Wu3xdynGJ7eh/nrhlvbc:VApuK7hmVrS1Wu3iG41nrPI","tlshash":"f393f73719012e39e52bcd26b6c1ab5a1e61c033e15307adfba47628cbcf9c9167b345","first_seen":"2025-07-20T12:48:29.443135Z","last_seen":"2026-06-27T06:17:23.715942Z","times_seen":2715,"resource_available":false,"data":null}},"time_used":312,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":312,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-22","alert":"Phishing Block","trigger":"wap.tiktokshopwholesale.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tiktokshopwholesale.com/web/v1/home/getTopGoods","fqdn":"tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"162.0.220.217","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:12.628Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 08 Jan 2026 15:39:21 GMT","end":"Wed, 08 Apr 2026 15:39:20 GMT"},"fingerprint":{"sha1":"AC:F7:E9:AC:82:C3:F4:D3:BF:C1:5B:2F:0E:5B:97:D8:66:42:8D:89","sha256":"33:E2:5F:E7:5D:B5:BA:9F:52:13:33:4E:EE:09:06:3A:A6:2B:B9:29:E2:29:0F:B9:5F:34:02:5E:D8:F9:4D:40"}}},"request":{"raw":"OPTIONS /web/v1/home/getTopGoods HTTP/1.1\r\nHost: tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nOrigin: https://wap.tiktokshopwholesale.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\nserver: nginx\r\ndate: Sun, 22 Feb 2026 13:36:13 GMT\r\naccess-control-allow-origin: *\r\naccess-control-max-age: 1800\r\naccess-control-allow-methods: GET, POST, PATCH, PUT, DELETE\r\naccess-control-allow-headers: *\r\nallow: POST\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-27T07:34:25.483791Z","times_seen":16755627,"resource_available":true,"data":null}},"time_used":862,"timings":{"blocked":330,"dns":0,"connect":154,"send":0,"wait":199,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tiktokshopwholesale.com/web/v1/home/getTopGoods","fqdn":"tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"162.0.220.217","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.201Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 08 Jan 2026 15:39:21 GMT","end":"Wed, 08 Apr 2026 15:39:20 GMT"},"fingerprint":{"sha1":"AC:F7:E9:AC:82:C3:F4:D3:BF:C1:5B:2F:0E:5B:97:D8:66:42:8D:89","sha256":"33:E2:5F:E7:5D:B5:BA:9F:52:13:33:4E:EE:09:06:3A:A6:2B:B9:29:E2:29:0F:B9:5F:34:02:5E:D8:F9:4D:40"}}},"request":{"raw":"POST /web/v1/home/getTopGoods HTTP/1.1\r\nHost: tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-us\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 10\r\nOrigin: https://wap.tiktokshopwholesale.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":10,"data":"{\"type\":2}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 22 Feb 2026 13:36:13 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\naccess-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS\r\naccess-control-allow-headers: Authorization, Content-Type, If-Match, If-Modified-Since, If-None-Match, If-Unmodified-Since, X-CSRF-TOKEN, X-Requested-With\r\naccess-control-allow-origin: https://wap.tiktokshopwholesale.com\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6471,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"1b9e30ae0177c19ede0d30a16d61d06b","sha1":"309df9de008327a3999b1520572c50af9878e204","sha256":"53de0b052f74a7aee838761d7c9d293803cb42d7fb3436e477128098fb51706d","sha512":"ce82f971fd7cfcd6b6785fc8571396a225dbd78bca85b93d8a5da88d2e0ce4679ab01fda9cc3cb09052c1181e4dc6e08969165d7086278973d2e2fa0ca41fa57","ssdeep":"48:YdYyqpJAJ8rPYwzzS2kFnpaF4sSdWexs7yNyI2PvHH5+4L0mv1xJ1abYl2ENZ6PL:fyooUzcDa6dDsv5B1h/Um5x3mORk","tlshash":"75d1347fd690c0a4d9e01a907d8a775d8cc16b23a7d00fa2e7dd8f7884fc6e81521276","first_seen":"2026-02-22T13:36:51.194225Z","last_seen":"2026-02-22T13:36:51.194225Z","times_seen":1,"resource_available":false,"data":null}},"time_used":333,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":333,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/55458/55458.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:nfosN7aFGx5pHyK7K7dEOjNitR0=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.537Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /uploads/goods/55458/55458.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:nfosN7aFGx5pHyK7K7dEOjNitR0= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-27T07:34:25.483791Z","times_seen":16755627,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/35139/35139.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:XyyjVTtukdJ3_9x9ho_FYUZHYrA=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.621Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/35139/35139.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:XyyjVTtukdJ3_9x9ho_FYUZHYrA= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 37727\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"35139.jpg\"; filename*=utf-8''35139.jpg\r\ncontent-md5: HFyjDqChab7NlQNcb9Yelw==\r\ncontent-transfer-encoding: binary\r\netag: \"Fl8_Y38OFpZdLfT6-eLHV9sRSoQV\"\r\nlast-modified: Fri, 14 Jun 2024 13:27:27 GMT\r\nx-private: 1\r\nx-reqid: AeQAAOdaVTEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":37727,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 470x490, components 3","md5":"1c5ca30ea0a169becd95035c6fd61e97","sha1":"5f3f637f0e16965d2df4faf9e2c757db114a8415","sha256":"92761cfe8523935acfea2db46c824e63d35013bd26f28ac278f33c2e4b3fdf20","sha512":"1c19473be9bc0a7a2503d7adaf746c92aa5f2ac05412defe29810e7a63b4a1d3c45e6d0dbdff3889fbc945fc6238eec1e7ae233de3dff5f4bb1f428e9958f347","ssdeep":"768:CqjYq8Y0uAl9bQaXWgrHIVScwVImRdjYsRQV:dj7UrWEHIYciImRxYsA","tlshash":"6c03f16b9bd153bbf2430b780cb3b115dd326fa7709eb0886b00162d2c99d8b7675c81","first_seen":"2026-02-22T13:36:51.195241Z","last_seen":"2026-02-22T13:36:51.195241Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2309,"timings":{"blocked":630,"dns":237,"connect":131,"send":0,"wait":627,"receive":395,"ssl":279},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/69913/69913.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:wZ3o_8H4RrdJtnlTCey6OTBFEUU=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.728Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/69913/69913.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:wZ3o_8H4RrdJtnlTCey6OTBFEUU= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 182367\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"69913.jpg\"; filename*=utf-8''69913.jpg\r\ncontent-md5: +Qvn242zDaBGhfza0HxR7w==\r\ncontent-transfer-encoding: binary\r\netag: \"FlXdKZyO-j3bJGUGSDeqaPRb7C8U\"\r\nlast-modified: Sun, 16 Jun 2024 10:28:14 GMT\r\nx-private: 1\r\nx-reqid: K3wAAEl2DjEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":182367,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1001x1001, components 3","md5":"f90be7db8db30da04685fcdad07c51ef","sha1":"55dd299c8efa3ddb2465064837aa68f45bec2f14","sha256":"12900cd1de3728312b559654548fbb0bb9aff94c18d20850350f27aa1c4b9d0e","sha512":"4b33705540188eebc010ca52962dea53b7ecfd3c8ededcf4993831fbf09d9e405136a5d86094123edb2a7b77e997196680b039ad98abfc6b1eb39ddb00080d16","ssdeep":"3072:0IDpw3UR4Ez8a3Nox8jWhNUg3a3nmUSc01kinlfN81zv04MDKuLFhYvuVLCQBUtd:nw3Q4EQ8DEypf0T8Vv04hWhYs7BULvVp","tlshash":"110412fcbe24f7010518455f31e2f7cac46ce51e5b250d0bc079804a97615aadfebaac","first_seen":"2026-02-22T13:36:51.196163Z","last_seen":"2026-02-22T13:36:51.196163Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1599,"timings":{"blocked":505,"dns":0,"connect":0,"send":0,"wait":648,"receive":446,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tiktokshopwholesale.com/web/v1/home/getActivity","fqdn":"tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"162.0.220.217","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:12.643Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 08 Jan 2026 15:39:21 GMT","end":"Wed, 08 Apr 2026 15:39:20 GMT"},"fingerprint":{"sha1":"AC:F7:E9:AC:82:C3:F4:D3:BF:C1:5B:2F:0E:5B:97:D8:66:42:8D:89","sha256":"33:E2:5F:E7:5D:B5:BA:9F:52:13:33:4E:EE:09:06:3A:A6:2B:B9:29:E2:29:0F:B9:5F:34:02:5E:D8:F9:4D:40"}}},"request":{"raw":"OPTIONS /web/v1/home/getActivity HTTP/1.1\r\nHost: tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nOrigin: https://wap.tiktokshopwholesale.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\nserver: nginx\r\ndate: Sun, 22 Feb 2026 13:36:13 GMT\r\naccess-control-allow-origin: *\r\naccess-control-max-age: 1800\r\naccess-control-allow-methods: GET, POST, PATCH, PUT, DELETE\r\naccess-control-allow-headers: *\r\nallow: POST\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-27T07:34:25.483791Z","times_seen":16755627,"resource_available":true,"data":null}},"time_used":963,"timings":{"blocked":329,"dns":0,"connect":153,"send":0,"wait":295,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"wap.tiktokshopwholesale.com/static/cate/4.png","fqdn":"wap.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"162.0.220.217","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:12.844Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"wap.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 08 Jan 2026 15:40:42 GMT","end":"Wed, 08 Apr 2026 15:40:41 GMT"},"fingerprint":{"sha1":"4D:90:8B:48:5A:03:E7:A1:F8:40:19:BC:A1:8F:2B:93:9A:B2:DF:2E","sha256":"65:5C:25:EF:07:09:08:81:9D:DC:30:11:6A:82:A4:A1:56:2F:4B:8B:53:73:1F:74:73:58:C4:5F:33:C6:D1:7D"}}},"request":{"raw":"GET /static/cate/4.png HTTP/1.1\r\nHost: wap.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 22 Feb 2026 13:36:12 GMT\r\ncontent-type: image/png\r\nlast-modified: Sun, 16 Nov 2025 20:07:14 GMT\r\nvary: Accept-Encoding\r\netag: W/\"691a2ef2-1fcd5\"\r\nexpires: Tue, 24 Mar 2026 13:36:12 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":130261,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 268 x 365, 8-bit/color RGB, non-interlaced","md5":"a46586f6f3d9c8cad77a8a41fadcbef3","sha1":"dfae803a14f8c4741a3786b2ba967105b3190eb0","sha256":"c567430c78a18e2a944298f1c19cc98a963edd4e34f8121cf77e4e632bda9134","sha512":"27cc468c8daec25cf7d613a0c9ba2f2c188e1c34270c4cd6886d1dfb5f18479bb04d352c92624647a3c6dcb7bcdb97a9d956937d6c939489169efa52dfe45e8b","ssdeep":"3072:XPLTO5/hSx3984CEoWc64oaj4SWY/YqLRI9FBi:XPnO5/hg39gAatpL4F4","tlshash":"4bd32240970c4ef598517a75ae53a3a87ab5821556030e20a3cad715cbe8f3bbf33378","first_seen":"2025-07-18T14:09:30.979183Z","last_seen":"2026-04-25T02:59:25.313178Z","times_seen":19,"resource_available":false,"data":null}},"time_used":313,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":313,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-22","alert":"Phishing Block","trigger":"wap.tiktokshopwholesale.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/108354/108354.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:FlvaTCp1Kv_-hxjYFiKukjLElCo=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.516Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /uploads/goods/108354/108354.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:FlvaTCp1Kv_-hxjYFiKukjLElCo= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-27T07:34:25.483791Z","times_seen":16755627,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/59434/59434.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:J1iXPk50arHi0dnjIZmlALzf5yU=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.712Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/59434/59434.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:J1iXPk50arHi0dnjIZmlALzf5yU= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 50285\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"59434.jpg\"; filename*=utf-8''59434.jpg\r\ncontent-md5: uZA4/d6H/lLyF9o9EE9rIA==\r\ncontent-transfer-encoding: binary\r\netag: \"FphktNMd0tNIVSbjiLW-mslyhvN2\"\r\nlast-modified: Sun, 16 Jun 2024 18:01:10 GMT\r\nx-private: 1\r\nx-reqid: ndsAAMCSjCkKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":50285,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 800x800, components 3","md5":"b99038fdde87fe52f217da3d104f6b20","sha1":"9864b4d31dd2d3485526e388b5be9ac97286f376","sha256":"e053bf5d7932d958db41dc3f5ebbe58ea5ab101dc49d0d3f92e99c5415fb9e77","sha512":"bcda68dbad043679e604b40d726cd2e8f965156d9354e38fb99ecad3d44b21aa0b812a657d78ae6954a09b67dc780609c4836e1f702cca787b97cf34bc7d8bef","ssdeep":"768:rjDRaLCdj4uknYqRfhSKiqaHXRRDw7JawKZl74tQOtdckuCTqolWQck4BKow:rjDR5ds/YqL5mHbuow6lMtzYKeoENpw","tlshash":"1f33e0728c564995c9ba8cb183dd53946a05bcf31c77cee1810f79a5283fbc8e1aa64c","first_seen":"2026-02-22T13:36:51.19759Z","last_seen":"2026-02-22T13:36:51.19759Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1691,"timings":{"blocked":518,"dns":0,"connect":0,"send":0,"wait":570,"receive":603,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/98411/img.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:ANZjGZeC1ZQVUIfIrxpR8idD30U=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.799Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/98411/img.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:ANZjGZeC1ZQVUIfIrxpR8idD30U= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 54165\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"img.jpg\"; filename*=utf-8''img.jpg\r\ncontent-md5: DrYM5gK5Qm0YnbAWsI7rpA==\r\ncontent-transfer-encoding: binary\r\netag: \"FoReDDza2KmbspRiYc6MPPuO2XMB\"\r\nlast-modified: Fri, 21 Jun 2024 02:19:11 GMT\r\nx-private: 1\r\nx-reqid: 6J8AAISlSzEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":54165,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 250x250, components 3","md5":"0eb60ce602b9426d189db016b08eeba4","sha1":"845e0c3cdad8a99bb2946261ce8c3cfb8ed97301","sha256":"f14e19d25d9223e32ba3d6f2dfe3ca51faa1dea54505cce9a0a78610d44d40e3","sha512":"5b9eadc1a6479db2dd54fb555b182abb1b8f74a8165ab377b5ac025ad07089a6458e4a34097c3534d471296397b101497f285350b812d321dcf233163d742116","ssdeep":"768:AAjzTNaIm43fMwxx+kkFge4LhMxr8NYnIVKLpYgsIU7O/IOOkldXsh1W3fA5h6oF:pmWM7kk8FMxrVIVLLqvs2ponNEo","tlshash":"3033f15ead8316262b1c84be87561e0ce2d18d4f41e20e751a1c0f518978f8bc6ab97e","first_seen":"2026-02-22T13:36:51.198867Z","last_seen":"2026-02-22T13:36:51.198867Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1617,"timings":{"blocked":436,"dns":0,"connect":0,"send":0,"wait":566,"receive":615,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/72665/72665.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:QrE2Bf5rH2hOTw-b7t2elRPgD5w=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.803Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/72665/72665.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:QrE2Bf5rH2hOTw-b7t2elRPgD5w= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 67087\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"72665.jpg\"; filename*=utf-8''72665.jpg\r\ncontent-md5: iWhdN5j7yAvOJmOkWpritw==\r\ncontent-transfer-encoding: binary\r\netag: \"FlCWQArtTsBnJObJtniK0W4c5nEq\"\r\nlast-modified: Sun, 16 Jun 2024 22:24:49 GMT\r\nx-private: 1\r\nx-reqid: dDMAAG34UDEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":67087,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x800, components 3","md5":"89685d3798fbc80bce2663a45a9ae2b7","sha1":"5096400aed4ec06724e6c9b6788ad16e1ce6712a","sha256":"756c832d0217752ebf913bdb5ed06fda2ece0c49f2cbdb0b6aa54cac5c8aedd2","sha512":"2563397478f5f67222d87f9746b387ed94a7a393e61cdfd36389764c13ac3d7904a16df0cbee8e6e93b7e5a64f036ea9f8a838b9f2a4dc777bbd7ec6b66fadf1","ssdeep":"1536:ElVea5OEKFd+9ol8w49ihk0aSic+E/INNZVASZThKodT:E6EWd+96ywhk0FicrUVDZTdT","tlshash":"e063f2f867ad3102f973903788ef8729e5e43d47826d6345fafa8164b1e27d71a22c44","first_seen":"2026-02-22T13:36:51.199833Z","last_seen":"2026-02-22T13:36:51.199833Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1446,"timings":{"blocked":433,"dns":0,"connect":0,"send":0,"wait":642,"receive":371,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/40843/40843.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:l44POZak4K9cBwgPj7g7WRl65p4=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.546Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /uploads/goods/40843/40843.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:l44POZak4K9cBwgPj7g7WRl65p4= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-27T07:34:25.483791Z","times_seen":16755627,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/28883/28883.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:R-Y8X-VHitqRunMmRgaLr3WY8Bk=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.831Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/28883/28883.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:R-Y8X-VHitqRunMmRgaLr3WY8Bk= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 263690\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"28883.jpg\"; filename*=utf-8''28883.jpg\r\ncontent-md5: bWfLiL7QIPqtF8Zo6tNheA==\r\ncontent-transfer-encoding: binary\r\netag: \"FvSYGRjwW3eCbtQcHCd_SkiIvaWL\"\r\nlast-modified: Fri, 14 Jun 2024 00:45:57 GMT\r\nx-private: 1\r\nx-reqid: SN0AADTfTzEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":263690,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 950x950, components 3","md5":"6d67cb88bed020faad17c668ead36178","sha1":"f4981918f05b77826ed41c1c277f4a4888bda58b","sha256":"d1684aabe07696506a1a6a52ee2a1d4111d436b20f9030b17190e476e213e929","sha512":"3827217c75764d996ce5544036a0fb745e003d297ee5220fdfd9a621813a09e4d04018af6dbd2fe7ff50660df198184455e110038001e5f3121e0d1279c5868d","ssdeep":"3072:6qukya5JEtxR+JIUfLRC8CUfkzGGOxBYKeay70OEEZYjTMBjig2c3Mj7sTvnlhNZ:6qu3ZQISg8czMGhdRBjoc3qsLG4F","tlshash":"e144232e3245e46de837497b47700fc8e770721791b926bf085d8ad809e7099c5cbdab","first_seen":"2026-02-22T13:36:51.200899Z","last_seen":"2026-02-22T13:36:51.200899Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1714,"timings":{"blocked":406,"dns":0,"connect":0,"send":0,"wait":641,"receive":667,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/11480/11480.png?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:i5kyGcTfdFo1jjW3F0Eq-OXVnrc=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.851Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/11480/11480.png?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:i5kyGcTfdFo1jjW3F0Eq-OXVnrc= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/png\r\ncontent-length: 19339\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"11480.png\"; filename*=utf-8''11480.png\r\ncontent-md5: ii1Z7wcxqdFp+8nnw1bsuQ==\r\ncontent-transfer-encoding: binary\r\netag: \"Fv0mz-igh96fRYRiUT2Hdp13V33K\"\r\nlast-modified: Wed, 12 Jun 2024 15:50:40 GMT\r\nx-private: 1\r\nx-reqid: SN0AAFb4WDEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":19339,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPCM), density 37x37, segment length 16, progressive, precision 8, 468x480, components 3","md5":"8a2d59ef0731a9d169fbc9e7c356ecb9","sha1":"fd26cfe8a087de9f458462513d87769d77577dca","sha256":"b594af67ae1d58cc2df91b46ace945acbae8d3b1b880f0d2f33d497d5f1d3483","sha512":"5c9d0aad12bbf66b7a5d66fc380ea2e1cc06cdf6bf08d3a07fbe265ad6038ff70fd1d6a6afde8b8e953d59fc1cd6488afb2fc533bf879f5291465dcf3d1aa4b6","ssdeep":"384:3kzV9gpqH0VQXvYLMKVWJNe/+DXtNwPLPGCN1bD0q:GVPZXvYgKVWLeutNGP5p0q","tlshash":"bb92c07a3367c151c54a00b05adb5f12cf707ec9fa9adf736d2a8b1ab0351c48eb1191","first_seen":"2026-02-22T13:36:51.201803Z","last_seen":"2026-02-22T13:36:51.201803Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1347,"timings":{"blocked":383,"dns":0,"connect":0,"send":0,"wait":643,"receive":321,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/22893/22893.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:PspOvzMRP9iXMZonI3q5REWKfco=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.860Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/22893/22893.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:PspOvzMRP9iXMZonI3q5REWKfco= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 174981\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"22893.jpg\"; filename*=utf-8''22893.jpg\r\ncontent-md5: +S4x7AQQ20AIcptU/gW6Dw==\r\ncontent-transfer-encoding: binary\r\netag: \"FnScYGllCwZOYBCJq5gahhUMjAA5\"\r\nlast-modified: Thu, 13 Jun 2024 07:01:00 GMT\r\nx-private: 1\r\nx-reqid: K3wAAA9IRjEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":174981,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1000x1000, components 3","md5":"f92e31ec0410db4008729b54fe05ba0f","sha1":"749c6069650b064e601089ab981a86150c8c0039","sha256":"d4e913f332f7bd1aa31dbc1f2bf1b893cbae927513e0ce23641939cd308994e4","sha512":"a1731be1c32719711748e201d86837ec68be44e7e2cc6ce47b43950f91a550ec44942142c23882e691d747f35953ad91989bdc90f4782a4290eaa9fff9476110","ssdeep":"3072:E+8GbMR3INwFPkuUhbGeyqipTx7qKEfjuj3B6LLiFXWWMJ9Pt3zNSf4Kt6OTKMIF:CCWP7UhbIqyNTEfjI3BIL0GV9Pt3RSBU","tlshash":"220401d5879c696fa6be27360096312fa320fa50275f3f7ee2a42f5684c7d043c294b5","first_seen":"2026-02-22T13:36:51.202722Z","last_seen":"2026-02-22T13:36:51.202722Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1617,"timings":{"blocked":375,"dns":0,"connect":0,"send":0,"wait":655,"receive":587,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"wap.tiktokshopwholesale.com/static/cate/6.png","fqdn":"wap.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"162.0.220.217","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:12.848Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"wap.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 08 Jan 2026 15:40:42 GMT","end":"Wed, 08 Apr 2026 15:40:41 GMT"},"fingerprint":{"sha1":"4D:90:8B:48:5A:03:E7:A1:F8:40:19:BC:A1:8F:2B:93:9A:B2:DF:2E","sha256":"65:5C:25:EF:07:09:08:81:9D:DC:30:11:6A:82:A4:A1:56:2F:4B:8B:53:73:1F:74:73:58:C4:5F:33:C6:D1:7D"}}},"request":{"raw":"GET /static/cate/6.png HTTP/1.1\r\nHost: wap.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 22 Feb 2026 13:36:12 GMT\r\ncontent-type: image/png\r\nlast-modified: Sun, 16 Nov 2025 20:07:14 GMT\r\nvary: Accept-Encoding\r\netag: W/\"691a2ef2-1c6c7\"\r\nexpires: Tue, 24 Mar 2026 13:36:12 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":116423,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 268 x 365, 8-bit/color RGB, non-interlaced","md5":"7b8cce5752d8a258b3a539a8227e5f5e","sha1":"f98cf3ad19e76c366096827f51f7aec3361d4545","sha256":"f1d9866bfb3c28a4fdc03c1e1c3c48f407b1f9df40e917da6cdf2010740355cf","sha512":"32fa5312385aa0d7e872249cfbe59d1bd3db80cf54bc1722589a21501e6e7533ad4db2d6ded42660d2d8fac8efdf6be4857ed735b155162304bc3402682e5a16","ssdeep":"3072:rptQ49kcLy0ARxTr/HCqFvSNwsdptEb30++13KKszw:vn9E0ujjFvAwgptOulKKJ","tlshash":"24b312dc7984907605ae8da028b3f9330303cf515d36e9e5fccf4a360d85be29a86665","first_seen":"2025-07-18T14:09:30.980796Z","last_seen":"2026-04-25T02:59:25.32366Z","times_seen":19,"resource_available":false,"data":null}},"time_used":313,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":313,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-22","alert":"Phishing Block","trigger":"wap.tiktokshopwholesale.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/54869/54869.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:MmkieIniZWkOes0S0aZplQog1RY=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.624Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/54869/54869.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:MmkieIniZWkOes0S0aZplQog1RY= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 159531\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"54869.jpg\"; filename*=utf-8''54869.jpg\r\ncontent-md5: 4pRthFq377/hnAkxeATEHw==\r\ncontent-transfer-encoding: binary\r\netag: \"FsF4mEEbUnWc230Gj6L_NEn_PMEC\"\r\nlast-modified: Sat, 15 Jun 2024 11:29:18 GMT\r\nx-private: 1\r\nx-reqid: b-EAAEMveSkKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":159531,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 800x1000, components 3","md5":"e2946d845ab7efbfe19c09317804c41f","sha1":"c17898411b52759cdb7d068fa2ff3449ff3cc102","sha256":"1bdcd075c8536aa9ff57ef3ebe7bdf8d9257018f7772f2e7d5804ed7e68d9d52","sha512":"f7f2c794c64fd2fdb333851d2a9892958376f3934b5626fba0a3553bff7dbe2ae9a6c31437e30c5333f3ba0661b413674e8af1a98d472d739c2234d222174ca5","ssdeep":"3072:eTAF195fKivspauhfpobrb4LnMNE/ga7chVZX1IfkQuTzTOmaW:vp5SvhfHLnQEXwVZFuuTzTraW","tlshash":"bff312a66dfa44d6165cb2fca93a930f4b38fc55a561e2483b2103ae72d9cf480df435","first_seen":"2026-02-22T13:36:51.203964Z","last_seen":"2026-02-22T13:36:51.203964Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1768,"timings":{"blocked":606,"dns":0,"connect":0,"send":0,"wait":568,"receive":594,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/66384/66384.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:lANyjJqTjx_JknkwqoXvKvJr6s0=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.852Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/66384/66384.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:lANyjJqTjx_JknkwqoXvKvJr6s0= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 154915\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"66384.jpg\"; filename*=utf-8''66384.jpg\r\ncontent-md5: eyemKfzpj7N1YOBhyesbKg==\r\ncontent-transfer-encoding: binary\r\netag: \"FrvOvw19scr2afPYTiunZhJ_DfB3\"\r\nlast-modified: Sun, 16 Jun 2024 00:28:28 GMT\r\nx-private: 1\r\nx-reqid: xCMAANvhSTEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":154915,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 1000x1000, components 3","md5":"7b27a629fce98fb37560e061c9eb1b2a","sha1":"bbcebf0d7db1caf669f3d84e2ba766127f0df077","sha256":"000fd1a43458cabb9ca8c9f8d14e5830099d68d8ff38842d0caba28d2d7060b4","sha512":"408f381ba58dfd7105314adf7039d51eb2fe1b9e623be828f15b01eabc5e2bb9caf2e2349b70f17e0be5e220a3c22a5258ae0eb9ae87832881dd0d000affe89e","ssdeep":"3072:GFsZ5kMax3T8XbgRcRGYvEOlYnGD3eh23LJdnAsltBxZG5:qsZ5kBV8XEcRzvhaS33LXDtBxZo","tlshash":"f1e302ad27f7ba67334bf22b495516a4a340f273431af97f928c0f820967468d0eb815","first_seen":"2026-02-22T13:36:51.204822Z","last_seen":"2026-02-22T13:36:51.204822Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1610,"timings":{"blocked":382,"dns":0,"connect":0,"send":0,"wait":648,"receive":580,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/40843/40843.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:l44POZak4K9cBwgPj7g7WRl65p4=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.617Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/40843/40843.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:l44POZak4K9cBwgPj7g7WRl65p4= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 84207\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"40843.jpg\"; filename*=utf-8''40843.jpg\r\ncontent-md5: 6rDy/1819ipEe+7v4b7gBw==\r\ncontent-transfer-encoding: binary\r\netag: \"Fv0H0HWsmCGKxrBZGLIza1K-qvY5\"\r\nlast-modified: Thu, 13 Jun 2024 19:41:27 GMT\r\nx-private: 1\r\nx-reqid: n20AAOE6dzEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":84207,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPCM), density 37x37, segment length 16, progressive, precision 8, 800x800, components 3","md5":"eab0f2ff5f35f62a447beeefe1bee007","sha1":"fd07d075ac98218ac6b05918b2336b52beaaf639","sha256":"d2993c4c5f007836127de7c0c94b5a40eb37a2cf3bc8be54c9e17873391e8db2","sha512":"8c7baf987040fbf7ad8670f517af070fb712fa1eef34e76d0efe387e9ea3a57ea09dc147cdfd8eba9e98b64fa10eb089694bd5e3ad2cb357b2e051c592dd1a6f","ssdeep":"1536:c97QHWhPOUjRRB4u8KeQiZh5sKZnWwClhjIL9PzIkRBOKiaetGmqOpdzc8n:cd9OCRBx6DhCAWBltIL9PzIkRBOKFetZ","tlshash":"f18302f903f5f50ae4c681fdc7a189a0093c78f2595a4a300a82efa77742a74c49f46c","first_seen":"2026-02-22T13:36:51.205716Z","last_seen":"2026-02-22T13:36:51.205716Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2393,"timings":{"blocked":625,"dns":236,"connect":130,"send":0,"wait":646,"receive":475,"ssl":275},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tiktokshopwholesale.com/web/v1/home/getTopGoods","fqdn":"tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"162.0.220.217","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:12.639Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 08 Jan 2026 15:39:21 GMT","end":"Wed, 08 Apr 2026 15:39:20 GMT"},"fingerprint":{"sha1":"AC:F7:E9:AC:82:C3:F4:D3:BF:C1:5B:2F:0E:5B:97:D8:66:42:8D:89","sha256":"33:E2:5F:E7:5D:B5:BA:9F:52:13:33:4E:EE:09:06:3A:A6:2B:B9:29:E2:29:0F:B9:5F:34:02:5E:D8:F9:4D:40"}}},"request":{"raw":"OPTIONS /web/v1/home/getTopGoods HTTP/1.1\r\nHost: tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nOrigin: https://wap.tiktokshopwholesale.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\nserver: nginx\r\ndate: Sun, 22 Feb 2026 13:36:13 GMT\r\naccess-control-allow-origin: *\r\naccess-control-max-age: 1800\r\naccess-control-allow-methods: GET, POST, PATCH, PUT, DELETE\r\naccess-control-allow-headers: *\r\nallow: POST\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-27T07:34:25.483791Z","times_seen":16755627,"resource_available":true,"data":null}},"time_used":855,"timings":{"blocked":326,"dns":1,"connect":154,"send":0,"wait":194,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/59434/59434.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:J1iXPk50arHi0dnjIZmlALzf5yU=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.659Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /uploads/goods/59434/59434.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:J1iXPk50arHi0dnjIZmlALzf5yU= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-27T07:34:25.483791Z","times_seen":16755627,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/57820/57820.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:pWCl7Afj1ATMW_8oFkyEmPZzRNU=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.816Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/57820/57820.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:pWCl7Afj1ATMW_8oFkyEmPZzRNU= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 53764\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"57820.jpg\"; filename*=utf-8''57820.jpg\r\ncontent-md5: vGYMly94MPhGDNO1s5khxw==\r\ncontent-transfer-encoding: binary\r\netag: \"FuN8S9NCD7lO701tmCtDgkmOvgmU\"\r\nlast-modified: Sun, 16 Jun 2024 08:15:35 GMT\r\nx-private: 1\r\nx-reqid: b-EAAFM9SzEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":53764,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPCM), density 37x37, segment length 16, progressive, precision 8, 800x800, components 3","md5":"bc660c972f7830f8460cd3b5b39921c7","sha1":"e37c4bd3420fb94eef4d6d982b4382498ebe0994","sha256":"1a20971d3bdb8d77f80688a128cd3f77fef67c8a4fe68c065364664c52018829","sha512":"e46a3ad22bd43830ece09cc0bfc918e0cf7ff48b9bf44df89a34f8114e8720a2dff1841567f0a08955c0b9973014db7ccedab7873a7b22acedd8c2a148fb5360","ssdeep":"768:OphyTsLfJvmYp8mCjmwkEtU0A0voyJjtK6rGAQKsJQBPw2KX6dhhoS75PS:OpgORAm6Pku+9aj7rGhKFqy4J","tlshash":"1f3302bf427091abca5d19bc8a1917777f311e5a0f2fceb40d9649386429c9fe924370","first_seen":"2026-02-22T13:36:51.20673Z","last_seen":"2026-02-22T13:36:51.20673Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1450,"timings":{"blocked":419,"dns":0,"connect":0,"send":0,"wait":642,"receive":389,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tiktokshopwholesale.com/web/v1/home/getTopGoods","fqdn":"tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"162.0.220.217","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.197Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 08 Jan 2026 15:39:21 GMT","end":"Wed, 08 Apr 2026 15:39:20 GMT"},"fingerprint":{"sha1":"AC:F7:E9:AC:82:C3:F4:D3:BF:C1:5B:2F:0E:5B:97:D8:66:42:8D:89","sha256":"33:E2:5F:E7:5D:B5:BA:9F:52:13:33:4E:EE:09:06:3A:A6:2B:B9:29:E2:29:0F:B9:5F:34:02:5E:D8:F9:4D:40"}}},"request":{"raw":"POST /web/v1/home/getTopGoods HTTP/1.1\r\nHost: tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-us\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 10\r\nOrigin: https://wap.tiktokshopwholesale.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":10,"data":"{\"type\":3}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 22 Feb 2026 13:36:13 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\naccess-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS\r\naccess-control-allow-headers: Authorization, Content-Type, If-Match, If-Modified-Since, If-None-Match, If-Unmodified-Since, X-CSRF-TOKEN, X-Requested-With\r\naccess-control-allow-origin: https://wap.tiktokshopwholesale.com\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6470,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"92434859e69a0dacdec492d45b27b0e1","sha1":"8fde4656a274bc52f6c8fba872df1151f3eca71d","sha256":"0e837f4de75c4bf97f7c21f5a0966ee78c75e2302aaf6b8e8d3cc38e799b5c84","sha512":"29b9ba109953d84454ad110629f4587662712e8fb02c96b5f408227ed416ffc7179e988f8c4069274e12d4a7fc6dccd915ea8c316c786e3d9d9ab68ff0b4d74b","ssdeep":"96:lY7Odcm5Fhppvuhv2rXDu5h0SNfomGJK/HWHGu6bfCI70:S7gXhpNuhqXwh0iLx2sn70","tlshash":"b1d1137be994c074d9e42a907e8d7b5c8cc21b1367d10f63d2dd4eb598fc2d9062a2b2","first_seen":"2026-02-22T13:36:51.20763Z","last_seen":"2026-02-22T13:36:51.20763Z","times_seen":1,"resource_available":false,"data":null}},"time_used":323,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":323,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"go.detmir.st/fonts/fc2a6498c769c8351fc78ed012d3f8d7.woff","fqdn":"go.detmir.st","domain":"detmir.st","tld":"st"},"ip":{"addr":"95.129.232.180","port":443,"asn":57724,"as":"Ddos-guard Ltd","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.637Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.detmir.st","organization":""},"issuer":{"commonName":"GlobalSign GCC R3 DV TLS CA 2020","organization":"GlobalSign nv-sa"},"validity":{"start":"Fri, 25 Apr 2025 14:07:27 GMT","end":"Wed, 27 May 2026 14:07:26 GMT"},"fingerprint":{"sha1":"39:23:77:98:A0:4A:C9:18:38:AB:85:5F:DA:CC:02:AF:88:60:D9:9E","sha256":"DF:73:AE:8A:5C:D5:74:A9:6D:2D:C1:DB:EF:F1:88:ED:4B:37:6F:2B:22:56:F8:C1:3C:DB:19:41:66:CA:A8:6F"}}},"request":{"raw":"GET /fonts/fc2a6498c769c8351fc78ed012d3f8d7.woff HTTP/1.1\r\nHost: go.detmir.st\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://wap.tiktokshopwholesale.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=lD4rEzAhOncivrel; Domain=.detmir.st; Path=/; Expires=Sun, 22-Feb-2026 13:56:13 GMT\n__ddg10_=1771767373; Domain=.detmir.st; Path=/; Expires=Sun, 22-Feb-2026 13:56:13 GMT\n__ddg9_=91.90.42.154; Domain=.detmir.st; Path=/; Expires=Sun, 22-Feb-2026 13:56:13 GMT\n__ddg1_=MLS6xUT7zerj1YulXDHq; Domain=.detmir.st; HttpOnly; Path=/; Expires=Mon, 22-Feb-2027 13:36:13 GMT\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Sat, 21 Feb 2026 23:18:58 GMT\r\ncontent-type: font/woff\r\ncontent-length: 123408\r\nlast-modified: Thu, 28 Sep 2023 12:57:30 GMT\r\netag: \"6515783a-1e210\"\r\nexpires: Sat, 28 Feb 2026 23:18:58 GMT\r\ncache-control: max-age=604800, public, immutable, must-revalidate\r\naccess-control-allow-origin: *\r\nx-cache: HIT\r\naccept-ranges: bytes\r\nage: 51435\r\nddg-cache-status: HIT,HIT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}],"data":{"size":123408,"size_decoded":0,"mime_type":"font/woff","magic":"Web Open Font Format, TrueType, length 123408, version 0.0","md5":"12458b6386a94409074a38d919e1f77c","sha1":"dd3fd03061bf5c142950912e5e0edb5f04649d30","sha256":"f4264a3385918f905f01918baa27e5d87244e09e328637216a9d28442e357119","sha512":"40c3e06cf3934beebd8f5d16af2894900d72fad664eebfe266ef121f71c11100c82914ad7f49e7b095a7f3f623e0ff5e1011f76876d48f99637aa638f49613b4","ssdeep":"3072:MnvaxHu/3gk/2yT3pnOMVatFF/c42MaxpM5npMDQ6rQoMDRHG:sD/wvy7wMVG3axpM5pMDQ6rQnY","tlshash":"a5c312ee12717ec4c378229d0b1a564ad419167728ca8b72e7153efd5c69c630e26cf8","first_seen":"2025-07-18T14:09:31.015288Z","last_seen":"2026-04-25T02:59:25.320125Z","times_seen":17,"resource_available":false,"data":null}},"time_used":297,"timings":{"blocked":-1,"dns":14,"connect":21,"send":0,"wait":41,"receive":47,"ssl":173},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wap.tiktokshopwholesale.com/static/js/pages-cart-cart~pages-category-category~pages-categorys-categorys~pages-detail-detail~pages-index-in~253c8084.759513e9.js","fqdn":"wap.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"162.0.220.217","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:11.822Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"wap.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 08 Jan 2026 15:40:42 GMT","end":"Wed, 08 Apr 2026 15:40:41 GMT"},"fingerprint":{"sha1":"4D:90:8B:48:5A:03:E7:A1:F8:40:19:BC:A1:8F:2B:93:9A:B2:DF:2E","sha256":"65:5C:25:EF:07:09:08:81:9D:DC:30:11:6A:82:A4:A1:56:2F:4B:8B:53:73:1F:74:73:58:C4:5F:33:C6:D1:7D"}}},"request":{"raw":"GET /static/js/pages-cart-cart~pages-category-category~pages-categorys-categorys~pages-detail-detail~pages-index-in~253c8084.759513e9.js HTTP/1.1\r\nHost: wap.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 22 Feb 2026 13:36:11 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sun, 16 Nov 2025 20:07:14 GMT\r\nvary: Accept-Encoding\r\netag: W/\"691a2ef2-41ff\"\r\nexpires: Mon, 23 Feb 2026 01:36:11 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":16895,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (16353), with no line terminators","md5":"78ce4310437dfad9124e1426f48f03b9","sha1":"2681ae74dd6e175fafcc89fc1088fac619b23113","sha256":"ce80d8e925a726dec835d4b6def538ed1882ae30c65cd4da26d6c6215549a5ce","sha512":"e7d2b2bf849bf496d017e7e734edb213b9e42ff2cab4805e5f9218e77acf2d774cd9e9065d373fe40833ca261fdfcc2d526ce53085fb1716c53a2ba964629885","ssdeep":"384:E3ChtgcdCHkLAz7Vxr0DRYYxU1IEGbUcGTaERUSAcxEwcu:MCscdCHkLAz7VxrKRLxU1IEGbCRRZVEy","tlshash":"7b72e988f4c6f44601d360b2803f8209513bb9997567a55c77baeaf24e6ca8d2353f3c","first_seen":"2025-11-28T00:42:08.714535Z","last_seen":"2026-04-25T02:59:25.386479Z","times_seen":12,"resource_available":true,"data":null}},"time_used":156,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":156,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-22","alert":"Phishing Block","trigger":"wap.tiktokshopwholesale.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/32976/32976.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:qC94p-HZbByQcgshEABszcHa3J0=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.733Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/32976/32976.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:qC94p-HZbByQcgshEABszcHa3J0= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 249239\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"32976.jpg\"; filename*=utf-8''32976.jpg\r\ncontent-md5: 0Z1sXERpCSKRdjOhKiU48A==\r\ncontent-transfer-encoding: binary\r\netag: \"FuYPTwvVz59_n3k_3m6wsWQidK61\"\r\nlast-modified: Fri, 14 Jun 2024 05:11:59 GMT\r\nx-private: 1\r\nx-reqid: n20AAOHrHDEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":249239,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, progressive, precision 8, 750x1000, components 3","md5":"d19d6c5c44690922917633a12a2538f0","sha1":"e60f4f0bd5cf9f7f9f793fde6eb0b1642274aeb5","sha256":"91709f616c4619848dd331b9eebc935dbfe88dbe6846008d39dfa9c4c1f3f188","sha512":"ac3ee06e3f178ab1f5ff4d37d754b7549d431df4a0134f52c1551a7131024dfa2240d09b871e88024fd745182177e7cf26338ad6b2f1c468641981bbb70a5041","ssdeep":"3072:a8iBCLh3df9BnDnmFjieXjfQ/1EN9iEB93HdprpG6PawKlpjhcDgsRuogSObJGif:j3NPnDinj49OL9zDPZUpj0xizVQnNe","tlshash":"a33423259527342c4a83277f8c63e692d3c1f2fc4849d6a6d89378e21786c67e62f40f","first_seen":"2026-02-22T13:36:51.209834Z","last_seen":"2026-02-22T13:36:51.209834Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1577,"timings":{"blocked":500,"dns":0,"connect":0,"send":0,"wait":647,"receive":430,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"n.nordstrommedia.com/id/fd3d4570-1440-42da-befa-977203294ab6.jpg?w=237","fqdn":"n.nordstrommedia.com","domain":"nordstrommedia.com","tld":"com"},"ip":{"addr":"151.101.130.132","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:12.664Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nordstrom.com","organization":"Nordstrom, Inc."},"issuer":{"commonName":"Sectigo Public Server Authentication CA OV R36","organization":"Sectigo Limited"},"validity":{"start":"Tue, 23 Sep 2025 00:00:00 GMT","end":"Wed, 23 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"5E:C0:97:EE:99:B6:59:E1:B4:70:AB:FE:E0:F0:6A:C7:F3:28:97:12","sha256":"C2:A5:ED:3E:B0:A2:72:D9:F4:97:B0:E8:4F:A7:B9:DE:F9:C5:E4:83:89:4C:27:8C:EF:81:25:CF:37:AA:A4:04"}}},"request":{"raw":"GET /id/fd3d4570-1440-42da-befa-977203294ab6.jpg?w=237 HTTP/1.1\r\nHost: n.nordstrommedia.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=3610239\r\ncontent-type: image/webp\r\netag: \"c3ENwrnB5B0Qabv12nN5JmFfA+XIPe8VWql47ulBiS0\"\r\nfastly-io-info: ifsz=95451 idim=238x400 ifmt=jpeg ofsz=15444 odim=237x398 ofmt=webp\r\nfastly-io-served-by: vpop-haf2300712\r\nfastly-io-transform-stats: ifsz=95451 ofsz=15444 ofmt=webp\r\nfastly-stats: io=1\r\nserver: nginx/1.27.5\r\nvia: 1.1 kong/3.10.0.6-enterprise-edition, 1.1 varnish, 1.1 varnish\r\nx-kong-proxy-latency: 0\r\nx-kong-request-id: 95e3ed7cd597976a1b2bfd3db94fa071\r\nx-kong-upstream-latency: 86\r\naccept-ranges: bytes\r\nage: 604447\r\ndate: Sun, 22 Feb 2026 13:36:12 GMT\r\nx-served-by: cache-bfi-krnt7300038-BFI, cache-hel1410033-HEL\r\nx-cache: HIT, HIT\r\nx-cache-hits: 19, 0\r\nx-timer: S1771767373.741834,VS0,VE1\r\nvary: Accept\r\nx-jungle-id: af1bdfc2-5321-447b-86cd-b24c234230ba\r\nnord-request-id: rxvfwlMhRHuGzbJMI0Iwug\r\naccess-control-allow-origin: *\r\ncontent-length: 15444\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.27.5","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}],"data":{"size":15444,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 237x398, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"684b6286102aeb289481cf42912e0eae","sha1":"734139cbc36358a63f98773e37ffbaee1e074921","sha256":"0a4f3cb74accd3d9a8f90e8eeedfa9cf3b8f26b2288c2d6a2f54443b291ed7bb","sha512":"d8e88ca1e9ba7888a3a75bc20925910e815974573f89efe4885e5aec3a38492775775e0da00815a95580b650b28092a3daeea32714092decc092c4b1f3a0f8f7","ssdeep":"384:ot7UDNiEtzX1XBLrt/aoAlcXwRzlzU8AY0KufeCHBW3nqcNhQQw8WKn:ot7oNVNXjvsdcXqRUpYqDBW3qWSQwq","tlshash":"f462c0e5c86c35c9e0c3a96f0a57a5561ae0f4454138a41fd5ee09002b3d2b2ff66beb","first_seen":"2025-07-18T14:09:31.026174Z","last_seen":"2026-04-25T02:59:25.397765Z","times_seen":17,"resource_available":false,"data":null}},"time_used":86,"timings":{"blocked":0,"dns":26,"connect":13,"send":0,"wait":15,"receive":2,"ssl":30},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/55458/55458.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:nfosN7aFGx5pHyK7K7dEOjNitR0=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.616Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/55458/55458.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:nfosN7aFGx5pHyK7K7dEOjNitR0= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 119446\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"55458.jpg\"; filename*=utf-8''55458.jpg\r\ncontent-md5: slclALOHnqUvqeyfOjO9Tg==\r\ncontent-transfer-encoding: binary\r\netag: \"FlXwIni9l6eIpcN3DEECziKTthRf\"\r\nlast-modified: Sat, 15 Jun 2024 15:07:36 GMT\r\nx-private: 1\r\nx-reqid: dDMAACbsWTEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":119446,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 800x800, components 3","md5":"b2572500b3879ea52fa9ec9f3a33bd4e","sha1":"55f02278bd97a788a5c3770c4102ce2293b6145f","sha256":"ecfb6c0a2096915745b30f8ddee511a3ed94ab4bfc1d946bf50f1a750e8ba604","sha512":"57c90724d1f82e79ce82b7b724b85a51f5460a0c8e07445caec00414a6bcd945170c4a4419fa255f06eea9ef768c7c91c255029f5b162c327535b462649ea1e0","ssdeep":"3072:JnxnbfXJ3YVi8hDdM64EjPz2WnyuvEy0a:HvJ32JhDdM053p","tlshash":"05c312e3aa38c04decfc8aed0e85794fe367b16e3a055b529cd1a06e93151f186cf550","first_seen":"2026-02-22T13:36:51.211203Z","last_seen":"2026-02-22T13:36:51.211203Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2489,"timings":{"blocked":624,"dns":230,"connect":130,"send":0,"wait":643,"receive":583,"ssl":275},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/57040/57040.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:w1y_SZHXM6H8Cn7VMBqcxuyR2OQ=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.664Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /uploads/goods/57040/57040.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:w1y_SZHXM6H8Cn7VMBqcxuyR2OQ= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-27T07:34:25.483791Z","times_seen":16755627,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/88900/88900.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:EogvidL5hUSFZ9cVLsBU4Y8UuBI=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.804Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/88900/88900.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:EogvidL5hUSFZ9cVLsBU4Y8UuBI= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 119199\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"88900.jpg\"; filename*=utf-8''88900.jpg\r\ncontent-md5: Ue0L6e62y4Z/AmDW6rSLsQ==\r\ncontent-transfer-encoding: binary\r\netag: \"Fh9eMJazsHbwKle_aZ5DvQlWCrxQ\"\r\nlast-modified: Fri, 21 Jun 2024 04:17:33 GMT\r\nx-private: 1\r\nx-reqid: n20AAL2zYjEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":119199,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 800x800, components 3","md5":"51ed0be9eeb6cb867f0260d6eab48bb1","sha1":"1f5e3096b3b076f02a57bf699e43bd09560abc50","sha256":"686035396961cc52bf1742361a15ae8c502fe0f266e79a4eb0123372b56831fc","sha512":"47fb79e1e8329af9298ea32b014631fba57e609be9a978b01853575c6ac5560646ed9bc543733c61f49315b08bf2563dde7af28cfffbff7b4d799349abd2bd69","ssdeep":"1536:uKegEb+M5f+7igikXfhfLktDCs/N4C/k07rh3fy23cd9Z5rAvmN9JybAHlILYvnr:0Fb36igoDCeV7MtMe3flTl/9P9I2iAmK","tlshash":"10c312f15bbaa480e58364f6457c8730cae8336c5511f491a8cb9e44e6f3e486ad7390","first_seen":"2026-02-22T13:36:51.211958Z","last_seen":"2026-02-22T13:36:51.211958Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1652,"timings":{"blocked":432,"dns":0,"connect":0,"send":0,"wait":642,"receive":578,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"wss","addr":"tiktokshopwholesale.com/ws","fqdn":"tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"162.0.220.217","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"websocket","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:11.882Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 08 Jan 2026 15:39:21 GMT","end":"Wed, 08 Apr 2026 15:39:20 GMT"},"fingerprint":{"sha1":"AC:F7:E9:AC:82:C3:F4:D3:BF:C1:5B:2F:0E:5B:97:D8:66:42:8D:89","sha256":"33:E2:5F:E7:5D:B5:BA:9F:52:13:33:4E:EE:09:06:3A:A6:2B:B9:29:E2:29:0F:B9:5F:34:02:5E:D8:F9:4D:40"}}},"request":{"raw":"GET /ws HTTP/1.1\r\nHost: tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nSec-WebSocket-Version: 13\r\nOrigin: https://wap.tiktokshopwholesale.com\r\nSec-WebSocket-Extensions: permessage-deflate\r\nSec-WebSocket-Key: jfgGH+qtbe+hPleNQ6ZCMQ==\r\nDNT: 1\r\nConnection: keep-alive, Upgrade\r\nSec-Fetch-Dest: websocket\r\nSec-Fetch-Mode: websocket\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nUpgrade: websocket\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 101 Switching Protocols\r\nServer: nginx\r\nDate: Sun, 22 Feb 2026 13:36:12 GMT\r\nConnection: upgrade\r\nUpgrade: websocket\r\nSec-WebSocket-Version: 13\r\nSec-WebSocket-Accept: aklzLeFS+by0gTAzYNF7GLZvOH0=\r\n\r\n","headers":null,"cookies":null,"status_code":"101","status_text":"Switching Protocols","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-27T07:34:25.483791Z","times_seen":16755627,"resource_available":true,"data":null}},"time_used":1409,"timings":{"blocked":0,"dns":469,"connect":622,"send":0,"wait":154,"receive":0,"ssl":633},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"wap.tiktokshopwholesale.com/static/cate/5.png","fqdn":"wap.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"162.0.220.217","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:12.846Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"wap.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 08 Jan 2026 15:40:42 GMT","end":"Wed, 08 Apr 2026 15:40:41 GMT"},"fingerprint":{"sha1":"4D:90:8B:48:5A:03:E7:A1:F8:40:19:BC:A1:8F:2B:93:9A:B2:DF:2E","sha256":"65:5C:25:EF:07:09:08:81:9D:DC:30:11:6A:82:A4:A1:56:2F:4B:8B:53:73:1F:74:73:58:C4:5F:33:C6:D1:7D"}}},"request":{"raw":"GET /static/cate/5.png HTTP/1.1\r\nHost: wap.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 22 Feb 2026 13:36:12 GMT\r\ncontent-type: image/png\r\nlast-modified: Sun, 16 Nov 2025 20:07:14 GMT\r\nvary: Accept-Encoding\r\netag: W/\"691a2ef2-18580\"\r\nexpires: Tue, 24 Mar 2026 13:36:12 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":99712,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 268 x 365, 8-bit/color RGB, non-interlaced","md5":"0e59f1cd063f2e227c64ae26776246d4","sha1":"52f6f38df72dc8285b9cdf98e4c93d64b0de1e6c","sha256":"53ec4053d373d6421e9f718b94eb2d409908841005130ea5b895af853f3e43fb","sha512":"37f53998ea51ddf3602303596f8c8e567b33ad4cbe22b4e5ad0083834c9618e5e34e0676aa9567798c40a232e5c850a43adf2f57e4f6f049d996bcad8e1df28f","ssdeep":"3072:EqRU/wba7ArSM/YAARlhCQ7GNLMgUNjTYMziSQMVzBeVoBh/a:E2Uow1NAY7G1MgUNPziSnzBeVOhC","tlshash":"fca31246848d5ab51d0de6b2a7fbe4e21603f2d4eb7ce7e41a37463e4120d76363a302","first_seen":"2025-07-18T14:09:31.023547Z","last_seen":"2026-04-25T02:59:25.349761Z","times_seen":19,"resource_available":false,"data":null}},"time_used":313,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":313,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-22","alert":"Phishing Block","trigger":"wap.tiktokshopwholesale.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/54869/54869.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:MmkieIniZWkOes0S0aZplQog1RY=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.562Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /uploads/goods/54869/54869.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:MmkieIniZWkOes0S0aZplQog1RY= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-27T07:34:25.483791Z","times_seen":16755627,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/61060/61060.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:KIOwB0M5JshzV7E4QVTcTcn6Dbo=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.622Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/61060/61060.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:KIOwB0M5JshzV7E4QVTcTcn6Dbo= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 61339\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"61060.jpg\"; filename*=utf-8''61060.jpg\r\ncontent-md5: I+dgU5ufUVGOXIe/8fCWsA==\r\ncontent-transfer-encoding: binary\r\netag: \"FjlgTZol3chBxRtMkx1FDEQNsSY3\"\r\nlast-modified: Fri, 14 Jun 2024 13:00:39 GMT\r\nx-private: 1\r\nx-reqid: mDUAAEFqXzEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":61339,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 800x800, components 3","md5":"23e760539b9f51518e5c87bff1f096b0","sha1":"39604d9a25ddc841c51b4c931d450c440db12637","sha256":"f86cdeeb24c1a50c67dea8a14ddf6e1a62e426afb422823ef245fa96041ee78f","sha512":"82181baa28aebcd233affc327036c1d97c4174993e8654370b1a58477e712e26e93fec16b792695ff65c6007623a00b62a8725b771972683f54fc885dac896ad","ssdeep":"1536:P0HzAy99lpWyxQXsjF1X39POzwpjBGidFy/wLeJh:P64ojLX31OzwpjBGgFhw","tlshash":"a55302965730b517ea8a6d3071f2d897e78fbc6514a43aa043216b0390c0ad2dee47eb","first_seen":"2026-02-22T13:36:51.213689Z","last_seen":"2026-02-22T13:36:51.213689Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2286,"timings":{"blocked":647,"dns":238,"connect":131,"send":0,"wait":607,"receive":355,"ssl":293},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"wap.tiktokshopwholesale.com/static/js/chunk-vendors.04b28ea6.js","fqdn":"wap.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"162.0.220.217","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:10.612Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"wap.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 08 Jan 2026 15:40:42 GMT","end":"Wed, 08 Apr 2026 15:40:41 GMT"},"fingerprint":{"sha1":"4D:90:8B:48:5A:03:E7:A1:F8:40:19:BC:A1:8F:2B:93:9A:B2:DF:2E","sha256":"65:5C:25:EF:07:09:08:81:9D:DC:30:11:6A:82:A4:A1:56:2F:4B:8B:53:73:1F:74:73:58:C4:5F:33:C6:D1:7D"}}},"request":{"raw":"GET /static/js/chunk-vendors.04b28ea6.js HTTP/1.1\r\nHost: wap.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 22 Feb 2026 13:36:10 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sun, 16 Nov 2025 20:07:14 GMT\r\nvary: Accept-Encoding\r\netag: W/\"691a2ef2-ce8d4\"\r\nexpires: Mon, 23 Feb 2026 01:36:10 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":846036,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (43171)","md5":"b3e9c9c18a6673ed7a025d74840e70d0","sha1":"68f5961fe90b9aeb21ede16f10263ca9fe765e4a","sha256":"75fd0a9bee8383e05e5db603a4f1e222fc7cd2b5feb3f420247427be6d829ed8","sha512":"4f04127f082a109e4abf061995c590f425e94b500ee3ff53c0251ef6960d606e34c59a2405a575adc9c92fdb2a13a6fd0f5c371e257b2ee287ab5a5e5a3f5007","ssdeep":"6144:KXpQLqqDHdeGOFQXtwTf374bM3XYmvkNTMGYEvm/40+QhRV1vSz/eGgEYJRh:KZgWrQdwTfvXY4ktai0jvSz8Eu","tlshash":"0605f88df281b0b60ae760b5403f220bb2376959b40a84d8f675e4d4ad78d4e6237f7d","first_seen":"2025-11-28T00:42:08.748299Z","last_seen":"2026-04-25T02:59:25.322621Z","times_seen":12,"resource_available":true,"data":null}},"time_used":312,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":312,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-22","alert":"Phishing Block","trigger":"wap.tiktokshopwholesale.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/44911/44911.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:CyMR_OH8W4RkdW6Dn9WbQscs-r8=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.626Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/44911/44911.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:CyMR_OH8W4RkdW6Dn9WbQscs-r8= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 13431\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"44911.jpg\"; filename*=utf-8''44911.jpg\r\ncontent-md5: dXmDj4bTB3PEGRKexiBTYQ==\r\ncontent-transfer-encoding: binary\r\netag: \"FvjeV5aSyQrLtVAh0LscAS7KdGqD\"\r\nlast-modified: Fri, 14 Jun 2024 09:11:13 GMT\r\nx-private: 1\r\nx-reqid: 3MMAAOt8WjEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":13431,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x400, components 3","md5":"7579838f86d30773c419129ec6205361","sha1":"f8de579692c90acbb55021d0bb1c012eca746a83","sha256":"bea3a367e479c2fb164fe7a09bf28c2a48244283571736397450feec5be940f8","sha512":"1c107220bb69c9e91d61cc8eeefed6bd8941564b66b232102755fa1dc481df408075261a7122e4430f0e780826044fc0de2680f3ddc040329e7d871243eee7f9","ssdeep":"192:wc9cIdHZnjwJr52CZPnFf9VZ6ElAN1qwqlejxvZDLyndWN65l4Q8TleKRV/44h3I:lTj8PfbZBlqTq0zydxT4vRdR14WfpiT","tlshash":"7a52c0b5d042a154c2e005fce9c9d3612245732d29f3dfd931e94e20e4ee76ab663aca","first_seen":"2026-02-22T13:36:51.215234Z","last_seen":"2026-02-22T13:36:51.215234Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1590,"timings":{"blocked":610,"dns":0,"connect":0,"send":0,"wait":645,"receive":335,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/13275/13275.png?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:M19hKG0Cn85yJ6YgOwC58RaAgPM=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.627Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/13275/13275.png?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:M19hKG0Cn85yJ6YgOwC58RaAgPM= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/png\r\ncontent-length: 157899\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"13275.png\"; filename*=utf-8''13275.png\r\ncontent-md5: NO5MSWYihozyWoj9WQljEA==\r\ncontent-transfer-encoding: binary\r\netag: \"FoSFbuA4Fkq9hXf0dcw-d-sy0Z7j\"\r\nlast-modified: Wed, 12 Jun 2024 21:53:32 GMT\r\nx-private: 1\r\nx-reqid: fyQAALLkWTEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":157899,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1024x1024, components 3","md5":"34ee4c496622868cf25a88fd59096310","sha1":"84856ee038164abd8577f475cc3e77eb32d19ee3","sha256":"8db9aa409965cff2379c17fc08f96d94dad6c12a30edbe015827807b5952f84d","sha512":"ad6e774c448e90e617f9b4cca527d6e4f11bce7a945ab6a90b58154f2913c22e1d1247f72231915f55e3eaf4e74d9198692e107dbc3b66bf3ffdb4d25c625051","ssdeep":"3072:hN8VvmE3slNK9Gg1KIRWgEBPtOq9TxMGk3fmtUNjoZy9UDhXiKDi/nDu/x:h1lsEQ9Rx8UGTxjtDZy9OXZEDu/x","tlshash":"71f312c537d51889e0bf26b65481b3064f38cc3ec61491aa4faa1ad805f53372bb59ef","first_seen":"2026-02-22T13:36:51.216009Z","last_seen":"2026-02-22T13:36:51.216009Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1907,"timings":{"blocked":609,"dns":0,"connect":0,"send":0,"wait":651,"receive":647,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/68651/68651.jpeg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:1CuynZFHL5BcRRQIF0XVM-l_azo=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.732Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/68651/68651.jpeg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:1CuynZFHL5BcRRQIF0XVM-l_azo= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 121224\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"68651.jpeg\"; filename*=utf-8''68651.jpeg\r\ncontent-md5: x1/S/Bg7T32F5A8UIU23Wg==\r\ncontent-transfer-encoding: binary\r\netag: \"FmEEpgnRHuZUdr4XUyGRlDGuFqU5\"\r\nlast-modified: Sat, 15 Jun 2024 23:48:47 GMT\r\nx-private: 1\r\nx-reqid: dDMAAA81GjEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":121224,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1000x1000, components 3","md5":"c75fd2fc183b4f7d85e40f14214db75a","sha1":"6104a609d11ee65476be175321919431ae16a539","sha256":"27337feec34392ab509d4614ceccffc571a8b4266e2589f200696ed667d4925d","sha512":"052d9f54f6d1dddcbcf1fd7c29da649602cfecde33a8bc63101c170e95b9ad2345ec28e8afe00cade43d5d0f50e16999e3aed40b5b9ae110595f58b4679006a4","ssdeep":"3072:+m7pMrewYxFU6jp01SjtoJpLA5PULLYkoqbC:/72p6jpkUoJBASLLYqC","tlshash":"20c312427c5b3e76fc39eac282378257e741227ebde06749e74a1778b3964d20a6c4c4","first_seen":"2026-02-22T13:36:51.216857Z","last_seen":"2026-02-22T13:36:51.216857Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1641,"timings":{"blocked":501,"dns":0,"connect":0,"send":0,"wait":656,"receive":484,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"wap.tiktokshopwholesale.com/static/js/pages-index-index.d941c3da.js","fqdn":"wap.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"162.0.220.217","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:11.826Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"wap.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 08 Jan 2026 15:40:42 GMT","end":"Wed, 08 Apr 2026 15:40:41 GMT"},"fingerprint":{"sha1":"4D:90:8B:48:5A:03:E7:A1:F8:40:19:BC:A1:8F:2B:93:9A:B2:DF:2E","sha256":"65:5C:25:EF:07:09:08:81:9D:DC:30:11:6A:82:A4:A1:56:2F:4B:8B:53:73:1F:74:73:58:C4:5F:33:C6:D1:7D"}}},"request":{"raw":"GET /static/js/pages-index-index.d941c3da.js HTTP/1.1\r\nHost: wap.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 22 Feb 2026 13:36:11 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sun, 16 Nov 2025 20:07:14 GMT\r\nvary: Accept-Encoding\r\netag: W/\"691a2ef2-1afcec\"\r\nexpires: Mon, 23 Feb 2026 01:36:11 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1768684,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"859e5a620671885cc179d9613810c178","sha1":"f83b6dc0f20458cd406d62a5a15414db0f11f677","sha256":"998871c10ca6136fa2545d118c713135e5bf389c9c681f18a2dc096c5ad91d25","sha512":"cd2e9d924fa4241d5b19e946497558da10db28a628ec208999b5f73e02a4fc62204ed7ddc55341b2470848a7a5ac6232f4d7c157ff6cf36b4d49d67d1d7419ef","ssdeep":"6144:XW+PYPnPC5kV4B47IQzOY+4E7HXQsS59QN3MSAnmsG5+V:XrwnPCpZFMSAnmsGM","tlshash":"892530513e883319607fc01668a3574c631d73c36686deeeabe92d25ff436b5322b648","first_seen":"2025-11-28T00:42:08.749756Z","last_seen":"2026-04-25T02:59:25.312417Z","times_seen":12,"resource_available":false,"data":null}},"time_used":189,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":189,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-22","alert":"Phishing Block","trigger":"wap.tiktokshopwholesale.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"wap.tiktokshopwholesale.com/static/cate/3.png","fqdn":"wap.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"162.0.220.217","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:12.825Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"wap.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 08 Jan 2026 15:40:42 GMT","end":"Wed, 08 Apr 2026 15:40:41 GMT"},"fingerprint":{"sha1":"4D:90:8B:48:5A:03:E7:A1:F8:40:19:BC:A1:8F:2B:93:9A:B2:DF:2E","sha256":"65:5C:25:EF:07:09:08:81:9D:DC:30:11:6A:82:A4:A1:56:2F:4B:8B:53:73:1F:74:73:58:C4:5F:33:C6:D1:7D"}}},"request":{"raw":"GET /static/cate/3.png HTTP/1.1\r\nHost: wap.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 22 Feb 2026 13:36:12 GMT\r\ncontent-type: image/png\r\nlast-modified: Sun, 16 Nov 2025 20:07:14 GMT\r\nvary: Accept-Encoding\r\netag: W/\"691a2ef2-25417\"\r\nexpires: Tue, 24 Mar 2026 13:36:12 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":152599,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 268 x 365, 8-bit/color RGB, non-interlaced","md5":"e9904f9d70b6fde4c7d028ca591c951c","sha1":"e8d3a9e41c6923ef53bdc655fae572fa4e5b2f39","sha256":"2e87bbe2e3208f1b254bbc2005eb8aa0223404ae9bc5bee3064f9af9bff3efe0","sha512":"904c8b7073f1924339224edd116b95543239b9a3a5e63424bd68a84b332ded305c33b451457560a9fc116b2c442ad53411991cbaa1fa55c4500745a713a42443","ssdeep":"3072:+NuuEsW0ezuh3Jej7z5V3GdEWiHCcbCgh8ZRGUM0m3oO34vHrnX8v3544r:+Nuujcj5JE8ZbCcyQUM0m4OGDo31r","tlshash":"bfe3121d21e37a2c9ac302a145fb4f805d1c9db679c5ccb99622523b8fed3bd82f6161","first_seen":"2025-07-18T14:09:30.991557Z","last_seen":"2026-04-25T02:59:25.352653Z","times_seen":19,"resource_available":false,"data":null}},"time_used":184,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":184,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-22","alert":"Phishing Block","trigger":"wap.tiktokshopwholesale.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/27803/27803.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:CE8Hgn6cwmJIuwbHTBDqlfNMaDI=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.832Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/27803/27803.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:CE8Hgn6cwmJIuwbHTBDqlfNMaDI= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 109907\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"27803.jpg\"; filename*=utf-8''27803.jpg\r\ncontent-md5: Mr6r0/ikz9VL1LOAhft/vA==\r\ncontent-transfer-encoding: binary\r\netag: \"Fs48XD_PFqN4Aa0ZqVJzQPR7uWvq\"\r\nlast-modified: Thu, 13 Jun 2024 20:58:36 GMT\r\nx-private: 1\r\nx-reqid: xCMAAEhCUjEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":109907,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x800, components 3","md5":"32beabd3f8a4cfd54bd4b38085fb7fbc","sha1":"ce3c5c3fcf16a37801ad19a9527340f47bb96bea","sha256":"05e88f5e32dc249843e3317539edefd55ceef1981e4ea458148f44eb08e3adf3","sha512":"a9e5a440fd2851251261e689237ce651621674d71b855f529382701d7ae801dee0376fb110e2ade5779a00b9665501442c9c8fe13b125c0e332fc78df1f6fe79","ssdeep":"3072:ucS6IQ4CejmQT1HrrheF6p2M0MyzVRzzQh0P/:1S6IQGmQT1LrheQpF0MS6E","tlshash":"60b312bfcf517eafdaca8e3504897e95d1241cc24c24c5489a87ccc0961dabe4f56aa3","first_seen":"2026-02-22T13:36:51.219292Z","last_seen":"2026-02-22T13:36:51.219292Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1671,"timings":{"blocked":405,"dns":0,"connect":0,"send":0,"wait":650,"receive":616,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/80334/80334.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:KR5NiB8gs74hgEuB4DxqQtFhbIc=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.843Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/80334/80334.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:KR5NiB8gs74hgEuB4DxqQtFhbIc= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 148908\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"80334.jpg\"; filename*=utf-8''80334.jpg\r\ncontent-md5: hvG61nD5lR4O0M2tfgBVRQ==\r\ncontent-transfer-encoding: binary\r\netag: \"Fllb_iPtR7FmVHXRFbNTy3RTVAMj\"\r\nlast-modified: Sun, 16 Jun 2024 16:16:39 GMT\r\nx-private: 1\r\nx-reqid: xMMAACiTUDEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":148908,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 1024x1024, components 3","md5":"86f1bad670f9951e0ed0cdad7e005545","sha1":"595bfe23ed47b1665475d115b353cb7453540323","sha256":"c4ae57ed0c6d4694fb7ff241966a0c8b3fc4680a7d0007062ddd76dbc6876598","sha512":"bd5a9613294eef021a5503838192d6ddd2a1c479b02b73d1ada89fcf2a4ffdc7da151bfee3a8f734cb6f0fe51e322a9f4f539a9e2443e4ce2ff7372f56a2f1f8","ssdeep":"3072:R6OlhM91vYLrWK4p1Rh2esjjYNj4WLSMFmM8dVqrk:R6khzLrWXpl2LsUW3FNg","tlshash":"70e312aab3ca34cdd2dd88b4dbb943757726858479c1a20ff49202e05b491c926dcaf7","first_seen":"2026-02-22T13:36:51.22003Z","last_seen":"2026-02-22T13:36:51.22003Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1617,"timings":{"blocked":391,"dns":0,"connect":0,"send":0,"wait":644,"receive":582,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/108354/108354.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:FlvaTCp1Kv_-hxjYFiKukjLElCo=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.614Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/108354/108354.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:FlvaTCp1Kv_-hxjYFiKukjLElCo= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 482712\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"108354.jpg\"; filename*=utf-8''108354.jpg\r\ncontent-md5: CREXnjiO1nO49vGPCeSc5g==\r\ncontent-transfer-encoding: binary\r\netag: \"FsP5-M9QuAAjHpKl4kl_lPvBoiHe\"\r\nlast-modified: Thu, 12 Jun 2025 03:06:58 GMT\r\nx-private: 1\r\nx-reqid: AeQAAOIShCkKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":482712,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 720x960, components 3","md5":"0911179e388ed673b8f6f18f09e49ce6","sha1":"c3f9f8cf50b800231e92a5e2497f94fbc1a221de","sha256":"1be271e83798570d93bbec46df8172c1ba600c07fa3942079161270c6fb9206c","sha512":"24dcf0d9c263a8f57c22a8f4722ba2e8360c9bb9bbb7f59b281e9ef7b8d69af1d7586b4610367567176a28c4fd797a5032f2e130d706097861aa5c0a1fe66298","ssdeep":"12288:wwEaupICDIlTRtcj9SBcigXSIKXbo9y9kwXNsTeUaVBM:3EaARSGIBNn09sk+gak","tlshash":"5ea411d38476888791935ff818c8e336460ecd36964192cf7a76bbfb61dc9a844ef140","first_seen":"2026-02-22T13:36:51.22082Z","last_seen":"2026-02-22T13:36:51.22082Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2470,"timings":{"blocked":616,"dns":240,"connect":128,"send":0,"wait":147,"receive":1067,"ssl":269},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/44023/44023.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:4GnEaV7RNv_sIu9Gjg8LCIrlzoA=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.623Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/44023/44023.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:4GnEaV7RNv_sIu9Gjg8LCIrlzoA= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 220165\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"44023.jpg\"; filename*=utf-8''44023.jpg\r\ncontent-md5: AaydTrKuVSbilf6PS4mkzg==\r\ncontent-transfer-encoding: binary\r\netag: \"FljwrRGevzFjPbN3AyLg25rvoI71\"\r\nlast-modified: Fri, 14 Jun 2024 06:06:49 GMT\r\nx-private: 1\r\nx-reqid: b-EAANwlcDEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":220165,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 960x1260, components 3","md5":"01ac9d4eb2ae5526e295fe8f4b89a4ce","sha1":"58f0ad119ebf31633db3770322e0db9aefa08ef5","sha256":"3f1be54fb0eac8b2379a61ce675430a7e59caa411fc04443ee05bfc2586b690c","sha512":"bf8e4003ec1588ab4cda157b77975784bda7349380d0efef8f88e53d8b977125812afea1f2e2149478f6d440abb9e9316d448ee24a5a4b067e0b7480709cfd53","ssdeep":"6144:0xjo2B2GAAySV7D6ylF+7GF68nDu+p2omHN:0Y/Y7D6GQMNC+pHsN","tlshash":"b4242265a97e1d2aefdf51178ee1e045da092e442633c60bbdcf0c76b8ce244c97a6c4","first_seen":"2026-02-22T13:36:51.221743Z","last_seen":"2026-02-22T13:36:51.221743Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2491,"timings":{"blocked":630,"dns":241,"connect":131,"send":0,"wait":624,"receive":573,"ssl":273},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/42449/42449.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:DrFYgXHcLjtKXWoQpN01MnDAVts=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.726Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/42449/42449.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:DrFYgXHcLjtKXWoQpN01MnDAVts= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 85015\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"42449.jpg\"; filename*=utf-8''42449.jpg\r\ncontent-md5: 4PbkVupZAKulj19cAPAIHw==\r\ncontent-transfer-encoding: binary\r\netag: \"FpP2_uxFlfowvg33i0dSzn053v10\"\r\nlast-modified: Fri, 14 Jun 2024 00:43:24 GMT\r\nx-private: 1\r\nx-reqid: R78AABumFzEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":85015,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, progressive, precision 8, 800x800, components 3","md5":"e0f6e456ea5900aba58f5f5c00f0081f","sha1":"93f6feec4595fa30be0df78b4752ce7d39defd74","sha256":"20962115340b31d090c5ebfe35092d41251089f2c132e1ce84f8d66965ef8f1b","sha512":"7074b2a3cb8e254596371254421746d40bd57ae3957a46bdf3db238e087487c3219cd15f8a08c81b213684015d90cf9844f6ab340b85552471891d6afd0e2d74","ssdeep":"1536:a/OMSQwaqSThJLTIqTFyh6gzyYhsx9yM0f/C9zlvM9xXziuvXGmABCfvfsl3OYY5:a/yGPYvRF/CAzzPgCfXsl3HV8","tlshash":"0283027d2a8aeaadd47ac4b07e9ee5fe1b095fe456dd57307f10090c052a28fbb021c5","first_seen":"2026-02-22T13:36:51.222559Z","last_seen":"2026-02-22T13:36:51.222559Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1460,"timings":{"blocked":506,"dns":0,"connect":0,"send":0,"wait":643,"receive":311,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/62245/62245.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:qcx4-8osXykzeb6PUbA-Ebxoz1M=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.823Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/62245/62245.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:qcx4-8osXykzeb6PUbA-Ebxoz1M= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 133710\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"62245.jpg\"; filename*=utf-8''62245.jpg\r\ncontent-md5: fQ9PR/wm4vJx7KY2TCrISA==\r\ncontent-transfer-encoding: binary\r\netag: \"FnKpUhJ_0xhHAQt7k3_cB-w_OrtR\"\r\nlast-modified: Fri, 14 Jun 2024 20:18:06 GMT\r\nx-private: 1\r\nx-reqid: yaoAADjKYDEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":133710,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 800x800, components 3","md5":"7d0f4f47fc26e2f271eca6364c2ac848","sha1":"72a952127fd31847010b7b937fdc07ec3f3abb51","sha256":"28d79a9658f698c19bc9d102e0e983afd7c0d7d85f125c4ff59256ade361d048","sha512":"a69bca29871614320ec763d7742c475e46b1726d7cf1454b20d76dfb827d7c802ca967765595ab590dde97eac05dd565dd62ea0b743f846d1c3092c679bdc0b2","ssdeep":"3072:7ZQIk36YcB8bXDPfJLvQ+r8V1U972D1GzsNDzl4dNprOv2:7Ky8bThdr172DtDzl41y+","tlshash":"56d3126c6f107837aba63e7b176767948323ccf689644d80a900193b37117efa953dc2","first_seen":"2026-02-22T13:36:51.223426Z","last_seen":"2026-02-22T13:36:51.223426Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1647,"timings":{"blocked":413,"dns":0,"connect":0,"send":0,"wait":652,"receive":582,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/53283/53283.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:UN8hA0nbjvG3KJED4ciY4hgVxkA=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.839Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/53283/53283.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:UN8hA0nbjvG3KJED4ciY4hgVxkA= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 81913\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"53283.jpg\"; filename*=utf-8''53283.jpg\r\ncontent-md5: l3e8ixvqJXDUkRkQE1Fqrw==\r\ncontent-transfer-encoding: binary\r\netag: \"FjzbKXFL84wGFu0jy3iwIGE746w5\"\r\nlast-modified: Fri, 14 Jun 2024 23:02:43 GMT\r\nx-private: 1\r\nx-reqid: fyQAALH0TjEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":81913,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1080x1080, components 3","md5":"9777bc8b1bea2570d491191013516aaf","sha1":"3cdb29714bf38c0616ed23cb78b020613be3ac39","sha256":"a07af27ff70db2117823428c44791fc51fd1717219050411ffd39c6629d5b2c4","sha512":"ec4c0b80d15a18c2ad23f3916cc7fe82f5843d8ddadd1130dcdd00ae0cd396bfb7436e4b97337fb16a658776699c6be00db96dbed509e5e05fb34832da97d770","ssdeep":"1536:m+q3daTrf/DYJJC8KQ1k20MeSFD+iJx+/Ohm8jgXwjvpxSB:jTsW2neED+iFhpVm","tlshash":"2b8302f53ed20437eb68813a70e7ef241d1d6e48c651cacad725ce2e413b764ee09a46","first_seen":"2026-02-08T11:00:56.109233Z","last_seen":"2026-02-22T13:36:51.224291Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1337,"timings":{"blocked":395,"dns":0,"connect":0,"send":0,"wait":641,"receive":301,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/34104/34104.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:jyXvpKN1Rlt7VUZ4JnyPlT24snw=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.567Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /uploads/goods/34104/34104.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:jyXvpKN1Rlt7VUZ4JnyPlT24snw= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-27T07:34:25.483791Z","times_seen":16755627,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/58421/58421.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:l3m-G0K1uMhqvz9xyrX-i0b1_rA=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.714Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/58421/58421.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:l3m-G0K1uMhqvz9xyrX-i0b1_rA= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 146132\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"58421.jpg\"; filename*=utf-8''58421.jpg\r\ncontent-md5: 9YLqj/hFg73QRJ8DS83aCw==\r\ncontent-transfer-encoding: binary\r\netag: \"FoG2lNQdVCQg-Cn8Jj_g5hyozUhY\"\r\nlast-modified: Sun, 16 Jun 2024 11:33:00 GMT\r\nx-private: 1\r\nx-reqid: 7LUAAKfDkikKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146132,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x800, components 3","md5":"f582ea8ff84583bdd0449f034bcdda0b","sha1":"81b694d41d542420f829fc263fe0e61ca8cd4858","sha256":"643d09cd08de0f871cc8376ee6688b140c7f50f8a46a42628c830f4140590162","sha512":"951275e7260f2db2a9072120e13610836c47d140bb4385c4664e54dd850586d672b7ae0087f22efefa348d8af94b02409feafb27659fd3d96296a4074a6a5d23","ssdeep":"3072:dwJoaXk0lvt3QT8SPe/QXEnO/nRogoTjuCl/nUgSsP8tM:daowkMdQoSrEnOvRPa/UaPF","tlshash":"f7e3127811b4a5e9da33db4a53c97f0a700caf534e3ebdce9c31022b9ead11a14d7651","first_seen":"2026-02-22T13:36:51.225415Z","last_seen":"2026-02-22T13:36:51.225415Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1698,"timings":{"blocked":517,"dns":0,"connect":0,"send":0,"wait":570,"receive":611,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/89479/89479.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:XvmMN_pciNVvn-GKTbi4f5-04Bo=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.723Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/89479/89479.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:XvmMN_pciNVvn-GKTbi4f5-04Bo= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 91748\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"89479.jpg\"; filename*=utf-8''89479.jpg\r\ncontent-md5: i0PuJYr+HbfZ3W9GZkNvuQ==\r\ncontent-transfer-encoding: binary\r\netag: \"FhU4HBPaxaYu4gG9vXEWk7t19nAY\"\r\nlast-modified: Fri, 21 Jun 2024 07:58:53 GMT\r\nx-private: 1\r\nx-reqid: L7gAAFYBEjEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":91748,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 800x800, components 3","md5":"8b43ee258afe1db7d9dd6f4666436fb9","sha1":"15381c13dac5a62ee201bdbd711693bb75f67018","sha256":"e173c08f348d99c8ed02624a85dc1abaad2790e3402652d0e4dc949915097036","sha512":"8a8fc8f22120132297db45f3104c445d3417daa4dae4a7f1ad928c54a148effc5407a98451f8dea58e4953680bd894b90d22be00361e2326d7033fd2f218011d","ssdeep":"1536:d8PC3VBfNzajHqm9qwppXW/j8KQR6eRKnthiErYarR7a3R0McitQpX3o+GF:H3Vqj9qwppXu85Rb2DzrPrJawo+GF","tlshash":"649312191fda073ed87aec3e027219f52a898dcb5e8ca9fd44ff679a41275bc3010865","first_seen":"2026-02-22T13:36:51.226274Z","last_seen":"2026-02-22T13:36:51.226274Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1594,"timings":{"blocked":509,"dns":0,"connect":0,"send":0,"wait":648,"receive":437,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/3801/3801.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:kpRAotj0jlRfyPZtMOKHVSPqETQ=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.725Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/3801/3801.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:kpRAotj0jlRfyPZtMOKHVSPqETQ= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 73970\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"3801.jpg\"; filename*=utf-8''3801.jpg\r\ncontent-md5: xELP8Y3uGnWgXe60MOGL5w==\r\ncontent-transfer-encoding: binary\r\netag: \"Fl4MkJIeTDgPgPAihoyYGTNZsSyF\"\r\nlast-modified: Wed, 12 Jun 2024 01:55:57 GMT\r\nx-private: 1\r\nx-reqid: xCMAAMO5ETEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":73970,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1000x1000, components 3","md5":"c442cff18dee1a75a05deeb430e18be7","sha1":"5e0c90921e4c380f80f022868c98193359b12c85","sha256":"a189832b8ef170846a2cfb50151b54f565cbde4ad859d7b80b86d93fcf82c601","sha512":"98b3cd5026db5640d5ed482f3d1dfb4d38933dfa0ebc4a7036acca83200391de629bbe497e34efb9467a9ecba9842849f01fbcb5e80505357a0fbe655c501a70","ssdeep":"1536:nrL+SD17hUKfnDY0KP1w6EotjfU9tc/meueiKFLb+hCHJWnJp:/Z1lUKfnk/P1bfZueFHTHJI","tlshash":"277302fcf3445a36de872a3636d38c2d284c05cabcc7a4a9b5f43055075b8de65da2ca","first_seen":"2026-02-22T13:36:51.227366Z","last_seen":"2026-02-22T13:36:51.227366Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1442,"timings":{"blocked":507,"dns":0,"connect":0,"send":0,"wait":745,"receive":190,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/45305/45305.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:jVTfgUJDhjaq5p1rFomXKF_3TmA=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.847Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/45305/45305.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:jVTfgUJDhjaq5p1rFomXKF_3TmA= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 77599\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"45305.jpg\"; filename*=utf-8''45305.jpg\r\ncontent-md5: f2W2Fyw+PCWEcaOrjXdj2g==\r\ncontent-transfer-encoding: binary\r\netag: \"FoDY_AUhhbGLestfxPdv7nbT3Lhg\"\r\nlast-modified: Fri, 14 Jun 2024 10:44:17 GMT\r\nx-private: 1\r\nx-reqid: L7gAAO42SzEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":77599,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, progressive, precision 8, 800x800, components 3","md5":"7f65b6172c3e3c258471a3ab8d7763da","sha1":"80d8fc052185b18b7acb5fc4f76fee76d3dcb860","sha256":"2f14a0c427407a9aac4db17e89e4f726f9873a952b983174191eca63cd779db7","sha512":"ac0646d158cd64e6bd526afa254d5d47021ea940c5c56520670b43bf4bc96230f12a4df3ee0b45eab38ebdbd57fecfc150e771a2c80ef7be79dfd13062b9bcff","ssdeep":"1536:flXSlMgm4P5w5YEG9iD9iRFq+B/mqETBVSlJyiL2du7E:9XSSgm8tEG9g9s3uqebKsiLYu7E","tlshash":"8073028abb7c9bbd0628e0206f0f7b8e5a79d10bc3cf7c475981aee320557519e6c204","first_seen":"2026-02-22T13:36:51.228183Z","last_seen":"2026-02-22T13:36:51.228183Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1483,"timings":{"blocked":387,"dns":0,"connect":0,"send":0,"wait":648,"receive":448,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/63102/63102.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:RxC-Pj1SzytKVEaYv-799QDaIPc=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.857Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/63102/63102.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:RxC-Pj1SzytKVEaYv-799QDaIPc= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 68748\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"63102.jpg\"; filename*=utf-8''63102.jpg\r\ncontent-md5: 40RXz4elxwe6yDN7HGP+yA==\r\ncontent-transfer-encoding: binary\r\netag: \"Fsqjiy4JQzdsj2bJKcZaqTQ0GEIL\"\r\nlast-modified: Sat, 15 Jun 2024 01:41:25 GMT\r\nx-private: 1\r\nx-reqid: R78AAG1iUDEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":68748,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 800x800, components 3","md5":"e34457cf87a5c707bac8337b1c63fec8","sha1":"caa38b2e0943376c8f66c929c65aa9343418420b","sha256":"0b82187f2eff88dd325ce954b3c45bea1ff4fb8732a1f19aa423b8bc24bbc97d","sha512":"35fc1e294dcfae47a6dcbf8f5cb7a147dcf20565c45df13749ea6a83d3f12fe82b0b582c60af8a24189b1c61b8c95c468543e221fdd1f698e7b247d613ac3658","ssdeep":"1536:3m+9SFSJlAJuKd4TQFYCzPm6mQhoTvv2ItoGOY25rIcuINCgtCw:3myud4cFYnQyTvuItBOYSPzNCvw","tlshash":"586302b7906847d7cdf8f8355708781d2f1a5c7a83dd66ea0b7002608dafb418a7b9b4","first_seen":"2026-02-22T13:36:51.229098Z","last_seen":"2026-02-22T13:36:51.229098Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1525,"timings":{"blocked":378,"dns":0,"connect":0,"send":0,"wait":655,"receive":492,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tiktokshopwholesale.com/web/v1/home/getGoodsList","fqdn":"tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"162.0.220.217","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.193Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 08 Jan 2026 15:39:21 GMT","end":"Wed, 08 Apr 2026 15:39:20 GMT"},"fingerprint":{"sha1":"AC:F7:E9:AC:82:C3:F4:D3:BF:C1:5B:2F:0E:5B:97:D8:66:42:8D:89","sha256":"33:E2:5F:E7:5D:B5:BA:9F:52:13:33:4E:EE:09:06:3A:A6:2B:B9:29:E2:29:0F:B9:5F:34:02:5E:D8:F9:4D:40"}}},"request":{"raw":"POST /web/v1/home/getGoodsList HTTP/1.1\r\nHost: tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-us\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 20\r\nOrigin: https://wap.tiktokshopwholesale.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":20,"data":"{\"page\":1,\"size\":18}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 22 Feb 2026 13:36:13 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\naccess-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS\r\naccess-control-allow-headers: Authorization, Content-Type, If-Match, If-Modified-Since, If-None-Match, If-Unmodified-Since, X-CSRF-TOKEN, X-Requested-With\r\naccess-control-allow-origin: https://wap.tiktokshopwholesale.com\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7453,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"e66f2a8d6578b7d8738c4a003dfdbaf0","sha1":"a69db291ddb62858141f1ebf0feca0837bf8b015","sha256":"3e29f209ba0ab43382b556fffc63213cd6960599d94f7d13d37cd999c03fbdd9","sha512":"32729ccfc00434e399809cb0766d9462df608170613f3f0d5622d88abe8dfe9d361a2c3d8f9de68acf39fffb179d1be321959b7a4efb4c7a08dc770bea13e4c3","ssdeep":"96:80j7bc7mz3lNBRDQMfc2a6AitdBCj1bHUES6odCJX/1YPX9IlTaCdl:Pj74zMmIbCj6b6odCJP1YVSdl","tlshash":"86f121bbe188c864c9d819e07e89bb9889c16607a7d00f97d3dd5f3994fc2e90732176","first_seen":"2026-02-22T13:36:51.229818Z","last_seen":"2026-02-22T13:36:51.229818Z","times_seen":1,"resource_available":false,"data":null}},"time_used":331,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":331,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tiktokshopwholesale.com/web/v1/home/getBanner","fqdn":"tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"162.0.220.217","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.196Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 08 Jan 2026 15:39:21 GMT","end":"Wed, 08 Apr 2026 15:39:20 GMT"},"fingerprint":{"sha1":"AC:F7:E9:AC:82:C3:F4:D3:BF:C1:5B:2F:0E:5B:97:D8:66:42:8D:89","sha256":"33:E2:5F:E7:5D:B5:BA:9F:52:13:33:4E:EE:09:06:3A:A6:2B:B9:29:E2:29:0F:B9:5F:34:02:5E:D8:F9:4D:40"}}},"request":{"raw":"POST /web/v1/home/getBanner HTTP/1.1\r\nHost: tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-us\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 0\r\nOrigin: https://wap.tiktokshopwholesale.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 22 Feb 2026 13:36:13 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\naccess-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS\r\naccess-control-allow-headers: Authorization, Content-Type, If-Match, If-Modified-Since, If-None-Match, If-Unmodified-Since, X-CSRF-TOKEN, X-Requested-With\r\naccess-control-allow-origin: https://wap.tiktokshopwholesale.com\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":359,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"ef4c6b9da608d6b3e75726634c5747ab","sha1":"67dcc8ed820a0d69d7aeb91a9f8628139ec58863","sha256":"b69567b4f3a4af3a5aa5a422431a4654a971df9c539cc9c644293080492e6f8d","sha512":"ccd22d99029d40083533b3f21720a1bc486f5d839223bec6432e2925b50ce7c4d78dba98de667a83398d2839f5feebcfaa3a966b91b6e349ec66593c2b9a4e83","ssdeep":"","tlshash":"1ae04ff29c5ca6ba9ce1b4c81a919127a1857247df2d0d58b2d1dcecc02f19486073bb","first_seen":"2026-02-22T13:36:51.230614Z","last_seen":"2026-02-22T13:36:51.230614Z","times_seen":1,"resource_available":false,"data":null}},"time_used":210,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":210,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/12603/12603.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:xw782qG82dwqumlS4_e9PMpW5WM=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.828Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/12603/12603.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:xw782qG82dwqumlS4_e9PMpW5WM= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 48078\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"12603.jpg\"; filename*=utf-8''12603.jpg\r\ncontent-md5: lzfBUr29sa2sIqXojQfLOQ==\r\ncontent-transfer-encoding: binary\r\netag: \"FiyqGiby8zovxxVlzCY_prr8xhfM\"\r\nlast-modified: Wed, 12 Jun 2024 19:22:26 GMT\r\nx-private: 1\r\nx-reqid: 7LUAAA23VTEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":48078,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, progressive, precision 8, 800x800, components 3","md5":"9737c152bdbdb1adac22a5e88d07cb39","sha1":"2caa1a26f2f33a2fc71565cc263fa6bafcc617cc","sha256":"62319d255ed943bb2ed4589f620fb4da0a1ae315afcdbc6d9ba79263fcf29c1e","sha512":"e4f62da57edebb1355e566db5c0caeb31be546fcc5870211cc4c48bed55601cd79d4b5ccb2f7f8eff25fb5be51c1f50e2f29d43dfe5beace379cd778ec29c0d1","ssdeep":"768:2/tvlVvI7GBH8Sc3l9Tk+wpI/kvIUq7YG6mLUzpvAuIBi8CSJS9Oa:2/puGah3vkW+Y7GmwpoBdJSsa","tlshash":"cf23f2cb2765c961eaf086f232831f79f6256c797219601a3a874a371c3b7c25d10dde","first_seen":"2026-02-22T13:36:51.231359Z","last_seen":"2026-02-22T13:36:51.231359Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1449,"timings":{"blocked":409,"dns":0,"connect":0,"send":0,"wait":642,"receive":398,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/56637/56637.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:RedJ7b_maEFC1LdflHD3o8BLg50=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.833Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/56637/56637.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:RedJ7b_maEFC1LdflHD3o8BLg50= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 76623\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"56637.jpg\"; filename*=utf-8''56637.jpg\r\ncontent-md5: 2Sst0K8rMBmuUy+UqGqqUw==\r\ncontent-transfer-encoding: binary\r\netag: \"FmP5aLG65vf7PV2ZtbUAN0sWxLmH\"\r\nlast-modified: Sat, 15 Jun 2024 22:33:42 GMT\r\nx-private: 1\r\nx-reqid: 7LUAAJE5WDEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":76623,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 790x790, components 3","md5":"d92b2dd0af2b3019ae532f94a86aaa53","sha1":"63f968b1bae6f7fb3d5d99b5b500374b16c4b987","sha256":"314c2a8757019f844f3c652027dd962f623e0325fb84570616cbb031016b8d53","sha512":"7de8c8ed313c7c8d4d085ee583861306abfbf59ded793465037cab3d4a4e0932f54e95dab4a29ca002f3114e118970a0c15ff35c8daa053bec4a27cc7d01c067","ssdeep":"1536:1go27mgb5ulLH4qvYniLD5KzEEw2G/pSgdV5Vzgkkbrtn:2o8rbwxOWDczEEupSgr/zf8N","tlshash":"707302e0b295b0cbc5cde2fcbe4faba419dbd031a644b95dcb13169413936a54baa310","first_seen":"2026-02-22T13:36:51.232185Z","last_seen":"2026-02-22T13:36:51.232185Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1553,"timings":{"blocked":400,"dns":0,"connect":0,"send":0,"wait":657,"receive":496,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tiktokshopwholesale.com/web/v1/home/getTopGoods","fqdn":"tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"162.0.220.217","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:12.636Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 08 Jan 2026 15:39:21 GMT","end":"Wed, 08 Apr 2026 15:39:20 GMT"},"fingerprint":{"sha1":"AC:F7:E9:AC:82:C3:F4:D3:BF:C1:5B:2F:0E:5B:97:D8:66:42:8D:89","sha256":"33:E2:5F:E7:5D:B5:BA:9F:52:13:33:4E:EE:09:06:3A:A6:2B:B9:29:E2:29:0F:B9:5F:34:02:5E:D8:F9:4D:40"}}},"request":{"raw":"OPTIONS /web/v1/home/getTopGoods HTTP/1.1\r\nHost: tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nOrigin: https://wap.tiktokshopwholesale.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\nserver: nginx\r\ndate: Sun, 22 Feb 2026 13:36:13 GMT\r\naccess-control-allow-origin: *\r\naccess-control-max-age: 1800\r\naccess-control-allow-methods: GET, POST, PATCH, PUT, DELETE\r\naccess-control-allow-headers: *\r\nallow: POST\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-27T07:34:25.483791Z","times_seen":16755627,"resource_available":true,"data":null}},"time_used":871,"timings":{"blocked":333,"dns":1,"connect":154,"send":0,"wait":193,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/61060/61060.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:KIOwB0M5JshzV7E4QVTcTcn6Dbo=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.555Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /uploads/goods/61060/61060.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:KIOwB0M5JshzV7E4QVTcTcn6Dbo= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-27T07:34:25.483791Z","times_seen":16755627,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/58421/58421.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:l3m-G0K1uMhqvz9xyrX-i0b1_rA=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.662Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /uploads/goods/58421/58421.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:l3m-G0K1uMhqvz9xyrX-i0b1_rA= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-27T07:34:25.483791Z","times_seen":16755627,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/108262/108262.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:W73HxvfxwDrjkWJDK5LLg4Fd_PQ=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.861Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/108262/108262.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:W73HxvfxwDrjkWJDK5LLg4Fd_PQ= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 500984\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"108262.jpg\"; filename*=utf-8''108262.jpg\r\ncontent-md5: A0HntqHlUF8ZNMtK4sew7A==\r\ncontent-transfer-encoding: binary\r\netag: \"FhJ2sX2EXNho7QUgidCcbe59b66R\"\r\nlast-modified: Thu, 12 Jun 2025 02:36:49 GMT\r\nx-private: 1\r\nx-reqid: R78AAG6RVzEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":500984,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 960x960, components 3","md5":"0341e7b6a1e5505f1934cb4ae2c7b0ec","sha1":"1276b17d845cd868ed052089d09c6dee7d6fae91","sha256":"f96eb7ec803768daae1443dc014e5413b5eaca93fc1181f65d85bcbb309e83ed","sha512":"ac75fc5ee825fc96a87a1c552501c5601357ef89b08fcee4f3fa203965947cc222e26e79b62219b60802d08aaeb7dc7e187686d1195924d94a65321fe4760a6a","ssdeep":"12288:f4WlKKHKuSvV2uJxX21wVcroEZ59LxSwAL:LlKKbA2TmVcMEFx4","tlshash":"81b411a46bba1c0d952f687b02de1a732ee0ee009cc96a7dfd5dc7b56272c0909dd131","first_seen":"2026-02-22T13:36:51.233024Z","last_seen":"2026-02-22T13:36:51.233024Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1669,"timings":{"blocked":376,"dns":0,"connect":0,"send":0,"wait":740,"receive":553,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tiktokshopwholesale.com/web/v1/home/getVersion","fqdn":"tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"162.0.220.217","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:12.641Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 08 Jan 2026 15:39:21 GMT","end":"Wed, 08 Apr 2026 15:39:20 GMT"},"fingerprint":{"sha1":"AC:F7:E9:AC:82:C3:F4:D3:BF:C1:5B:2F:0E:5B:97:D8:66:42:8D:89","sha256":"33:E2:5F:E7:5D:B5:BA:9F:52:13:33:4E:EE:09:06:3A:A6:2B:B9:29:E2:29:0F:B9:5F:34:02:5E:D8:F9:4D:40"}}},"request":{"raw":"OPTIONS /web/v1/home/getVersion HTTP/1.1\r\nHost: tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nOrigin: https://wap.tiktokshopwholesale.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\nserver: nginx\r\ndate: Sun, 22 Feb 2026 13:36:13 GMT\r\naccess-control-allow-origin: *\r\naccess-control-max-age: 1800\r\naccess-control-allow-methods: GET, POST, PATCH, PUT, DELETE\r\naccess-control-allow-headers: *\r\nallow: POST\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-27T07:34:25.483791Z","times_seen":16755627,"resource_available":true,"data":null}},"time_used":867,"timings":{"blocked":330,"dns":0,"connect":155,"send":0,"wait":195,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tiktokshopwholesale.com/web/v1/home/getBanner","fqdn":"tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"162.0.220.217","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:12.813Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 08 Jan 2026 15:39:21 GMT","end":"Wed, 08 Apr 2026 15:39:20 GMT"},"fingerprint":{"sha1":"AC:F7:E9:AC:82:C3:F4:D3:BF:C1:5B:2F:0E:5B:97:D8:66:42:8D:89","sha256":"33:E2:5F:E7:5D:B5:BA:9F:52:13:33:4E:EE:09:06:3A:A6:2B:B9:29:E2:29:0F:B9:5F:34:02:5E:D8:F9:4D:40"}}},"request":{"raw":"OPTIONS /web/v1/home/getBanner HTTP/1.1\r\nHost: tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nOrigin: https://wap.tiktokshopwholesale.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\nserver: nginx\r\ndate: Sun, 22 Feb 2026 13:36:13 GMT\r\naccess-control-allow-origin: *\r\naccess-control-max-age: 1800\r\naccess-control-allow-methods: GET, POST, PATCH, PUT, DELETE\r\naccess-control-allow-headers: *\r\nallow: POST\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-27T07:34:25.483791Z","times_seen":16755627,"resource_available":true,"data":null}},"time_used":345,"timings":{"blocked":146,"dns":0,"connect":0,"send":0,"wait":199,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tiktokshopwholesale.com/web/v1/home/getTopGoods","fqdn":"tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"162.0.220.217","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.190Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 08 Jan 2026 15:39:21 GMT","end":"Wed, 08 Apr 2026 15:39:20 GMT"},"fingerprint":{"sha1":"AC:F7:E9:AC:82:C3:F4:D3:BF:C1:5B:2F:0E:5B:97:D8:66:42:8D:89","sha256":"33:E2:5F:E7:5D:B5:BA:9F:52:13:33:4E:EE:09:06:3A:A6:2B:B9:29:E2:29:0F:B9:5F:34:02:5E:D8:F9:4D:40"}}},"request":{"raw":"POST /web/v1/home/getTopGoods HTTP/1.1\r\nHost: tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-us\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 10\r\nOrigin: https://wap.tiktokshopwholesale.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":10,"data":"{\"type\":1}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 22 Feb 2026 13:36:13 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\naccess-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS\r\naccess-control-allow-headers: Authorization, Content-Type, If-Match, If-Modified-Since, If-None-Match, If-Unmodified-Since, X-CSRF-TOKEN, X-Requested-With\r\naccess-control-allow-origin: https://wap.tiktokshopwholesale.com\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":6515,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"9309e067681fe27e108bb15468d2a217","sha1":"a8536ea154494accca08af8119e5dca76da90c9d","sha256":"68f747664373aefd6de9b89c9a9e8b28a0ee6cf2eeca63d96720aa8d583efb68","sha512":"aa9a27eb0d30f87a0c30887c9b68a2ac601913963e80c7e4e43ba731746a88ca96d6717f3eecfb9df68c88eea5e9b3e7400d7bb26a6f6ca66548310fa77a5e0a","ssdeep":"48:YdN90pnLYtVSbn4tsZTY5lMaA3g72QQk54V6vBC4iNhwCZWvA/HX23nLpLp6xFRQ:Hn8ynDYAyQgDi7EeHcdGROre+Xj","tlshash":"82d1347beb98c050c9d41ad03ecd675c8dc25726a7d40fa6d2cd8f7998fc2d80565272","first_seen":"2026-02-22T13:36:51.233849Z","last_seen":"2026-02-22T13:36:51.233849Z","times_seen":1,"resource_available":false,"data":null}},"time_used":351,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":351,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/45625/45625.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:42_lVy4MEW4MZ_KQxZJnrFXoxeI=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.722Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/45625/45625.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:42_lVy4MEW4MZ_KQxZJnrFXoxeI= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 43942\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"45625.jpg\"; filename*=utf-8''45625.jpg\r\ncontent-md5: BUORsLdkFHoDxFu0oBdEjw==\r\ncontent-transfer-encoding: binary\r\netag: \"Fg-0nfggrt8ulVpLnOvaJf-u9iH5\"\r\nlast-modified: Fri, 14 Jun 2024 12:01:49 GMT\r\nx-private: 1\r\nx-reqid: xMMAAMXamCkKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":43942,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 800x800, components 3","md5":"054391b0b764147a03c45bb4a017448f","sha1":"0fb49df820aedf2e955a4b9cebda25ffaef621f9","sha256":"062178f0dbf11032975e3acfcc4269324f486f26308bb79e05815080d9752b23","sha512":"edd9dbf3553931d38d2b3b039172d9daf70a78cb67d667cefe7fdd52837740bb4a00909da9f7ec3058851e7879e143226ca002eefe29a825f0f4b16046df5f48","ssdeep":"768:TLnEjmnX/RT/1n9DceoTZcEPwEUoSKTyGC5yJ2E8mq4SMVujh/s3OuyXxYnNc:3EGR1nUTZcEIjoSKTiynq4gh/s3QXxYO","tlshash":"c913e26603526152cb1947f9c2ee2718f5bd698fb663438324a0356df67891cdc2222e","first_seen":"2026-02-22T13:36:51.234502Z","last_seen":"2026-02-22T13:36:51.234502Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1680,"timings":{"blocked":510,"dns":0,"connect":0,"send":0,"wait":568,"receive":602,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/61194/61194.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:6rr7S9hgsDrDJfhurSLfqar1JMI=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.863Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/61194/61194.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:6rr7S9hgsDrDJfhurSLfqar1JMI= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 39681\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"61194.jpg\"; filename*=utf-8''61194.jpg\r\ncontent-md5: KEQJLwgJgQjtC8AS6OyMJg==\r\ncontent-transfer-encoding: binary\r\netag: \"FhMoOpuxnBnXu8oFy1h0e03s1OYI\"\r\nlast-modified: Fri, 14 Jun 2024 13:47:31 GMT\r\nx-private: 1\r\nx-reqid: K3wAAIYUTjEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":39681,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x800, components 3","md5":"2844092f08098108ed0bc012e8ec8c26","sha1":"13283a9bb19c19d7bbca05cb58747b4decd4e608","sha256":"62f88f4f99c26351209ab3443730ea470db095587553afa0d65c49ad726aa7da","sha512":"29774a76624d53befefa8d7d64de48473f3b005a8e65b9b2c3dc38d3f96052104089253d0f355ae8a364033924382e7aa7ff261b18191c151f88138541cc07e4","ssdeep":"768:VZbaW2AY8UnGVedBCbsqzP/0VU4XE1J7I09sUeyu/slz:oAJUGVed4bhUSn1JMRU/r","tlshash":"0803f1041fda923cd732e4758afb255ed6562ea75e71cecb8ae243a41f570c17804be0","first_seen":"2026-02-22T13:36:51.235258Z","last_seen":"2026-02-22T13:36:51.235258Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1646,"timings":{"blocked":375,"dns":0,"connect":0,"send":0,"wait":642,"receive":629,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"wap.tiktokshopwholesale.com/static/js/index.363cbbaf.js","fqdn":"wap.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"162.0.220.217","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:10.614Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"wap.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 08 Jan 2026 15:40:42 GMT","end":"Wed, 08 Apr 2026 15:40:41 GMT"},"fingerprint":{"sha1":"4D:90:8B:48:5A:03:E7:A1:F8:40:19:BC:A1:8F:2B:93:9A:B2:DF:2E","sha256":"65:5C:25:EF:07:09:08:81:9D:DC:30:11:6A:82:A4:A1:56:2F:4B:8B:53:73:1F:74:73:58:C4:5F:33:C6:D1:7D"}}},"request":{"raw":"GET /static/js/index.363cbbaf.js HTTP/1.1\r\nHost: wap.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 22 Feb 2026 13:36:10 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sun, 16 Nov 2025 20:07:14 GMT\r\nvary: Accept-Encoding\r\netag: W/\"691a2ef2-c49c1\"\r\nexpires: Mon, 23 Feb 2026 01:36:10 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":805313,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (54533), with no line terminators","md5":"c86d3e9d7e629c8a0eae68fd3a6b2ff5","sha1":"dadbf3d9ece22cce3fda5a5abfbd944e2d485c07","sha256":"8a2c4ed00f9dd3935623bdbbaab176793129583af7996f3a325b883c594c3832","sha512":"d6e469909a949a32693b1e25df1065df637176a5a2e18504067e3ad528c5d2f8c8158fa9aa9e8831c49bb24175a5cea4f71959d2f5cb11f0ff3c74086e4740b1","ssdeep":"24576:CidRomFbCoxa5Q8CgsaIc1l4QeagfAAhU51u2AGI9lrCFN4InOwIdjIr9R:CidRomFblxa5Q8CgsaIc1l4QeagfAAhs","tlshash":"02057d0d907c1eaf165d5289f48f1a0d72f4988686c9f83077bdd9ecbf98a19b3d2214","first_seen":"2026-01-24T15:52:16.171681Z","last_seen":"2026-04-25T02:59:25.401434Z","times_seen":4,"resource_available":false,"data":null}},"time_used":618,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":618,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-22","alert":"Phishing Block","trigger":"wap.tiktokshopwholesale.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"wap.tiktokshopwholesale.com/static/js/pages-cart-cart~pages-category-category~pages-detail-detail~pages-index-index~pages-member-member~pa~396c1bec.a8e477c4.js","fqdn":"wap.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"162.0.220.217","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:11.824Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"wap.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 08 Jan 2026 15:40:42 GMT","end":"Wed, 08 Apr 2026 15:40:41 GMT"},"fingerprint":{"sha1":"4D:90:8B:48:5A:03:E7:A1:F8:40:19:BC:A1:8F:2B:93:9A:B2:DF:2E","sha256":"65:5C:25:EF:07:09:08:81:9D:DC:30:11:6A:82:A4:A1:56:2F:4B:8B:53:73:1F:74:73:58:C4:5F:33:C6:D1:7D"}}},"request":{"raw":"GET /static/js/pages-cart-cart~pages-category-category~pages-detail-detail~pages-index-index~pages-member-member~pa~396c1bec.a8e477c4.js HTTP/1.1\r\nHost: wap.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 22 Feb 2026 13:36:11 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sun, 16 Nov 2025 20:07:14 GMT\r\nvary: Accept-Encoding\r\netag: W/\"691a2ef2-c0353\"\r\nexpires: Mon, 23 Feb 2026 01:36:11 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":787283,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"d8402f403f44f6fc06766a31c76d0f2b","sha1":"547bcd7fbe32294c1029e7e50cc57d70b55d0748","sha256":"f76118c699decb32c039d40e779c9957b304586c2381e0fd8486f82bcf06bab9","sha512":"544df44d15534390bd6f91078531c2f969d2f71c9fb2ab2ee0251843fe366807ba2cec31dadcb2a5ac5c9c6f50b97cfbdfcbf29282b421b0df42dfd66e02f2cd","ssdeep":"3072:ImuSfb0K+ds4YjESFNOBuLgGC1dq74pJIkj6JhMKSiX+F8Ot2tNtdtcoj3Tzg4TB:IWfbX4YTFNOBbGC1dqSiX+F8cLhhe","tlshash":"9ff4d9713aac708ca037c3224ad15be923297f03b75356ea6753a167ce475623b1fb84","first_seen":"2025-11-28T00:42:08.756234Z","last_seen":"2026-04-25T02:59:25.31875Z","times_seen":12,"resource_available":true,"data":null}},"time_used":163,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":163,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-22","alert":"Phishing Block","trigger":"wap.tiktokshopwholesale.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tiktokshopwholesale.com/web/v1/home/getGoodsList","fqdn":"tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"162.0.220.217","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:12.855Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 08 Jan 2026 15:39:21 GMT","end":"Wed, 08 Apr 2026 15:39:20 GMT"},"fingerprint":{"sha1":"AC:F7:E9:AC:82:C3:F4:D3:BF:C1:5B:2F:0E:5B:97:D8:66:42:8D:89","sha256":"33:E2:5F:E7:5D:B5:BA:9F:52:13:33:4E:EE:09:06:3A:A6:2B:B9:29:E2:29:0F:B9:5F:34:02:5E:D8:F9:4D:40"}}},"request":{"raw":"OPTIONS /web/v1/home/getGoodsList HTTP/1.1\r\nHost: tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nOrigin: https://wap.tiktokshopwholesale.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\nserver: nginx\r\ndate: Sun, 22 Feb 2026 13:36:13 GMT\r\naccess-control-allow-origin: *\r\naccess-control-max-age: 1800\r\naccess-control-allow-methods: GET, POST, PATCH, PUT, DELETE\r\naccess-control-allow-headers: *\r\nallow: POST\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-27T07:34:25.483791Z","times_seen":16755627,"resource_available":true,"data":null}},"time_used":303,"timings":{"blocked":106,"dns":0,"connect":0,"send":0,"wait":197,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"wap.tiktokshopwholesale.com/static/img/logo.e4489616.svg","fqdn":"wap.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"162.0.220.217","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:12.856Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"wap.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 08 Jan 2026 15:40:42 GMT","end":"Wed, 08 Apr 2026 15:40:41 GMT"},"fingerprint":{"sha1":"4D:90:8B:48:5A:03:E7:A1:F8:40:19:BC:A1:8F:2B:93:9A:B2:DF:2E","sha256":"65:5C:25:EF:07:09:08:81:9D:DC:30:11:6A:82:A4:A1:56:2F:4B:8B:53:73:1F:74:73:58:C4:5F:33:C6:D1:7D"}}},"request":{"raw":"GET /static/img/logo.e4489616.svg HTTP/1.1\r\nHost: wap.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 22 Feb 2026 13:36:12 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Sun, 16 Nov 2025 20:07:14 GMT\r\nvary: Accept-Encoding\r\netag: W/\"691a2ef2-4191\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":16785,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"e4489616258b982846697c0d730bbaa2","sha1":"c6425ad96bf20c1180aca12928ae91b13823585e","sha256":"95bdbefbcc1c4fec8e91bcdf76ad21eaef745bae1d810253fff4b09eec2020f8","sha512":"a836310d205d1e9c4ed0c860ebeb58085ef609d63729a712029c7a7abf6290a1233e016245b3bebdbf20ca87796905fc7f72fab041de924ef199ed16c17b0946","ssdeep":"384:fdddJOOqrVX6KW1mnUqroguFwPAjplAS6h2vLM9VkgsJ:f7fh1mnUqroguFwPAldvLUJsJ","tlshash":"ea72b8cc2b7a92ecb4c0f7fb5752a4747851acc1a9168554c2a52e1fe8c142c1ee9cd7","first_seen":"2024-07-21T11:22:10Z","last_seen":"2026-04-25T02:59:25.39241Z","times_seen":53,"resource_available":false,"data":null}},"time_used":287,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":287,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-22","alert":"Phishing Block","trigger":"wap.tiktokshopwholesale.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/20439/20439.png?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:i-KVEWuTS0uUCasmawhYacTI9Ko=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.625Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/20439/20439.png?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:i-KVEWuTS0uUCasmawhYacTI9Ko= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/png\r\ncontent-length: 100506\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"20439.png\"; filename*=utf-8''20439.png\r\ncontent-md5: RDExL35QiztO2ZsTjXwMMA==\r\ncontent-transfer-encoding: binary\r\netag: \"FhEs78oqlAJwpanBRLU2twq-fDNf\"\r\nlast-modified: Wed, 12 Jun 2024 18:27:48 GMT\r\nx-private: 1\r\nx-reqid: yaoAAC_6hikKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":100506,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1000x1000, components 3","md5":"4431312f7e508b3b4ed99b138d7c0c30","sha1":"112cefca2a940270a5a9c144b536b70abe7c335f","sha256":"d6f812e451a311719392a7b8bf4833d4cf3d89b9643df3ef5d86ed31a75759e1","sha512":"f32f490ddbd6ecf8af3b358acb0a95389d2df7c8782a6e5b5f08ec5ce9edcc5e105334bfd69f0f48e4e9d0814b82150c00f0a0b8104419c7f984575500e2a592","ssdeep":"1536:i5J7RkmrW61D/37ODpFBzbdbIM8/1aG03A+3rLH/5EbZMXSu1F5Ao93skGL+7nnj:iP7R82ODpFJbiMcnErLfGqCuj5Ao93nj","tlshash":"c2a312add22f6152f50f997d4274d0fee76b8ca58f08dadc2b10c1b61854ee8598303e","first_seen":"2026-02-22T13:36:51.238449Z","last_seen":"2026-02-22T13:36:51.238449Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1774,"timings":{"blocked":605,"dns":0,"connect":0,"send":0,"wait":568,"receive":601,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/42088/42088.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:wPMbuOuxUmuGEsgdawsIhU40maE=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.731Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/42088/42088.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:wPMbuOuxUmuGEsgdawsIhU40maE= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 149345\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"42088.jpg\"; filename*=utf-8''42088.jpg\r\ncontent-md5: Hp+s1ZdRAxn67Y6UN0kg/A==\r\ncontent-transfer-encoding: binary\r\netag: \"FtcIMANgI6TvvknqWdCwtssrvTPx\"\r\nlast-modified: Thu, 13 Jun 2024 23:22:29 GMT\r\nx-private: 1\r\nx-reqid: 6J8AAOOiEzEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":149345,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 800x800, components 3","md5":"1e9facd597510319faed8e94374920fc","sha1":"d70830036023a4efbe49ea59d0b0b6cb2bbd33f1","sha256":"a04bf800b6560ceb97d58a3106c96426a20fca3a4f898bd7ad38951a2c7c0483","sha512":"c4020a082be3dd2360e6968b625a9126c3851fc9563202dafa0eb5d15eff42cf1c5795a9369db9f4e441bd5d165c6d654a61313778c36f3179fa2bc35b4e753b","ssdeep":"3072:dvVQtIIeRpJZ5tUeBUGHJJPexFfrDzZYZxQgKyL/mq:JKtIIIH7XCvxBpixQCLOq","tlshash":"18e312336ea6392ac835267f0ab0cb34afc379f0af3175b5b131d456529642c89bf454","first_seen":"2026-02-22T13:36:51.23929Z","last_seen":"2026-02-22T13:36:51.23929Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1497,"timings":{"blocked":502,"dns":0,"connect":0,"send":0,"wait":643,"receive":352,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"wap.tiktokshopwholesale.com/static/cate/1.png","fqdn":"wap.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"162.0.220.217","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:12.820Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"wap.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 08 Jan 2026 15:40:42 GMT","end":"Wed, 08 Apr 2026 15:40:41 GMT"},"fingerprint":{"sha1":"4D:90:8B:48:5A:03:E7:A1:F8:40:19:BC:A1:8F:2B:93:9A:B2:DF:2E","sha256":"65:5C:25:EF:07:09:08:81:9D:DC:30:11:6A:82:A4:A1:56:2F:4B:8B:53:73:1F:74:73:58:C4:5F:33:C6:D1:7D"}}},"request":{"raw":"GET /static/cate/1.png HTTP/1.1\r\nHost: wap.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 22 Feb 2026 13:36:12 GMT\r\ncontent-type: image/png\r\nlast-modified: Sun, 16 Nov 2025 20:07:14 GMT\r\nvary: Accept-Encoding\r\netag: W/\"691a2ef2-121ac\"\r\nexpires: Tue, 24 Mar 2026 13:36:12 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":74156,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 268 x 365, 8-bit/color RGB, non-interlaced","md5":"49b486ce476c2879caa1a33b55375a9f","sha1":"c72bf39f5ebefe33046c48d7ba456cf48f864bb2","sha256":"8361e22bfce6e5553a40be8bd47dd1237d62d0aeb7d060703c1247ba483403e8","sha512":"fa6abb583bdf74691c06f19c308f3c98cbc9c37b2894e508110c57157d52d8561b18bad5c45b0f08cde409443b0629c0afc8da37b4eb14c5824ee85b58294fdf","ssdeep":"1536:iSu4m9Y44AYDHaF+Xr5yayGrOkDrBfpBqFdJzj/YxSJtlUve2dR:iSu4m24E7M+b5NOkHBfDq1/8Sv6vdR","tlshash":"487302060a4344d29388431debaefa0f9c197acf35de9508baed579fe134061df19a4b","first_seen":"2025-07-18T14:09:30.990568Z","last_seen":"2026-04-25T02:59:25.410672Z","times_seen":19,"resource_available":false,"data":null}},"time_used":159,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":159,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-22","alert":"Phishing Block","trigger":"wap.tiktokshopwholesale.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"wap.tiktokshopwholesale.com/static/imgs/free.gif","fqdn":"wap.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"162.0.220.217","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:12.857Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"wap.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 08 Jan 2026 15:40:42 GMT","end":"Wed, 08 Apr 2026 15:40:41 GMT"},"fingerprint":{"sha1":"4D:90:8B:48:5A:03:E7:A1:F8:40:19:BC:A1:8F:2B:93:9A:B2:DF:2E","sha256":"65:5C:25:EF:07:09:08:81:9D:DC:30:11:6A:82:A4:A1:56:2F:4B:8B:53:73:1F:74:73:58:C4:5F:33:C6:D1:7D"}}},"request":{"raw":"GET /static/imgs/free.gif HTTP/1.1\r\nHost: wap.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 22 Feb 2026 13:36:12 GMT\r\ncontent-type: image/gif\r\nlast-modified: Sun, 16 Nov 2025 20:07:14 GMT\r\nvary: Accept-Encoding\r\netag: W/\"691a2ef2-13911\"\r\nexpires: Tue, 24 Mar 2026 13:36:12 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":80145,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 750 x 275","md5":"0f8323cee03196508e5a8459a1ebcb46","sha1":"c4152fa8e51368c62abfee8783738063df9a7f14","sha256":"68685a412f959a9b7091409dd185f193cfe357c37236512dd3d7a358ae43e497","sha512":"88582f63ffd3d45486d56e78f8563b4aa33f8f71de5f0bad363a1fe255a477e5393c0d3bc4f0ab8f22aa746717e1d5a9c4649003c5eecbe358129ebca12d265b","ssdeep":"1536:orHOsCBV/uhQ4TyOe+EbXOpFkcFo88a5tU320rQwf1KNxv6Z/mYLLr8EJX:ojAV/uhQ4TC+Eb+TkcF8a5tUlrb1KNxY","tlshash":"2a73126d4b8fc7bf9187a07c99c785062d77aea8b6df300217094dc30278a5a446e9e8","first_seen":"2025-07-18T14:09:30.99239Z","last_seen":"2026-04-25T02:59:25.383571Z","times_seen":17,"resource_available":false,"data":null}},"time_used":287,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":287,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-22","alert":"Phishing Block","trigger":"wap.tiktokshopwholesale.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"wap.tiktokshopwholesale.com/assets/uniicons.b6d3756e.ttf","fqdn":"wap.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"162.0.220.217","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:12.858Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"wap.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 08 Jan 2026 15:40:42 GMT","end":"Wed, 08 Apr 2026 15:40:41 GMT"},"fingerprint":{"sha1":"4D:90:8B:48:5A:03:E7:A1:F8:40:19:BC:A1:8F:2B:93:9A:B2:DF:2E","sha256":"65:5C:25:EF:07:09:08:81:9D:DC:30:11:6A:82:A4:A1:56:2F:4B:8B:53:73:1F:74:73:58:C4:5F:33:C6:D1:7D"}}},"request":{"raw":"GET /assets/uniicons.b6d3756e.ttf HTTP/1.1\r\nHost: wap.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 22 Feb 2026 13:36:12 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 35760\r\nlast-modified: Sun, 16 Nov 2025 20:07:14 GMT\r\netag: \"691a2ef2-8bb0\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":35760,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, 11 tables, 1st \"GSUB\", 18 names, Macintosh, Created by iconfontuniiconsRegularuniiconsuniiconsVersion 1.0uniiconsGenerated by svg2ttf from F","md5":"b6d3756ee0e3dd7ecb155b751a233247","sha1":"4e61eda60483fc01548f76ca5741ee838486cc96","sha256":"89ed7d6d732e893a473c6d6b443f854f4dcdf57360a11016306335a2048895ff","sha512":"0dca69f143ce0b6428348a23a9030ae49ae1936d940e28c75b766f89ec3fff44df111e435c300ffab7dac14d3f6b39fef8d8babb490b755c2ed5ec1b3f602cd4","ssdeep":"768:66TDym6KsVBqac6riFK/d8PWenmP7p7+A9cbWL2eRaXNPs:JTDym6nqB6WsdenmP97dqb4lss","tlshash":"2ef28e65176d4e6ad97e59ba188761130f7eff30a0b1ed16ee8ebc5e84080f405e0b1e","first_seen":"2023-04-13T07:38:27Z","last_seen":"2026-06-26T17:32:12.198335Z","times_seen":534,"resource_available":false,"data":null}},"time_used":287,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":285,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-22","alert":"Phishing Block","trigger":"wap.tiktokshopwholesale.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/44023/44023.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:4GnEaV7RNv_sIu9Gjg8LCIrlzoA=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.557Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /uploads/goods/44023/44023.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:4GnEaV7RNv_sIu9Gjg8LCIrlzoA= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-27T07:34:25.483791Z","times_seen":16755627,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/77410/77410.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:9a5rSrAuqXAxUD45LoyW0l5qM9E=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.735Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/77410/77410.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:9a5rSrAuqXAxUD45LoyW0l5qM9E= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 199559\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"77410.jpg\"; filename*=utf-8''77410.jpg\r\ncontent-md5: snvo7GzeuNF8AJMH2YBD0A==\r\ncontent-transfer-encoding: binary\r\netag: \"Fm0-UrFtABhl8LreDcYbRCTWwP2R\"\r\nlast-modified: Mon, 17 Jun 2024 00:36:23 GMT\r\nx-private: 1\r\nx-reqid: mDUAAAivTzEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":199559,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1080x1080, components 3","md5":"b27be8ec6cdeb8d17c009307d98043d0","sha1":"6d3e52b16d001865f0bade0dc61b4424d6c0fd91","sha256":"c0de6ec4b69148c9fe3e0febb0623d87be772061dc08151a906bd2d719229f9e","sha512":"2bf248c2eb39fb5ebd98be218de8d57e35224201816e68acf875cc73297667f4a016a6daa66eb5709a4648541493953f84967a4e5af6c3b85b835468852bf944","ssdeep":"3072:fP4U87PUYAx+kplHV0UXMnue6u8IX/aIyM2N1YL0Zf7qS5xPG1eaPVM2TxhtL:34U87PCrV0U8umvyM2N15KndVht","tlshash":"eb142209a85e67f1ffbcf7720044a774b3156f9151ee6a8222e2e9cc5a78027f9027c5","first_seen":"2026-02-22T13:36:51.241542Z","last_seen":"2026-02-22T13:36:51.241542Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1751,"timings":{"blocked":498,"dns":0,"connect":0,"send":0,"wait":656,"receive":597,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tiktokshopwholesale.com/web/v1/category/getCategoryList","fqdn":"tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"162.0.220.217","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:12.655Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 08 Jan 2026 15:39:21 GMT","end":"Wed, 08 Apr 2026 15:39:20 GMT"},"fingerprint":{"sha1":"AC:F7:E9:AC:82:C3:F4:D3:BF:C1:5B:2F:0E:5B:97:D8:66:42:8D:89","sha256":"33:E2:5F:E7:5D:B5:BA:9F:52:13:33:4E:EE:09:06:3A:A6:2B:B9:29:E2:29:0F:B9:5F:34:02:5E:D8:F9:4D:40"}}},"request":{"raw":"OPTIONS /web/v1/category/getCategoryList HTTP/1.1\r\nHost: tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nOrigin: https://wap.tiktokshopwholesale.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\nserver: nginx\r\ndate: Sun, 22 Feb 2026 13:36:13 GMT\r\naccess-control-allow-origin: *\r\naccess-control-max-age: 1800\r\naccess-control-allow-methods: GET, POST, PATCH, PUT, DELETE\r\naccess-control-allow-headers: *\r\nallow: *\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-27T07:34:25.483791Z","times_seen":16755627,"resource_available":true,"data":null}},"time_used":950,"timings":{"blocked":317,"dns":1,"connect":157,"send":0,"wait":288,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tiktokshopwholesale.com/web/v1/home/getVersion","fqdn":"tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"162.0.220.217","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.204Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 08 Jan 2026 15:39:21 GMT","end":"Wed, 08 Apr 2026 15:39:20 GMT"},"fingerprint":{"sha1":"AC:F7:E9:AC:82:C3:F4:D3:BF:C1:5B:2F:0E:5B:97:D8:66:42:8D:89","sha256":"33:E2:5F:E7:5D:B5:BA:9F:52:13:33:4E:EE:09:06:3A:A6:2B:B9:29:E2:29:0F:B9:5F:34:02:5E:D8:F9:4D:40"}}},"request":{"raw":"POST /web/v1/home/getVersion HTTP/1.1\r\nHost: tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-us\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 0\r\nOrigin: https://wap.tiktokshopwholesale.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 22 Feb 2026 13:36:13 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\naccess-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS\r\naccess-control-allow-headers: Authorization, Content-Type, If-Match, If-Modified-Since, If-None-Match, If-Unmodified-Since, X-CSRF-TOKEN, X-Requested-With\r\naccess-control-allow-origin: https://wap.tiktokshopwholesale.com\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":124,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"b4b5bcfb12fc5057dbc47a4afb6e124a","sha1":"c5295ce829accda512c24885ad33ab8e2e6adce6","sha256":"30497a4697f1781edf254c5544f91fc57e86a07d87a388c0616854c299d4e405","sha512":"49b06aad8dda564a167e264e2944f1bb96c61bad43e0bd29064ec287b106ba34b6a43e55051536619d5a2ad4615570960c3f7a24f1b1d7896f25f771c3f38665","ssdeep":"","tlshash":"dbb0929b979cc807cc15b79c69484a849bd1234048190abaef98a6d99219528704e929","first_seen":"2025-12-17T07:45:38.49132Z","last_seen":"2026-04-25T02:59:25.403545Z","times_seen":10,"resource_available":false,"data":null}},"time_used":206,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":206,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/57040/57040.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:w1y_SZHXM6H8Cn7VMBqcxuyR2OQ=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.716Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/57040/57040.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:w1y_SZHXM6H8Cn7VMBqcxuyR2OQ= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 117343\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"57040.jpg\"; filename*=utf-8''57040.jpg\r\ncontent-md5: Cdl5YtEipsIwjEQZftZPMw==\r\ncontent-transfer-encoding: binary\r\netag: \"Fge3CkmXMc7POaMC4UK_pZkwOuJt\"\r\nlast-modified: Sun, 16 Jun 2024 00:37:08 GMT\r\nx-private: 1\r\nx-reqid: 3MMAACquiCkKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":117343,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, progressive, precision 8, 750x1000, components 3","md5":"09d97962d122a6c2308c44197ed64f33","sha1":"07b70a499731cecf39a302e142bfa599303ae26d","sha256":"8c0fe82a0ca8734b89d14396cf01b3ec511933eb3811d47a7e6574e4a04ddb0d","sha512":"904a7963bb6add20787961c369805728afbc05e36f1cf15e658fb6e07099c53d06a28c575f177d363e56c132b6882310a8a3f53ed1ac063147c54e8c05fd0a26","ssdeep":"3072:8ULvokkUBmKcoTqIhQdheurd48LsFuDlwb2gk9W5:8lkTBmKcoYw8o1c9W5","tlshash":"7cb313e4de47deaaf5d9ee4b39ac14c991cf65b876c12026e0f915971703830b38da07","first_seen":"2026-02-22T13:36:51.243182Z","last_seen":"2026-02-22T13:36:51.243182Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1681,"timings":{"blocked":515,"dns":0,"connect":0,"send":0,"wait":567,"receive":599,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/26451/26451.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:ajeHu6EDXsh90schXDb1xdjVPOI=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.865Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/26451/26451.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:ajeHu6EDXsh90schXDb1xdjVPOI= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 96797\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"26451.jpg\"; filename*=utf-8''26451.jpg\r\ncontent-md5: 4GWyhdY/lzTsGGssHmL3bw==\r\ncontent-transfer-encoding: binary\r\netag: \"FvesWGsDn7uenikim9Pre0Sxgt0f\"\r\nlast-modified: Thu, 13 Jun 2024 14:29:22 GMT\r\nx-private: 1\r\nx-reqid: 6J8AANr7VDEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":96797,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 800x800, components 3","md5":"e065b285d63f9734ec186b2c1e62f76f","sha1":"f7ac586b039fbb9e9e29229bd3eb7b44b182dd1f","sha256":"d8c0691239ac1241832b7517ecaca7c8131a5aa73150a338d4d1c3b2a4c66199","sha512":"241ccab10c31cbaa2569799af8295400f7b50777adb4327604903a982d83884bf14f1b171245aa3bf97d3e06319033e5cee1f55bb450421ce13262d5253ea7eb","ssdeep":"1536:u8Pv+7XI+NTSXuZnDBSGtCovWkshdvdn8Cc63CEKDJz5hqXP0yV:b3wXI+9SXu9DBSGt8dvKd6S3dz5hqXPF","tlshash":"2d931244311ba21a60a528f453fc8a2aefb1317f341f9b92a971fe74468f1b1c195cf9","first_seen":"2026-02-22T13:36:51.244063Z","last_seen":"2026-02-22T13:36:51.244063Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1646,"timings":{"blocked":372,"dns":0,"connect":0,"send":0,"wait":643,"receive":631,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/34104/34104.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:jyXvpKN1Rlt7VUZ4JnyPlT24snw=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.625Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/34104/34104.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:jyXvpKN1Rlt7VUZ4JnyPlT24snw= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 35906\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"34104.jpg\"; filename*=utf-8''34104.jpg\r\ncontent-md5: UKnR3ds6lCYCkN/5UWTR3g==\r\ncontent-transfer-encoding: binary\r\netag: \"FheKqexDa90phnItOUXgcUWoQBxw\"\r\nlast-modified: Fri, 14 Jun 2024 10:08:53 GMT\r\nx-private: 1\r\nx-reqid: mDUAAAL_hCkKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":35906,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 800x801, components 3","md5":"50a9d1dddb3a94260290dff95164d1de","sha1":"178aa9ec436bdd2986722d3945e07145a8401c70","sha256":"c9d8c4de1ee93af3a44b1a1dda37c9b3c809803bfb5279a8da28216815a67af8","sha512":"679d46d9d033b4154e51aca66d278dc33e751ec18b9a2d2e25a9acfb07c78b885abd59409567a6ac5fe53252f980425663e4e6ccf79e23d3105d9a7d6db1f4f1","ssdeep":"768:qdN5ohIxaelUHBOJEpgzjsEgg82P5Pa8YTfH:qymaLBOJEpgzoE1PBa8y","tlshash":"38f2cf7bf7313710ce223ab49bd3a72bdbf3a464f56afc69009385f4e0211108e25699","first_seen":"2026-02-22T13:36:51.244851Z","last_seen":"2026-02-22T13:36:51.244851Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1777,"timings":{"blocked":606,"dns":0,"connect":0,"send":0,"wait":569,"receive":602,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/87040/87040.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:L_7sLvP6jl3tnJYmH_yxxh5G0-M=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.734Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/87040/87040.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:L_7sLvP6jl3tnJYmH_yxxh5G0-M= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 143572\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"87040.jpg\"; filename*=utf-8''87040.jpg\r\ncontent-md5: 84EzUTrOIMdIOH4LbTc8Pg==\r\ncontent-transfer-encoding: binary\r\netag: \"Fk_Dp1NsJhGG8pCy8EyzNR9LSdiu\"\r\nlast-modified: Thu, 20 Jun 2024 18:32:41 GMT\r\nx-private: 1\r\nx-reqid: b-EAAP-aRDEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":143572,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 960x960, components 3","md5":"f38133513ace20c748387e0b6d373c3e","sha1":"4fc3a7536c261186f290b2f04cb3351f4b49d8ae","sha256":"faea34131b2691389d97a8af3b647f4f350ccff32ac28fb818b830e7263a7061","sha512":"5fb9de4c774fee81233b322173ea96bb6eff4556e809f9d52dc88f6e1a9911fb38eec89d09a1f9f91db6f9cc7d0ce8355ba92445ab6918c22a54c40a97b43f81","ssdeep":"3072:SKVg5HXPdJziwPx/8gxSNdZlx61JPXcS/YcQhFe7sRNFDX/anks4R7:SpBPzNF8gx/xcS/YzDhTdX/akr","tlshash":"13e3127816535af21aac8d3559189f8836073d847e6df18ba033279c52dca2a7df32f1","first_seen":"2026-02-22T13:36:51.245686Z","last_seen":"2026-02-22T13:36:51.245686Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1719,"timings":{"blocked":499,"dns":0,"connect":0,"send":0,"wait":644,"receive":576,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/98410/img.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:SGWN9l2exgq8jY4_Bn4Soo2F1d8=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.813Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/98410/img.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:SGWN9l2exgq8jY4_Bn4Soo2F1d8= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 26712\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"img.jpg\"; filename*=utf-8''img.jpg\r\ncontent-md5: 5aKXHTpL09xCv2CA6dRd7Q==\r\ncontent-transfer-encoding: binary\r\netag: \"Fg8Skh_GnPHXEjqrDeZlOpf5MagV\"\r\nlast-modified: Fri, 21 Jun 2024 02:18:49 GMT\r\nx-private: 1\r\nx-reqid: AeQAAB5WSzEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":26712,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 250x250, components 3","md5":"e5a2971d3a4bd3dc42bf6080e9d45ded","sha1":"0f12921fc69cf1d7123aab0de6653a97f931a815","sha256":"2283f0ae8b8f5cd7e4205251f666e7bf662d9baeea9645f995ebae802ad3f8ea","sha512":"41e80d19628296326abe53d1bfcd152043ac9c65a9e747e1bcc77dd9731143faa6d652cc3c0cf805d9bb3801c01624336af8c467b95f6b32fa814440e59dda6c","ssdeep":"384:WuQ65mxOluLvuj++IUBxNWjtF+wATCy8sgqw991i+uD+oTRrnXmoxIH8WIzLHH9A:WNwVjNvNEtcTC0hwwb+CrX7IStA","tlshash":"1ec2e0ba009932d6fd15b9b55964fccbaee437e3e43a498b7cc4418e421c7b85321332","first_seen":"2026-02-22T13:36:51.246531Z","last_seen":"2026-02-22T13:36:51.246531Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1416,"timings":{"blocked":422,"dns":0,"connect":0,"send":0,"wait":641,"receive":353,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/16688/16688.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:TBGJvAaw4upj4ECSaribEk7EgvM=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.835Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/16688/16688.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:TBGJvAaw4upj4ECSaribEk7EgvM= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 77373\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"16688.jpg\"; filename*=utf-8''16688.jpg\r\ncontent-md5: fDPcmGPvcFkgxfJ2MOD2eQ==\r\ncontent-transfer-encoding: binary\r\netag: \"FuhqjDMl9a407bE4Hq0JT-Vgs-2S\"\r\nlast-modified: Thu, 13 Jun 2024 12:42:40 GMT\r\nx-private: 1\r\nx-reqid: 3MMAANyHSTEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":77373,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1000x1000, components 3","md5":"7c33dc9863ef705920c5f27630e0f679","sha1":"e86a8c3325f5ae34edb1381ead094fe560b3ed92","sha256":"bea450c5ae490a419ab4264808790516f8c7c500e09aac091183b38b5dd1807c","sha512":"224d8fba1bcc8195c8baa3a9ccd2bb1e4389663fd7de24e20c118b4fd5e43475844d8dbecac20cbe4e2551638e9d4f7948c4203670ba404f2d35283fc542843b","ssdeep":"1536:uItLhHlZxDC0GjeAabbZi+eiC/D6kxAcjDZGpprMIfr6TVXGf/jAn/+Mo:uItLhHVe/jelZi+G/rDi6TtGfrA2Mo","tlshash":"907302bc28fe65e1ca3462739ae27771d153782d50289cd6f2423fb0e963acf465025d","first_seen":"2026-02-22T13:36:51.24734Z","last_seen":"2026-02-22T13:36:51.24734Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1541,"timings":{"blocked":399,"dns":0,"connect":0,"send":0,"wait":655,"receive":487,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.dcloud.net.cn/img/shadow-grey.png","fqdn":"cdn.dcloud.net.cn","domain":"dcloud.net.cn","tld":"net.cn"},"ip":{"addr":"124.220.205.65","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:14.004Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.dcloud.net.cn","organization":""},"issuer":{"commonName":"Certum Domain Validation CA SHA2","organization":"Unizeto Technologies S.A."},"validity":{"start":"Tue, 26 Aug 2025 11:47:17 GMT","end":"Fri, 25 Sep 2026 11:47:16 GMT"},"fingerprint":{"sha1":"47:A7:6C:09:6B:1D:CA:2D:7D:39:2E:C1:7F:15:DE:5D:F2:C4:0F:77","sha256":"EA:73:37:83:D0:38:44:D9:3C:0B:26:F0:DD:D1:22:2F:36:F7:F2:86:A1:B0:58:52:DE:4E:0A:21:D6:89:E7:3E"}}},"request":{"raw":"GET /img/shadow-grey.png HTTP/1.1\r\nHost: cdn.dcloud.net.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/png\r\ncontent-length: 136\r\nlast-modified: Thu, 06 Jun 2019 06:42:07 GMT\r\netag: \"5cf8b5bf-88\"\r\nexpires: Sun, 22 Feb 2026 15:36:14 GMT\r\ncache-control: max-age=7200\r\nset-cookie: __uni__uid=rBEQRWmbBk6mS6sPA2mBAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=dcloud.net.cn; path=/; secure; httponly; samesite=none\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":136,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1 x 6, 4-bit colormap, non-interlaced","md5":"5a962adf74d92ae702467b3f47976547","sha1":"36f74049375584e3fa69b5ef87e9572336ff9e7a","sha256":"ad4ebea1c3496dd2924789ee009174a2c6289d1200e9811f458fd46f172d1d6f","sha512":"4ace23fe7ec6c7271710030fd423aace13eafac68ac3e76366ce4ce9bdc702caf71c9bdc2fb6a32c8e9791546098617cc0259decd8bb8489afdbce43e1b53a73","ssdeep":"","tlshash":"47c09bf3a615dc754a0d153b42e98271f429511e07046d0e5a13c216741e3448d56793","first_seen":"2023-04-15T10:50:30Z","last_seen":"2026-06-27T06:17:23.725553Z","times_seen":16699,"resource_available":false,"data":null}},"time_used":1379,"timings":{"blocked":566,"dns":42,"connect":247,"send":0,"wait":247,"receive":0,"ssl":273},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/98744/img.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:3-cCjuYd-_nkwZZrEdNbgkxL164=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.719Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/98744/img.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:3-cCjuYd-_nkwZZrEdNbgkxL164= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 11680\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"img.jpg\"; filename*=utf-8''img.jpg\r\ncontent-md5: n1M29hxLfskJNt8v/ReVsg==\r\ncontent-transfer-encoding: binary\r\netag: \"FgLqWdqNHGumad0T_MNX_s_A0OZh\"\r\nlast-modified: Fri, 21 Jun 2024 04:46:07 GMT\r\nx-private: 1\r\nx-reqid: fyQAAHO-kykKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":11680,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 188x250, components 3","md5":"9f5336f61c4b7ec90936df2ffd1795b2","sha1":"02ea59da8d1c6ba669dd13fcc357fecfc0d0e661","sha256":"4a7974560cf91fadbeb6d44b1c53e3210078e7961598c8fe5ae07d7cfd33ed27","sha512":"8319a3d09d93167341e37f9f7b45e4e45625d803a61d88cec48cdb7e4bed9e8cf0c0af7a66c638e6895262f0f79d16854a8fdf81c2d3cca17464f27a9915aaae","ssdeep":"192:X0pzdbf5l9jzZBiqOfVdlhrAQLZIpXnNsHVU7TSyvpMTqXQQ6NGhANsy:2NLLBiXtrzLZoXnJTPvpMqAQ6Nl","tlshash":"bc32c1ce51d42cf472d9386d61ecbc926adcfa1974f4059d26d3024e82e1a07ca87bf9","first_seen":"2026-02-22T13:36:51.248746Z","last_seen":"2026-02-22T13:36:51.248746Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1449,"timings":{"blocked":513,"dns":0,"connect":0,"send":0,"wait":746,"receive":190,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/42134/42134.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:nSuPFHvr2U8V-MZGKq-NZ9IXrMs=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.736Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/42134/42134.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:nSuPFHvr2U8V-MZGKq-NZ9IXrMs= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 76817\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"42134.jpg\"; filename*=utf-8''42134.jpg\r\ncontent-md5: ACO4TwkYvOkB+0TEDnHNbg==\r\ncontent-transfer-encoding: binary\r\netag: \"FkvxzsIgQcYDJnqnRGLz7R4SGDXh\"\r\nlast-modified: Thu, 13 Jun 2024 23:36:25 GMT\r\nx-private: 1\r\nx-reqid: yaoAAGX8TjEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":76817,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=3, software=Adobe Photoshop CS5 Windows, datetime=2023-03-03T11:19:45+08:00], baseline, precision 8, 800x800, components 3","md5":"0023b84f0918bce901fb44c40e71cd6e","sha1":"4bf1cec22041c603267aa74462f3ed1e121835e1","sha256":"1e610de7e3eaa5857795662a790c1603a36fe22aa626a7645e95d3309704eed1","sha512":"596ad5a70eed36364a74dd63b3aab91ee27faf106c40ab329f1f36d88f31cf8e73156eafc2633355ccdba648c70693be01a71241bc31d6da8b6cc5d53fee7855","ssdeep":"1536:+7rif4suzpDV7EHUTSllCHc4IQKRLKRqSGAFsddv/KqDyjbhtNR1e:6ifIMEIPtKROAmPFMZR1e","tlshash":"40730288f16ba0493308425d0e4d220c2b8be7f56cb9d94e707d6dd2c3fd9275699b8b","first_seen":"2026-02-22T13:36:51.249601Z","last_seen":"2026-02-22T13:36:51.249601Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1631,"timings":{"blocked":498,"dns":0,"connect":0,"send":0,"wait":655,"receive":478,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/98393/img.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:1crAguGtl3qoIUfTtOAbN9WS8h8=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.818Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/98393/img.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:1crAguGtl3qoIUfTtOAbN9WS8h8= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 10468\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"img.jpg\"; filename*=utf-8''img.jpg\r\ncontent-md5: 1iFad5D94zbH3ojoakjJFQ==\r\ncontent-transfer-encoding: binary\r\netag: \"Fjkyr7xyybVVVcSbmuY8yN9KYFeO\"\r\nlast-modified: Fri, 21 Jun 2024 02:12:37 GMT\r\nx-private: 1\r\nx-reqid: mDUAAHqgVjEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":10468,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 188x250, components 3","md5":"d6215a7790fde336c7de88e86a48c915","sha1":"3932afbc72c9b55555c49b9ae63cc8df4a60578e","sha256":"b61ca6bfd00b2f5e5c510e766b4193c385357d66a85197f5935440bc4895a38e","sha512":"1a7603d7f53efa0de197e382d8a6e6c016023dba40648327fe2ee8923db50aeb6b61f1d51d7a95990f48b9d40624d561295bce563944e03edb10ec67200b377e","ssdeep":"192:9CleuooD8ZvbG7WYZpvQQs8fdSeAJnMVk2bOw7IcB0Pqi3DRCw:91uOvbG7WYndfMhJnybTIcWPqi3DRN","tlshash":"8c22be263e131fe3fd16cf39145937e8adae16cd9336896ec2fc845519cb398c249825","first_seen":"2026-02-22T13:36:51.250311Z","last_seen":"2026-02-22T13:36:51.250311Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1234,"timings":{"blocked":418,"dns":0,"connect":0,"send":0,"wait":639,"receive":177,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/57902/57902.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:Kl2inb1Ggaq7BzXvQlXBy67Zss0=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.733Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/57902/57902.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:Kl2inb1Ggaq7BzXvQlXBy67Zss0= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 89668\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"57902.jpg\"; filename*=utf-8''57902.jpg\r\ncontent-md5: qQbtsq26pPx1Ar7SkKpKiA==\r\ncontent-transfer-encoding: binary\r\netag: \"Fr9mymwxb0a4B0BhUrdzyaFxsUhZ\"\r\nlast-modified: Sun, 16 Jun 2024 08:49:41 GMT\r\nx-private: 1\r\nx-reqid: AeQAALT4RDEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":89668,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 800x820, components 3","md5":"a906edb2adbaa4fc7502bed290aa4a88","sha1":"bf66ca6c316f46b807406152b773c9a171b14859","sha256":"afee84d830bb6fc39b39ea1bcb18a3dda6a0115890e63e34bfc63ce05d126ccb","sha512":"0794d3d925c2e9d6d964e9e02c0cc492150b16ad5b83a2851af8790e1ee63157778882ac6ff1f6e2b4ffde76bf2151e6faceb9ce33b820c981477acdbace1e65","ssdeep":"1536:uvCEwO6l8sEtV/wKprLWuGXIGHk3ILwz9gYquJSAALDDK4S/zu:uwOOywqir7oILo9gY+AaSbu","tlshash":"fe93024788e63e38d1295e3217766f93b3876b9900b4613bf4153ef23209c56e1b967c","first_seen":"2026-02-22T13:36:51.251537Z","last_seen":"2026-02-22T13:36:51.251537Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1616,"timings":{"blocked":500,"dns":0,"connect":0,"send":0,"wait":650,"receive":466,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"wap.tiktokshopwholesale.com/","fqdn":"wap.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"162.0.220.217","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-22T13:36:09.903Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"wap.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 08 Jan 2026 15:40:42 GMT","end":"Wed, 08 Apr 2026 15:40:41 GMT"},"fingerprint":{"sha1":"4D:90:8B:48:5A:03:E7:A1:F8:40:19:BC:A1:8F:2B:93:9A:B2:DF:2E","sha256":"65:5C:25:EF:07:09:08:81:9D:DC:30:11:6A:82:A4:A1:56:2F:4B:8B:53:73:1F:74:73:58:C4:5F:33:C6:D1:7D"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: wap.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 22 Feb 2026 13:36:10 GMT\r\ncontent-type: text/html\r\ncontent-length: 790\r\nlast-modified: Sun, 16 Nov 2025 20:07:14 GMT\r\netag: \"691a2ef2-316\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":790,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (500)","md5":"8d547278c899dedcf7c90cf945ccd95b","sha1":"4bc35a03b4be926ebaa5e63add6675869629dc17","sha256":"318272f744373576cef5fea488ec9a0c97c5798a5a845a5a003c44042224a8a4","sha512":"a728093f3c4226290a2654cb831b72ca4e6a05689ec9ae8c0514f0de9095f37783d0f140d6b08a8b75ed8ea3293b8d18ef6ff6b38b701aabc3755f4150a2a3cd","ssdeep":"","tlshash":"7001f1c21c50f94d0720865134b6d61e8ee64ab9ad91d9603cdc2bfc4bd078ece6e811","first_seen":"2025-11-28T00:42:08.847368Z","last_seen":"2026-04-25T02:59:25.311672Z","times_seen":12,"resource_available":false,"data":null}},"time_used":879,"timings":{"blocked":362,"dns":44,"connect":155,"send":0,"wait":155,"receive":0,"ssl":160},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-22","alert":"Phishing Block","trigger":"wap.tiktokshopwholesale.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/77921/77921.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:7ZXZWngtJkfcHk1u-Y0Mp2zdNGk=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"148.153.188.137","port":443,"asn":63199,"as":"CDSC-AS1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.628Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"imgs.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 06:42:54 GMT","end":"Mon, 09 Mar 2026 06:42:53 GMT"},"fingerprint":{"sha1":"DF:17:C6:20:22:A9:B0:84:99:22:E8:FE:F4:61:D7:1C:DF:D8:00:E4","sha256":"4A:BE:E0:D2:5D:B2:B5:5F:4C:EE:EE:2F:CF:DC:92:86:20:34:55:2C:5D:EE:E5:C9:C5:F7:6E:AC:80:CD:5A:A0"}}},"request":{"raw":"GET /uploads/goods/77921/77921.jpg?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:7ZXZWngtJkfcHk1u-Y0Mp2zdNGk= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Sun, 22 Feb 2026 13:36:14 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 109763\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: X-Log, X-Reqid\r\naccess-control-max-age: 2592000\r\ncache-control: public, max-age=31536000\r\ncontent-disposition: inline; filename=\"77921.jpg\"; filename*=utf-8''77921.jpg\r\ncontent-md5: LSVPubet/pNvhKiX09AS1w==\r\ncontent-transfer-encoding: binary\r\netag: \"Fkwd0YswO16HiiFiMvVfTmN0jxS8\"\r\nlast-modified: Mon, 17 Jun 2024 03:44:57 GMT\r\nx-private: 1\r\nx-reqid: xMMAAF2-WDEKlZYY\r\nx-svr: IO\r\nx-qiniu-zone: na0\r\nx-log: X-Log\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":109763,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1000x1000, components 3","md5":"2d254fb9b7adfe936f84a897d3d012d7","sha1":"4c1dd18b303b5e878a216232f55f4e63748f14bc","sha256":"d5df44adf4a81413d186f219e4909a77657a9807e37d8f0fb93bc6ecb4fa370e","sha512":"f9c80821d032cbe07adedd9c9a2a4c42d6718e3caddfacad75d29bb8e892c7c998f106b8b9d27f4c32176b42bae5c881c846326beb5633b7ca0dafda4b524982","ssdeep":"3072:2+kJz9vdvl5TbzTGxmjFvaIhx0yHUjpSE:VkJJT5TmInHYpSE","tlshash":"e7b30228df1334c8f6c892388bc8f12dcc93c1aad6409879c6e9589e3947a5d6d764fc","first_seen":"2026-02-22T13:36:51.253119Z","last_seen":"2026-02-22T13:36:51.253119Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1872,"timings":{"blocked":609,"dns":0,"connect":0,"send":0,"wait":651,"receive":612,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"wap.tiktokshopwholesale.com/static/cate/2.png","fqdn":"wap.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"162.0.220.217","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:12.823Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"wap.tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 08 Jan 2026 15:40:42 GMT","end":"Wed, 08 Apr 2026 15:40:41 GMT"},"fingerprint":{"sha1":"4D:90:8B:48:5A:03:E7:A1:F8:40:19:BC:A1:8F:2B:93:9A:B2:DF:2E","sha256":"65:5C:25:EF:07:09:08:81:9D:DC:30:11:6A:82:A4:A1:56:2F:4B:8B:53:73:1F:74:73:58:C4:5F:33:C6:D1:7D"}}},"request":{"raw":"GET /static/cate/2.png HTTP/1.1\r\nHost: wap.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 22 Feb 2026 13:36:12 GMT\r\ncontent-type: image/png\r\nlast-modified: Sun, 16 Nov 2025 20:07:14 GMT\r\nvary: Accept-Encoding\r\netag: W/\"691a2ef2-21d08\"\r\nexpires: Tue, 24 Mar 2026 13:36:12 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":138504,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 268 x 365, 8-bit/color RGB, non-interlaced","md5":"6a888adeac9fd4459611c3b7a4279861","sha1":"1e3f4470e6bb4beb7807463adb6693da55d1cbdb","sha256":"21ecf2ba84f10746d69494af70667e71aae71eb0bc6e77f21191f528c370dbde","sha512":"d9934540b200d4540d1f11ccec7c6b7da235d66644845fe11a59efbba9e526912ca2de288ad84d0b7701797ec08ee2645c01b8b456556cbd5edda733a2cc73c8","ssdeep":"3072:HV721EebIimtKWoDPVlliny1pHp/BA+sGM0TbQI4:Hhj//QW7y1/W+HpN4","tlshash":"7ad312732c179bc9d747dd5d698099c48e8fb7590a04f0f0afeba53fc4b68a46708846","first_seen":"2025-07-18T14:09:31.009551Z","last_seen":"2026-04-25T02:59:25.364605Z","times_seen":19,"resource_available":false,"data":null}},"time_used":166,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":166,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-22","alert":"Phishing Block","trigger":"wap.tiktokshopwholesale.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"wap.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tiktokshopwholesale.com/web/v1/home/getActivity","fqdn":"tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"162.0.220.217","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.273Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tiktokshopwholesale.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 08 Jan 2026 15:39:21 GMT","end":"Wed, 08 Apr 2026 15:39:20 GMT"},"fingerprint":{"sha1":"AC:F7:E9:AC:82:C3:F4:D3:BF:C1:5B:2F:0E:5B:97:D8:66:42:8D:89","sha256":"33:E2:5F:E7:5D:B5:BA:9F:52:13:33:4E:EE:09:06:3A:A6:2B:B9:29:E2:29:0F:B9:5F:34:02:5E:D8:F9:4D:40"}}},"request":{"raw":"POST /web/v1/home/getActivity HTTP/1.1\r\nHost: tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-us\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 20\r\nOrigin: https://wap.tiktokshopwholesale.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":20,"data":"{\"key\":[\"home_top\"]}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 22 Feb 2026 13:36:13 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 1800\r\naccess-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS\r\naccess-control-allow-headers: Authorization, Content-Type, If-Match, If-Modified-Since, If-None-Match, If-Unmodified-Since, X-CSRF-TOKEN, X-Requested-With\r\naccess-control-allow-origin: https://wap.tiktokshopwholesale.com\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":233,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"85b335f7e106f429bd075da4573f3588","sha1":"17857667b0b86830137853153d464a114df5ff54","sha256":"028eac15e57f57a9b7fbd9bd50756160523d8c8564d74fbaac41c2ce12f4a020","sha512":"ab51deb27496b574ffef57dbfd9f7447d2c7cdd83352c785cf53c41112393314f22d593ac85b0122ea457ffa7edaf1bbfe6fc55b4e81420e43d6b9d910948ace","ssdeep":"","tlshash":"4dd0971cc41c90321ac6828810481c8f44843a82cb180d20ea5dcc38835e3989643977","first_seen":"2026-02-22T13:36:51.25459Z","last_seen":"2026-02-22T13:36:51.25459Z","times_seen":1,"resource_available":false,"data":null}},"time_used":187,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":187,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgs.tiktokshopwholesale.com/uploads/goods/20439/20439.png?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:i-KVEWuTS0uUCasmawhYacTI9Ko=","fqdn":"imgs.tiktokshopwholesale.com","domain":"tiktokshopwholesale.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://wap.tiktokshopwholesale.com/","date":"2026-02-22T13:36:13.571Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /uploads/goods/20439/20439.png?e=1771770973\u0026token=UQ1LwusRF5X1_BbrCWOMxbjhxb265uEgMcT7VG5p:i-KVEWuTS0uUCasmawhYacTI9Ko= HTTP/1.1\r\nHost: imgs.tiktokshopwholesale.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wap.tiktokshopwholesale.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-27T07:34:25.483791Z","times_seen":16755627,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"imgs.tiktokshopwholesale.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}