{"report_id":"ca07e348-a47f-45ba-be40-3a3ed5a05713","version":6,"status":"done","tags":[],"date":"2026-04-11T04:29:39Z","url":{"schema":"http","addr":"tkiltokdownload.com","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":0,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"tkiltokdownload.com/","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"title":"TikTok Shop","dom":{"size":77598,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (2970)","md5":"8474abc61152303c7c752ded49d23db8","sha1":"c80ca863ce74e740cd305ede85d1098620c0ba5b","sha256":"2dd12173ba989b6887536636bca137a83e851d072ff278fbf01b4245a657205c","sha512":"b2e1fd6b598a8bef53e5390a8dedf1e9787cfd2b462bb5de71ead248e986bbeb16e8d2fa9ce59a2c5e4fd473a24060ac2252cf74e6fc749874eed28f30fbf415","ssdeep":"768:58KslKsAApMwgnOGkWB/e8X0og0785cjVjF8TliKsAAz:58KslKsz6nntXoHcjXKsAAz","tlshash":"7e73d4a066f015b701c3c5d4be767f0aaf95e25bda2a0604b6bd4bda9fc3c92dd03024","dom_hash":"domhashdd85becf7df1abbc8e04e3a0c6766cfa","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"tkiltokdownload.com","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":0,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-16T04:29:39Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null},"summary":[{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-04-05T22:20:18.514512Z","alert_count":0,"request_count":1,"received_data":12556,"sent_data":516,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"tkiltokdownload.com","ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":67,"request_count":67,"received_data":3269705,"sent_data":31335,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"GSAP","description":"GSAP is an animation library that allows you to create animations with JavaScript.","website":"https://greensock.com/gsap","common_platform_enumeration":"","icon":"TweenMax.png","categories":["JavaScript frameworks"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Vue.js","description":"Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.","website":"https://vuejs.org","common_platform_enumeration":"","icon":"vue.svg","categories":["JavaScript frameworks"]},{"name":"Magnific Popup","description":"Magnific Popup is a responsive lightbox \u0026 dialog script with focus on performance and providing best experience for user with any device.","website":"https://dimsemenov.com/plugins/magnific-popup/","common_platform_enumeration":"","icon":"Magnific Popup.png","categories":["JavaScript libraries"]},{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2026-04-05T22:16:34.770209Z","alert_count":0,"request_count":4,"received_data":154874,"sent_data":2254,"comment":"","tags":null,"fingerprints":null},{"fqdn":"tiktok-app.shop","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2024-01-15","domain_rank":0,"first_seen":"2024-03-12T04:24:25Z","last_seen":"2026-01-29T20:52:54.039059Z","alert_count":0,"request_count":1,"received_data":0,"sent_data":454,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/jquery.counterup.min.js.%E4%B8%8B%E8%BD%BD","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"ac8c7cd057d291dc5f8992182887e554","sha1":"a2f19870b9bfc913dd3f877b1801f9c6c3c3aa8e","sha256":"d787c8b33d180fa608d2cc2224a6fa91bb4a178c1d47a0cb33a8408c808510df","sha512":"2c4b5c030a1b0adad839c6d4413675ec3d967c584956c601e65dde9ed1fe6f54bdb29fca1d443f7d8f8c37bc4cba75c079a8c13ea617fe6283029a792d764ba8","ssdeep":"384:aFLREJJnYobgdi0y8jC9griW0sOv5KvJwQ7uMcteySiQ39qFJ7ztgysyF2o:avuYoEYYjwFNzAyF2o","tlshash":"8ca2dd482eeb20126f4b60b9fd1f61456276812b54895c677cdc93c80fe21391ebaff9","size":21448,"data":"","first_seen":"2024-07-04T22:43:53Z","last_seen":"2026-04-11T08:16:56.345135Z","times_seen":568,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"introduction_type":"Function","is_inline":false,"md5":"aa049e2749b8531cb8f233c2f64fc2b2","sha1":"b611a5a62c1813ae5b4763378b3a4a565556530a","sha256":"e52e51d5897d7a179089ddcf8f5de7aeb3ef4f27b054b63e937cf308b685c9e2","sha512":"fa951f3911de780608d6235a597758320388dff58cf18dd584a6941ac88cc36cac7d52caa72b678ee6f4dff47ee23955ab282714d03e713ae2bed4cb73a3c14e","ssdeep":"","tlshash":"71a0128471d6e4004b7320e40437448490396c60348c848051048c721c651108236c1c","size":79,"data":"","first_seen":"2023-04-11T21:38:58Z","last_seen":"2026-04-12T21:06:44.082783Z","times_seen":210778,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/tweenMax.min.js.%E4%B8%8B%E8%BD%BD","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"6296e4cbdcf8f726fbbe2f56a246ef33","sha1":"0d477ae74145be06f9681ae626b3816694115bd0","sha256":"b2eb575eacb77fd139ffdf2cb86a12295189043fce93e000210dd88b41afc57a","sha512":"6155b91328bce0520e6edd291fb2339899cd997fe98304439a4860e0e9e427a38bf4bfbbd201620d04421afbd0805d76df7fbaefd547ed2ae498b701075186ce","ssdeep":"1536:8jm/F0VPBJ7jG/D+EH/GPJBpYSiZAr0GOlygZYzw6JcIfGxlLYiGsYVVOiP:8C/Wv51/vme0lybJXkYiGJ","tlshash":"e3b318c5312270128497269a557f0a47333bddbab4098d2cf589c5de3e1ce8921aff7a","size":116050,"data":"","first_seen":"2024-07-04T22:43:54Z","last_seen":"2026-04-11T08:16:56.302131Z","times_seen":566,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/jquery.nice-select.min.js.%E4%B8%8B%E8%BD%BD","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"6da8d42255961163046979da18f54b72","sha1":"6262d03800d298badf3d8188df5212f4d3fa0d7d","sha256":"00095a8b4be4fffdfc68d53607b18dfc6ec6fa5248025323f6667c53d192d6f0","sha512":"2420ed235cffe8ae2bb2a9a20731b6d98ca2615c69fb1ca6f253d7aee037963d34589335cc4ab9f4fa24b572416b2c0020b8d5064e027f0a0dc74f8307021c11","ssdeep":"96:E0QuNla97TLpeVP4+m+nVROLmKOeT4hKeDOm9oOn9Qwbvyn:EtWlaJTLoyoVROLmKOeT4hKeDOm9oOnk","tlshash":"30910f0762d011b256ff30a32c137146b233a82be95999067d5d42f00f9ed35a6f6ece","size":4539,"data":"","first_seen":"2024-07-04T22:43:53Z","last_seen":"2026-04-11T08:16:56.345649Z","times_seen":371,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/bootstrap.min.js.%E4%B8%8B%E8%BD%BD","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"5dd8c20243d232a12ba5d3371e406bae","sha1":"741b98fb8faf65719edab5c712b7ea4df7b2faba","sha256":"2549ead0944c11eb5de73825c107487f2032dd0042b2c762a1cc6f430f6ed609","sha512":"fe5c02aac808865b4f19bd5f25e2a97912b1a39f4bbda571a0d6a1d46b38f84b1590812d539ba302c6110422112064cc78192b077297f5fe11a6559b3728b6ad","ssdeep":"1536:T4srTGR2t4tlKitxuIZL0cW0hIptaxuNHPwrS1bwbUKzXoP:gZuaxuPwrSBcUjP","tlshash":"9673c6493254b4730ade45b68037420bf2265d98b24b802cb5bcadde2a7dd867277f7c","size":79943,"data":"","first_seen":"2024-07-04T22:43:53Z","last_seen":"2026-04-11T08:16:56.321656Z","times_seen":567,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"introduction_type":"Function","is_inline":false,"md5":"29d0c84b9d1d8da446a6062c6a840ad9","sha1":"6d6b3a6065667c7c50d92f3889c85ed65a9ad784","sha256":"3c3cbdb71d0d2c22f504f4d63d8a6ffe8d250cde7e58300619be35b6bbab26a1","sha512":"52cfcbf2f7c3521c5a6c6120099ee6822d16e04ffbc04720da925a11242c8c2050f9cfc8d864a6d39a0036ac599f701080195a29a7c5e8d3e9308b91f9f0390f","ssdeep":"","tlshash":"428004d533c350004753117c04571cc4d034447014444d405040d4531c570315115c7c","size":37,"data":"","first_seen":"2023-04-11T21:31:25Z","last_seen":"2026-04-12T20:57:55.169663Z","times_seen":610426,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/swiper-bundle.min.js.%E4%B8%8B%E8%BD%BD","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"c9a9f38aa0acaa7ce04312456f7d23c1","sha1":"bf3c40e57dd84da986337920ef4d5bfef476b115","sha256":"1ab59033075783342dbec81fa17026d5591d0ed4645fc6faa048ba6741e6d0be","sha512":"64263fd277eb6d79a7c9c363c1a462be12bb06951a2942c2d10d97aacb50aeb8eabb6a3be10b11deaf4a9aec5eaff62e2b8a3acde5e3aed47219cb1345b1af08","ssdeep":"3072:lJLCyDdkEUYnafpoy9v8cIWyUaV4y+oGeJJ91EfrNK/Yvq:lJLC4dkEUYnafpl9v8cIWybV4y+oGMJh","tlshash":"09e3f8896360b1a552e3268b93a9c651e3b51400b409c4e870bd4c9b6d7ed9813ffffe","size":143790,"data":"","first_seen":"2024-07-04T22:43:54Z","last_seen":"2026-04-11T08:16:56.309973Z","times_seen":557,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/script.js.%E4%B8%8B%E8%BD%BD","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"d761ec041c6f157149dd799cda5dd4f4","sha1":"883627490847fb151f4eb93d7ac66d1a45483dbb","sha256":"f6ffeffd873fcc4a66c6b9d04c934ea99e5469c8fa44902efbf14d3ca8ee189a","sha512":"394fe27cf673fbd58522e5c1cfd41a1db6493ef398fd0c66e43719ba637c4f135bf15a9995f12c4253d0349a19a583448af18ae0c5815b12f04f450272f5a6a6","ssdeep":"1536:r8+0PxYm+YYNXc6cuICGqxEn2kOLfOsQ4Q+Q+QgQBQxQJQKQcQQAQVQXQ6QqQlQa:z0PxJz2ouICr2OLGslr/PIS+xVQzA4T2","tlshash":"6f73fd44f3d17c560babeb6b2b1fa0e6e36b096d39e4480be041fd60655d327e5a42f0","size":75092,"data":"","first_seen":"2024-07-04T22:43:54Z","last_seen":"2026-04-11T08:16:56.341465Z","times_seen":564,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/js/index.js","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"ecfe8ef8e9ad0bc1b8ad1a1b83b8967a","sha1":"a954c5c7ed2b4a711e55cc1f975a032ac0a45407","sha256":"0b3b2421399b9af3d544d6a65115e451653e88deb37e3937ccc4a12e77811adc","sha512":"85108fc44c9f5372db39816561ffba4762315bbef2543af75c2c8593cdacc5b59bb6cf841f41249c48e867a2c170482d1f2eec384b5c0555885045ceb00320e0","ssdeep":"","tlshash":"6551e369076aaa198bc130e55f87a814413b1c2ea8ddd68cb91ecc40575413ff526ecb","size":2781,"data":"","first_seen":"2026-04-11T01:10:41.422142Z","last_seen":"2026-04-11T08:16:56.335547Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/lazysizes.min.js.%E4%B8%8B%E8%BD%BD","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"1676485dd72c3bcd843fe5edac986faa","sha1":"9cb71a19d578da4b9ae6fd477b2e28b47160d1c9","sha256":"0bb1ea7499d5431a76a643de7c6f1be2379cc39ad3d84e5d1ba228f77b5ac2c3","sha512":"48d8f9e1b6670efae9ee5a82fb5e4765a9b27ba6d9be043d627347ef79f91728002e88aa06c2f47f1f7fe5a781d78b89d00b22f4e9963d988ff915f9aa5b9ca3","ssdeep":"192:aIJHXkovHIdcC9vaE6cyxqI1qwLcIRAKEFkNB+xb+25CqqBFPvAxOm:a2kNdcC9J6co91qwLcI6KgkixbdjqBFG","tlshash":"29f1a4df755530b3aaeb74a5456f210e673274339d46e451e2bad080093c94aa327f2d","size":8042,"data":"","first_seen":"2024-07-04T22:43:54Z","last_seen":"2026-04-11T08:16:56.310481Z","times_seen":567,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/tilt.jquery.min.js.%E4%B8%8B%E8%BD%BD","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"58843c98635b110c37a649cbf37f12c8","sha1":"88cbc32067e54c692d4a850426bec0e36c065fac","sha256":"da67cddcc5033daded7141a8042854e1dbf83f601d1370ac94afc13f4be7208f","sha512":"35f2a763eda18403cd04bc77c4b7bdc3645c2e496e48d4130a40e5785c9d17b3118514cfc021914c713ffe3fe22b2d6b9203487a23217ad36539498b7670c028","ssdeep":"96:H9HqJXyrg9U0S2VcjOB/MjvENOtnUz3FbyTXTyVyURCD3jgupRrfBT8PTLWB0AD:dH8yrbTIMjLtnUziXkRCY4BT8P2BZD","tlshash":"65e198447321b11d45cbf238e18b4e05523a90155d32e97d74eecce8ada8cdd623abf9","size":7371,"data":"","first_seen":"2026-04-11T01:10:41.409131Z","last_seen":"2026-04-11T08:16:56.336435Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/aos.min.js.%E4%B8%8B%E8%BD%BD","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"e0041457719a9b541a81669201b820b7","sha1":"10bc52e3895f57acf7e9de24a465a1f3abb6d9fa","sha256":"397c09afcedde7c04a774ce7738d7a1ab0a7cf69814bf1e281226888582a9519","sha512":"0fb1f89ecb8f6f57f2c5abf1a003fa20acc29981ac70be9c96038a7b96e35c2bb0c81b8a777b3e5ddc3ca0d15c5cbce4a985304f4aa260fc35827a01f7eb9024","ssdeep":"192:xOaHX24ysbeCVXVyILkYmTpOIytlomlBpOIVtlomlrjm5bovo5FglaZW0fNacZgn:xVpyRSVLL28HVjkFglMfNaEg+w","tlshash":"87521bdc7186f166479394fb417f610af2f114b4684d8440e139c4e73eb999aca33eae","size":13952,"data":"","first_seen":"2024-07-04T22:43:53Z","last_seen":"2026-04-11T08:16:56.333641Z","times_seen":567,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/jquery.magnific-popup.min.js.%E4%B8%8B%E8%BD%BD","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"c15be16610f0ec6cc7483b0d84982197","sha1":"07f1aeec984f3af6b7b098d5d0270186d3e95d03","sha256":"5f1b25dc09b49c104b8676e0186d6c24f7a6335d8bd82570f3257349d5b7bbff","sha512":"92d6810fcbd9604b3850be35b80264536b45563e4fdcaaebd5babdb0e51ff02dbe07a3a8a7ee293568e4a966d98e9336846f024d8c33e87c03a7e69d2fd4cfad","ssdeep":"384:MPhVPXQ2G2XAQyqVxRQ5giCCMLtA15h5/F6l8aZwHwztLCpmso:MPBIt8I5h5t1qkOLCMso","tlshash":"bb921994f2b2b21383a735b8686f300939729953ed06c855a55d98d87efcec89027f3d","size":20369,"data":"","first_seen":"2024-07-04T22:43:53Z","last_seen":"2026-04-11T08:16:56.325918Z","times_seen":567,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/jquery.min.js.%E4%B8%8B%E8%BD%BD","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"8a1e612f0b9577b2c64d4ac5c78a8a7f","sha1":"acebf93bb2c3bb524e6ceefabecf4568efdc4ff5","sha256":"7d175ae137e0c45ed15bf90b4a0f61fa4fe12a7540d495dca3a37a7c132bcf5b","sha512":"ce8bc28f65ee2e65f17e318ca461fae7fa7aa6741329593c10d027f3570ea6d6fce2fda33a7da44666f981561f10157ad282ff7d8d7c53adc7b60d894c48cc1d","ssdeep":"1536:DjExXUqJnxDjoXEZxkMV4QYSt0zvDL6gP3h8cApwEIOzVTB/UjPazMdLiX4mQ1vk:DIh8GgP3hujzwbhd3XvSiDQ47GKC","tlshash":"cb93f8ddb2c6702247a730ba007f550bf236199d6c4d8450f129d8e9bcb8a4a927bf7d","size":91231,"data":"","first_seen":"2026-04-11T01:10:41.361754Z","last_seen":"2026-04-11T08:16:56.3158Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"introduction_type":"Function","is_inline":false,"md5":"2512414f817df8312569d55032748f81","sha1":"13467df6e962aa77bb36867ff1412e1ba9f8feb1","sha256":"e193735f8d500f10e2cdc6a94f5a43fb0257c1e2f8afc10fa04f0e3761d258de","sha512":"db6e4298746d519b0987bfa0feb89c39315718e178418e482b1c10c76439eae343afabf2db35ffaaa26c7ee6a3855084d39e9b88d35b11f87c354ceaf38874a0","ssdeep":"","tlshash":"a590029525c25101965295d4455b5c8450658675249569809180956259550205125cbc","size":47,"data":"","first_seen":"2023-04-11T22:25:25Z","last_seen":"2026-04-12T20:33:58.086527Z","times_seen":19533,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"9893a7e6b65c4f34317dd6f3ed09204d","sha1":"0cb5eeb76dd2b80d3a2c4eafc03078f279b3679e","sha256":"f37b1ae7d007e88ca77d8631e7b3bd14de0aa50fcfe24e9998f95c866de3119f","sha512":"9e1b80485c7a2ece2808665f7578e6b3bd173b37d135896a8fd33c82ff109eb0f125e47184628412079c5e1106f77e51960bcb49f5bfe763ba6f6cde308e8dfd","ssdeep":"","tlshash":"5fd0a92961f22031a00bb83b060b128c30b0808b0308d9023a2cb5ac8fb4d243afaed8","size":280,"data":"","first_seen":"2024-10-01T02:52:29Z","last_seen":"2026-04-11T08:16:56.344223Z","times_seen":145,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/vue.min.js.%E4%B8%8B%E8%BD%BD","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"8da91780fa9815752579efedb7b6ee03","sha1":"4525cbd167c96324016eaa2584703e2024e85c90","sha256":"3c1d4b0c549e8de9d4a9bafb12ab70b6a1ac747d07293b98c5b25b6632999afd","sha512":"5b1f278866cf3420fcee64ae174b01472b705b6fb6645afb1f054317c92b09bdde82cb42738a107e283efdc7e0d8e1ddf3629c525398c6548302a747a8ae530b","ssdeep":"1536:/xUpXlU1At+HWTcPKoVMurh6AiRuA7O8vGwYjT9cisc/tz0bl1:eXCIgrHL8vGwYN5tz0bL","tlshash":"53b3e8dcb296b47113eb20b1417f150bf33a6915a80ac590f223e4d67db8c8e916be7d","size":107679,"data":"","first_seen":"2023-12-27T12:14:10Z","last_seen":"2026-04-12T12:46:42.435536Z","times_seen":1802,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"tkiltokdownload.com/webfonts/fa-regular-400.woff","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:20.232Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /webfonts/fa-regular-400.woff HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/en_files/all.min.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:20 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-04-12T20:58:48.197747Z","times_seen":485786,"resource_available":true,"data":null}},"time_used":2129,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2129,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/webfonts/fa-solid-900.ttf","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:22.363Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /webfonts/fa-solid-900.ttf HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/en_files/all.min.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:22 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-04-12T20:58:48.197747Z","times_seen":485786,"resource_available":true,"data":null}},"time_used":255,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":255,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/bootstrap.min.css","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.568Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /en_files/bootstrap.min.css HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:18 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68c91231-3e0d3\"\r\nexpires: Sat, 11 Apr 2026 16:29:18 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":254163,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (562)","md5":"6c12d80686998c2cb6b6fdb1576ebcb9","sha1":"cd129462264cd99a81e1f06bf69725b0e9df25e3","sha256":"8bd22adafce11eb3e7971268da60a8586f9e6834557d7dfc8cdbb1091a83b9c2","sha512":"fd627a923ddceb471e3e1a95e8e5637fd3e957cd213c20f14cec30aaddfec8eeef0a7334d64eab817bddc9712fe7594edf6f1c5e703c5a3e7de83fbf899b4445","ssdeep":"1536:c3vrFwjyhcpL9NZvfKr8fFfDvshTItLt6zleSQmuI:crhcphNZvNt6zleSQmuI","tlshash":"8e44525ae8f3296c1c57916966eeaeb9b3385083c719dc74b8cf33048f492d15d62ec8","first_seen":"2025-04-07T11:27:31.626431Z","last_seen":"2026-04-11T08:16:56.330364Z","times_seen":229,"resource_available":false,"data":null}},"time_used":278,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":278,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/avatar-4.jpg","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.593Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /en_files/avatar-4.jpg HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68c91231-66fc\"\r\nexpires: Mon, 11 May 2026 04:29:19 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":26364,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x300, components 3","md5":"32f4ef445a831afc54c921957df06ee5","sha1":"fcc35102be6b310cab662fec2cd4762cbcf4d946","sha256":"7ea461e2b4b049841a3646a2b011a7701b1360b441c4a9834b427c718fbd691a","sha512":"af27d1203b0a97e58fdbc731d98526c2bfb9905a6360227ed4d5c60507b16a56526572cc4e894694c4328ca9b1e4b013bb5b8da1c9400609f03844d4bf1fe67f","ssdeep":"384:REsX7ywFNZkqdruHxz5iFWYWRuknTzSgw8MKOag7GY3CHVX0fykJkyFYKLkVAPmU:G+maZGFiQ3hVMYQby1XfkJhkeP5t","tlshash":"83c2e241c49c8d35f58c17bac49c7ba11bce6b2df636499364819d120fe99812ff8784","first_seen":"2024-07-04T22:43:56Z","last_seen":"2026-04-11T08:16:56.324018Z","times_seen":833,"resource_available":false,"data":null}},"time_used":912,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":912,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/jquery.min.js.%E4%B8%8B%E8%BD%BD","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.613Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /en_files/jquery.min.js.%E4%B8%8B%E8%BD%BD HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 91231\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\netag: \"68c91231-1645f\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":91231,"size_decoded":0,"mime_type":"application/octet-stream","magic":"JavaScript source, ASCII text, with very long lines (65447)","md5":"8a1e612f0b9577b2c64d4ac5c78a8a7f","sha1":"acebf93bb2c3bb524e6ceefabecf4568efdc4ff5","sha256":"7d175ae137e0c45ed15bf90b4a0f61fa4fe12a7540d495dca3a37a7c132bcf5b","sha512":"ce8bc28f65ee2e65f17e318ca461fae7fa7aa6741329593c10d027f3570ea6d6fce2fda33a7da44666f981561f10157ad282ff7d8d7c53adc7b60d894c48cc1d","ssdeep":"1536:DjExXUqJnxDjoXEZxkMV4QYSt0zvDL6gP3h8cApwEIOzVTB/UjPazMdLiX4mQ1vk:DIh8GgP3hujzwbhd3XvSiDQ47GKC","tlshash":"cb93f8ddb2c6702247a730ba007f550bf236199d6c4d8450f129d8e9bcb8a4a927bf7d","first_seen":"2026-04-11T01:10:41.361754Z","last_seen":"2026-04-11T08:16:56.3158Z","times_seen":3,"resource_available":true,"data":null}},"time_used":1773,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1225,"receive":548,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/webfonts/fa-light-300.woff","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:20.239Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /webfonts/fa-light-300.woff HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/en_files/all.min.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:20 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-04-12T20:58:48.197747Z","times_seen":485786,"resource_available":true,"data":null}},"time_used":2115,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2114,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/choose-1.png","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.605Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /en_files/choose-1.png HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68c91231-f4e2\"\r\nexpires: Mon, 11 May 2026 04:29:19 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":62690,"size_decoded":0,"mime_type":"image/png","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 640x738, components 3","md5":"2942a2e431b9d5976bae604b19f1effc","sha1":"6ae4ff91d4ad7410907d95abaa3920f46c4f20cf","sha256":"be21913816bb537f3fa8f7b7bb2e3654381f5be2428e2586b7eb04e7e41e685b","sha512":"616923bedfba4249b04852db56c6ad0dbccba26c1a89ef6b20da21b3bb7bc00ff7b3f2fbe54ba39693e222d272c86f3c508f0569861739d8cc50d542d3f59241","ssdeep":"1536:0TjlOm0Gp3TIx6EWYBGC/pWQHQMTvI6SPnnujs+Qfo8Yd7UU0Olq3G:0Tj0wM6FYBGXQHbv7SPOHeOGG","tlshash":"58530202f2b1b85fc81c2231a5b1afeac4195717a7044f66bd6b5bc87ce57e84ecd880","first_seen":"2024-09-27T14:52:15Z","last_seen":"2026-04-11T08:16:56.314338Z","times_seen":613,"resource_available":false,"data":null}},"time_used":1141,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1141,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/screenshot-lg-1.png","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.606Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /en_files/screenshot-lg-1.png HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68c91231-2d739\"\r\nexpires: Mon, 11 May 2026 04:29:19 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":186169,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1536 x 1104, 8-bit/color RGBA, non-interlaced","md5":"4a8bb2445d1a11f0adb663f1396a400a","sha1":"60c2bd67ff74c808399584ac477115e48c76c2c7","sha256":"c1156ff308916a26b55e32595fa254af7532659c7278c4fa86d0361582f12b87","sha512":"bea535984f6d4ea74b5d7cd9c11fde4933f4b2684e5a3d55d6971752d62a2d287128542aa81ef7c82daf286f795e832fdb0ec7d8b1e92c0a7dde71eace3aa58d","ssdeep":"3072:3JQiOw8m81XQ1FX4qVSP7Bxw1inGzFytHKkuG513VJv4HPgIXTfXCOUJN6Fb003z:5lOwQdG5xVSzc1NzF0qi7P4HPgcCo7","tlshash":"be04121c623bd82ade1b63b549f41f832373552316eeb785e568b3fc2902e4cb0556e8","first_seen":"2024-09-27T14:52:14Z","last_seen":"2026-04-11T08:16:56.319841Z","times_seen":430,"resource_available":false,"data":null}},"time_used":1184,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1184,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/nice-select.css","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.582Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /en_files/nice-select.css HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:18 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68c91231-1114\"\r\nexpires: Sat, 11 Apr 2026 16:29:18 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4372,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with CRLF line terminators","md5":"85159172c4f47eff80712fec2577f798","sha1":"f06d049fd7068802722fedbd5b580a8f4b8eb7ac","sha256":"1f83e0ee8dcfc77afc8364d414c57f29616bc42099283c9f964cc607143357c9","sha512":"cf5b47b861b43d937efc0e916951904a6a5c39b41946d8fabe5247303181633970a2252b89493911c4d4c17f1176da107426634babe9203d797043806b58b2ea","ssdeep":"96:rAPctjpPS6xipekHeFeXeW+7y58ImjgAc:MPwdPFuekH4W+G5/Ylc","tlshash":"1591bd38d6025583523b8b7fbbda1a19e63cc143292315acb7d196070f7a4ac9c95f4f","first_seen":"2024-07-04T22:43:55Z","last_seen":"2026-04-11T08:16:56.313314Z","times_seen":323,"resource_available":false,"data":null}},"time_used":533,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":533,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/avatar-3.jpg","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.592Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /en_files/avatar-3.jpg HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68c91231-4cc9\"\r\nexpires: Mon, 11 May 2026 04:29:19 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":19657,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x300, components 3","md5":"7f4e88b0dc91c63acd501d5eefab5e05","sha1":"7d083a1ec1ca2a4dcab5c6eda740a5818a054ac1","sha256":"29aa525cb16afd6e8a9a233035ddb8171d8cd6dc6ad82ef743d9bbe2725517eb","sha512":"cf955c627e3b0fcad065b91284970a3d8425d6f0ef66b16c8da06dbb97a87fdea8dbea201f5546340557707946341a57a6c263f66b96545ecdd3cbc032098735","ssdeep":"384:Rty7AArn0NFcTQervW6Dgoi+uYS38JKvnH0CByXJrvFrNjLQ8dwDVEKQuF:bO04jD3JKP0KyX9FrBQLDFF","tlshash":"6792d063ce8c72b0dace7ff5a26662628f457e78d75964924323dbc910760cc4b3d121","first_seen":"2024-07-04T22:43:56Z","last_seen":"2026-04-11T08:16:56.323233Z","times_seen":832,"resource_available":false,"data":null}},"time_used":899,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":899,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/cn_files/Italian.svg","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.599Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /cn_files/Italian.svg HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 289\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\netag: \"68c91231-121\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":289,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"1d72a5dec3acd073763570e3e5fdf784","sha1":"25ecff80eb26ef79709ab7278eb3991ac8cc2734","sha256":"9fa88118818d9b64838f578e2babcca3d0630aed21b5c33b34aff7ac5ce506bc","sha512":"dee0b0cae09b07705091cd7371f40650d09fb1fbd736e60fa2716679a660b515a0c74bdfcdb5a9d32a178870a14697010b018c417ce30402f5ffa42c8b8384a2","ssdeep":"","tlshash":"33d02bf487bda414060843344b3c35d259b660ca614420caf4d018a0250d1a75cc39e9","first_seen":"2023-05-05T00:41:36Z","last_seen":"2026-04-12T21:02:12.362275Z","times_seen":2060,"resource_available":false,"data":null}},"time_used":1122,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1122,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/cn_files/Korean.svg","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.601Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /cn_files/Korean.svg HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68c91231-425\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1061,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"2a183310b78d3d4fe57f88abcc491fcd","sha1":"a134d8392d41c775ee42fe2a0dba2cd5c043117b","sha256":"7a6cd5b51d0e2841ed8b79b1147ad8a66cf3c09f6344d4a63b5e4413ffa5d15b","sha512":"a8cc5d87f2c1b2ad3b68a81caa47e09621433ecb20e264c8584e5067c09f0d8ba11b1d290007d59ba308deb81c73c8bc19f76bb2063698ac2b03044156fe6bd7","ssdeep":"","tlshash":"9f11ceb020fd942c8b7dc302ebed64c89b1f70e7174206c6755c29b46f204979ac35ca","first_seen":"2024-05-09T16:52:27Z","last_seen":"2026-04-12T18:45:30.648716Z","times_seen":862,"resource_available":false,"data":null}},"time_used":1132,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1132,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/bootstrap.min.js.%E4%B8%8B%E8%BD%BD","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.615Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /en_files/bootstrap.min.js.%E4%B8%8B%E8%BD%BD HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 79943\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\netag: \"68c91231-13847\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":79943,"size_decoded":0,"mime_type":"application/octet-stream","magic":"JavaScript source, ASCII text, with very long lines (65223)","md5":"5dd8c20243d232a12ba5d3371e406bae","sha1":"741b98fb8faf65719edab5c712b7ea4df7b2faba","sha256":"2549ead0944c11eb5de73825c107487f2032dd0042b2c762a1cc6f430f6ed609","sha512":"fe5c02aac808865b4f19bd5f25e2a97912b1a39f4bbda571a0d6a1d46b38f84b1590812d539ba302c6110422112064cc78192b077297f5fe11a6559b3728b6ad","ssdeep":"1536:T4srTGR2t4tlKitxuIZL0cW0hIptaxuNHPwrS1bwbUKzXoP:gZuaxuPwrSBcUjP","tlshash":"9673c6493254b4730ade45b68037420bf2265d98b24b802cb5bcadde2a7dd867277f7c","first_seen":"2024-07-04T22:43:53Z","last_seen":"2026-04-11T08:16:56.321656Z","times_seen":567,"resource_available":true,"data":null}},"time_used":1782,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1223,"receive":559,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/zone.js.%E4%B8%8B%E8%BD%BD","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.624Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /en_files/zone.js.%E4%B8%8B%E8%BD%BD HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 4342\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\netag: \"68c91231-10f6\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"application/octet-stream","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-12T20:55:58.966498Z","times_seen":13677413,"resource_available":true,"data":null}},"time_used":1623,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1217,"receive":406,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/static/1.mp4","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.642Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /static/1.mp4 HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=0-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 206 Partial Content\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: video/mp4\r\ncontent-length: 561958\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\netag: \"68c91231-89326\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-range: bytes 0-561957/561958\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":561958,"size_decoded":0,"mime_type":"video/mp4","magic":"ISO Media, MP4 v2 [ISO 14496-14]","md5":"c9e9d44ff722002fae76d923472a1b01","sha1":"cf4d834c4aaa1d4cea21d38da367add8259f78f6","sha256":"af6908a80017d4dac46a7e9a631b17d61db853f5d7bfee6ac4a14585786503f2","sha512":"7de41b3feac78aefb396dc6be300b4481fd8848cb0d7bde2e9e83605619ca04c77c9d257eba8d79acda1218a8b60a9c4808ff4b5ca27b67c6fc9bc199004d061","ssdeep":"12288:0LcQ7KjmCcaGcUeOGO2mkL92XJKOGwjeT97zO:0LcQ7KjmZaGclOGOnkLcJK+jeTdzO","tlshash":"36c4237d70dc24e1c439fe72994501fa866a0765da743bef7f9e809887a22462c13b4f","first_seen":"2024-07-04T22:43:55Z","last_seen":"2026-04-11T08:16:56.321167Z","times_seen":768,"resource_available":false,"data":null}},"time_used":3935,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1158,"receive":2777,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/static/tiktok.mp4","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:20.245Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /static/tiktok.mp4 HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=8978432-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 206 Partial Content\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:20 GMT\r\ncontent-type: video/mp4\r\ncontent-length: 45642\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\netag: \"68c91231-89b24a\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-range: bytes 8978432-9024073/9024074\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":45642,"size_decoded":0,"mime_type":"video/mp4","magic":"data","md5":"9cd54cd7f84a40962b9eab39c38b939c","sha1":"4f5b89bafa9f1dd8d37bb3b9c53d9f705f33d8f4","sha256":"2681bed83901a54c62bbc96375ca6a69055000dc75027aad314b84e957b0ebfb","sha512":"1224a40b3f4cb515279435267967ec220d82386dd2b74b2ab39eabafa151b2f00de9f9204822e8ff17eba95304540a5ce668fc5fe478471d69cff6f951501a30","ssdeep":"768:GhU0G0w7f2rcZjZQESOGGOXa+/WsOOTKPAdpnYalZnnFp4WSMsolyC5Swo9v:GG4f0aOGKshmYvnlLFkMsolyC5ho9v","tlshash":"bb236aa077290307ef92673059f223a93b39d6b08397189f5a42971e7cb37f54a530d9","first_seen":"2024-10-01T02:18:30Z","last_seen":"2026-04-11T08:16:56.328595Z","times_seen":706,"resource_available":false,"data":null}},"time_used":2103,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":2101,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-11T04:29:17.193Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:17 GMT\r\ncontent-type: text/html\r\nlast-modified: Tue, 16 Sep 2025 08:12:40 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68c91bf8-14c8e\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"GSAP","description":"GSAP is an animation library that allows you to create animations with JavaScript.","website":"https://greensock.com/gsap","common_platform_enumeration":"","icon":"TweenMax.png","categories":["JavaScript frameworks"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Vue.js","description":"Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.","website":"https://vuejs.org","common_platform_enumeration":"","icon":"vue.svg","categories":["JavaScript frameworks"]},{"name":"Magnific Popup","description":"Magnific Popup is a responsive lightbox \u0026 dialog script with focus on performance and providing best experience for user with any device.","website":"https://dimsemenov.com/plugins/magnific-popup/","common_platform_enumeration":"","icon":"Magnific Popup.png","categories":["JavaScript libraries"]},{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]}],"data":{"size":85134,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (2908)","md5":"a7322cd8f43470690f6f05d98a5d4efe","sha1":"54f4e00fe49085994e654cab9381b55bc331443a","sha256":"be2880ba2dc7034bb6e28e277b32cafc456f1c8cf4157a205bcc2602d862b211","sha512":"a23d1187937d0719bf10c25bde2ce4d2610ec27b1fc75706aafd15adeb88162cc1eb9b56e221c1323dc37605688b4e62d09083e62d4ff10e94f4009ac9087406","ssdeep":"768:CKesdesEApMwgnOGkWHxe8X0Yg6f85Alr5Fuh3C+sIAn:CKesdesX6nndXwZAl9+sIAn","tlshash":"8683e6a066f011b311dbc5d9ae763b0aaf95e22bd92a0508b2fd5bd95fc3c82dd07424","first_seen":"2026-04-11T01:10:41.419931Z","last_seen":"2026-04-11T08:16:56.30441Z","times_seen":3,"resource_available":true,"data":null}},"time_used":1390,"timings":{"blocked":564,"dns":43,"connect":254,"send":0,"wait":261,"receive":0,"ssl":264},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/animate.min.css","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.584Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /en_files/animate.min.css HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:18 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68c91231-118c1\"\r\nexpires: Sat, 11 Apr 2026 16:29:18 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":71873,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65365)","md5":"1a069f675d26ce109b5a405112a7fd33","sha1":"b880afa27c03eac2d954b1cadcd7004c6c5978d3","sha256":"aa0b5d2e1bac36e844b2224d2c0940622ab9e298f21e1cf9d440a7bc0a5d3de5","sha512":"660662574cf8699e9884bc27a02c6c6e5a688ab8e25292d2f767f8379867f7d04d2e3d82f378092bb5d2f0b17af1c0d8e5b21f8cd11cc917c492fd2d1da581b5","ssdeep":"1536:56uNQ3fdPwwanleMf72yMvkZAP5wh1XAOkdDm33yT5grZep0dTA:ukZ8wh1XAOkdDm33yT5grZep0dTA","tlshash":"a4633aae4891124990230e67c7cd5ea84b3ccaa355721cee33552c4b8b46fee73de617","first_seen":"2024-08-19T18:03:50.612786Z","last_seen":"2026-04-11T08:16:56.322664Z","times_seen":339,"resource_available":false,"data":null}},"time_used":537,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":537,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/jquery.counterup.min.js.%E4%B8%8B%E8%BD%BD","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.615Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /en_files/jquery.counterup.min.js.%E4%B8%8B%E8%BD%BD HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 21448\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\netag: \"68c91231-53c8\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":21448,"size_decoded":0,"mime_type":"application/octet-stream","magic":"JavaScript source, ISO-8859 text, with very long lines (911)","md5":"d88939224dbfce67df9659f4dee2f088","sha1":"d2707d6bfcc700caad56e8ab72421338a11677dd","sha256":"c9317395aed8d2ac296e5ea079147152c4faab1cb780c01ad4f99d0025f8edca","sha512":"e0c6f9651de9606507c5fdefb30b59239b3cccf7022129893f033e1990ed509e79328a1429481cd1bd5714d5ddf2d67ee5cb49e3728aa41b8c3253b4e15dda6a","ssdeep":"384:aFLmJJnYobgdi0y8jC9griW0sOv5KvJwQ7uMcteySiQ39qFJ7ztgysyF2o:aGYoEYYjwFNzAyF2o","tlshash":"dea2dd482eeb20126f4b60b9fd1f61456276812b54895c677cdc93c80fe21391ebaff9","first_seen":"2025-03-07T06:51:06.533121Z","last_seen":"2026-04-11T08:16:56.316617Z","times_seen":46,"resource_available":false,"data":null}},"time_used":1401,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1222,"receive":179,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/static/tiktok.mp4","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:22.366Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /static/tiktok.mp4 HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=32768-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 206 Partial Content\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:22 GMT\r\ncontent-type: video/mp4\r\ncontent-length: 8991306\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\netag: \"68c91231-89b24a\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-range: bytes 32768-9024073/9024074\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":16060,"size_decoded":0,"mime_type":"video/mp4","magic":"data","md5":"74629d7cebc65592969e01cc9e65056c","sha1":"6289d2acaefad792b862f787120f8b95e387b23d","sha256":"5ed700fc2deff4998da8d3fbaae7a33be5ac973bfdbb8a919a9a10defb606528","sha512":"e45d2682626c7af582b3bc5b160eb8774f3d2a27f9a0dc46ed534b5373f7768e42ee4ddc9ce2a5d12c7835cb66054fed4c7d13445ba2dbfb117675dbd1c8986f","ssdeep":"384:K4AQvb5vPgiT9fTgjDmAnYh5rOhEVjjtOTbnksx0:K4tv5tTUmAnYnjYTbks2","tlshash":"6072cfe71fc10c3540639a79e1626e2739c9b4527bb8a629ce21c2c9d268bd4c78758f","first_seen":"2025-12-24T07:42:16.608121Z","last_seen":"2026-04-11T04:29:48.745041Z","times_seen":3,"resource_available":false,"data":null}},"time_used":467,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":465,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/vue.min.js.%E4%B8%8B%E8%BD%BD","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.623Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /en_files/vue.min.js.%E4%B8%8B%E8%BD%BD HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 107679\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\netag: \"68c91231-1a49f\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":107679,"size_decoded":0,"mime_type":"application/octet-stream","magic":"JavaScript source, ASCII text, with very long lines (65362)","md5":"8da91780fa9815752579efedb7b6ee03","sha1":"4525cbd167c96324016eaa2584703e2024e85c90","sha256":"3c1d4b0c549e8de9d4a9bafb12ab70b6a1ac747d07293b98c5b25b6632999afd","sha512":"5b1f278866cf3420fcee64ae174b01472b705b6fb6645afb1f054317c92b09bdde82cb42738a107e283efdc7e0d8e1ddf3629c525398c6548302a747a8ae530b","ssdeep":"1536:/xUpXlU1At+HWTcPKoVMurh6AiRuA7O8vGwYjT9cisc/tz0bl1:eXCIgrHL8vGwYN5tz0bL","tlshash":"53b3e8dcb296b47113eb20b1417f150bf33a6915a80ac590f223e4d67db8c8e916be7d","first_seen":"2023-12-27T12:14:10Z","last_seen":"2026-04-12T12:46:42.435536Z","times_seen":1802,"resource_available":true,"data":null}},"time_used":1890,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1218,"receive":672,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/all.min.css","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.570Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /en_files/all.min.css HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:18 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68c91231-1389c\"\r\nexpires: Sat, 11 Apr 2026 16:29:18 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":80028,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65400)","md5":"658b47262512a7aefcd6ef0bc8aac30f","sha1":"7915a7ce2e7b388f94c0b7d0ce483aef0a3c0256","sha256":"90b01450fc1a4c181fb3c880f7fb11c0befb22d4972f4e1e744591e9df4375ca","sha512":"f469f2133975f9091258b44d21ef382b64be62aa04a36147e27a04a0455de56c71d6cf6d9d84c15e621ee93a898237f7cfad9e3c1bf3725164e8955cb1d8fb14","ssdeep":"768:JXj31owDUbK4asPffBCYHfWZD+Kyt/1MFiWJb+VzHY0K2+qjdWtc:JX6woG4as37HeZDZyXSMVjS2nX","tlshash":"d273f9b8e54d01d9a732c04fbf42b3bca1baf73ce5911d95f00e591c2ad26a81189f79","first_seen":"2024-08-19T18:03:50.610106Z","last_seen":"2026-04-11T08:16:56.322165Z","times_seen":241,"resource_available":false,"data":null}},"time_used":530,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":530,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/play-store.png","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.589Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /en_files/play-store.png HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68c91231-15cc\"\r\nexpires: Mon, 11 May 2026 04:29:19 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5580,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 155 x 52, 8-bit/color RGBA, non-interlaced","md5":"d559c38c7c7d418b00f3303188994a01","sha1":"fcfba9069094dfa1620643c3c7b76f7ce0b0db7c","sha256":"9036417b0f3d82337b5196a991cc8139bac6865f5aa3c0018f7105dd0e7aad87","sha512":"68adb632738bec373e537a7d6311aeeac264b09c4354fc821719fb173178fb142c25281e3d15bf72f6e3f5be070edf2fac2d18658497f197bf5178d93eb3bb92","ssdeep":"96:FSSxkoRNvpxHUJrd5kmgMbqgD/4+H54Gs56/+Ba1e7W+VmjW7Pt0a+:FSSO+1pxHUJr8ClDaVIWz6wF6a+","tlshash":"70b17c020b4a74124f5de87629090f528c721988c9ed0b78ac13b86bfada2bfd740a41","first_seen":"2024-07-04T22:43:56Z","last_seen":"2026-04-11T08:16:56.307026Z","times_seen":806,"resource_available":false,"data":null}},"time_used":852,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":852,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/cn_files/English.svg","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.596Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /cn_files/English.svg HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 504\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\netag: \"68c91231-1f8\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":504,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"6dcadf6916764560c2f1fec586e2c1de","sha1":"161ee20a0a75bb06d4f2ca9acdbb137d9a963cec","sha256":"c8be1e7208798a4ae692ee1e937065d498bb29e741943f6172b29118b8ed8066","sha512":"b925b9042182dc31f953ebfe2bbe666822bb9a56411fc1045d46b5b20e68effe25bd6ce65cad1bcee3ef9008768bdb8221f66573d8daa27c60a8d004acada0a1","ssdeep":"","tlshash":"a0f09ec8d32d7045c70793104cbcf8e3d4d962ce559400dab4d09ae4216e7a7d8d7d91","first_seen":"2023-12-20T14:16:02Z","last_seen":"2026-04-12T20:36:58.439411Z","times_seen":2433,"resource_available":false,"data":null}},"time_used":1122,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1122,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/webfonts/fa-solid-900.woff2","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:19.317Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /webfonts/fa-solid-900.woff2 HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/en_files/all.min.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-04-12T20:58:48.197747Z","times_seen":485786,"resource_available":true,"data":null}},"time_used":887,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":482,"receive":405,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/webfonts/fa-light-300.woff2","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:19.320Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /webfonts/fa-light-300.woff2 HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/en_files/all.min.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-04-12T20:58:48.197747Z","times_seen":485786,"resource_available":true,"data":null}},"time_used":884,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":479,"receive":405,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/static/2.mp4","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.643Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /static/2.mp4 HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=0-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 206 Partial Content\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: video/mp4\r\ncontent-length: 271153\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\netag: \"68c91231-42331\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-range: bytes 0-271152/271153\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":271153,"size_decoded":0,"mime_type":"video/mp4","magic":"ISO Media, MP4 v2 [ISO 14496-14]","md5":"d706668c1cdda2721558bc93dfd76f0a","sha1":"12b4c9d53b507c267b602be100118530a7d93d39","sha256":"f5bebc82c7056235b74e39370499fdd7075c904318bf03923c0122c37eb1d8f4","sha512":"fcff8f8877d386bc3221f90f9440c67f6fd1a2f39a5ef9879346206e785e83aead2cf4e060fc8d0f18161bc743b57c787e1146f11ee8bf89cec5c930750bc6bb","ssdeep":"3072:fAqSWEmuI78aW8QPyIb/Kdn6kPaBN/ol3VLKJxayyEgqQVo/EuqFGi7ozjIjsbLq:LEPI78amkPafRxaHHqQVIeGyoXya/eOS","tlshash":"0644235360e0c84bed347af9d6c6a9dbd7526b0592f30bc774dc008d5b2e3aa6f25442","first_seen":"2024-07-04T22:43:55Z","last_seen":"2026-04-11T08:16:56.327632Z","times_seen":772,"resource_available":false,"data":null}},"time_used":3695,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1158,"receive":2537,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/static/tkicon/twitter1.png","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.610Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /static/tkicon/twitter1.png HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68c91231-1a06\"\r\nexpires: Mon, 11 May 2026 04:29:19 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6662,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 175 x 175, 8-bit/color RGBA, non-interlaced","md5":"09ecbe4ad4bcd9c5d13294e000cf64d0","sha1":"8dafd3a21f66680e80749ec068ddf818c3311136","sha256":"2dadfb225ada833c49b11a1795d6464c231a63e7e9e076e61d179595e57f7373","sha512":"1ba59090fa3ab88e47dcb421755793f7e8d0ec531cfea8b3b7c1a03b36166e0b130d66b5a1dc3a6eb726f40af08cf80895b9a434ec7eb15e56a051277020dbe5","ssdeep":"192:t9hELGtmZKR2kC+UoOebUoCP1aX1QNmhF6:twLW13aP2smhY","tlshash":"9fd18e8ccaa19c41148cd6c100eab7751737906396855eb294dff9733ee47cac7ad887","first_seen":"2024-09-27T14:52:15Z","last_seen":"2026-04-11T08:16:56.306068Z","times_seen":392,"resource_available":false,"data":null}},"time_used":1228,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1228,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:19.304Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 23 Mar 2026 08:38:37 GMT","end":"Mon, 15 Jun 2026 08:38:36 GMT"},"fingerprint":{"sha1":"F8:24:5E:5A:B0:FB:57:E0:D6:E9:33:BD:54:27:DC:BF:50:74:4A:59","sha256":"A4:18:08:9F:87:3F:1D:A2:3B:7A:25:AA:E0:FF:C8:CB:B1:74:9C:8B:FF:A2:C5:D6:74:BB:B0:A7:97:7E:5B:02"}}},"request":{"raw":"GET /s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://tkiltokdownload.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 48532\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 09 Apr 2026 08:25:52 GMT\r\nexpires: Fri, 09 Apr 2027 08:25:52 GMT\r\ncache-control: public, max-age=31536000\r\nage: 158607\r\nlast-modified: Tue, 09 Sep 2025 18:33:50 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":48532,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48532, version 1.0","md5":"225835e6e0496c54dc2aca9f3d533892","sha1":"942ef5298bbe74bfe44e445def5f2bfc94027fa8","sha256":"acc60d454f46f2ba233c516aa3299aa60e1f49ffd0f06b8392a7c772a5694087","sha512":"ea2ff96ed5ac965c1846b4b33990beab3d4ced66806fa44321f5dd59d9a29a8ae1a67a5816d40165af8a896677b6a24bb74ea6db53cd5e686080165db9fd62c2","ssdeep":"768:b9tYsJ6BxVEpu8sqEkvfXRGEBqH7KxpxA07hQv2bSokjQx2AOWUVOv7UeFHOpIsR:LsEcy7fXRGqqHmr7qv32UC7UetOGLkF","tlshash":"03230178cf9f85b3d33b153afaf4d20562a9067de76c4a803831051a2a55770b89dc0e","first_seen":"2025-05-29T17:27:56.345238Z","last_seen":"2026-04-12T21:02:51.074194Z","times_seen":141438,"resource_available":false,"data":null}},"time_used":299,"timings":{"blocked":146,"dns":6,"connect":7,"send":0,"wait":8,"receive":3,"ssl":125},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/responsive.css","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.586Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /en_files/responsive.css HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:18 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68c91231-17a7\"\r\nexpires: Sat, 11 Apr 2026 16:29:18 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6055,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text","md5":"86f73864491a0359592bac4adf1fca96","sha1":"e6769d7d03bb33b2e487ea8d5af7bb8f9a027e8c","sha256":"9b084bc827b445092af35075ad26d15f44827a1bc15d437f7643bf5a1bb91846","sha512":"3f1c0ef5516b656a6347ba4228bc21ae9858610ac31849da47017520c7ac8a4f6df4bab910bda037fbcdd3ec943ae2c8718ebb3f0e6aff30c359df6d98d5419a","ssdeep":"96:rAi98EoqPEuS4Zt/EIDr6NRv05J3PNbM59S2dijg04OyWLBjDZslBTxlsfcyEJCv:Mi98EoCEuSNIDr6fv05Jw8ZSGfCrHe","tlshash":"9ec19cdbbba2165c382e3ab5d97e75a16314a043d30dedd67dc06069cf881d6cbd2a0c","first_seen":"2024-07-04T22:43:55Z","last_seen":"2026-04-11T08:16:56.318158Z","times_seen":337,"resource_available":false,"data":null}},"time_used":552,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":552,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/cn_files/German.svg","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.598Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /cn_files/German.svg HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 221\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\netag: \"68c91231-dd\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":221,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"e88d88604d655d0bd7059cf1fbd59ec2","sha1":"f46bdcf00fbd79c764b116ef8250e678e4b71c8b","sha256":"efd480af5a154a7651f29da23ee0d09dbc892410fb4041898ddf8face336c575","sha512":"b4cd0ac36c019b56dfa1cecdd694a12401639ed47eedb5981ba4df1bccbfbd84f86febf330c96a3e7d4a7cadc1b5c92d91c314622dc764cf8c546802f8b1f836","ssdeep":"","tlshash":"3ed012a9d22e7a05da44cb301e7c75d7d1dab0ca618811dfe8701dad206e4a7dccfea4","first_seen":"2024-02-03T16:27:29Z","last_seen":"2026-04-12T18:47:46.382347Z","times_seen":1597,"resource_available":false,"data":null}},"time_used":1122,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1122,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/cn_files/Thai.svg","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.604Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /cn_files/Thai.svg HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 284\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\netag: \"68c91231-11c\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":284,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"bcc03a3cd1a367274a2444aff71c0a68","sha1":"cc941547c987ff2a0de3c2429094e2471b003eeb","sha256":"329cc0d520536d6eb4b9304105f23650c2d02bbdba8f8696e996dbf166de6f2e","sha512":"a962596a3e7d22b5f6bd96fe44a0da33668527b503621f4a3ff00cc75125f4dbb2702279c737aaa2d9bd56eb5ccfb00c59550326f362c662c38cba50b5bf9e5e","ssdeep":"","tlshash":"a1d02bf8c37c74144d4882300eac72d29556608a115810c7b8a12da539591f39cc79d2","first_seen":"2023-08-04T15:07:25Z","last_seen":"2026-04-12T21:02:12.395527Z","times_seen":1116,"resource_available":false,"data":null}},"time_used":1132,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1132,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/jquery.magnific-popup.min.js.%E4%B8%8B%E8%BD%BD","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.617Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /en_files/jquery.magnific-popup.min.js.%E4%B8%8B%E8%BD%BD HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 20369\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\netag: \"68c91231-4f91\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":20369,"size_decoded":0,"mime_type":"application/octet-stream","magic":"JavaScript source, ASCII text, with very long lines (20087)","md5":"c15be16610f0ec6cc7483b0d84982197","sha1":"07f1aeec984f3af6b7b098d5d0270186d3e95d03","sha256":"5f1b25dc09b49c104b8676e0186d6c24f7a6335d8bd82570f3257349d5b7bbff","sha512":"92d6810fcbd9604b3850be35b80264536b45563e4fdcaaebd5babdb0e51ff02dbe07a3a8a7ee293568e4a966d98e9336846f024d8c33e87c03a7e69d2fd4cfad","ssdeep":"384:MPhVPXQ2G2XAQyqVxRQ5giCCMLtA15h5/F6l8aZwHwztLCpmso:MPBIt8I5h5t1qkOLCMso","tlshash":"bb921994f2b2b21383a735b8686f300939729953ed06c855a55d98d87efcec89027f3d","first_seen":"2024-07-04T22:43:53Z","last_seen":"2026-04-11T08:16:56.325918Z","times_seen":567,"resource_available":true,"data":null}},"time_used":1424,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1222,"receive":202,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/tilt.jquery.min.js.%E4%B8%8B%E8%BD%BD","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.621Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /en_files/tilt.jquery.min.js.%E4%B8%8B%E8%BD%BD HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 7371\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\netag: \"68c91231-1ccb\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7371,"size_decoded":0,"mime_type":"application/octet-stream","magic":"JavaScript source, ASCII text, with very long lines (5640)","md5":"58843c98635b110c37a649cbf37f12c8","sha1":"88cbc32067e54c692d4a850426bec0e36c065fac","sha256":"da67cddcc5033daded7141a8042854e1dbf83f601d1370ac94afc13f4be7208f","sha512":"35f2a763eda18403cd04bc77c4b7bdc3645c2e496e48d4130a40e5785c9d17b3118514cfc021914c713ffe3fe22b2d6b9203487a23217ad36539498b7670c028","ssdeep":"96:H9HqJXyrg9U0S2VcjOB/MjvENOtnUz3FbyTXTyVyURCD3jgupRrfBT8PTLWB0AD:dH8yrbTIMjLtnUziXkRCY4BT8P2BZD","tlshash":"65e198447321b11d45cbf238e18b4e05523a90155d32e97d74eecce8ada8cdd623abf9","first_seen":"2026-04-11T01:10:41.409131Z","last_seen":"2026-04-11T08:16:56.336435Z","times_seen":3,"resource_available":true,"data":null}},"time_used":1523,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1219,"receive":304,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/cn_files/Chinese.svg","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.595Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /cn_files/Chinese.svg HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68c91231-44d\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1101,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"d90d31299c7d1dca4f9b5ddaaced3e88","sha1":"8088e2561327e7e3c48750661abbfbcc9528d2cd","sha256":"096498d60841f404bf034d6c2a4c03b61eebfc87068c63b4388c77f65a001ba1","sha512":"4899ea1fefd5337494daa15be6afefa18a3f50ce2553d5f7d1a14fda6c589a002533f1edfe32a7bf3a58fbe7e8dc27933256595aed6db6054a69269e72770d76","ssdeep":"","tlshash":"0f11d3e4c7e8f672f49b87db9224d6447117e5f9f1b3988cc348d8740781a94bd0c95a","first_seen":"2024-10-04T10:37:42.687637Z","last_seen":"2026-04-11T08:16:56.338656Z","times_seen":388,"resource_available":false,"data":null}},"time_used":1122,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1122,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:19.307Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 23 Mar 2026 08:38:37 GMT","end":"Mon, 15 Jun 2026 08:38:36 GMT"},"fingerprint":{"sha1":"F8:24:5E:5A:B0:FB:57:E0:D6:E9:33:BD:54:27:DC:BF:50:74:4A:59","sha256":"A4:18:08:9F:87:3F:1D:A2:3B:7A:25:AA:E0:FF:C8:CB:B1:74:9C:8B:FF:A2:C5:D6:74:BB:B0:A7:97:7E:5B:02"}}},"request":{"raw":"GET /s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://tkiltokdownload.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 48532\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 09 Apr 2026 08:25:52 GMT\r\nexpires: Fri, 09 Apr 2027 08:25:52 GMT\r\ncache-control: public, max-age=31536000\r\nage: 158607\r\nlast-modified: Tue, 09 Sep 2025 18:33:50 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":48532,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48532, version 1.0","md5":"225835e6e0496c54dc2aca9f3d533892","sha1":"942ef5298bbe74bfe44e445def5f2bfc94027fa8","sha256":"acc60d454f46f2ba233c516aa3299aa60e1f49ffd0f06b8392a7c772a5694087","sha512":"ea2ff96ed5ac965c1846b4b33990beab3d4ced66806fa44321f5dd59d9a29a8ae1a67a5816d40165af8a896677b6a24bb74ea6db53cd5e686080165db9fd62c2","ssdeep":"768:b9tYsJ6BxVEpu8sqEkvfXRGEBqH7KxpxA07hQv2bSokjQx2AOWUVOv7UeFHOpIsR:LsEcy7fXRGqqHmr7qv32UC7UetOGLkF","tlshash":"03230178cf9f85b3d33b153afaf4d20562a9067de76c4a803831051a2a55770b89dc0e","first_seen":"2025-05-29T17:27:56.345238Z","last_seen":"2026-04-12T21:02:51.074194Z","times_seen":141438,"resource_available":false,"data":null}},"time_used":178,"timings":{"blocked":73,"dns":0,"connect":7,"send":0,"wait":16,"receive":8,"ssl":71},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/plusjakartasans/v12/LDIoaomQNQcsA88c7O9yZ4KMCoOg4Ko20yyghfvaZ-E.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:19.310Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 23 Mar 2026 08:38:37 GMT","end":"Mon, 15 Jun 2026 08:38:36 GMT"},"fingerprint":{"sha1":"F8:24:5E:5A:B0:FB:57:E0:D6:E9:33:BD:54:27:DC:BF:50:74:4A:59","sha256":"A4:18:08:9F:87:3F:1D:A2:3B:7A:25:AA:E0:FF:C8:CB:B1:74:9C:8B:FF:A2:C5:D6:74:BB:B0:A7:97:7E:5B:02"}}},"request":{"raw":"GET /s/plusjakartasans/v12/LDIoaomQNQcsA88c7O9yZ4KMCoOg4Ko20yyghfvaZ-E.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://tkiltokdownload.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 27236\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Fri, 10 Apr 2026 23:11:57 GMT\r\nexpires: Sat, 10 Apr 2027 23:11:57 GMT\r\ncache-control: public, max-age=31536000\r\nage: 19042\r\nlast-modified: Tue, 09 Sep 2025 18:38:58 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":27236,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 27236, version 1.0","md5":"a8c28b27501f763423d96717c43243df","sha1":"e845ac57b3fee2c68ec6cdb95114ef3541fa3d11","sha256":"b6698c39332c51112c720e8a92608b4eeed502f654b63fc1693b8cccfc856d4d","sha512":"3e3af79fd415b3e4d3cbcd7f9bce2a7fa5c09b1ad5a38c6f2e971852c7973eae1b8ac85a4664f8c7af34f6c489f563cc35f82aecd32b1be8af70ce2612b0e3d3","ssdeep":"384:TOfiFJZpa1LuoEeC5s2xCWnEgdMqCF+FSe5LuxyrPyP2hbgBizhxCvw9k3kwA0y2:XW1l+s2xC8LSs2P2yitawWU50Z","tlshash":"f5c2e0676b05362dbcc47380135b8f262a5071b5566cca61787bef4e3a9b03a903cba5","first_seen":"2025-06-03T19:01:05.870661Z","last_seen":"2026-04-12T21:03:43.807776Z","times_seen":8238,"resource_available":false,"data":null}},"time_used":304,"timings":{"blocked":144,"dns":1,"connect":20,"send":0,"wait":8,"receive":2,"ssl":124},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tiktok-app.shop/assets/images/favicon.ico","fqdn":"tiktok-app.shop","domain":"tiktok-app.shop","tld":"shop"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:22.231Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /assets/images/favicon.ico HTTP/1.1\r\nHost: tiktok-app.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-12T20:55:58.966498Z","times_seen":13677413,"resource_available":true,"data":null}},"time_used":138,"timings":{"blocked":0,"dns":138,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/aos.min.css","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.583Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /en_files/aos.min.css HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:18 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68c91231-718b\"\r\nexpires: Sat, 11 Apr 2026 16:29:18 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":29067,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (28857), with no line terminators","md5":"7543b5a52a6811252d6ad245b38ab641","sha1":"4e18b858c909dc9f0ea4ddfc3313f9314c87b7cf","sha256":"aa0c1409d6bdd4b59a5cbb9f76208d357153501e494baf39bf0df0a5f8f04f26","sha512":"5ea79bb07ae3bfc4066bfdb47d1ee09922b0c9262dc2ebd6eba2f91631903f0ac3c8a9855887e7844ea431065a0fd04666b8e8f1a072e51093a3823e375e3e24","ssdeep":"768:MXdJLhzC9ZnOrdFGJtrSb59qVZx1GrdF2JlbiLRdtlVt4lxhKdvJg11NeNP9QNB5:UdJLhzC9ZnOrdFGJtrSb59qVZvGrdF25","tlshash":"e8d2c29a794cd100bf431b4762df2a1859347588e530098abe3f35ca1cd2de6b973fa9","first_seen":"2025-04-07T11:27:31.639532Z","last_seen":"2026-04-11T08:16:56.312815Z","times_seen":532,"resource_available":false,"data":null}},"time_used":534,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":534,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/screenshot-lg-2.png","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.607Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /en_files/screenshot-lg-2.png HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68c91231-aebc\"\r\nexpires: Mon, 11 May 2026 04:29:19 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":44732,"size_decoded":0,"mime_type":"image/png","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 1280x920, components 3","md5":"0e0f0753997380711fc448250bcac2c7","sha1":"b690398486705272a92acc7571ac52255838ead4","sha256":"a03f4fe052a60d67479261dadc7defced40148f6dc382bf110d844b40bdd7afb","sha512":"a1e0dd93a03be191bfe96fa3d31a9510b99d623800b811d8ec9016846c76b693d71b0dd70164621e369a3d59a2317035166f5a7741467134fbe6a699d5447274","ssdeep":"768:KD9o+Li/vUT+bQ2sud9Kr/ykvmmmFaAnUUON/UE9i+cNIZyWVDEutkkaQwxME:KMB5l1iBUE9iHGyI4uJw2E","tlshash":"ff13d03b7772e6e2d844237a40c533b5e13b9e36f22224a151a28c11da1937bbe553df","first_seen":"2024-09-27T14:52:15Z","last_seen":"2026-04-11T08:16:56.303812Z","times_seen":433,"resource_available":false,"data":null}},"time_used":1229,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1229,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/plusjakartasans/v12/LDIoaomQNQcsA88c7O9yZ4KMCoOg4Ko20yyghfvaZ-E.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:19.301Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 23 Mar 2026 08:38:37 GMT","end":"Mon, 15 Jun 2026 08:38:36 GMT"},"fingerprint":{"sha1":"F8:24:5E:5A:B0:FB:57:E0:D6:E9:33:BD:54:27:DC:BF:50:74:4A:59","sha256":"A4:18:08:9F:87:3F:1D:A2:3B:7A:25:AA:E0:FF:C8:CB:B1:74:9C:8B:FF:A2:C5:D6:74:BB:B0:A7:97:7E:5B:02"}}},"request":{"raw":"GET /s/plusjakartasans/v12/LDIoaomQNQcsA88c7O9yZ4KMCoOg4Ko20yyghfvaZ-E.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://tkiltokdownload.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 27236\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Fri, 10 Apr 2026 23:11:57 GMT\r\nexpires: Sat, 10 Apr 2027 23:11:57 GMT\r\ncache-control: public, max-age=31536000\r\nage: 19042\r\nlast-modified: Tue, 09 Sep 2025 18:38:58 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":27236,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 27236, version 1.0","md5":"a8c28b27501f763423d96717c43243df","sha1":"e845ac57b3fee2c68ec6cdb95114ef3541fa3d11","sha256":"b6698c39332c51112c720e8a92608b4eeed502f654b63fc1693b8cccfc856d4d","sha512":"3e3af79fd415b3e4d3cbcd7f9bce2a7fa5c09b1ad5a38c6f2e971852c7973eae1b8ac85a4664f8c7af34f6c489f563cc35f82aecd32b1be8af70ce2612b0e3d3","ssdeep":"384:TOfiFJZpa1LuoEeC5s2xCWnEgdMqCF+FSe5LuxyrPyP2hbgBizhxCvw9k3kwA0y2:XW1l+s2xC8LSs2P2yitawWU50Z","tlshash":"f5c2e0676b05362dbcc47380135b8f262a5071b5566cca61787bef4e3a9b03a903cba5","first_seen":"2025-06-03T19:01:05.870661Z","last_seen":"2026-04-12T21:03:43.807776Z","times_seen":8238,"resource_available":false,"data":null}},"time_used":175,"timings":{"blocked":79,"dns":0,"connect":8,"send":0,"wait":9,"receive":8,"ssl":67},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/webfonts/fa-regular-400.woff2","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:19.314Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /webfonts/fa-regular-400.woff2 HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/en_files/all.min.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-04-12T20:58:48.197747Z","times_seen":485786,"resource_available":true,"data":null}},"time_used":889,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":484,"receive":405,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/cn_files/Japanese.svg","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.602Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /cn_files/Japanese.svg HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 470\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\netag: \"68c91231-1d6\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":470,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"22e3b3a4abbb24945620817fd27ed7db","sha1":"b5f2d0d5127becf2f525f44adb8ff9f8c8d67150","sha256":"bfea80baf9989383dc4bf7ca594ed95be0df0ff125bfc88d0bfa878eb0198022","sha512":"4a8bba04821d24b29af1c50bb80b8fb0f14b90ef09beae191f4ee60e4d1820723889ea86e6b404901305787c466caa3ea6667f4f3290e4f1f6110e7b63cda01d","ssdeep":"","tlshash":"63f05ca4a6f9880cce284629cbad29c5572ea0c6438a40ddb1941a597f1c27716db2f4","first_seen":"2023-12-06T12:02:13Z","last_seen":"2026-04-12T18:45:30.664664Z","times_seen":1161,"resource_available":false,"data":null}},"time_used":1132,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1132,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/flaticon.css","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.571Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /en_files/flaticon.css HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:18 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68c91231-535\"\r\nexpires: Sat, 11 Apr 2026 16:29:18 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1333,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (1193), with no line terminators","md5":"d9042e4ea709cb4bafb5307713910470","sha1":"60936ed1116b64491d4d68183cc79a94bb3a9a56","sha256":"380dbc8a64bd7a6d639137ec62acb6a0164b1337cdafffc7cd37d2404e5c5cba","sha512":"383940ff7c5bb200700acc712dc5c8e4ac991228c45ec558f1f33406e6282ee5dafe26db3011ea5b209508285598c68772484881c4a1fe994b07cbdabd2290bf","ssdeep":"","tlshash":"4f217cbac17e41d49752ce4b37ed7674ea4ab179ccd18c59e70a0e08adf1e590680f38","first_seen":"2024-07-04T22:43:55Z","last_seen":"2026-04-11T08:16:56.308096Z","times_seen":241,"resource_available":false,"data":null}},"time_used":531,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":531,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/webfonts/fa-regular-400.ttf","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:22.362Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /webfonts/fa-regular-400.ttf HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/en_files/all.min.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:22 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-04-12T20:58:48.197747Z","times_seen":485786,"resource_available":true,"data":null}},"time_used":255,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":255,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/magnific-popup.min.css","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.575Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /en_files/magnific-popup.min.css HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:18 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68c91231-15a3\"\r\nexpires: Sat, 11 Apr 2026 16:29:18 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5539,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (5399), with no line terminators","md5":"900ebe8357742625554115838d986a54","sha1":"75bb5ee58e87fb83a07617293d9a23479fce3683","sha256":"055cea1a3fa7881c67f31315783333cb3b83f4062e76dd8a58f74d19a0371308","sha512":"b058a5323062564425d6d9c109ae91f0afa33a4fbbbf929896964edb5f19679fded0dee86d43da81c1f4c87e0a175a2062af1266046e7a3c259f0da3fdc282e3","ssdeep":"96:rAwc2SCO7EWPWNM0aDQX8EiUkhudlsbFDm5Mk9rCWhXAc:Mw0CO7EWPWNDaDQMEiUdiqMk9GWhQc","tlshash":"87b173f3a951217ac633c916d1c3af9d3227a227f2a346dfdf82a418c6ce4cc1625748","first_seen":"2024-07-04T22:43:55Z","last_seen":"2026-04-11T08:16:56.331178Z","times_seen":556,"resource_available":false,"data":null}},"time_used":529,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":529,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/static/tkicon/YT1.png","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.610Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /static/tkicon/YT1.png HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68c91231-1854\"\r\nexpires: Mon, 11 May 2026 04:29:19 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6228,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 175 x 175, 8-bit/color RGBA, non-interlaced","md5":"5ebcbd1e8faddbe53f6b89d48b826d7f","sha1":"6dd8df0a04d9f6c4976506dc876815da7c53524a","sha256":"1f871cb7c62bf7c23eb1231128bf3c2810b1b8cad4a63547453956a07397cb24","sha512":"71206af22c3d4b6b06416e6edc4f7f33e22d5b5b7b81cc4c80fd3c3e58126a2a07d09e29682d761e9b8b9fa616cda735f5cf862f598b8e773640f20ce13f6ac2","ssdeep":"96:v18zL0Tc3vZ4fTVm9Vk8uJh9BbxUJTO45EiAqtaSPV5fqZU4gvDgewbL7glS:tmLAc3vCfAHy9beC4paSbqZUJb5w00","tlshash":"fdd18e87c941dac2f5282ae724ff51af3989670899c4d4319a8fda4548a4535823a3e9","first_seen":"2024-09-27T14:52:15Z","last_seen":"2026-04-11T08:16:56.320662Z","times_seen":392,"resource_available":false,"data":null}},"time_used":1227,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1227,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/aos.min.js.%E4%B8%8B%E8%BD%BD","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.622Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /en_files/aos.min.js.%E4%B8%8B%E8%BD%BD HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 13952\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\netag: \"68c91231-3680\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":13952,"size_decoded":0,"mime_type":"application/octet-stream","magic":"JavaScript source, ASCII text, with very long lines (13875)","md5":"e0041457719a9b541a81669201b820b7","sha1":"10bc52e3895f57acf7e9de24a465a1f3abb6d9fa","sha256":"397c09afcedde7c04a774ce7738d7a1ab0a7cf69814bf1e281226888582a9519","sha512":"0fb1f89ecb8f6f57f2c5abf1a003fa20acc29981ac70be9c96038a7b96e35c2bb0c81b8a777b3e5ddc3ca0d15c5cbce4a985304f4aa260fc35827a01f7eb9024","ssdeep":"192:xOaHX24ysbeCVXVyILkYmTpOIytlomlBpOIVtlomlrjm5bovo5FglaZW0fNacZgn:xVpyRSVLL28HVjkFglMfNaEg+w","tlshash":"87521bdc7186f166479394fb417f610af2f114b4684d8440e139c4e73eb999aca33eae","first_seen":"2024-07-04T22:43:53Z","last_seen":"2026-04-11T08:16:56.333641Z","times_seen":567,"resource_available":true,"data":null}},"time_used":1535,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1219,"receive":316,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/static/3.mp4","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.643Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /static/3.mp4 HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=0-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 206 Partial Content\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: video/mp4\r\ncontent-length: 276252\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\netag: \"68c91231-4371c\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-range: bytes 0-276251/276252\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":276252,"size_decoded":0,"mime_type":"video/mp4","magic":"ISO Media, MP4 v2 [ISO 14496-14]","md5":"4cdff2f18617a14345d4d9f4f078fa39","sha1":"add7fa5ce4a8d5dacbb5e169b4f79331ab12edd1","sha256":"333b209ea20ec8a006d254af9d19fef811278350589eeb1595b68548dd47b037","sha512":"44d84f3430f01d97fdf1e1103170b9a769cf652f18ab4ec37f85b735dcdc623b2de534f42d9b3d443a55c71ca8f9124fea0591d9e001a9e5dd1617bf38a40b53","ssdeep":"3072:VqwpDxwu60cr8+gUboXZexwcSkcrpxyTYmHvRvkjXPG0XRThGj7ApxUHVxrEzGon:ppiF0cI+h6NkMTyTYgkjrnGHbEz56zA","tlshash":"5d44122eead36594ff39bfb391d61cb3a12a8945a4941bd37ccc79448fda0240840fa6","first_seen":"2024-07-04T22:43:55Z","last_seen":"2026-04-11T08:16:56.334589Z","times_seen":771,"resource_available":false,"data":null}},"time_used":3701,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1157,"receive":2544,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/webfonts/fa-solid-900.woff","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:20.236Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /webfonts/fa-solid-900.woff HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/en_files/all.min.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:20 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-04-12T20:58:48.197747Z","times_seen":485786,"resource_available":true,"data":null}},"time_used":2129,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2129,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/static/tiktok.mp4","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.641Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /static/tiktok.mp4 HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=0-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 206 Partial Content\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: video/mp4\r\ncontent-length: 9024074\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\netag: \"68c91231-89b24a\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-range: bytes 0-9024073/9024074\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":57441,"size_decoded":0,"mime_type":"video/mp4","magic":"ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]","md5":"2eb917fb2e5413c4df210358ef2de4c6","sha1":"d6b33d6a74eac3aceefe3ad0cc36611bd3b15c38","sha256":"efb1554ac8dddffeffe7bb90802be4cc42f8fd7a51cdc99afd575ef2412c4fd8","sha512":"f351194a309f6f2cc5fe78eb3f0495bb2b4b1e58abb4c3637997f9f70c1d42be493445bf1c9a5b4c336bf6cb8cb715474f160fc5881543b2f99dbfb9c05c7ac6","ssdeep":"768:o3WgNMcYiLyY3VMijeHeQn5cas8VGzcM44tv5tTUmAnYnjYTbksYsxKr+a:o3LMgljCeQnzt8AARtI5YjpPswz","tlshash":"ea43e1732f41182400d3ae4eb9a66d7722f96d10375ea46e8e678fcfc055ba4cab614c","first_seen":"2026-04-11T04:29:48.768195Z","last_seen":"2026-04-11T04:29:48.768195Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1603,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1158,"receive":445,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Inter:wght@400;500\u0026family=Plus+Jakarta+Sans:wght@400;500;600;700\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:19.112Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 23 Mar 2026 08:38:38 GMT","end":"Mon, 15 Jun 2026 08:38:37 GMT"},"fingerprint":{"sha1":"C3:E4:BE:7B:38:DD:F1:59:DC:DF:FA:8A:48:52:C7:1D:D2:BF:F7:5E","sha256":"31:F4:52:B9:AA:C3:06:E9:A3:71:DA:02:A5:63:C9:78:CC:3A:04:07:E1:B4:42:F5:DC:BF:40:0F:BE:3E:6F:9E"}}},"request":{"raw":"GET /css2?family=Inter:wght@400;500\u0026family=Plus+Jakarta+Sans:wght@400;500;600;700\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Sat, 11 Apr 2026 04:29:19 GMT\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":11870,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"6384740fde8b3c2e1b931f371b67864a","sha1":"97cb70899fb585b7c3afc9eb64ccc1c74ecc0335","sha256":"7413d8a450a2b3df86e4fe1a707f66a14b6a0180927cf26e97945887b3fe943d","sha512":"b5566881a0b76cc8c361da6129c7e8bf4438defa5c7d4e5688de5ced8397d18b0a4bf98beb0ec5e728b994cc8ca9c97618e35f5a0c92922a10b37c1db453f45d","ssdeep":"192:9NNIxO34OxDENOPCO3/Nx86CFJRSdCmaRBUCj3Ro7CcQRvd:vXuMWdrFn","tlshash":"8e32cea1042fa500eb831cc763cf7e3aae9e50956045c5b95bfd0c94dcaec2a6375b1d","first_seen":"2025-10-10T01:47:38.424519Z","last_seen":"2026-04-11T08:16:56.310984Z","times_seen":13,"resource_available":false,"data":null}},"time_used":191,"timings":{"blocked":86,"dns":1,"connect":7,"send":0,"wait":19,"receive":0,"ssl":76},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/swiper-bundle.min.css","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.580Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /en_files/swiper-bundle.min.css HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:18 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68c91231-407b\"\r\nexpires: Sat, 11 Apr 2026 16:29:18 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":16507,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (16297), with no line terminators","md5":"4d7a540ccde5035c2f1ffcd4e647c573","sha1":"d6d3fcf1a33b79646625252139bd712fbd81238e","sha256":"3cabfa9e15865c1831727e35e571f59a91deda8e48efc246d3e46634fdb93359","sha512":"0be72c082cf5eda2621c97674a5e865822eab2bf7c5beb56ba87c486baf86d6597246d525c65c6dc62b3651781ed2a114ee036469099345b5cddb0f40cdfe167","ssdeep":"192:MjmUJbTKneTT4bHZ+SKlnxup/a2APfHff71eesedOJ9AZPz+c3At2/ZTc:MCUoeTMbHZ+Tnh2APfHfA4X44Tc","tlshash":"4d72346853401c2753274f364b71cbb9ddb444c24b93896e92c0ae44d7b6cbd236f6e9","first_seen":"2025-04-07T11:27:31.602344Z","last_seen":"2026-04-11T08:16:56.337218Z","times_seen":526,"resource_available":false,"data":null}},"time_used":531,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":531,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/avatar-2.jpg","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.591Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /en_files/avatar-2.jpg HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68c91231-7a9e\"\r\nexpires: Mon, 11 May 2026 04:29:19 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":31390,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x300, components 3","md5":"1c03b908f62008df8e7e02ca5db8cf50","sha1":"515976a79fe5ee2392616b0651182240c6ee3d65","sha256":"eb36c0f955a29a4125a2e195d4ff15db120f833a91b8d13a6998ad1b285a74b7","sha512":"29eccb5af3975e70918a9ff165495fa6a8dcb90e427e5fee7e79707caeb6d94fb569270a8b01a184afeac05a0137e43fc2e967220fe94ee6f98075c162c4e86d","ssdeep":"768:KfjJQLsun2gpAAQ5GOxfg4+OkukRPLtzsAu:4tQwMIoOxYCkbdLtzsAu","tlshash":"0de2f227d20008e686863e72ac0a9ad2fc59390bdd9f1ce79d627f62471d0494cd96ce","first_seen":"2024-07-04T22:43:56Z","last_seen":"2026-04-11T08:16:56.3188Z","times_seen":834,"resource_available":false,"data":null}},"time_used":877,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":877,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/cn_files/Spanish.svg","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.600Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /cn_files/Spanish.svg HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68c91231-16385\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":91013,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"9305ebd7dca8be2bc0ae16186da8ce01","sha1":"6ac5500bd842e4a33244e47752139449865b7c30","sha256":"f9fe443d9c518a278898f33db59e5ac5c69cb75d1515368561d72956ce35e87b","sha512":"77e28fb37bba172cc1a80138a7ccbc886434568596dbc07f4acdf4e15a801e4c6f50f43f2ae947d38257c61bda97d25dc97e38f32bdf0865a467d445b6b49e29","ssdeep":"1536:3xgc9mCK7490AzcRPewyx6+F12P0v1NupVg6wuU9GW/b/qOuD+1TcKszCGOfiki0:mc9mCK749xDl6+H2P0v1NGW","tlshash":"9693ac7c871c87bc9a12cb789f3da0f5530ef0e8b23aa256541c88b061e75ded46b9c5","first_seen":"2024-01-05T17:55:28Z","last_seen":"2026-04-12T16:16:42.088807Z","times_seen":731,"resource_available":false,"data":null}},"time_used":1132,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1132,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/static/tkicon/ins1.png","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.609Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /static/tkicon/ins1.png HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68c91231-1e55\"\r\nexpires: Mon, 11 May 2026 04:29:19 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7765,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 175 x 175, 8-bit/color RGBA, non-interlaced","md5":"26455df694d387ff86ff1bf48ed12c40","sha1":"af0adbf02d74de65af6f9b2a769d67062c334175","sha256":"846630c0ed5c121fb52258c12da6dcc39d87a4ba5e3744f39a7a1d95db808e4a","sha512":"c7dcdc14746ead0b57e9aae2abb0303ed94859b287f8116a8a474029d91f6ea602ff881c454c5f323546d824a1c042ac7483f9d07fe6190eb2b48eb09aaad548","ssdeep":"192:OL4b0trg1amjM36PrSDGGS/7ICGsfZ4lF:OL4GFmj3PcGbDICnxy","tlshash":"a2f18d8bf236c01842ebbc8d18e72ca85e1b05d845deda80f9e9d80347a11ef55e58db","first_seen":"2024-09-27T14:52:15Z","last_seen":"2026-04-11T08:16:56.30551Z","times_seen":390,"resource_available":false,"data":null}},"time_used":1228,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1228,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/swiper-bundle.min.js.%E4%B8%8B%E8%BD%BD","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.618Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /en_files/swiper-bundle.min.js.%E4%B8%8B%E8%BD%BD HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 143790\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\netag: \"68c91231-231ae\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":143790,"size_decoded":0,"mime_type":"application/octet-stream","magic":"JavaScript source, ASCII text, with very long lines (65199)","md5":"c9a9f38aa0acaa7ce04312456f7d23c1","sha1":"bf3c40e57dd84da986337920ef4d5bfef476b115","sha256":"1ab59033075783342dbec81fa17026d5591d0ed4645fc6faa048ba6741e6d0be","sha512":"64263fd277eb6d79a7c9c363c1a462be12bb06951a2942c2d10d97aacb50aeb8eabb6a3be10b11deaf4a9aec5eaff62e2b8a3acde5e3aed47219cb1345b1af08","ssdeep":"3072:lJLCyDdkEUYnafpoy9v8cIWyUaV4y+oGeJJ91EfrNK/Yvq:lJLC4dkEUYnafpl9v8cIWybV4y+oGMJh","tlshash":"09e3f8896360b1a552e3268b93a9c651e3b51400b409c4e870bd4c9b6d7ed9813ffffe","first_seen":"2024-07-04T22:43:54Z","last_seen":"2026-04-11T08:16:56.309973Z","times_seen":557,"resource_available":true,"data":null}},"time_used":2123,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1221,"receive":902,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/static/hero-banner-bg-1.png","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:19.276Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /static/hero-banner-bg-1.png HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68c91231-2243\"\r\nexpires: Mon, 11 May 2026 04:29:19 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":8771,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 2880 x 1440, 4-bit colormap, non-interlaced","md5":"e62aaa01df9bcef41f04ccaad92d87a1","sha1":"48faabc4dfef2645db295a7904c134d17d618dc0","sha256":"398f84b0ce8b1ce8276885781d8d5162dd0999eaf22496e77fb0004ffb196e49","sha512":"3024c8ff74b86fbe190315f123034c7d1eb7d19ce4febb7a40d2aafc34575869cad9637d91b1701966c77d951d454bb6f25ced3a739229f936c307921211dd00","ssdeep":"192:zFWsaHH/CeZFdMHDuPdKHoebTcGppBSwo6O6pP5PrvPc08tY7oYV:zRFjqdK9cGppB66d5rA8n","tlshash":"73028db7d7282136c1de34b69181a0c41e3965360a2dfe0c69dc57ed6b1d0aee1e16bc","first_seen":"2024-07-04T22:43:55Z","last_seen":"2026-04-11T08:16:56.34206Z","times_seen":790,"resource_available":false,"data":null}},"time_used":522,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":522,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/style.css","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.585Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /en_files/style.css HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:18 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68c91231-21a38\"\r\nexpires: Sat, 11 Apr 2026 16:29:18 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":137784,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text","md5":"b4966e994abaf11825c56ebe2967f424","sha1":"f7d0ab5b2b6284eccaf92320f64411031ea32033","sha256":"82e47fdc39a65ca8dabdad524dd265f38b7ce478f30f22737a60550e6e620789","sha512":"1a6b508cc6a6f906c8885a99580dea9aae3c09d6b1ee92a4791cb1d32b60a1d6a46e92ffa2ed10bca79410855e869bc77d326ec235c119c9d9c923fbfd91f2a8","ssdeep":"3072:1SR2/3eKiW43Cof22PQPj3fX+T3AdwP9qx303KTF320KRKna3jHu:1SR2/3eKiW43Cof22PQPj3fX+T3AdwPW","tlshash":"67d37646eaf30a9a681f55285bfee705336c6083c90ecea9bfcd72444f851ed5172e48","first_seen":"2025-04-07T11:27:31.607509Z","last_seen":"2026-04-11T08:16:56.300491Z","times_seen":187,"resource_available":false,"data":null}},"time_used":549,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":549,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/app-store.png","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.589Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /en_files/app-store.png HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68c91231-22ed\"\r\nexpires: Mon, 11 May 2026 04:29:19 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":8941,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 174 x 58, 8-bit/color RGBA, non-interlaced","md5":"2307149fd16a93b368b9759daffc99c1","sha1":"572db71ea067e6ebe3502f3d95efc2cd5c4975f2","sha256":"2b970e31593d110544492f4ef959630d2aaae837484dcd60e9c61deeafac1ea3","sha512":"bc23ecfe83ac1a354f4a23e5aa362f84f3d4256f8c8e9d55b57e8d051feda3783d9783cc91170ceb0a750f59cefdab6327bf37efac6d926432de3d8d97655e9e","ssdeep":"192:MSi/+5MYG8zfZF6Hi3+JzEHB0vgpI5BLYDZzKPkcuZI:LW+mv8VUhtO0FT6ZzKPkcuZI","tlshash":"b202bfea9c69ced4fff8ee113013468c3bb46d56a08613b918d80c9371c34cddac6a91","first_seen":"2024-07-04T22:43:56Z","last_seen":"2026-04-11T08:16:56.332701Z","times_seen":816,"resource_available":false,"data":null}},"time_used":848,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":848,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/static/poster.png","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.594Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /static/poster.png HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68c91231-13dd5\"\r\nexpires: Mon, 11 May 2026 04:29:19 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":81365,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1056 x 1770, 8-bit/color RGBA, non-interlaced","md5":"efac23272269a1893db2cc4880a2550a","sha1":"2641aedfc665089c11345f2312569ca5f0eb3857","sha256":"80027eddf9f995e06621e688570583b175c8c9a6a904a68a213a35b9f37b2df6","sha512":"8b3dbceb9aa1ed8318c25ccbf41d185d23fafa2ee015d91990c5c09a81faa4a8e7a65075acdf59e403d7885cb7357c9631a15a7f66b2f1d6166d9b0136c98b33","ssdeep":"1536:9uuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuvuuueGaFIjoyvqh:lGaFIjNvtjR1/q/W0","tlshash":"43834a64c3a711b33241638871a66b038a630c773845edb82deb790f67a7f796db5c81","first_seen":"2024-07-04T22:43:56Z","last_seen":"2026-04-11T08:16:56.308622Z","times_seen":491,"resource_available":false,"data":null}},"time_used":1100,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1100,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/cn_files/French.svg","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.597Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /cn_files/French.svg HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 231\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\netag: \"68c91231-e7\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":231,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"bf4cae9b80cd98ef576670139bdb167d","sha1":"a761902c65cfdca4058ce0c9d5f8eac667cd6118","sha256":"8cdacc8d79bcf210cdca2777a2c0de1f9e5862526877bd3026c9d59ecdcd4578","sha512":"bb6b5de936dfdb7f7aea85e15d22ef5a15bbf020dd055d9d0423cd59972ab6aef642db2c522435b14cf92535432fa9ea1f7c31ee4eb5f01543dcda89d4292d83","ssdeep":"","tlshash":"5cd0a7a9d32da410c74447200a7c75c254a5f0c9a48411cbe890049522190f69cc39a5","first_seen":"2023-12-06T12:02:13Z","last_seen":"2026-04-12T18:47:46.356341Z","times_seen":1598,"resource_available":false,"data":null}},"time_used":1122,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1122,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/static/tkicon/dribbble1.png","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.608Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /static/tkicon/dribbble1.png HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68c91231-210a\"\r\nexpires: Mon, 11 May 2026 04:29:19 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":8458,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 175 x 175, 8-bit/color RGBA, non-interlaced","md5":"00df14144d71635bc31880d951e9312e","sha1":"507e5908a6e9caa7ec21e3a3f5aecaf7014d38e8","sha256":"ef6de4cfac36d60d893a7f6e0113f5b79835c4c75c54df20103a06606353406f","sha512":"02cd0f52727bc6ca2da5da404de52c77f6a62fc5c84c23715497ece7e0acb44b029c080f8e53100fcfe4cf5b902dac75cc612cb91de8825198651e8304fe5159","ssdeep":"192:tMLboDIzgOjgaLApzBZediyx2TaHZ2TrMz4tvJ2XfmiIC9t:tMLbjgiLCtZfTaHagz4tBmZIst","tlshash":"9102ae1de51d6f92889d1f3551f16eae4c3a08829982dea161addc3238f4d7a29178c3","first_seen":"2024-09-27T14:52:14Z","last_seen":"2026-04-11T08:16:56.338091Z","times_seen":391,"resource_available":false,"data":null}},"time_used":1229,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1229,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/jquery.nice-select.min.js.%E4%B8%8B%E8%BD%BD","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.616Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /en_files/jquery.nice-select.min.js.%E4%B8%8B%E8%BD%BD HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 4539\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\netag: \"68c91231-11bb\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4539,"size_decoded":0,"mime_type":"application/octet-stream","magic":"JavaScript source, ISO-8859 text","md5":"117f9d87a549882ea10001206c595b96","sha1":"c65a0b6c7f738d6f352227a8ab0e36265037cff8","sha256":"bb6ccb6d8a58e8def53069a00a98893236bba304804c19f30086e0690a4bbfbb","sha512":"a1499426a61aa14d9b6e22759555e18d0a6697faf56cbdbb13c50f0be3db54748492913f51b69e514dd62928b100f7b2a3112bc4673531d9601eed2f5136d736","ssdeep":"96:E0lTuNla97TLpeVP4+m+nVROLmKOeT4hKeDOm9oOn9Qwbvyn:EeWlaJTLoyoVROLmKOeT4hKeDOm9oOnk","tlshash":"62910f0762d011b256ff30a32c537146b233a82be96999067d5d42f00f9ed35a6f6ece","first_seen":"2025-03-07T06:51:06.560897Z","last_seen":"2026-04-11T08:16:56.324496Z","times_seen":47,"resource_available":false,"data":null}},"time_used":1413,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1222,"receive":191,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/lazysizes.min.js.%E4%B8%8B%E8%BD%BD","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.619Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /en_files/lazysizes.min.js.%E4%B8%8B%E8%BD%BD HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 8042\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\netag: \"68c91231-1f6a\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":8042,"size_decoded":0,"mime_type":"application/octet-stream","magic":"JavaScript source, ASCII text, with very long lines (7862)","md5":"1676485dd72c3bcd843fe5edac986faa","sha1":"9cb71a19d578da4b9ae6fd477b2e28b47160d1c9","sha256":"0bb1ea7499d5431a76a643de7c6f1be2379cc39ad3d84e5d1ba228f77b5ac2c3","sha512":"48d8f9e1b6670efae9ee5a82fb5e4765a9b27ba6d9be043d627347ef79f91728002e88aa06c2f47f1f7fe5a781d78b89d00b22f4e9963d988ff915f9aa5b9ca3","ssdeep":"192:aIJHXkovHIdcC9vaE6cyxqI1qwLcIRAKEFkNB+xb+25CqqBFPvAxOm:a2kNdcC9J6co91qwLcI6KgkixbdjqBFG","tlshash":"29f1a4df755530b3aaeb74a5456f210e673274339d46e451e2bad080093c94aa327f2d","first_seen":"2024-07-04T22:43:54Z","last_seen":"2026-04-11T08:16:56.310481Z","times_seen":567,"resource_available":true,"data":null}},"time_used":1468,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1221,"receive":247,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/script.js.%E4%B8%8B%E8%BD%BD","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.622Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /en_files/script.js.%E4%B8%8B%E8%BD%BD HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 75092\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\netag: \"68c91231-12554\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":75092,"size_decoded":0,"mime_type":"application/octet-stream","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"d761ec041c6f157149dd799cda5dd4f4","sha1":"883627490847fb151f4eb93d7ac66d1a45483dbb","sha256":"f6ffeffd873fcc4a66c6b9d04c934ea99e5469c8fa44902efbf14d3ca8ee189a","sha512":"394fe27cf673fbd58522e5c1cfd41a1db6493ef398fd0c66e43719ba637c4f135bf15a9995f12c4253d0349a19a583448af18ae0c5815b12f04f450272f5a6a6","ssdeep":"1536:r8+0PxYm+YYNXc6cuICGqxEn2kOLfOsQ4Q+Q+QgQBQxQJQKQcQQAQVQXQ6QqQlQa:z0PxJz2ouICr2OLGslr/PIS+xVQzA4T2","tlshash":"6f73fd44f3d17c560babeb6b2b1fa0e6e36b096d39e4480be041fd60655d327e5a42f0","first_seen":"2024-07-04T22:43:54Z","last_seen":"2026-04-11T08:16:56.341465Z","times_seen":564,"resource_available":true,"data":null}},"time_used":1868,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1219,"receive":649,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/avatar-1.jpg","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.590Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /en_files/avatar-1.jpg HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68c91231-5885\"\r\nexpires: Mon, 11 May 2026 04:29:19 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":22661,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x300, components 3","md5":"df4ec799e50e4b0820999974126de66b","sha1":"e6884723d8b81115e443e471552953f393a6f71e","sha256":"372396d2ef1552755bec3be34d363ad967c0e807d6332daeb658d1d1a0080060","sha512":"c220c2bdd045afe4b25be91a8a2d28350577dceb9e4273fe6e26e74c1047333aed8ebd07e8da83d3d6999842366ceaf3a0a8bc495b9aadd885251ceea1cfc26c","ssdeep":"384:Rwa7TZDGf1wum0wUuhMlBz2NqSSHyrE0kqO/fO3S97ikTV2Uhjlro2t/gR5QxjUo:Ca7BSs0xziNSHyTw/B95T1do2toCjUo","tlshash":"dfa2e04f476ec34916366e79e4586ac99d33c403c8309b8393a1f9e8a41c7f21ca4776","first_seen":"2024-07-04T22:43:56Z","last_seen":"2026-04-11T08:16:56.304948Z","times_seen":834,"resource_available":false,"data":null}},"time_used":862,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":862,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/static/icon.png","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.611Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /static/icon.png HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68c91231-770\"\r\nexpires: Mon, 11 May 2026 04:29:19 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1904,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"5edf47e32361035c09593963bb5c378e","sha1":"0f64b967396376465b3d77b9cbbcf3741aa08a0b","sha256":"e4c95cc789ee72e921dc86424c280189bb012877b9c0532a4c1412709e0718ae","sha512":"2cda3beb6cbbf4ebb5da3af2c81bbbc5335218b126dc4681ecf36c1430e493f812b883b08970d849e3904923d223c1c2fe64ea64c3929a43d4de7767662ca6be","ssdeep":"","tlshash":"4f41d782f950ae92e286d1d218d7944b6e1198c0eea0f07f74c7dca60c240fccc5dac7","first_seen":"2024-10-01T02:52:29Z","last_seen":"2026-04-11T08:16:56.340568Z","times_seen":170,"resource_available":false,"data":null}},"time_used":1227,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1227,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/webfonts/fa-light-300.ttf","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:22.365Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /webfonts/fa-light-300.ttf HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/en_files/all.min.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:22 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-04-12T20:58:48.197747Z","times_seen":485786,"resource_available":true,"data":null}},"time_used":255,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":255,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/English.svg","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.588Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /en_files/English.svg HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 504\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\netag: \"68c91231-1f8\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":504,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"6dcadf6916764560c2f1fec586e2c1de","sha1":"161ee20a0a75bb06d4f2ca9acdbb137d9a963cec","sha256":"c8be1e7208798a4ae692ee1e937065d498bb29e741943f6172b29118b8ed8066","sha512":"b925b9042182dc31f953ebfe2bbe666822bb9a56411fc1045d46b5b20e68effe25bd6ce65cad1bcee3ef9008768bdb8221f66573d8daa27c60a8d004acada0a1","ssdeep":"","tlshash":"a0f09ec8d32d7045c70793104cbcf8e3d4d962ce559400dab4d09ae4216e7a7d8d7d91","first_seen":"2023-12-20T14:16:02Z","last_seen":"2026-04-12T20:36:58.439411Z","times_seen":2433,"resource_available":false,"data":null}},"time_used":843,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":843,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/cn_files/Malay.svg","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.603Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /cn_files/Malay.svg HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68c91231-56a\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1386,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"50be507f7ddce55f869e4f40773aba5a","sha1":"da45f7e13e3a1fdf2169c4025f4db2ab267b9474","sha256":"da82a094cfdfc2c4936c8aff7e8bccae928e7ab1f813c11ae4933d1ef6dfb301","sha512":"1fe6480ef621d4ddd8540251ed5bb13efe964d92e63c7f19c4eb7af18f0d8b4f917a34bc2f4c55c6e9d455f71a72258e2878628caaa4dacae082956b2387327d","ssdeep":"","tlshash":"6321f7f496b837188f1587540fbc60e79a5474cf310963cef45c0578aa5ea8b8d929e2","first_seen":"2024-05-09T16:52:27Z","last_seen":"2026-04-11T08:16:56.34006Z","times_seen":655,"resource_available":false,"data":null}},"time_used":1132,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1132,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/js/index.js","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.612Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /js/index.js HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sun, 15 Mar 2026 07:48:45 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69b6645d-add\"\r\nexpires: Sat, 11 Apr 2026 16:29:19 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2781,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (1729)","md5":"ecfe8ef8e9ad0bc1b8ad1a1b83b8967a","sha1":"a954c5c7ed2b4a711e55cc1f975a032ac0a45407","sha256":"0b3b2421399b9af3d544d6a65115e451653e88deb37e3937ccc4a12e77811adc","sha512":"85108fc44c9f5372db39816561ffba4762315bbef2543af75c2c8593cdacc5b59bb6cf841f41249c48e867a2c170482d1f2eec384b5c0555885045ceb00320e0","ssdeep":"","tlshash":"6551e369076aaa198bc130e55f87a814413b1c2ea8ddd68cb91ecc40575413ff526ecb","first_seen":"2026-04-11T01:10:41.422142Z","last_seen":"2026-04-11T08:16:56.335547Z","times_seen":3,"resource_available":true,"data":null}},"time_used":1227,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1227,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tkiltokdownload.com/en_files/tweenMax.min.js.%E4%B8%8B%E8%BD%BD","fqdn":"tkiltokdownload.com","domain":"tkiltokdownload.com","tld":"com"},"ip":{"addr":"154.201.69.140","port":443,"asn":142032,"as":"High Family Technology Co., Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://tkiltokdownload.com/","date":"2026-04-11T04:29:18.620Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tkiltokdownload.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 19:49:54 GMT","end":"Mon, 22 Jun 2026 19:49:53 GMT"},"fingerprint":{"sha1":"4B:87:4F:B2:B8:BB:54:25:BD:D6:D9:8F:D5:8A:81:A9:1C:DB:AB:E2","sha256":"DA:8E:01:ED:4F:14:75:E4:2D:8B:02:72:18:90:4E:F5:47:C8:7E:3D:C4:B0:A4:8A:AA:1E:1C:A7:A1:BE:AE:13"}}},"request":{"raw":"GET /en_files/tweenMax.min.js.%E4%B8%8B%E8%BD%BD HTTP/1.1\r\nHost: tkiltokdownload.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tkiltokdownload.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 11 Apr 2026 04:29:19 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 116050\r\nlast-modified: Tue, 16 Sep 2025 07:30:57 GMT\r\netag: \"68c91231-1c552\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":116050,"size_decoded":0,"mime_type":"application/octet-stream","magic":"JavaScript source, ASCII text, with very long lines (32043)","md5":"6296e4cbdcf8f726fbbe2f56a246ef33","sha1":"0d477ae74145be06f9681ae626b3816694115bd0","sha256":"b2eb575eacb77fd139ffdf2cb86a12295189043fce93e000210dd88b41afc57a","sha512":"6155b91328bce0520e6edd291fb2339899cd997fe98304439a4860e0e9e427a38bf4bfbbd201620d04421afbd0805d76df7fbaefd547ed2ae498b701075186ce","ssdeep":"1536:8jm/F0VPBJ7jG/D+EH/GPJBpYSiZAr0GOlygZYzw6JcIfGxlLYiGsYVVOiP:8C/Wv51/vme0lybJXkYiGJ","tlshash":"e3b318c5312270128497269a557f0a47333bddbab4098d2cf589c5de3e1ce8921aff7a","first_seen":"2024-07-04T22:43:54Z","last_seen":"2026-04-11T08:16:56.302131Z","times_seen":566,"resource_available":true,"data":null}},"time_used":1861,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1221,"receive":640,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"tkiltokdownload.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}}]}