0/100

low Risk

www.tiktok.com

https://www.tiktok.com/@shewaz26?_r=1&_t=ZS-94y4KJJ70th

23.54.127.4 · Akamai Technologies

Location

Ashburn, United States

Domain Age

10838 days

HTTP

200 · 29.9s

SSL

Valid· RapidSSL TLS ECC CA G1, DigiCert Inc, US

Status

COMPLETED

Visual Evidence

Zoom

Title: "Shewazzz (@shewaz26) | TikTok"

Save

Registered-domain escalation

Submit tiktok.com as the primary IOC, enriched with evidence from hostile subdomains like www.tiktok.com.

KB/IOK Matches (0)—

No KB/IOK detections were recorded for this scan.

TikTok

Unknown

Social Media · 4/5/2026

Summary

The page presents TikTok branding and UI on the official domain www.tiktok.com, showing a user profile. However, the captured URL points to a standard TikTok user page, not a credential harvesting surface. The screenshot provided shows TikTok visuals (logo, left navigation, login button) and a typical profile layout. There is no explicit credential collection form observed in static HTML; many endpoints and scripts appear to be part of the legitimate TikTok web app. Overall, the data does not demonstrate impersonation of a brand or credential theft in the captured context; the presence on the official domain and page branding suggests first-party content, though some network activity contains numerous analytics/telemetry endpoints typical of a live site.

Evidence Summary

▸Observed 2 capture stage(s); canonical stage is settled_render.

▸POST targets observed during capture: https://libraweb.tiktokw.us/service/2/abtest_config/, https://mcs.tiktokw.us/v1/list, https://mcs.tiktokv.us/v1/user/webid.

▸Distinctive asset clues: slardar.web.pre.js, index.js, index.b5f3c689.css, styles.fe072e9c.css, 74d413aada727f979cc79cd01426494a~tplv-tiktokx-cropcenter:1080:1080.jpeg.

Capture

Stages: 2

Canonical: Settled Render

Changed: No

Credential Signals

Forms: 1

Password fields: 0

Late-stage login UI: No

Resource Signals

Resources: 257

Hosts: 11

Domains: 5

Suspicious Endpoints

hxxps://www[.]tiktok[.]com/api/post/item_list/?WebIdLastTime=1774392696&aid=1988&app_language=en&app_name=tiktok_web&browser_language=en-US&browser_name=Mozilla&browser_online=true&browser_platform=Linux%20x86_64&browser_version=5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%29%20AppleWebKit%2F537.36%20%28KHTML%2C%20like%20Gecko%29%20Chrome%2F131.0.0.0%20Safari%2F537.36&channel=tiktok_web&cookie_enabled=true&count=35&coverFormat=2&cursor=0&data_collection_enabled=false&device_id=7620958565251040781&device_platform=web_pc&focus_state=true&history_len=2&is_fullscreen=false&is_page_visible=true&language=en&odinId=7620958574948942862&os=windows&priority_region=&referer=&region=US&screen_height=720&screen_width=1280&secUid=MS4wLjABAAAA3_5SWz41ENys0Mc8_8atB5TepWgXzubbq1ND1b748K9U56tdWRa-UvaAMSjZUOsm&tz_name=America%2FNew_York&user_is_login=false&video_encoding=dash&webcast_language=en&msToken=&X-Bogus=DFSzKIVOSrbANjkTCqlvhEPPCOuf&X-Gnarly=MODoRl4o7n8TUseBhQy7Zm8qr6gX4QRmRqxcqgL4L/uddXDHvKstkYjlhTXDFd7S9dAXXiS9JtYW6HPB5EN/JlNyNdelRKQ1V8Xo2qyDaCdY1cQ00N2uO1tmmJ6IPb0Oqj0PJ5kJ260J059QN3dY251o5JNRX/bqNhSZapwvMiOnpT-YGej-crkCQK/bftYUz97f-46gBGz/7E72fygjoomd0BGgQVi9V8GPz3ZzZjAS3hzTLH5wQUVtT39vDFsDXR4iSYl6IzvLh2wa-LX9f93PPPkEunnnLNlqP66hW1GLmwfQmhLIC8xvhFJQxM0yq6f=

hxxps://www[.]tiktok[.]com/api/user/playlist/?WebIdLastTime=1774392696&aid=1988&app_language=en&app_name=tiktok_web&browser_language=en-US&browser_name=Mozilla&browser_online=true&browser_platform=Linux%20x86_64&browser_version=5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%29%20AppleWebKit%2F537.36%20%28KHTML%2C%20like%20Gecko%29%20Chrome%2F131.0.0.0%20Safari%2F537.36&channel=tiktok_web&cookie_enabled=true&count=20&cursor=0&data_collection_enabled=false&device_id=7620958565251040781&device_platform=web_pc&focus_state=true&history_len=2&is_fullscreen=false&is_page_visible=true&odinId=7620958574948942862&os=windows&priority_region=&referer=&region=US&screen_height=720&screen_width=1280&secUid=MS4wLjABAAAA3_5SWz41ENys0Mc8_8atB5TepWgXzubbq1ND1b748K9U56tdWRa-UvaAMSjZUOsm&tz_name=America%2FNew_York&user_is_login=false&webcast_language=en&msToken=&X-Bogus=DFSzKIVOH4hANjkTCqlvhEPPCOzq&X-Gnarly=M5SWVF1ZXxqcWBHyfKUBAzxyNyGp73rsKIeNhLuNPQBQmN1WfqSUuHADV7rbus1gkD-o9iBxwr8AxsTwpsPw1aNYElT3wlyGCAbSdYsd-b5RI5OoviQUxFTL9bQkzXDCaOmsg35byfgzDghLn86S8bAbziTMqwAIGYrAxxB5gRG6m87fje/-e6Bdl3L2X6CiOo2POQGep8E6c5Jae/b2WBYwL6DKKsqeKgmn7hds2glgxNyBFzdHgkIqtPK9SzPe/S3PsEsq-VraMbbWCc/8vyn4YbtsB6cNYgNKjZbN3LNwWcPGYYS5eYuy8Tn0o15T-hG=

hxxps://www[.]tiktok[.]com/api/story/item_list/?WebIdLastTime=1774392696&aid=1988&app_language=en&app_name=tiktok_web&authorId=7610157429767521287&browser_language=en-US&browser_name=Mozilla&browser_online=true&browser_platform=Linux%20x86_64&browser_version=5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%29%20AppleWebKit%2F537.36%20%28KHTML%2C%20like%20Gecko%29%20Chrome%2F131.0.0.0%20Safari%2F537.36&channel=tiktok_web&cookie_enabled=true&count=4&cursor=0&data_collection_enabled=false&device_id=7620958565251040781&device_platform=web_pc&focus_state=true&from_page=user&history_len=2&is_fullscreen=false&is_page_visible=true&loadBackward=false&odinId=7620958574948942862&os=windows&priority_region=&referer=&region=US&screen_height=720&screen_width=1280&tz_name=America%2FNew_York&user_is_login=false&webcast_language=en

hxxps://www[.]tiktok[.]com/tiktok/ppf/api/eligibility/v2?WebIdLastTime=1774392696&aid=1988&app_language=en&app_name=tiktok_web&browser_language=en-US&browser_name=Mozilla&browser_online=true&browser_platform=Linux%20x86_64&browser_version=5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%29%20AppleWebKit%2F537.36%20%28KHTML%2C%20like%20Gecko%29%20Chrome%2F131.0.0.0%20Safari%2F537.36&channel=tiktok_web&cookie_enabled=true&data_collection_enabled=false&device_id=7620958565251040781&device_platform=web_pc&focus_state=true&from_page=user&history_len=2&is_fullscreen=false&is_page_visible=true&odinId=7620958574948942862&os=windows&priority_region=&referer=&region=US&screen_height=720&screen_width=1280&tz_name=America%2FNew_York&user_is_login=false&webcast_language=en

hxxps://www[.]tiktok[.]com/search

Observed Signals (0)

Observed Indicators (1)

▸No direct login form captured in static HTML; credential fields not present in the excerpt

Risk AssessmentUsed in abuse reports

The scan shows a legitimate TikTok page loaded with typical telemetry endpoints and a user profile view on the official domain. Although there is extensive network activity and external scripts typical of a dynamic web app, there is no evidence of phishing impersonation, credential harvesting forms, or malicious content in the provided HTML snippet. The presence of a real brand on its official domain and absence of impersonation indicators suggests low phishing risk in this particular capture. Continue monitoring for any deviation (e.g., a domain mismatch or impersonating URL paths) in future requests.

Recommended Action

Monitor

Cross-Reference8

URL Intelligence