Homeβ€Ί Infrastructureβ€Ί pull-tsl-b6.douyincdn.com.hlsvcloud.ks-cdn.com
This site failed important safety checks β€” please read this before going any further.
Be careful β€” Suspicious

No β€” pull-tsl-b6.douyincdn.com.hlsvcloud.ks-cdn.com doesn't look safe

35/ 100 trust score
Industry: Infrastructure Checked Jul 10, 2026 Infrastructure average: 44 26 signals

In plain English

This isn't a website you'd browse β€” it's a technical backend server for delivering content. The biggest warning sign is the mismatched SSL certificate, meaning any connection attempt will fail with a security warning. Combined with hosting on a flagged network, it's a domain to treat with caution, even for technical use.

What you should do now

Don't panic. These steps limit the damage, and the sooner you take them the better.

1

Don't enter any details

No passwords, card numbers or personal information β€” even if the site looks professional.

2

Close the tab

Especially if you got here from an email, text message or social media ad.

3

Already paid? Call your bank

Contact your bank or card provider right away. They can often stop or reverse a recent payment.

4

Warn others

Report the site and share this check with anyone who sent you the link.

N Partner pick
Better safe than sorry. Stay covered everywhere: NordVPN's Threat Protection blocks known scam sites before they load.
Try NordVPN β†’
Cross-referenced 26 live signals from Google Safe Browsing, VirusTotal, WHOIS and more on Jul 10, 2026. How we score β†’

Where the score comes from

We look at six areas. Here's how pull-tsl-b6.douyincdn.com.hlsvcloud.ks-cdn.com did in each.
30
Security

The SSL certificate is invalid for this domain β€” it's issued for other services entirely. That means any attempt to connect will trigger a browser warning, which is a serious problem even for a CDN backend.

65
Identity

No WHOIS record exists for this subdomain, which is expected for infrastructure components. There's no way to identify who operates the parent service, but that's normal for a CDN edge node.

45
Reputation

The domain is not blacklisted, but it's hosted on a network flagged by Spamhaus as malicious (AS138915). This doesn't mean the node itself is malicious, but it's a risk indicator for the hosting environment.

75
Transparency

No contact page, about page, or social presence β€” but this is typical for a backend server not intended for direct public interaction. Users don't need to know who runs a CDN node.

80
Compliance

No legal pages like privacy policy or terms, which is fine for an infrastructure endpoint. There's no user interaction or data collection happening here.

25
Infrastructure

The SSL problem is the main issue, but the hosting network includes a provider on Spamhaus's DROP list. DNS configuration is basic with no DNSSEC, but that's not unusual for CDN infrastructure.

What we checked

The 26 signals behind this report.
Security & Transport
Certificate Issuer
Sectigo Limited
Google Web Risk
Clean
SSL Certificate
Invalid
Security Headers
0 of 6
Site Reachable
Unreachable
Identity & WHOIS
About Page
Not found
Branding
Missing
Business Disclosure
Not found
Contact Info
Unable to check
Legal Pages
Unable to check
Infrastructure & DNS
DNS Blacklists
Clean
DNS Resolution
5 IP(s)
DNSSEC
Not enabled
Email (MX Records)
None
Hosting Network (ASN)
On Spamhaus ASN-DROP
Page Load Time
1153ms
Reputation & Reach
Page Heading
403 Forbidden
Page Title
403 Forbidden
Sitemap
Not found
Social Media Presence
Unable to check
Structured Data
None found
Tranco Rank
Not ranked
Trustpilot
No Trustpilot profile
Web Archive History
No archive found
Website Status
Bot protection detected
robots.txt
Not found

Think this verdict is wrong?

Site owners can request a fresh scan. Scores update automatically as signals change.

When you see a domain like pull-tsl-b6.douyincdn.com.hlsvcloud.ks-cdn.com, it's important to realize this isn't a typical website. It's a CDN edge server β€” one of many machines that cache and serve content for larger services like Douyin (the Chinese TikTok). That context changes how you should read the trust signals.

The most critical issue is the SSL certificate. It's been issued for a different set of domains entirely, not for this one. So any browser visiting directly will throw a certificate error, and you won't be able to connect securely. That's a serious misconfiguration for any server handling traffic, even a backend one.

On top of that, the server IPs sit on a network that Spamhaus flags as wholly malicious (ASN 138915, owned by Kaopu Cloud Hong Kong). While this specific node may not be malicious, the association lowers trust in the infrastructure. There are no other red flags like blacklisting or malware detection, but the certificate failure alone is enough to label this as Suspicious. If you're investigating whether pull-tsl-b6.douyincdn.com.hlsvcloud.ks-cdn.com is a scam or fake, the answer is more nuanced: it's a real CDN node with real security problems. Not a scam, but not something you should trust without further verification.

More Infrastructure sites

How similar sites score. See all β†’