Report - www.temu.com/bgms_unsubscribe_email.html?_p_landing=1&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t

Report Overview

Submitted URL
www.temu.com/bgms_unsubscribe_email.html?_p_landing=1&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t
IP
20.157.119.2
ASN
#8069 MICROSOFT-CORP-MSN-AS-BLOCK
Submitted
2024-05-10 08:51:10
Access
public
Website Title
Temu | Change Region
Final URL
www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
102
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
static.kwcdn.com	unknown	2022-08-08	2022-09-05	2024-05-09	13 kB	2.3 MB	104.18.11.132
dl.kwcdn.com	unknown	2022-08-08	2022-09-26	2024-05-09	495 B	4.1 kB	104.18.11.132
www.temu.com	unknown	2003-04-29	2021-09-28	2024-05-09	32 kB	712 kB	20.47.117.32
eu.pftk.temu.com	unknown	2003-04-29	2023-04-25	2024-05-09	7.5 kB	8.8 kB	20.93.45.131
aimg.kwcdn.com	unknown	2022-08-08	2022-09-05	2024-05-09	13 kB	37 kB	104.18.11.132
eu.thtk.temu.com	unknown	2003-04-29	2023-04-25	2024-05-09	2.0 kB	17 kB	20.157.27.150

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2024-05-10 08:50:43	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-05-10 08:50:43	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-05-10 08:50:43	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-05-10 08:50:43	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-05-10 08:50:44	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-05-10 08:50:44	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-05-10 08:50:44	low	Client IP	216.93.246.18	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:44	low	Client IP	216.93.246.18	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:44	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-05-10 08:50:44	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-05-10 08:50:44	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-05-10 08:50:44	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-05-10 08:50:44	low	Client IP	62.71.2.168	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:44	low	Client IP	62.71.2.168	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:44	low	216.93.246.18	Client IP	ET INFO Session Traversal Utilities for NAT (STUN Binding Response)
2024-05-10 08:50:44	low	216.93.246.18	Client IP	ET INFO Session Traversal Utilities for NAT (STUN Binding Response)
2024-05-10 08:50:44	low	Client IP	77.72.169.212	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:44	low	Client IP	77.72.169.212	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:44	low	Client IP	172.67.181.32	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:44	low	Client IP	172.67.181.32	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:44	low	77.72.169.212	Client IP	ET INFO Session Traversal Utilities for NAT (STUN Binding Response)
2024-05-10 08:50:44	low	77.72.169.212	Client IP	ET INFO Session Traversal Utilities for NAT (STUN Binding Response)
2024-05-10 08:50:44	low	Client IP	212.227.67.34	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:44	low	Client IP	212.227.67.34	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:44	low	212.227.67.34	Client IP	ET INFO Session Traversal Utilities for NAT (STUN Binding Response)
2024-05-10 08:50:44	low	212.227.67.34	Client IP	ET INFO Session Traversal Utilities for NAT (STUN Binding Response)
2024-05-10 08:50:44	low	212.227.67.34	Client IP	ET INFO Session Traversal Utilities for NAT (STUN Binding Response)
2024-05-10 08:50:44	low	212.227.67.34	Client IP	ET INFO Session Traversal Utilities for NAT (STUN Binding Response)
2024-05-10 08:50:44	low	Client IP	62.71.2.168	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:44	low	Client IP	62.71.2.168	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:44	low	Client IP	77.72.169.211	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:44	low	Client IP	77.72.169.211	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:44	low	77.72.169.211	Client IP	ET INFO Session Traversal Utilities for NAT (STUN Binding Response)
2024-05-10 08:50:44	low	77.72.169.211	Client IP	ET INFO Session Traversal Utilities for NAT (STUN Binding Response)
2024-05-10 08:50:44	low	Client IP	172.67.181.32	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:44	low	Client IP	172.67.181.32	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:44	low	Client IP	75.2.81.221	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:44	low	Client IP	75.2.81.221	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:44	low	Client IP	75.2.81.221	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:44	low	Client IP	75.2.81.221	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:45	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-05-10 08:50:45	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-05-10 08:50:46	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-05-10 08:50:46	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-05-10 08:50:46	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-05-10 08:50:46	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-05-10 08:50:46	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-05-10 08:50:46	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-05-10 08:50:46	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-05-10 08:50:46	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-05-10 08:50:46	low	Client IP	216.93.246.18	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:46	low	Client IP	216.93.246.18	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:46	low	Client IP	62.71.2.168	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:46	low	Client IP	62.71.2.168	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:46	low	Client IP	212.227.67.34	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:46	low	Client IP	212.227.67.34	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:46	low	212.227.67.34	Client IP	ET INFO Session Traversal Utilities for NAT (STUN Binding Response)
2024-05-10 08:50:46	low	212.227.67.34	Client IP	ET INFO Session Traversal Utilities for NAT (STUN Binding Response)
2024-05-10 08:50:46	low	Client IP	75.2.81.221	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:46	low	Client IP	75.2.81.221	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:46	low	216.93.246.18	Client IP	ET INFO Session Traversal Utilities for NAT (STUN Binding Response)
2024-05-10 08:50:46	low	216.93.246.18	Client IP	ET INFO Session Traversal Utilities for NAT (STUN Binding Response)
2024-05-10 08:50:46	low	Client IP	77.72.169.211	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:46	low	Client IP	77.72.169.211	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:46	low	Client IP	77.72.169.212	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:46	low	Client IP	77.72.169.212	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:46	low	Client IP	62.71.2.168	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:46	low	Client IP	62.71.2.168	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:46	low	77.72.169.211	Client IP	ET INFO Session Traversal Utilities for NAT (STUN Binding Response)
2024-05-10 08:50:46	low	77.72.169.211	Client IP	ET INFO Session Traversal Utilities for NAT (STUN Binding Response)
2024-05-10 08:50:46	low	Client IP	172.67.181.32	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:46	low	Client IP	172.67.181.32	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:46	low	77.72.169.212	Client IP	ET INFO Session Traversal Utilities for NAT (STUN Binding Response)
2024-05-10 08:50:46	low	77.72.169.212	Client IP	ET INFO Session Traversal Utilities for NAT (STUN Binding Response)
2024-05-10 08:50:46	low	Client IP	75.2.81.221	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:46	low	Client IP	75.2.81.221	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:46	low	Client IP	172.67.181.32	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:46	low	Client IP	172.67.181.32	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:46	low	Client IP	62.71.2.168	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:46	low	Client IP	62.71.2.168	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:46	low	Client IP	75.2.81.221	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:46	low	Client IP	75.2.81.221	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:46	low	Client IP	172.67.181.32	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:46	low	Client IP	172.67.181.32	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:46	low	Client IP	62.71.2.168	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:46	low	Client IP	62.71.2.168	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:46	low	Client IP	75.2.81.221	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:46	low	Client IP	75.2.81.221	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:46	low	Client IP	172.67.181.32	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:46	low	Client IP	172.67.181.32	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:47	low	Client IP	62.71.2.168	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:47	low	Client IP	62.71.2.168	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:47	low	Client IP	75.2.81.221	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:47	low	Client IP	75.2.81.221	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:47	low	Client IP	172.67.181.32	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:47	low	Client IP	172.67.181.32	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:49	low	Client IP	62.71.2.168	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:49	low	Client IP	62.71.2.168	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:49	low	Client IP	75.2.81.221	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:49	low	Client IP	75.2.81.221	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:49	low	Client IP	172.67.181.32	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-05-10 08:50:49	low	Client IP	172.67.181.32	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (37)

	URL	Size	First Seen	Last Seen
	www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e	103 B	2024-05-10	2024-05-10
Pretty URL www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e IP 20.47.117.32 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-10 10:51:12 Last Seen2024-05-10 10:51:12 Times Seen1 Hash a5dcbb843963b3c3d4f922d8d57504ad 0075ae905677a773f5be9cf87286e546d7a63816 28a0e5fadbb8a922cd2d6acf0f46a07cb1eccc55412726d6660fb9a7aaa2e3df Loading...

	static.kwcdn.com/m-assets/assets/js/7416_7bcdc5f6044a8b87d104.js	72 kB	2024-05-10	2024-05-10
Pretty URL static.kwcdn.com/m-assets/assets/js/7416_7bcdc5f6044a8b87d104.js IP 104.18.11.132 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 04:52:13 Last Seen2024-05-10 10:51:12 Times Seen3 Hash da557d7ce754633f17e69963365c3275 146a1dfd23e9aef59e026554ad9ba170651a258b af4ebcf77468003b009d25c9f4d7aa5830d6da8cc4c903d40d68d365f4d3b3f7 Loading...

	www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e	8.0 kB	2024-04-18	2024-05-11
Pretty URL www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e IP 20.47.117.32 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-18 15:26:18 Last Seen2024-05-11 13:39:08 Times Seen31 Hash 283ddd2a09ff45ea9e90c1bf431eee06 a6fec3062f146fbc561b0356bad36f4e68b3c150 bf17922f3b39541c0e8dd47044b4e6d6f6add654f439074a63616dc8e4709076 Loading...

	static.kwcdn.com/m-assets/assets/js/biz_layout_activity_coupon_popup_bd52b6730f0b89227d03.js	40 kB	2024-04-20	2024-05-10
Pretty URL static.kwcdn.com/m-assets/assets/js/biz_layout_activity_coupon_popup_bd52b6730f0b89227d03.js IP 104.18.11.132 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-20 21:57:06 Last Seen2024-05-10 10:51:13 Times Seen15 Hash 3f975a34f58e7297d112878984b6b521 b991480ec283ad77ce1c7ed744aafa5dcb962d25 74a5ec1bbf6ca667385e75b079d7901f97654c877914134b5203a43cb9e466c9 Loading...

	www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e	134 B	2023-11-13	2024-05-20
Pretty URL www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e IP 20.47.117.32 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-13 04:08:21 Last Seen2024-05-20 16:43:39 Times Seen1164 Hash 95775870f9d5618233845d3db9682754 56c06f654ba1ac76d1e40d3fe68879100d2a9593 f5d6c3cc7b88390db6a52856ab63a0874ef5eaeb609d583f6bada95272ff34f5 Loading...

	www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e	11 kB	2024-03-21	2024-05-20
Pretty URL www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e IP 20.47.117.32 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2024-03-21 15:24:39 Last Seen2024-05-20 16:43:39 Times Seen159 Hash 0565d150b49cd5f297dfdcfdc3fc2d39 32068d7e124725a0516f48a053560690b9313ebb a7ea42b35d2d26c0f390697aa31dd025ae413523de1cc370b7e97eb5e009e7a5 Loading...

	static.kwcdn.com/m-assets/assets/js/biz_layout_sc_float_5e1a2ea3b6b7cc11a700.js	27 kB	2024-05-10	2024-05-18
Pretty URL static.kwcdn.com/m-assets/assets/js/biz_layout_sc_float_5e1a2ea3b6b7cc11a700.js IP 104.18.11.132 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 04:52:14 Last Seen2024-05-18 20:02:12 Times Seen6 Hash c10fcb9f1ae8b5fcb1fd0b079534d7fe 1e84e0bdbee7a99afd2131163f504a2e06e06cd3 a74bb6475f4b3363f0480ac29f7f82f9faf0a196832a410abd47bd27b5b2ab8b Loading...

	static.kwcdn.com/m-assets/assets/js/7666_fbcdc8f1d92b0e0e9ac7.js	62 kB	2024-04-18	2024-05-18
Pretty URL static.kwcdn.com/m-assets/assets/js/7666_fbcdc8f1d92b0e0e9ac7.js IP 104.18.11.132 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-18 15:26:20 Last Seen2024-05-18 20:02:12 Times Seen26 Hash 5452de4563f0ced1cda37db4aad3429d 722c8ccd5dc3cbcbb1223c30a2da4fca50067c11 c8692f31d652d7215b5331c98d147d34163280b78c367aeae13ce21c24e1e5aa Loading...

	www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e	1.6 kB	2023-03-12	2024-05-20
Pretty URL www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e IP 20.47.117.32 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 10:46:37 Last Seen2024-05-20 16:43:39 Times Seen4396 Hash 73919c7408b9fee8ac0922aa760aaabe c383275441da7e76b8f9d410c1f9526cae3eb175 985329d357eb52535d98073a8817e5ef0c64512812710f5e6fcc666f498f74f0 Loading...

	www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e	43 B	2023-03-12	2024-05-20
Pretty URL www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e IP 20.47.117.32 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 10:46:37 Last Seen2024-05-20 16:43:39 Times Seen1624 Hash c85ac75662b50c75b46756b75a6299dd 16732c7324175d7e288152d0d9d4da99cd37baae 72e7cf2e01714afe97d91061d53e3c35288b83f6fe3c5c33bdbd62d9ddbaf2e8 Loading...

	www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e	9.8 kB	2024-05-10	2024-05-10
Pretty URL www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e IP 20.47.117.32 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-10 04:52:13 Last Seen2024-05-10 10:51:12 Times Seen2 Hash e864884db402f96f5570a127f06aeff9 3decdcfd983d24ce947df22379dde3cd8b726f0e 0f8ce84780d602f7f8b7c352c5d13f8729d6da1a343a75f4e3fbae992ebbab97 Loading...

	static.kwcdn.com/m-assets/assets/js/biz_layout_toolbar_0553ee4c5a9e0caf8439.js	48 kB	2024-04-20	2024-05-18
Pretty URL static.kwcdn.com/m-assets/assets/js/biz_layout_toolbar_0553ee4c5a9e0caf8439.js IP 104.18.11.132 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-20 21:57:06 Last Seen2024-05-18 20:02:12 Times Seen16 Hash af7be3008c3f148eacefe015aa2e91cd c60e2b08d21830b22f2b23e73d6cd8d2b1891a89 617dc0a2bb1bcef4929030f2debc5d4cfa2cb199f7ab31d357eca3353d342f46 Loading...

	static.kwcdn.com/m-assets/assets/js/5241_46b6649180d698f97b87.js	46 kB	2024-05-10	2024-05-10
Pretty URL static.kwcdn.com/m-assets/assets/js/5241_46b6649180d698f97b87.js IP 104.18.11.132 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 04:52:13 Last Seen2024-05-10 10:51:13 Times Seen4 Hash 930d9a985ca070b261fe0dfeaf428384 3014cbff6af6b3292453e81a13dc62b46c64ea5b 5a4c7ec68a62c4b883c3e65f945459d92b18511c8cf3ea5d060e0f311bf2b1de Loading...

	static.kwcdn.com/m-assets/assets/js/vendors_9325134bc6576368ada1.js	767 kB	2024-04-20	2024-05-18
Pretty URL static.kwcdn.com/m-assets/assets/js/vendors_9325134bc6576368ada1.js IP 104.18.11.132 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-20 21:57:06 Last Seen2024-05-18 20:02:11 Times Seen12 Hash dbbe10601b9c56c9a97dbfdd8c66f893 aaeb616f52af254942ca0da7b4a5535d76b67893 66f899f8be9d63e50ee28afc7c91331b8fae8d439b59f513e6131db609f0ceac Loading...

	www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e	18 kB	2024-05-10	2024-05-10
Pretty URL www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e IP 20.47.117.32 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-10 10:51:12 Last Seen2024-05-10 10:51:12 Times Seen1 Hash 785083dd93eab164552e258a2d33534e c957c03bb35f9362284c1fa6e181ed3eac12cdf4 340b502c6bf51a1d3ef685caf8b1b7c999d4fbbb87309508c6412a86899d14e2 Loading...

	www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e	106 B	2023-10-10	2024-05-20
Pretty URL www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e IP 20.47.117.32 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-10 17:36:50 Last Seen2024-05-20 16:43:39 Times Seen819 Hash fb10f00af495c6a3a99e265a4306fb43 8382c10f4fb7b2e577d2c7df0ba367aacb9b8da9 cad23804575e534c407638ffd9a9b8c8221974d5efe012b20ace4722d5990ef3 Loading...

	www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e	1.5 kB	2024-05-10	2024-05-10
Pretty URL www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e IP 20.47.117.32 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-10 10:51:12 Last Seen2024-05-10 10:51:12 Times Seen1 Hash a93ce41835b67e142c21dfc5861428ad 2780ec1839195adfefe8a70810db1caf3fac29c3 4d5181a127354120297c1c6b193311ca21cf7db51c312016abbea0ec7523cb82 Loading...

	www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e	6.1 kB	2024-01-04	2024-05-20
Pretty URL www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e IP 20.47.117.32 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2024-01-04 08:08:02 Last Seen2024-05-20 05:01:18 Times Seen239 Hash a80d0fc2deee94aa6c35c4aabb777c4d 7d1f513a1a649b21b27399b513acd2f0ef7c859d 62858ddc67a5511753c86754ae4cc0bb2c1eef8a5241fbd0a70976e44739205b Loading...

	www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e	164 B	2023-03-12	2024-05-20
Pretty URL www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e IP 20.47.117.32 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 10:46:37 Last Seen2024-05-20 16:43:39 Times Seen4396 Hash b1a2e8c7e2ab9488bc47ff63785cfe59 4d743d470c2e8eb4c34e35151af4f24c4c5c1c28 bea22307a65a6b4e4620453372741280bbae75c4faed1adb4acec5910541706b Loading...

	static.kwcdn.com/m-assets/assets/js/biz_vendors_a048f210d77b7d2069c8.js	1.3 MB	2024-05-10	2024-05-10
Pretty URL static.kwcdn.com/m-assets/assets/js/biz_vendors_a048f210d77b7d2069c8.js IP 104.18.11.132 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 04:52:13 Last Seen2024-05-10 10:51:12 Times Seen2 Hash 6e405b7f61a1eb4fd90243f39992292a ad6ac6de4f2cd55f268680669ac40952d8558e31 7edfdb3766dbf947fe8a314faea5714a25b3363e0a5c5a33d4bcbffd24adf4f0 Loading...

	www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e	130 kB	2024-05-10	2024-05-10
Pretty URL www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e IP 20.47.117.32 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-10 10:51:12 Last Seen2024-05-10 10:51:12 Times Seen1 Hash 854c039b861f86c5ed29f3ed08cbc956 d336dedcdf9a6834a59a18999081649087a5c3df 9412b34ed281c6f629a32a7b1ee7420a2dbcba46910d9a2cd50195b338547b37 Loading...

	static.kwcdn.com/m-assets/assets/js/change-region_8a2dd6248b43e2def43b.js	30 kB	2024-05-10	2024-05-10
Pretty URL static.kwcdn.com/m-assets/assets/js/change-region_8a2dd6248b43e2def43b.js IP 104.18.11.132 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 10:51:12 Last Seen2024-05-10 10:51:13 Times Seen2 Hash 0c89d5ba2157686c6eda3732c8e73726 5eaafc3b2e2aae76f48ff33d8d2a00a70df01e6a 7186265ef9baced4b4f0ae2ba8f37b9a589b2da5a2c04d523aa27db13f6f7277 Loading...

	static.kwcdn.com/m-assets/assets/js/9674_294f78b3dffa8109b595.js	36 kB	2024-04-18	2024-05-15
Pretty URL static.kwcdn.com/m-assets/assets/js/9674_294f78b3dffa8109b595.js IP 104.18.11.132 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-18 15:26:22 Last Seen2024-05-15 08:51:30 Times Seen10 Hash 88b3af4dd87d9760566043b56b370c25 8e41f4d26a1a3d9b66ad0e5b712678285fea3633 3143833f212ddcf9bf611bf6d1003110955726a5dbb148cc65b1c03577926efe Loading...

	static.kwcdn.com/m-assets/assets/js/7845_93b55e37ee03039e3f51.js	30 kB	2024-05-10	2024-05-18
Pretty URL static.kwcdn.com/m-assets/assets/js/7845_93b55e37ee03039e3f51.js IP 104.18.11.132 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 04:52:13 Last Seen2024-05-18 20:02:12 Times Seen11 Hash 065e06bee5064826d2696bc85cca0de6 ae3871697a00e453e9c63a6f0e6ac1e2dc91bcae acd6d83a1d794e223651bc0a310734b6b297d9fb93886cc9fdec981a6810ae38 Loading...

	www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e	28 B	2023-03-13	2024-05-20
Pretty URL www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e IP 20.47.117.32 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 08:52:19 Last Seen2024-05-20 16:43:39 Times Seen4393 Hash 089eaa2bbeb4564f697c227b356348ff 8533d2f08e01eb7596c8f2950ed101ee2c694887 35d5a70170732265dd5d51bb64f082616e28be1f500ecb28be3513dca25f86b2 Loading...

	www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e	1.2 kB	2024-01-04	2024-05-20
Pretty URL www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e IP 20.47.117.32 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2024-01-04 08:08:02 Last Seen2024-05-20 16:43:39 Times Seen369 Hash bb46ef299a9900f646eb71ebf9fb29b1 df6b53dc3008ab3f70b108920f0bd89ac4c08c50 1ec0120c46fa323f3a3675e0ef9671571c1ee0833875ca1b4b9e277036ab410d Loading...

	static.kwcdn.com/m-assets/assets/js/rca_b16aea3cc8197291bb42.js	85 kB	2024-04-18	2024-05-17
Pretty URL static.kwcdn.com/m-assets/assets/js/rca_b16aea3cc8197291bb42.js IP 104.18.11.132 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-18 15:26:19 Last Seen2024-05-17 05:43:00 Times Seen9 Hash 9de9ecf2b9f9c5f53521569da1cc799d a4f236abc38d1ca9ad1abb562297e543c25ff894 846a6ba6f5aecc148ec97e1a8b470030a88d253fda0fbc27d3bf012d534e8e7d Loading...

	www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e	1.6 kB	2023-10-24	2024-05-20
Pretty URL www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e IP 20.47.117.32 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-24 18:06:19 Last Seen2024-05-20 16:43:39 Times Seen1051 Hash bd630ee823d75d12bc190883e93b1e2e e81497626dfe4cc020c76c087ac1bbc3068d9835 09b7845c826cb12a2096ba3f3d061b0eba0b0bee7b415e1b8406320e124f842c Loading...

	static.kwcdn.com/m-assets/assets/js/react_webpack_runtime_579f16c87eb7a1a0639c.js	14 kB	2024-05-10	2024-05-10
Pretty URL static.kwcdn.com/m-assets/assets/js/react_webpack_runtime_579f16c87eb7a1a0639c.js IP 104.18.11.132 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 04:52:13 Last Seen2024-05-10 10:51:13 Times Seen4 Hash 4734efe8b7d7695fd6f815e78afe641e eb4ee79241b5eb495b8b1e48871bf1ef00cbc137 c3e04b246ff43cb500de73e1ea0e76d5093c8f1c420e31cca91bebe32ac0f232 Loading...

	www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e	828 B	2023-07-25	2024-05-20
Pretty URL www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e IP 20.47.117.32 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-25 05:56:11 Last Seen2024-05-20 16:43:39 Times Seen773 Hash 0eae2ab6f13d29e4ebeb40bb816cbbb3 2bec0be6e7b7e4f8920c2b86d78567b80a6dc352 59cdcd644fdba02b0f8ddf2228ddd16e471463696e4250b26004dbcd8f6b8611 Loading...

	www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e	450 B	2023-03-12	2024-05-20
Pretty URL www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e IP 20.47.117.32 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 10:46:37 Last Seen2024-05-20 16:43:39 Times Seen4050 Hash 1e9e2ded2636cdae712b85f48ea2b2fb ba375470397098fdca39cf07b8910674417312dc 6385bf5b852614bef40e1e8d0e6e5f3964549d7d4025a66d5efc63fe884cce94 Loading...

	www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e	36 B	2023-08-29	2024-05-20
Pretty URL www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e IP 20.47.117.32 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-29 20:06:12 Last Seen2024-05-20 16:43:39 Times Seen2156 Hash f55de8f23ddfdc8c4b76bc74a32ff57e afdb707a84ff173048f21b72e6efe7ab9ef86e16 2aa16913a260d09e1a3421410616cca55e9e131507c60c9b7cb38c1b990cfd51 Loading...

	www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e	17 B	2023-10-23	2024-05-20
Pretty URL www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e IP 20.47.117.32 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-23 12:16:18 Last Seen2024-05-20 16:43:39 Times Seen524 Hash 931c4b124dbf8e4a974dae051718c882 34d93d658d3e66e815070d47dc95317059a7c671 6cd46856c3f143a7370e15bdfc5aac23f4a27459cfffa897c4139a40f8eabc42 Loading...

	www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e	30 kB	2024-05-10	2024-05-10
Pretty URL www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e IP 20.47.117.32 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-10 10:51:12 Last Seen2024-05-10 10:51:12 Times Seen1 Hash 79c2605d3f16265b12467614342184b2 9f37d39034d7ebcdd20f9f8d134f8208aa832b77 b3e8ea77415d30c9b86be50b9eef1e1915fcf5b043fb833cc8f3452f0e22febc Loading...

	www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e	1.4 kB	2024-05-10	2024-05-10
Pretty URL www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e IP 20.47.117.32 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-10 10:51:12 Last Seen2024-05-10 10:51:12 Times Seen1 Hash 52c2f3580da3c58fb623afce8a49791d e08a9f68f8eaa85eb40b0461361ee43f147f5dd0 367908db668d1ec47eda1e61dcf3f756d69954c8d1c9b370d9bf88938d9056a1 Loading...

	www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e	7 B	2023-03-07	2024-05-20
Pretty URL www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e IP 20.47.117.32 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:22:19 Last Seen2024-05-20 16:43:39 Times Seen1535 Hash 22050af26ee69f8533fcbf8e3a0a28da 5fb2fe279aa6e27e29e8fd26e169df424349568f 19f72770a2aab11457c5d100e0caf63e4473a3a597959e1d97b8318377a81157 Loading...

		Size	First Seen	Last Seen
	#1 Eval - f0ffd3b7c2574ac324603ed00488c850	7 B	2023-03-07	2024-05-20
Pretty Observations First Seen2023-03-07 01:03:35 Last Seen2024-05-20 22:20:17 Times Seen21071 Hash f0ffd3b7c2574ac324603ed00488c850 623e76c36aa2a886542011e28412cc761d7ceb01 c4d0cf241a1bfa1c8bf4cf24e8f89d2ab786a284a39adb2fc8df7ea14e73c154 Loading...

HTTP Transactions (97)

	URL	IP	Response	Size
	www.temu.com/api/phantom/dm/wl/cg	20.47.117.32	200 OK	370 B
URL GET HTTP/2 www.temu.com/api/phantom/dm/wl/cg IP 20.47.117.32:443 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.temu.com FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35 ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT File type gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT) Size 370 B (370 bytes) Hash 1089fa32ce3b8aa80ac1965b86255a9b b27c16ad0970e2a960c9b21fa1c19b136dbfbdcb 2126701fe16640beaf834cf6f9b0c608c92e98188e42782ff3a9a896f704f520 HTTP Headers GET /api/phantom/dm/wl/cg HTTP/1.1 Host: www.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json, text/plain, /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/bgms_unsubscribe_email.html?_p_landing=1&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t DNT: 1 Connection: keep-alive Cookie: region=151; language=en; currency=NOK; api_uid=CnGMbmY93+GvewBSFn1EAg==; _nano_fp=XpmanpXqXp9YXqTyXC_L9uRjnNpOTbQiLLAb8x7v; timezone=UTC Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 10 May 2024 08:50:43 GMT content-type: application/json;charset=UTF-8 content-encoding: gzip vary: Accept-Encoding x-yak-request-id: 1715331043443-885ec47e1c092d4afb647155bd1f5cd3 strict-transport-security: max-age=31536000 content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/110000007/sec-gif yak-timeinfo: 1715331043443\|2 cip: 91.90.42.154 X-Firefox-Spdy: h2`

	eu.pftk.temu.com/pmm/api/pmm/defined	20.93.45.131	200 OK	2.2 kB
URL POST HTTP/2 eu.pftk.temu.com/pmm/api/pmm/defined IP 20.93.45.131:443 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.pftk.temu.com FingerprintF4:BE:81:8F:72:EA:45:6C:90:FB:ED:AA:86:7C:F4:6D:10:06:EA:D8 ValidityThu, 13 Jul 2023 13:25:25 GMT - Tue, 13 Aug 2024 13:25:25 GMT File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 Size 2.2 kB (2213 bytes) Hash 209f76f058844c30c8ccf1b18a7d9575 ebed3db66129ce510d325efbbd113a985981e947 570e048998f9e9b378be82caaf9b23743cc500f93af29f821ac6ed7b48286bc4 HTTP Headers POST /pmm/api/pmm/defined HTTP/1.1 Host: eu.pftk.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ Content-Type: text/plain;charset=UTF-8 Content-Length: 561 Origin: https://www.temu.com DNT: 1 Connection: keep-alive Cookie: api_uid=CnGMbmY93+GvewBSFn1EAg== Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Fri, 10 May 2024 08:50:42 GMT content-type: application/octet-stream expires: Fri, 10 May 2024 08:50:41 GMT cache-control: no-cache access-control-allow-origin: https://www.temu.com access-control-allow-credentials: true access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content X-Firefox-Spdy: h2`

	aimg.kwcdn.com/upload_aimg/promo/19f0e1b1-ba63-4428-a900-a7ca9df13604.png.slim.png?imageView2/2/w/100/q/70	104.18.11.132	200 OK	740 B
URL GET HTTP/3 aimg.kwcdn.com/upload_aimg/promo/19f0e1b1-ba63-4428-a900-a7ca9df13604.png.slim.png?imageView2/2/w/100/q/70 IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type PNG image data, 64 x 64, 8-bit colormap, non-interlaced Size 740 B (740 bytes) Hash ab8e605357cf73a62ff22eaa2734eacc ac4f1bf658da935ea17f95bdcb76e2058d907cd6 28eb36683fa857077b438017e0e806ddcbd807c72bd8b005cf5d7dbce8cccfdc HTTP Headers `GET /upload_aimg/promo/19f0e1b1-ba63-4428-a900-a7ca9df13604.png.slim.png?imageView2/2/w/100/q/70 HTTP/1.1 Host: aimg.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Fri, 10 May 2024 08:50:44 GMT content-type: image/png content-length: 740 cache-control: max-age=31536000 last-modified: Fri, 26 Jan 2024 07:21:17 GMT request-id: ac9910ab126213e240e925b3bf8a0af5 x-content-type-options: nosniff x-fop-destination-type: fop x-imagine-success: true cf-cache-status: HIT age: 833039 accept-ranges: bytes vary: Accept-Encoding access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef19c7db509-OSL alt-svc: h3=":443"; ma=86400

	aimg.kwcdn.com/upload_aimg/promo/c7504ded-2c41-4fab-9802-1140887c717e.png.slim.png?imageView2/2/w/100/q/70	104.18.11.132	200 OK	398 B
URL GET HTTP/3 aimg.kwcdn.com/upload_aimg/promo/c7504ded-2c41-4fab-9802-1140887c717e.png.slim.png?imageView2/2/w/100/q/70 IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type PNG image data, 64 x 64, 8-bit colormap, non-interlaced Size 398 B (398 bytes) Hash 2125e18a42226048c63c36bfdbcadef1 4d336db604126ae714e7c131418b71a9d1a8ca15 91dcfd97e2171cc00480466186ebba51b9d6944e362b6295b1638b2b0224b126 HTTP Headers `GET /upload_aimg/promo/c7504ded-2c41-4fab-9802-1140887c717e.png.slim.png?imageView2/2/w/100/q/70 HTTP/1.1 Host: aimg.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Fri, 10 May 2024 08:50:44 GMT content-type: image/png content-length: 398 cache-control: max-age=31536000 last-modified: Tue, 06 Feb 2024 15:12:34 GMT request-id: 2ef8efb75ba227cb0166a4f46a04c6b9 x-avi-image-cache: hit x-content-type-options: nosniff x-fop-destination-type: fop x-imagine-success: true cf-cache-status: HIT age: 837189 accept-ranges: bytes vary: Accept-Encoding access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef19c79b509-OSL alt-svc: h3=":443"; ma=86400

	eu.thtk.temu.com/c/th.gif	20.157.27.150	200 OK	466 B
URL POST HTTP/2 eu.thtk.temu.com/c/th.gif IP 20.157.27.150:443 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/bgms_unsubscribe_email.html?_p_landing=1&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t Certificate IssuerGoDaddy.com, Inc. Subject.thtk.temu.com Fingerprint6C:16:D5:C1:7B:12:5A:3B:10:7F:8E:44:DE:D9:C2:4B:A5:CD:FA:D6 ValidityThu, 13 Jul 2023 13:25:23 GMT - Tue, 13 Aug 2024 13:25:23 GMT File type PNG image data, 64 x 64, 8-bit colormap, non-interlaced Size 466 B (466 bytes) Hash a57305bc707801e2ab6c09cf8f83e8c5 e4f65c265f2e091e37425f301c2fca6d07658b52 a8cef8219aed884b97ffd86c628d7a52d3d7ca1df9e27dabba313462d4c3160a HTTP Headers `POST /c/th.gif HTTP/1.1 Host: eu.thtk.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ Content-Type: text/plain;charset=UTF-8 Content-Length: 867 Origin: https://www.temu.com DNT: 1 Connection: keep-alive Cookie: api_uid=CnGMbmY93+GvewBSFn1EAg== Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site` `HTTP/2 200 OK date: Fri, 10 May 2024 08:50:43 GMT content-type: image/gif expires: Fri, 10 May 2024 08:50:42 GMT cache-control: no-cache access-control-allow-origin: https://www.temu.com access-control-allow-credentials: true access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content X-Firefox-Spdy: h2`

	aimg.kwcdn.com/upload_aimg/promo/c06da4e0-a5ea-4c0f-b503-87b93627be10.png.slim.png?imageView2/2/w/100/q/70	104.18.11.132	200 OK	337 B
URL GET HTTP/3 aimg.kwcdn.com/upload_aimg/promo/c06da4e0-a5ea-4c0f-b503-87b93627be10.png.slim.png?imageView2/2/w/100/q/70 IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type PNG image data, 64 x 64, 8-bit colormap, non-interlaced Size 337 B (337 bytes) Hash 510eae0410911b4a1a3c15ebbc9ea89e 8a95bac13285953c4eb8d1ab596caa4acc22837a 0969c6f800186606bed640cfb81895881f6b3831ca9a93a8566576fd3df89b16 HTTP Headers `GET /upload_aimg/promo/c06da4e0-a5ea-4c0f-b503-87b93627be10.png.slim.png?imageView2/2/w/100/q/70 HTTP/1.1 Host: aimg.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Fri, 10 May 2024 08:50:44 GMT content-type: image/png content-length: 337 cache-control: max-age=31536000 last-modified: Wed, 24 Jan 2024 09:24:26 GMT request-id: fa25c88645ef51cf145686f4cdf6a192 x-avi-image-cache: hit x-content-type-options: nosniff x-fop-destination-type: fop x-imagine-success: true cf-cache-status: HIT age: 823134 accept-ranges: bytes vary: Accept-Encoding access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef19c83b509-OSL alt-svc: h3=":443"; ma=86400

	eu.thtk.temu.com/c/th.gif	20.157.27.150	200 OK	2.7 kB
URL POST HTTP/2 eu.thtk.temu.com/c/th.gif IP 20.157.27.150:443 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/bgms_unsubscribe_email.html?_p_landing=1&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t Certificate IssuerGoDaddy.com, Inc. Subject.thtk.temu.com Fingerprint6C:16:D5:C1:7B:12:5A:3B:10:7F:8E:44:DE:D9:C2:4B:A5:CD:FA:D6 ValidityThu, 13 Jul 2023 13:25:23 GMT - Tue, 13 Aug 2024 13:25:23 GMT File type PNG image data, 240 x 240, 8-bit colormap, non-interlaced Size 2.7 kB (2650 bytes) Hash 7dd8a23786d999877eb6d28e2ffde736 383b2c120c396436d655c40fffc1b971148e58cd ad5b0359524c46a5f1ebe8812ec85ec9c54c6bfe5c26442ca6fdce4a206a9c20 HTTP Headers `POST /c/th.gif HTTP/1.1 Host: eu.thtk.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ Content-Type: text/plain;charset=UTF-8 Content-Length: 637 Origin: https://www.temu.com DNT: 1 Connection: keep-alive Cookie: api_uid=CnGMbmY93+GvewBSFn1EAg== Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site` `HTTP/2 200 OK date: Fri, 10 May 2024 08:50:43 GMT content-type: image/gif expires: Fri, 10 May 2024 08:50:42 GMT cache-control: no-cache access-control-allow-origin: https://www.temu.com access-control-allow-credentials: true access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content X-Firefox-Spdy: h2`

	aimg.kwcdn.com/upload_aimg/openingemail/Spain/2e0eb683-da08-4e91-81d9-e0bdfb025a37.png.slim.png?imageView2/2/w/800/q/70	104.18.11.132	200 OK	7.8 kB
URL GET HTTP/3 aimg.kwcdn.com/upload_aimg/openingemail/Spain/2e0eb683-da08-4e91-81d9-e0bdfb025a37.png.slim.png?imageView2/2/w/800/q/70 IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type PNG image data, 240 x 240, 8-bit colormap, non-interlaced Size 7.8 kB (7838 bytes) Hash b8db2fab220983db4973868bfca5934e ffa94192b2085a49db8aca6c81b8bd5242b2a491 d421a5d1cea2d1283ab14564e98324567c31b502b08d8e2d44d1d03420c82cb9 HTTP Headers GET /upload_aimg/openingemail/Spain/2e0eb683-da08-4e91-81d9-e0bdfb025a37.png.slim.png?imageView2/2/w/800/q/70 HTTP/1.1 Host: aimg.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Fri, 10 May 2024 08:50:44 GMT content-type: image/png content-length: 7838 cache-control: max-age=31536000 last-modified: Tue, 20 Feb 2024 10:18:06 GMT request-id: 07c4d54dbdb884ec84e12129ef29f55a x-avi-image-cache: hit x-content-type-options: nosniff x-fop-destination-type: fop x-imagine-success: true cf-cache-status: HIT age: 60089 accept-ranges: bytes vary: Accept-Encoding access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef1bcb2b509-OSL alt-svc: h3=":443"; ma=86400

	aimg.kwcdn.com/upload_aimg/openingemail/flagsnew/eced7c16-0945-4cda-a724-8eef6681646a.png.slim.png?imageView2/2/w/48/q/70	104.18.11.132	200 OK	1.9 kB
URL GET HTTP/3 aimg.kwcdn.com/upload_aimg/openingemail/flagsnew/eced7c16-0945-4cda-a724-8eef6681646a.png.slim.png?imageView2/2/w/48/q/70 IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced Size 1.9 kB (1890 bytes) Hash 90eb91f23ccf75b632bd760f98bc5aa1 35652d10c7082993b12d9b7987b9b91f5745b161 0a557f9c32ff7b8716e859904613e5463fa2e6c41409f6d250c88afe5969c391 HTTP Headers GET /upload_aimg/openingemail/flagsnew/eced7c16-0945-4cda-a724-8eef6681646a.png.slim.png?imageView2/2/w/48/q/70 HTTP/1.1 Host: aimg.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Fri, 10 May 2024 08:50:44 GMT content-type: image/png content-length: 1890 cache-control: max-age=31536000 last-modified: Tue, 20 Feb 2024 06:18:18 GMT request-id: 530cbeeb790b5aa4c1548c8e1c4d35c6 x-avi-image-cache: hit x-content-type-options: nosniff x-fop-destination-type: fop x-imagine-success: true cf-cache-status: HIT age: 833030 accept-ranges: bytes vary: Accept-Encoding access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef1bcafb509-OSL alt-svc: h3=":443"; ma=86400

	www.temu.com/api/bg/buffon/fuji/region/pay/icon	20.47.117.32	200 OK	4.3 kB
URL GET HTTP/2 www.temu.com/api/bg/buffon/fuji/region/pay/icon IP 20.47.117.32:443 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.temu.com FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35 ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT File type gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT) Size 4.3 kB (4257 bytes) Hash 38ae18fdebf78aa26538f3f086f6651d 1d58b0280ca601fd9adc5550dd70531ebded352f d3cd25946d37a2b8fdc84c457f85f1eeace1fac24d428e16143c0457b99ba899 HTTP Headers GET /api/bg/buffon/fuji/region/pay/icon HTTP/1.1 Host: www.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json, text/plain, /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/bgms_unsubscribe_email.html?_p_landing=1&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t DNT: 1 Connection: keep-alive Cookie: region=151; language=en; currency=NOK; api_uid=CnGMbmY93+GvewBSFn1EAg==; _nano_fp=XpmanpXqXp9YXqTyXC_L9uRjnNpOTbQiLLAb8x7v; timezone=UTC Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 10 May 2024 08:50:43 GMT content-type: application/json;charset=UTF-8 content-encoding: gzip vary: Accept-Encoding x-yak-request-id: 1715331043490-67e67b333799cdf1d62533b300af8228 strict-transport-security: max-age=31536000 content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/110000007/sec-gif yak-timeinfo: 1715331043490\|2 cip: 91.90.42.154 X-Firefox-Spdy: h2`

	www.temu.com/favicon.ico	20.47.117.32	200 OK	32 kB
URL GET HTTP/2 www.temu.com/favicon.ico IP 20.47.117.32:443 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.temu.com FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35 ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT File type MS Windows icon resource - 1 icon, 64x64, 32 bits/pixel Size 32 kB (32148 bytes) Hash 9c9d55c659283af2a733d762682bd415 19c477c1ae08c37535bca674abc1d1db99152a9a a2e2ff1f332ded38cce902cae03a2d1de858f6569a6be52ef7cd6c7a261568b8 HTTP Headers GET /favicon.ico HTTP/1.1 Host: www.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e DNT: 1 Connection: keep-alive Cookie: region=151; language=en; currency=NOK; api_uid=CnGMbmY93+GvewBSFn1EAg==; _nano_fp=XpmanpXqXp9YXqTyXC_L9uRjnNpOTbQiLLAb8x7v; timezone=UTC Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK server: nginx date: Fri, 10 May 2024 08:50:44 GMT content-type: image/x-icon cache-control: max-age=3600 x-yak-request-id: 1715331044480-24cfd941ba8d87235173404749653f3d strict-transport-security: max-age=31536000 content-security-policy-report-only: default-src temu: .temu.com .kwcdn.com wss://.temu.com .paypal.com .googleapis.com .gstatic.com .googletagmanager.com .google-analytics.com .analytics.google.com .doubleclick.net .google.com .googlesyndication.com .googleusercontent.com www.googleadservices.com www.google.cn www.google.com.hk www.google.co.uk www.google.ca www.google.com.au www.google.co.nz google.com connect.facebook.net www.facebook.com appleid.cdn-apple.com socialplugin.facebook.net .cash.app .forter.com www.paypalobjects.com .braintree-api.com .braintreegateway.com cash-f.squarecdn.com api.squareup.com api.lab.amplitude.com .paidy.com .cardinalcommerce.com .stripe.com d3nocrch4qti4v.cloudfront.net duuytoqss3gu4.cloudfront.net df45ay5pw60dy.cloudfront.net d2o5idwacg3gyw.cloudfront.net d3lqotgbn3npr.cloudfront.net d6rak4b14t5gp.cloudfront.net dlthst9q2beh8.cloudfront.net o160250.ingest.sentry.io blob: data: 'unsafe-eval' 'unsafe-inline' 'wasm-unsafe-eval'; form-action 'self'; base-uri 'self'; frame-ancestors 'self'; report-uri /api/sec-csp/110000006/report content-security-policy: default-src temu: .temu.com .kwcdn.com wss://.temu.com .paypal.com .googleapis.com .gstatic.com .googletagmanager.com .google-analytics.com .analytics.google.com .doubleclick.net .google.com .googlesyndication.com .googleusercontent.com www.googleadservices.com www.google.cn www.google.com.hk www.google.co.uk www.google.ca www.google.com.au www.google.co.nz google.com connect.facebook.net www.facebook.com appleid.cdn-apple.com socialplugin.facebook.net .cash.app .forter.com www.paypalobjects.com .braintree-api.com .braintreegateway.com cash-f.squarecdn.com api.squareup.com api.lab.amplitude.com .paidy.com .cardinalcommerce.com .stripe.com d3nocrch4qti4v.cloudfront.net duuytoqss3gu4.cloudfront.net df45ay5pw60dy.cloudfront.net d2o5idwacg3gyw.cloudfront.net d3lqotgbn3npr.cloudfront.net d6rak4b14t5gp.cloudfront.net dlthst9q2beh8.cloudfront.net o160250.ingest.sentry.io blob: data: 'unsafe-eval' 'unsafe-inline' 'wasm-unsafe-eval'; report-uri /api/sec-csp/110000006/enforce vary: User-Agent referrer-policy: strict-origin-when-cross-origin x-frame-options: SAMEORIGIN cip: 91.90.42.154 X-Firefox-Spdy: h2

	static.kwcdn.com/m-assets/assets/js/7416_7bcdc5f6044a8b87d104.js	104.18.11.132	200 OK	30 kB
URL GET HTTP/3 static.kwcdn.com/m-assets/assets/js/7416_7bcdc5f6044a8b87d104.js IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type JavaScript source, Unicode text, UTF-8 text, with very long lines (65534), with no line terminators Size 30 kB (30362 bytes) Hash da557d7ce754633f17e69963365c3275 146a1dfd23e9aef59e026554ad9ba170651a258b af4ebcf77468003b009d25c9f4d7aa5830d6da8cc4c903d40d68d365f4d3b3f7 HTTP Headers `GET /m-assets/assets/js/7416_7bcdc5f6044a8b87d104.js HTTP/1.1 Host: static.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ Origin: https://www.temu.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Fri, 10 May 2024 08:50:44 GMT content-type: application/javascript; charset=utf-8 cache-control: max-age=31536000 content-md5: 2lV9fOdUYz8X5pljNlwydQ== etag: W/"0x8DC6CD511E54B0F" last-modified: Sun, 05 May 2024 07:29:16 GMT vary: Accept-Encoding x-content-type-options: nosniff cf-cache-status: HIT age: 411218 access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef70e32b509-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	static.kwcdn.com/m-assets/assets/js/9674_294f78b3dffa8109b595.js	104.18.11.132	200 OK	12 kB
URL GET HTTP/3 static.kwcdn.com/m-assets/assets/js/9674_294f78b3dffa8109b595.js IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type JavaScript source, ASCII text, with very long lines (36300) Size 12 kB (11908 bytes) Hash 88b3af4dd87d9760566043b56b370c25 8e41f4d26a1a3d9b66ad0e5b712678285fea3633 3143833f212ddcf9bf611bf6d1003110955726a5dbb148cc65b1c03577926efe HTTP Headers `GET /m-assets/assets/js/9674_294f78b3dffa8109b595.js HTTP/1.1 Host: static.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ Origin: https://www.temu.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Fri, 10 May 2024 08:50:45 GMT content-type: application/javascript; charset=utf-8 cache-control: max-age=31536000 content-md5: iLOvTdh9l2BWYEO1azcMJQ== etag: W/"0x8DC5AB9250B69E1" last-modified: Fri, 12 Apr 2024 06:24:01 GMT vary: Accept-Encoding x-content-type-options: nosniff cf-cache-status: HIT age: 837109 access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef7dff6b509-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	static.kwcdn.com/m-assets/assets/js/biz_layout_old_category_select_drop_list_3c669a6536fb58d71e8f.js	104.18.11.132	200 OK	6.8 kB
URL GET HTTP/3 static.kwcdn.com/m-assets/assets/js/biz_layout_old_category_select_drop_list_3c669a6536fb58d71e8f.js IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type JavaScript source, Unicode text, UTF-8 text, with very long lines (17080) Size 6.8 kB (6800 bytes) Hash 15a59f4118e70f326795cdc9dc200d80 645a4cf45bd980009fdb2ce31dafb553a5148302 10ef89b3f0a932a1cb8144755caef71e21c4a434af1cbbf1f56a990e8842f931 HTTP Headers GET /m-assets/assets/js/biz_layout_old_category_select_drop_list_3c669a6536fb58d71e8f.js HTTP/1.1 Host: static.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ X-Moz: prefetch Origin: https://www.temu.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Fri, 10 May 2024 08:50:44 GMT content-type: application/javascript; charset=utf-8 cache-control: max-age=31536000 content-md5: FaWfQRjnDzJnlc3J3CANgA== etag: W/"0x8DC652F36D3DCD8" last-modified: Thu, 25 Apr 2024 13:54:23 GMT vary: Accept-Encoding x-content-type-options: nosniff cf-cache-status: HIT age: 837154 access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef6fe12b509-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	aimg.kwcdn.com/upload_aimg_b/web/pc/deb081e4-e46b-4b2d-bc1d-6a0e1800c73c.png.slim.png?imageView2/2/w/30/q/70	104.18.11.132	200 OK	776 B
URL GET HTTP/3 aimg.kwcdn.com/upload_aimg_b/web/pc/deb081e4-e46b-4b2d-bc1d-6a0e1800c73c.png.slim.png?imageView2/2/w/30/q/70 IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced Size 776 B (776 bytes) Hash 445d0cd8a6c3f65fd9e54b4b5fb52cdf 1ee9e4b0d652956a55c5fe43ce697761900d9edc 8334c102d19a9f5a9f1359b521797a699999e0e621a1d8a441b51821d97ad0ef HTTP Headers `GET /upload_aimg_b/web/pc/deb081e4-e46b-4b2d-bc1d-6a0e1800c73c.png.slim.png?imageView2/2/w/30/q/70 HTTP/1.1 Host: aimg.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Fri, 10 May 2024 08:50:45 GMT content-type: image/png content-length: 776 cache-control: max-age=31536000 last-modified: Thu, 07 Dec 2023 09:17:55 GMT request-id: 9e019091a2753314c053490fa792e41c x-content-type-options: nosniff x-fop-destination-type: fop x-imagine-success: true cf-cache-status: HIT age: 828751 accept-ranges: bytes vary: Accept-Encoding access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef87d6a56aa-OSL alt-svc: h3=":443"; ma=86400

	static.kwcdn.com/m-assets/assets/js/5241_46b6649180d698f97b87.js	104.18.11.132	200 OK	29 kB
URL GET HTTP/3 static.kwcdn.com/m-assets/assets/js/5241_46b6649180d698f97b87.js IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type JavaScript source, ASCII text, with very long lines (45357) Size 29 kB (28976 bytes) Hash 930d9a985ca070b261fe0dfeaf428384 3014cbff6af6b3292453e81a13dc62b46c64ea5b 5a4c7ec68a62c4b883c3e65f945459d92b18511c8cf3ea5d060e0f311bf2b1de HTTP Headers `GET /m-assets/assets/js/5241_46b6649180d698f97b87.js HTTP/1.1 Host: static.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ Origin: https://www.temu.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Fri, 10 May 2024 08:50:44 GMT content-type: application/javascript; charset=utf-8 cache-control: max-age=31536000 content-md5: kw2amFygcLJh/g3+r0KDhA== etag: W/"0x8DC6DD01FEAAFBC" last-modified: Mon, 06 May 2024 13:26:23 GMT vary: Accept-Encoding x-content-type-options: nosniff cf-cache-status: HIT age: 321908 access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef3c82fb509-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	www.temu.com/favicon.ico	20.47.117.32	200 OK	22 kB
URL GET HTTP/2 www.temu.com/favicon.ico IP 20.47.117.32:443 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.temu.com FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35 ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT File type MS Windows icon resource - 1 icon, 64x64, 32 bits/pixel Size 22 kB (22021 bytes) Hash ff970d5774bbf306da886fb364e59677 fdb40f905322ca6fceade4b91173f2beeabbb01b 7077a4323d0eb2e049f3182e3ee59ef9267d502a5facc3d7ef20ead5e9b2de54 HTTP Headers GET /favicon.ico HTTP/1.1 Host: www.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e DNT: 1 Connection: keep-alive Cookie: region=151; language=en; currency=NOK; api_uid=CnGMbmY93+GvewBSFn1EAg==; _nano_fp=XpmanpXqXp9YXqTyXC_L9uRjnNpOTbQiLLAb8x7v; timezone=UTC Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK server: nginx date: Fri, 10 May 2024 08:50:44 GMT content-type: image/x-icon cache-control: max-age=3600 x-yak-request-id: 1715331044482-9e033db8a697a5cadc09e50e3519b6a7 strict-transport-security: max-age=31536000 content-security-policy-report-only: default-src temu: .temu.com .kwcdn.com wss://.temu.com .paypal.com .googleapis.com .gstatic.com .googletagmanager.com .google-analytics.com .analytics.google.com .doubleclick.net .google.com .googlesyndication.com .googleusercontent.com www.googleadservices.com www.google.cn www.google.com.hk www.google.co.uk www.google.ca www.google.com.au www.google.co.nz google.com connect.facebook.net www.facebook.com appleid.cdn-apple.com socialplugin.facebook.net .cash.app .forter.com www.paypalobjects.com .braintree-api.com .braintreegateway.com cash-f.squarecdn.com api.squareup.com api.lab.amplitude.com .paidy.com .cardinalcommerce.com .stripe.com d3nocrch4qti4v.cloudfront.net duuytoqss3gu4.cloudfront.net df45ay5pw60dy.cloudfront.net d2o5idwacg3gyw.cloudfront.net d3lqotgbn3npr.cloudfront.net d6rak4b14t5gp.cloudfront.net dlthst9q2beh8.cloudfront.net o160250.ingest.sentry.io blob: data: 'unsafe-eval' 'unsafe-inline' 'wasm-unsafe-eval'; form-action 'self'; base-uri 'self'; frame-ancestors 'self'; report-uri /api/sec-csp/110000006/report content-security-policy: default-src temu: .temu.com .kwcdn.com wss://.temu.com .paypal.com .googleapis.com .gstatic.com .googletagmanager.com .google-analytics.com .analytics.google.com .doubleclick.net .google.com .googlesyndication.com .googleusercontent.com www.googleadservices.com www.google.cn www.google.com.hk www.google.co.uk www.google.ca www.google.com.au www.google.co.nz google.com connect.facebook.net www.facebook.com appleid.cdn-apple.com socialplugin.facebook.net .cash.app .forter.com www.paypalobjects.com .braintree-api.com .braintreegateway.com cash-f.squarecdn.com api.squareup.com api.lab.amplitude.com .paidy.com .cardinalcommerce.com .stripe.com d3nocrch4qti4v.cloudfront.net duuytoqss3gu4.cloudfront.net df45ay5pw60dy.cloudfront.net d2o5idwacg3gyw.cloudfront.net d3lqotgbn3npr.cloudfront.net d6rak4b14t5gp.cloudfront.net dlthst9q2beh8.cloudfront.net o160250.ingest.sentry.io blob: data: 'unsafe-eval' 'unsafe-inline' 'wasm-unsafe-eval'; report-uri /api/sec-csp/110000006/enforce vary: User-Agent referrer-policy: strict-origin-when-cross-origin x-frame-options: SAMEORIGIN cip: 91.90.42.154 X-Firefox-Spdy: h2

	www.temu.com/api/bg/buffon/fuji/region/pay/icon	20.47.117.32	200 OK	1.3 kB
URL GET HTTP/2 www.temu.com/api/bg/buffon/fuji/region/pay/icon IP 20.47.117.32:443 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.temu.com FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35 ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT File type gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT) Size 1.3 kB (1286 bytes) Hash f03b6d8c88b8a59efaa98b523c01c998 0c34a888e189cee0f692095a02952d267f901ef1 00a43be76d903607f8aa41e6ec08998e19f3539e6f2e19813af1938eab209ba6 HTTP Headers GET /api/bg/buffon/fuji/region/pay/icon HTTP/1.1 Host: www.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json, text/plain, /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e DNT: 1 Connection: keep-alive Cookie: region=151; language=en; currency=NOK; api_uid=CnGMbmY93+GvewBSFn1EAg==; _nano_fp=XpmanpXqXp9YXqTyXC_L9uRjnNpOTbQiLLAb8x7v; timezone=UTC Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Fri, 10 May 2024 08:50:45 GMT content-type: application/json;charset=UTF-8 content-encoding: gzip vary: Accept-Encoding x-yak-request-id: 1715331045274-5b76dc40197121489e4c6ffdb834c189 strict-transport-security: max-age=31536000 content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/110000007/sec-gif yak-timeinfo: 1715331045274\|2 cip: 91.90.42.154 X-Firefox-Spdy: h2`

	www.temu.com/api/jade/neutrino/dnld/qr/get	20.47.117.32	200 OK	2.1 kB
URL POST HTTP/2 www.temu.com/api/jade/neutrino/dnld/qr/get IP 20.47.117.32:443 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.temu.com FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35 ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT File type gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT) Size 2.1 kB (2096 bytes) Hash cbb4f68450ead83d720ff07a721b2588 724d043f54f97f7c9cc51d001321a3799c0a416b 67ff9e97e3593173cac1718aec17e8edd799d16a21e73ea916e29bfa534b6164 HTTP Headers POST /api/jade/neutrino/dnld/qr/get HTTP/1.1 Host: www.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json, text/plain, /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Content-Type: application/json;charset=UTF-8 Content-Length: 649 Origin: https://www.temu.com DNT: 1 Connection: keep-alive Cookie: region=151; language=en; currency=NOK; api_uid=CnGMbmY93+GvewBSFn1EAg==; _nano_fp=XpmanpXqXp9YXqTyXC_L9uRjnNpOTbQiLLAb8x7v; timezone=UTC Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK server: nginx date: Fri, 10 May 2024 08:50:45 GMT content-type: application/json content-encoding: gzip x-yak-request-id: 1715331045271-cc8511c8490573b29f5ea42a1b5c2941 access-control-allow-origin: https://www.temu.com vary: accept-encoding, Origin access-control-allow-headers: Origin, X-Requested-With, Content-Type, X_Requested_With, Accept, X-HTTP-Method-Override, Cookie, AccessToken, PASSID, VerifyAuthToken, Anti-Content access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT access-control-allow-credentials: true strict-transport-security: max-age=31536000 content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/110000007/sec-gif yak-timeinfo: 1715331045271\|23 cip: 91.90.42.154 X-Firefox-Spdy: h2

	static.kwcdn.com/m-assets/assets/js/9674_294f78b3dffa8109b595.js	104.18.11.132	200 OK	12 kB
URL GET HTTP/3 static.kwcdn.com/m-assets/assets/js/9674_294f78b3dffa8109b595.js IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type JavaScript source, ASCII text, with very long lines (36300) Size 12 kB (11958 bytes) Hash 88b3af4dd87d9760566043b56b370c25 8e41f4d26a1a3d9b66ad0e5b712678285fea3633 3143833f212ddcf9bf611bf6d1003110955726a5dbb148cc65b1c03577926efe HTTP Headers `GET /m-assets/assets/js/9674_294f78b3dffa8109b595.js HTTP/1.1 Host: static.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ X-Moz: prefetch Origin: https://www.temu.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Fri, 10 May 2024 08:50:45 GMT content-type: application/javascript; charset=utf-8 cache-control: max-age=31536000 content-md5: iLOvTdh9l2BWYEO1azcMJQ== etag: W/"0x8DC5AB9250B69E1" last-modified: Fri, 12 Apr 2024 06:24:01 GMT vary: Accept-Encoding x-content-type-options: nosniff cf-cache-status: HIT age: 837109 access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef8fe4c1bfa-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	static.kwcdn.com/m-assets/assets/js/vendors_9325134bc6576368ada1.js	104.18.11.132	200 OK	264 kB
URL GET HTTP/3 static.kwcdn.com/m-assets/assets/js/vendors_9325134bc6576368ada1.js IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type JavaScript source, Unicode text, UTF-8 text, with very long lines (65534), with no line terminators Size 264 kB (263864 bytes) Hash dbbe10601b9c56c9a97dbfdd8c66f893 aaeb616f52af254942ca0da7b4a5535d76b67893 66f899f8be9d63e50ee28afc7c91331b8fae8d439b59f513e6131db609f0ceac HTTP Headers `GET /m-assets/assets/js/vendors_9325134bc6576368ada1.js HTTP/1.1 Host: static.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ Origin: https://www.temu.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Fri, 10 May 2024 08:50:44 GMT content-type: application/javascript; charset=utf-8 cache-control: max-age=31536000 content-md5: 274QYBucVsmpfb/djGb4kw== etag: W/"0x8DC6025D16E881A" last-modified: Fri, 19 Apr 2024 04:04:32 GMT vary: Accept-Encoding x-content-type-options: nosniff cf-cache-status: HIT age: 833030 access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef3c82bb509-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	aimg.kwcdn.com/upload_aimg/temupch5/4eb16ee6-f4ed-426e-9ce3-574a2ab4ba6c.png?imageView2/2/w/120/q/70	104.18.11.132	200 OK	1.7 kB
URL GET HTTP/3 aimg.kwcdn.com/upload_aimg/temupch5/4eb16ee6-f4ed-426e-9ce3-574a2ab4ba6c.png?imageView2/2/w/120/q/70 IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type PNG image data, 52 x 52, 8-bit colormap, non-interlaced Size 1.7 kB (1687 bytes) Hash 255631d75f04b9283adf41d5520768f3 2e03aa199b82ce42d68b6e64b0998e43ca700b65 64de405434c8ed64d257d500327b368a2674c96c248e6ee9dcf5b9cbc1db0a1f HTTP Headers `GET /upload_aimg/temupch5/4eb16ee6-f4ed-426e-9ce3-574a2ab4ba6c.png?imageView2/2/w/120/q/70 HTTP/1.1 Host: aimg.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Fri, 10 May 2024 08:50:45 GMT content-type: image/png content-length: 1687 cache-control: max-age=31536000 last-modified: Mon, 19 Feb 2024 10:04:20 GMT request-id: 32ffe3fbec4b5d5beac98abbc688118c x-avi-image-cache: hit x-content-type-options: nosniff x-fop-destination-type: fop x-imagine-success: true cf-cache-status: HIT age: 833039 accept-ranges: bytes vary: Accept-Encoding access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef9d83756aa-OSL alt-svc: h3=":443"; ma=86400

	aimg.kwcdn.com/upload_aimg/web/7edd0665-db19-4e7a-aa42-5301e5ea396f.png.slim.png?imageView2/2/w/120/q/70	104.18.11.132	200 OK	477 B
URL GET HTTP/3 aimg.kwcdn.com/upload_aimg/web/7edd0665-db19-4e7a-aa42-5301e5ea396f.png.slim.png?imageView2/2/w/120/q/70 IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type PNG image data, 52 x 52, 8-bit colormap, non-interlaced Size 477 B (477 bytes) Hash 0bafe2978e7e81d8795e9146481e4dfa c1e9b3028928aea0a8611473b439950d8d52f701 409530bf85191c73b234d82378e0e26684711fa53990b71bcc1488239ac0ca52 HTTP Headers `GET /upload_aimg/web/7edd0665-db19-4e7a-aa42-5301e5ea396f.png.slim.png?imageView2/2/w/120/q/70 HTTP/1.1 Host: aimg.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Fri, 10 May 2024 08:50:45 GMT content-type: image/png content-length: 477 cache-control: max-age=31536000 last-modified: Thu, 25 Jan 2024 07:20:20 GMT request-id: 8e064731291333f2eb6f815fecee6cd1 x-content-type-options: nosniff x-fop-destination-type: fop x-imagine-success: true cf-cache-status: HIT age: 833039 accept-ranges: bytes vary: Accept-Encoding access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef9d83e56aa-OSL alt-svc: h3=":443"; ma=86400

	aimg.kwcdn.com/upload_aimg/web/18e81de4-adca-4b74-bd52-1aa2d7ebe771.png.slim.png?imageView2/2/w/120/q/70	104.18.11.132	200 OK	459 B
URL GET HTTP/3 aimg.kwcdn.com/upload_aimg/web/18e81de4-adca-4b74-bd52-1aa2d7ebe771.png.slim.png?imageView2/2/w/120/q/70 IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type PNG image data, 52 x 52, 8-bit colormap, non-interlaced Size 459 B (459 bytes) Hash 66df1b4eee9f9be0092da397eceed4aa 3b539d8b062189a8d5898bfb8136ae322e0f840c 93c23b3e9fa94e84527f81bb368b9e739d6db67e233c4e2acbd9fa3179082d73 HTTP Headers `GET /upload_aimg/web/18e81de4-adca-4b74-bd52-1aa2d7ebe771.png.slim.png?imageView2/2/w/120/q/70 HTTP/1.1 Host: aimg.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Fri, 10 May 2024 08:50:45 GMT content-type: image/png content-length: 459 cache-control: max-age=31536000 last-modified: Thu, 25 Jan 2024 07:20:20 GMT request-id: 8aefeb37054680c255dac78033d8c2e6 x-content-type-options: nosniff x-fop-destination-type: fop x-imagine-success: true cf-cache-status: HIT age: 837155 accept-ranges: bytes vary: Accept-Encoding access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef9d84256aa-OSL alt-svc: h3=":443"; ma=86400

	aimg.kwcdn.com/upload_aimg/web/2ba1be46-f0c5-4f59-aa05-1ab05ef41126.png.slim.png?imageView2/2/w/120/q/70	104.18.11.132	200 OK	836 B
URL GET HTTP/3 aimg.kwcdn.com/upload_aimg/web/2ba1be46-f0c5-4f59-aa05-1ab05ef41126.png.slim.png?imageView2/2/w/120/q/70 IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type PNG image data, 52 x 52, 8-bit colormap, non-interlaced Size 836 B (836 bytes) Hash c39f13f277e05024eedd31733af5e7ec 3a54d0439f7cb3f84ed95c192413f052bf8faabb 939fba9aa1b0f4b4fe0c27b338f969a4adf26e90fcdd4cf41f7a70e2da94e5ca HTTP Headers `GET /upload_aimg/web/2ba1be46-f0c5-4f59-aa05-1ab05ef41126.png.slim.png?imageView2/2/w/120/q/70 HTTP/1.1 Host: aimg.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Fri, 10 May 2024 08:50:45 GMT content-type: image/png content-length: 836 cache-control: max-age=31536000 last-modified: Thu, 25 Jan 2024 13:19:12 GMT request-id: 4dfdf440667b25dc0aabd1c8374d12f9 x-content-type-options: nosniff x-fop-destination-type: fop x-imagine-success: true cf-cache-status: HIT age: 828730 accept-ranges: bytes vary: Accept-Encoding access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef9d84956aa-OSL alt-svc: h3=":443"; ma=86400

	www.temu.com/api/poppy/v1/opt_list?scene=opt_list_all	20.47.117.32	200 OK	78 kB
URL POST HTTP/2 www.temu.com/api/poppy/v1/opt_list?scene=opt_list_all IP 20.47.117.32:443 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.temu.com FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35 ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT File type gzip compressed data Size 78 kB (78445 bytes) Hash 10b32d625d1227e0b1d6f68e1a5909d7 cbc452e2f2257dd81c373b5274fc6f7972c300c8 0edc1ad09088679a4a5e1ae8ba08956a67b34db7010335c04d5fba8170447643 HTTP Headers POST /api/poppy/v1/opt_list?scene=opt_list_all HTTP/1.1 Host: www.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json, text/plain, /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Content-Type: application/json;charset=UTF-8 Anti-Content: 0aqAfa5e-wCEsa5Ym4Edvf_dBxFIyiA7137UKKD1KAmMLcWMfBEF3L1z3_kMK-WK3uwUKO573fEFf3kgCNwZHiXHpzYXsXIGUylpZYc5ZNOxIgsBLw1rtV139egxXE2cdMKcd2vAmzF_m7fweFf1WBKcE-el_4pBeDhzsMZYX0volgVejfSkzV1D-oBa9EzsHeBcSD-V1DBaSEBf1DBKcE20TUw4RDQA3nE-vFetsWVbKOWFe-pULVh1-ACS2sVkBZObflevy1VdBsVs-i-E1yTvBeFkkeMStMCMK1mMkiheB2S9g_B4-LewkFKRw7LPXUB5EZ48X_NCS54Z9GGxP54UXSP38CWxitCI0xJ9hRTKX2X6aJ6fPHtNrPlSFvlXX9kKIZ0PBA2V6lAcji_D1_FHDerzz13dr2DM1BIEr1Ord1-DEqiZec-rrM9990fveTjv4IH1CJ Content-Length: 43 Origin: https://www.temu.com DNT: 1 Connection: keep-alive Cookie: region=151; language=en; currency=NOK; api_uid=CnGMbmY93+GvewBSFn1EAg==; _nano_fp=XpmanpXqXp9YXqTyXC_L9uRjnNpOTbQiLLAb8x7v; timezone=UTC Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK server: nginx date: Fri, 10 May 2024 08:50:45 GMT content-type: application/json content-encoding: gzip x-yak-request-id: 1715331045634-b37c100b8f7e099836937f91eab88fef access-control-allow-origin: https://www.temu.com vary: accept-encoding, Origin access-control-allow-headers: Origin, X-Requested-With, Content-Type, X_Requested_With, Accept, X-HTTP-Method-Override, Cookie, AccessToken, PASSID, VerifyAuthToken, Anti-Content access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT access-control-allow-credentials: true strict-transport-security: max-age=31536000 content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/110000007/sec-gif yak-timeinfo: 1715331045634\|87 cip: 91.90.42.154 X-Firefox-Spdy: h2

	eu.thtk.temu.com/c/th.gif	20.157.27.150	200 OK	6.4 kB
URL POST HTTP/2 eu.thtk.temu.com/c/th.gif IP 20.157.27.150:443 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/bgms_unsubscribe_email.html?_p_landing=1&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t Certificate IssuerGoDaddy.com, Inc. Subject.thtk.temu.com Fingerprint6C:16:D5:C1:7B:12:5A:3B:10:7F:8E:44:DE:D9:C2:4B:A5:CD:FA:D6 ValidityThu, 13 Jul 2023 13:25:23 GMT - Tue, 13 Aug 2024 13:25:23 GMT File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 Size 6.4 kB (6393 bytes) Hash 95ed9a226e6a34f6440ac06236492bc6 4f4237dea79ae5c0de0b90a91b4fb1db407e7328 fbc5f572e9b4e470b88f8d0816fa273d434679223df679d35fcfe01913896dad HTTP Headers `POST /c/th.gif HTTP/1.1 Host: eu.thtk.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ Content-Type: text/plain;charset=UTF-8 Content-Length: 810 Origin: https://www.temu.com DNT: 1 Connection: keep-alive Cookie: api_uid=CnGMbmY93+GvewBSFn1EAg== Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers` `HTTP/2 200 OK date: Fri, 10 May 2024 08:50:46 GMT content-type: image/gif expires: Fri, 10 May 2024 08:50:45 GMT cache-control: no-cache access-control-allow-origin: https://www.temu.com access-control-allow-credentials: true access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content X-Firefox-Spdy: h2`

	www.temu.com/api/bg/bg-uranus-api/uranus_cart/user_cart_num	20.47.117.32		8.6 kB
URL www.temu.com/api/bg/bg-uranus-api/uranus_cart/user_cart_num IP 20.47.117.32:0 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Certificate IssuerGoDaddy.com, Inc. Subject.temu.com FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35 ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT File type gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT) Size 8.6 kB (8633 bytes) Hash 6a48a62c48b2a3856a6b9e27cbcf0390 8ad9ca4cb162b9c0818336971e51cdc66d84c8ed bde1a014293b992b34e0ccb5056fa72ceee91aa344bcdb1cc6dd1330e99f4e00 HTTP Headers POST /api/bg/bg-uranus-api/uranus_cart/user_cart_num HTTP/1.1 Host: www.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json, text/plain, /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/bgms_unsubscribe_email.html?_p_landing=1&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t Content-Type: application/json;charset=UTF-8 Anti-Content: 0aqAfqn5GjlCj99Vk6BxG5SLBG4jn_EoIJFrjf0OseD2RKh2YKuC_tiqIjTWCSjXzsyyyuou77ol7oPMN6eOKl5qv-RN38mner5R0-1Rg-zxzFDUS1Zg0lW31P7dmUnkPKYFcecLZ7giDsQ6wttUbqBVY5BSmQBV9d-IlX_KbFMGcytQ0P8XraXFHvtGh5Qp38-okt2_Bc8TgH2tCTmRLFO6vzDjmDeGSTqTGS2Ppfd6wFn1gnvFZsTe9zZqRIza1biDpOYXKN13mUCAZwVLgZ14P_B0AB2E2BzFytfntoK2yPqkxck4QkghcNiwsPGTG9Ps6SUNARZdFIt1-66jBBxQDv5E8wQVJlrZqy5hr3M3a6syGyZFOvxdkMQMhRiWnhKHhr9K_n0JcaQalGbKHWCk_moYWWjparsR75FhIVWWRfNSKRJAjPa Content-Length: 62 Origin: https://www.temu.com DNT: 1 Connection: keep-alive Cookie: region=151; language=en; currency=NOK; api_uid=CnGMbmY93+GvewBSFn1EAg==; _nano_fp=XpmanpXqXp9YXqTyXC_L9uRjnNpOTbQiLLAb8x7v; timezone=UTC Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK server: nginx date: Fri, 10 May 2024 08:50:43 GMT content-type: application/json;charset=UTF-8 content-encoding: gzip x-yak-request-id: 1715331043573-6b56c66f918a89409dd797bf0f8cd4aa access-control-allow-origin: https://www.temu.com vary: accept-encoding, Origin access-control-allow-headers: Origin, X-Requested-With, Content-Type, X_Requested_With, Accept, X-HTTP-Method-Override, Cookie, AccessToken, PASSID, VerifyAuthToken, Anti-Content access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT access-control-allow-credentials: true strict-transport-security: max-age=31536000 content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/110000007/sec-gif yak-timeinfo: 1715331043573\|2 cip: 91.90.42.154 X-Firefox-Spdy: h2

	eu.thtk.temu.com/c/th.gif	20.157.27.150	200 OK	5.8 kB
URL POST HTTP/2 eu.thtk.temu.com/c/th.gif IP 20.157.27.150:443 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/bgms_unsubscribe_email.html?_p_landing=1&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t Certificate IssuerGoDaddy.com, Inc. Subject.thtk.temu.com Fingerprint6C:16:D5:C1:7B:12:5A:3B:10:7F:8E:44:DE:D9:C2:4B:A5:CD:FA:D6 ValidityThu, 13 Jul 2023 13:25:23 GMT - Tue, 13 Aug 2024 13:25:23 GMT File type gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT) Size 5.8 kB (5760 bytes) Hash 25c6f43af145addcf8b0fa84a3f0c9e1 205020d8cbf0453df4fa958fc3275abc27d942b1 e0a8fa92659af3bd02d7e381efb79e8f4e76fe828fbc776e64a7aa8f0c66d78b HTTP Headers `POST /c/th.gif HTTP/1.1 Host: eu.thtk.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ Content-Type: text/plain;charset=UTF-8 Content-Length: 809 Origin: https://www.temu.com DNT: 1 Connection: keep-alive Cookie: api_uid=CnGMbmY93+GvewBSFn1EAg== Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers` `HTTP/2 200 OK date: Fri, 10 May 2024 08:50:46 GMT content-type: image/gif expires: Fri, 10 May 2024 08:50:45 GMT cache-control: no-cache access-control-allow-origin: https://www.temu.com access-control-allow-credentials: true access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content X-Firefox-Spdy: h2`

	aimg.kwcdn.com/upload_aimg/pc/5c5f0a0f-db6f-4205-a0d3-c745b6c672ea.png.slim.png?imageView2/2/w/120/q/70	104.18.11.132	200 OK	561 B
URL GET HTTP/3 aimg.kwcdn.com/upload_aimg/pc/5c5f0a0f-db6f-4205-a0d3-c745b6c672ea.png.slim.png?imageView2/2/w/120/q/70 IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type PNG image data, 60 x 60, 8-bit colormap, non-interlaced Size 561 B (561 bytes) Hash aab6e9724b670fc36f3f419bb3488d59 99df4e309b6cdfb4f7e8a45cbc3ef4b1cf90c61b 6f6ebe32d2da77c139fab8fe1c4aeba00bfbd3cde6d2a56f53df878f70dd6dec HTTP Headers `GET /upload_aimg/pc/5c5f0a0f-db6f-4205-a0d3-c745b6c672ea.png.slim.png?imageView2/2/w/120/q/70 HTTP/1.1 Host: aimg.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Fri, 10 May 2024 08:50:45 GMT content-type: image/png content-length: 561 cache-control: max-age=31536000 last-modified: Thu, 25 Jan 2024 13:19:12 GMT request-id: c65a68653170939934d02450e94ac053 x-content-type-options: nosniff x-fop-destination-type: fop x-imagine-success: true cf-cache-status: HIT age: 828730 accept-ranges: bytes vary: Accept-Encoding access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef9c82256aa-OSL alt-svc: h3=":443"; ma=86400

	aimg.kwcdn.com/upload_aimg/pc/a817be22-932c-43b3-95e4-c768af711c34.png.slim.png?imageView2/2/w/120/q/70	104.18.11.132	200 OK	601 B
URL GET HTTP/3 aimg.kwcdn.com/upload_aimg/pc/a817be22-932c-43b3-95e4-c768af711c34.png.slim.png?imageView2/2/w/120/q/70 IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type PNG image data, 52 x 52, 8-bit colormap, non-interlaced Size 601 B (601 bytes) Hash aec8be7534de023d63323ce0e7bc6a27 c0eafefd31f8c7a97a39e1c31865e5a627799b65 16c3f4b7b733b61f939c92ae7700fa44f1b6ab9f1991294c4cd7c8ae8142e033 HTTP Headers `GET /upload_aimg/pc/a817be22-932c-43b3-95e4-c768af711c34.png.slim.png?imageView2/2/w/120/q/70 HTTP/1.1 Host: aimg.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Fri, 10 May 2024 08:50:45 GMT content-type: image/png content-length: 601 cache-control: max-age=31536000 last-modified: Mon, 19 Feb 2024 10:04:20 GMT request-id: d004d5104d41034ff7f08fb062e2db66 x-avi-image-cache: hit x-content-type-options: nosniff x-fop-destination-type: fop x-imagine-success: true cf-cache-status: HIT age: 837155 accept-ranges: bytes vary: Accept-Encoding access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef9d82b56aa-OSL alt-svc: h3=":443"; ma=86400

	static.kwcdn.com/m-assets/assets/js/change-region_8a2dd6248b43e2def43b.js	104.18.11.132	200 OK	30 kB
URL GET HTTP/3 static.kwcdn.com/m-assets/assets/js/change-region_8a2dd6248b43e2def43b.js IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type JavaScript source, ASCII text, with very long lines (29441) Size 30 kB (29546 bytes) Hash 0c89d5ba2157686c6eda3732c8e73726 5eaafc3b2e2aae76f48ff33d8d2a00a70df01e6a 7186265ef9baced4b4f0ae2ba8f37b9a589b2da5a2c04d523aa27db13f6f7277 HTTP Headers `GET /m-assets/assets/js/change-region_8a2dd6248b43e2def43b.js HTTP/1.1 Host: static.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ Origin: https://www.temu.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Fri, 10 May 2024 08:50:44 GMT content-type: application/javascript; charset=utf-8 cache-control: max-age=31536000 content-md5: DInVuiFXaGxu2jcyyOc3Jg== etag: W/"0x8DC6E9F7BD61815" last-modified: Tue, 07 May 2024 14:10:43 GMT vary: Accept-Encoding x-content-type-options: nosniff cf-cache-status: HIT age: 126928 access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef3d838b509-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	eu.pftk.temu.com/pmm/api/pmm/api	20.93.45.131	200 OK	0 B
URL POST HTTP/2 eu.pftk.temu.com/pmm/api/pmm/api IP 20.93.45.131:443 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.pftk.temu.com FingerprintF4:BE:81:8F:72:EA:45:6C:90:FB:ED:AA:86:7C:F4:6D:10:06:EA:D8 ValidityThu, 13 Jul 2023 13:25:25 GMT - Tue, 13 Aug 2024 13:25:25 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /pmm/api/pmm/api HTTP/1.1 Host: eu.pftk.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ Content-Type: text/plain;charset=UTF-8 Content-Length: 1362 Origin: https://www.temu.com DNT: 1 Connection: keep-alive Cookie: api_uid=CnGMbmY93+GvewBSFn1EAg== Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Fri, 10 May 2024 08:50:45 GMT content-type: application/octet-stream expires: Fri, 10 May 2024 08:50:44 GMT cache-control: no-cache access-control-allow-origin: https://www.temu.com access-control-allow-credentials: true access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content X-Firefox-Spdy: h2`

	www.temu.com/api/server/_stm?t=1715331044977	20.47.117.32	200 OK	29 B
URL GET HTTP/2 www.temu.com/api/server/_stm?t=1715331044977 IP 20.47.117.32:443 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.temu.com FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35 ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT File type troff or preprocessor input, ASCII text, with no line terminators Size 29 B (29 bytes) Hash fe4e649fe68fa30b3721c6526770caaf 482d945d310254731ba3dddf8bed11d97c7c1641 24c7d0e63f14c2b43186e559dca9f48884d81f0468fbd2b33f371e09fc2730e6 HTTP Headers GET /api/server/_stm?t=1715331044977 HTTP/1.1 Host: www.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json, text/plain, /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e DNT: 1 Connection: keep-alive Cookie: region=151; language=en; currency=NOK; api_uid=CnGMbmY93+GvewBSFn1EAg==; _nano_fp=XpmanpXqXp9YXqTyXC_L9uRjnNpOTbQiLLAb8x7v; timezone=UTC Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Fri, 10 May 2024 08:50:45 GMT content-type: application/json vary: Accept-Encoding cache-control: no-cache, no-store cip: 91.90.42.154 content-encoding: gzip X-Firefox-Spdy: h2`

	aimg.kwcdn.com/upload_aimg_b/web/pc/ab4a5d92-4b54-45f6-b18a-fbb16529d2b3.png.slim.png?imageView2/2/w/30/q/70	104.18.11.132	200 OK	704 B
URL GET HTTP/3 aimg.kwcdn.com/upload_aimg_b/web/pc/ab4a5d92-4b54-45f6-b18a-fbb16529d2b3.png.slim.png?imageView2/2/w/30/q/70 IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced Size 704 B (704 bytes) Hash 9fa7dfffb74917e6c97256e5d34c2f4b 11cec5dfe69738a4d2dee528ed9cd89ca3b22259 6927415b5e0ffb37c6b2468a75abfbbfb454ebcb244bcc9bbb15f7268bdf2ca6 HTTP Headers `GET /upload_aimg_b/web/pc/ab4a5d92-4b54-45f6-b18a-fbb16529d2b3.png.slim.png?imageView2/2/w/30/q/70 HTTP/1.1 Host: aimg.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Fri, 10 May 2024 08:50:45 GMT content-type: image/png content-length: 704 cache-control: max-age=31536000 last-modified: Thu, 18 Jan 2024 20:06:59 GMT request-id: d7dfde20d474f45d392b4b172609aa14 x-content-type-options: nosniff x-fop-destination-type: fop x-imagine-success: true cf-cache-status: HIT age: 837190 accept-ranges: bytes vary: Accept-Encoding access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef88da156aa-OSL alt-svc: h3=":443"; ma=86400

	www.temu.com/api/server/_stm	20.47.117.32	200 OK	29 B
URL GET HTTP/2 www.temu.com/api/server/_stm IP 20.47.117.32:443 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.temu.com FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35 ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT File type troff or preprocessor input, ASCII text, with no line terminators Size 29 B (29 bytes) Hash c826c259aa9dbeaaa195187dd81bd060 ef1229e15420d38115402babf4b60b2f99624e2b 4dabff2f5aec5bd365c7104fa01415e77225de0e26463ff530d4953c3ac623f4 HTTP Headers GET /api/server/_stm HTTP/1.1 Host: www.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json, text/plain, /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e DNT: 1 Connection: keep-alive Cookie: region=151; language=en; currency=NOK; api_uid=CnGMbmY93+GvewBSFn1EAg==; _nano_fp=XpmanpXqXp9YXqTyXC_L9uRjnNpOTbQiLLAb8x7v; timezone=UTC Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Fri, 10 May 2024 08:50:45 GMT content-type: application/json vary: Accept-Encoding cache-control: no-cache, no-store cip: 91.90.42.154 content-encoding: gzip X-Firefox-Spdy: h2`

	eu.pftk.temu.com/pmm/api/pmm/api	20.93.45.131	200 OK	0 B
URL POST HTTP/2 eu.pftk.temu.com/pmm/api/pmm/api IP 20.93.45.131:443 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.pftk.temu.com FingerprintF4:BE:81:8F:72:EA:45:6C:90:FB:ED:AA:86:7C:F4:6D:10:06:EA:D8 ValidityThu, 13 Jul 2023 13:25:25 GMT - Tue, 13 Aug 2024 13:25:25 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /pmm/api/pmm/api HTTP/1.1 Host: eu.pftk.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ Content-Type: text/plain;charset=UTF-8 Content-Length: 1384 Origin: https://www.temu.com DNT: 1 Connection: keep-alive Cookie: api_uid=CnGMbmY93+GvewBSFn1EAg== Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Fri, 10 May 2024 08:50:45 GMT content-type: application/octet-stream expires: Fri, 10 May 2024 08:50:44 GMT cache-control: no-cache access-control-allow-origin: https://www.temu.com access-control-allow-credentials: true access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content X-Firefox-Spdy: h2`

	www.temu.com/api/phantom/xg/pfb/a4	20.47.117.32	200 OK	194 B
URL POST HTTP/2 www.temu.com/api/phantom/xg/pfb/a4 IP 20.47.117.32:443 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.temu.com FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35 ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT File type troff or preprocessor input, ASCII text, with no line terminators Size 194 B (194 bytes) Hash 7953b605e8f0f39ecdb6efeb6e2d3a4d 5107aab89869e1abff951a697f3c512bed21880f 3fe1d738e947a3e7d2947e56ac7a2ab618424c648d88f0726d041414fb0bb445 HTTP Headers POST /api/phantom/xg/pfb/a4 HTTP/1.1 Host: www.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json, text/plain, /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Content-Type: application/json;charset=UTF-8 Content-Length: 4349 Origin: https://www.temu.com DNT: 1 Connection: keep-alive Cookie: region=151; language=en; currency=NOK; api_uid=CnGMbmY93+GvewBSFn1EAg==; _nano_fp=XpmanpXqXp9YXqTyXC_L9uRjnNpOTbQiLLAb8x7v; timezone=UTC Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK server: nginx date: Fri, 10 May 2024 08:50:46 GMT content-type: application/json;charset=UTF-8 set-cookie: _bee=bPHjkJYwaA6JT5K4rrznR2UDSQDileYA; Max-Age=31536000; Expires=Sat, 10 May 2025 08:50:46 GMT; Path=/; Domain=.temu.com njrpl=bPHjkJYwaA6JT5K4rrznR2UDSQDileYA; Max-Age=31536000; Expires=Sat, 10 May 2025 08:50:46 GMT; Path=/; Domain=.temu.com dilx=RDobnHde7PJ2kLKWCTaBR; Max-Age=31536000; Expires=Sat, 10 May 2025 08:50:46 GMT; Path=/; Domain=.temu.com hfsc=L3yLfYoz6D7815fMfA==; Max-Age=31536000; Expires=Sat, 10 May 2025 08:50:46 GMT; Path=/; HttpOnly; Domain=.temu.com content-encoding: gzip x-yak-request-id: 1715331046127-7abd7b9953d884f68978b15256ce087d access-control-allow-origin: https://www.temu.com vary: Accept-Encoding, Origin access-control-allow-headers: Origin, X-Requested-With, Content-Type, X_Requested_With, Accept, X-HTTP-Method-Override, Cookie, AccessToken, PASSID, VerifyAuthToken, Anti-Content access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT access-control-allow-credentials: true strict-transport-security: max-age=31536000 content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/110000007/sec-gif yak-timeinfo: 1715331046127\|13 cip: 91.90.42.154 X-Firefox-Spdy: h2

	aimg.kwcdn.com/upload_aimg/promo/04d06f47-bd83-4bbf-bfc3-23635d00b6fb.png.slim.png?imageView2/2/w/100/q/70	104.18.11.132	200 OK	466 B
URL GET HTTP/3 aimg.kwcdn.com/upload_aimg/promo/04d06f47-bd83-4bbf-bfc3-23635d00b6fb.png.slim.png?imageView2/2/w/100/q/70 IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type PNG image data, 64 x 64, 8-bit colormap, non-interlaced Size 466 B (466 bytes) Hash a57305bc707801e2ab6c09cf8f83e8c5 e4f65c265f2e091e37425f301c2fca6d07658b52 a8cef8219aed884b97ffd86c628d7a52d3d7ca1df9e27dabba313462d4c3160a HTTP Headers `GET /upload_aimg/promo/04d06f47-bd83-4bbf-bfc3-23635d00b6fb.png.slim.png?imageView2/2/w/100/q/70 HTTP/1.1 Host: aimg.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Fri, 10 May 2024 08:50:44 GMT content-type: image/png content-length: 466 cache-control: max-age=31536000 last-modified: Wed, 24 Jan 2024 08:02:07 GMT request-id: 5774831d6b87a94cd6346b4f05899f27 x-avi-image-cache: hit x-content-type-options: nosniff x-fop-destination-type: fop x-imagine-success: true cf-cache-status: HIT age: 833040 accept-ranges: bytes vary: Accept-Encoding access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef19c73b509-OSL alt-svc: h3=":443"; ma=86400

	static.kwcdn.com/m-assets/assets/js/7666_fbcdc8f1d92b0e0e9ac7.js	104.18.11.132	200 OK	62 kB
URL GET HTTP/3 static.kwcdn.com/m-assets/assets/js/7666_fbcdc8f1d92b0e0e9ac7.js IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type JavaScript source, ASCII text, with very long lines (62382) Size 62 kB (62478 bytes) Hash 5452de4563f0ced1cda37db4aad3429d 722c8ccd5dc3cbcbb1223c30a2da4fca50067c11 c8692f31d652d7215b5331c98d147d34163280b78c367aeae13ce21c24e1e5aa HTTP Headers `GET /m-assets/assets/js/7666_fbcdc8f1d92b0e0e9ac7.js HTTP/1.1 Host: static.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ X-Moz: prefetch Origin: https://www.temu.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Fri, 10 May 2024 08:50:44 GMT content-type: application/javascript; charset=utf-8 cache-control: max-age=31536000 content-md5: VFLeRWPwztHNo320qtNCnQ== etag: W/"0x8DC49A5AE5489C1" last-modified: Thu, 21 Mar 2024 12:51:52 GMT vary: Accept-Encoding x-content-type-options: nosniff cf-cache-status: HIT age: 833030 access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef6fdf6b509-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	eu.pftk.temu.com/pmm/api/pmm/api	20.93.45.131	200 OK	0 B
URL POST HTTP/2 eu.pftk.temu.com/pmm/api/pmm/api IP 20.93.45.131:443 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.pftk.temu.com FingerprintF4:BE:81:8F:72:EA:45:6C:90:FB:ED:AA:86:7C:F4:6D:10:06:EA:D8 ValidityThu, 13 Jul 2023 13:25:25 GMT - Tue, 13 Aug 2024 13:25:25 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /pmm/api/pmm/api HTTP/1.1 Host: eu.pftk.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ Content-Type: text/plain;charset=UTF-8 Content-Length: 1371 Origin: https://www.temu.com DNT: 1 Connection: keep-alive Cookie: api_uid=CnGMbmY93+GvewBSFn1EAg== Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Fri, 10 May 2024 08:50:45 GMT content-type: application/octet-stream expires: Fri, 10 May 2024 08:50:44 GMT cache-control: no-cache access-control-allow-origin: https://www.temu.com access-control-allow-credentials: true access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content X-Firefox-Spdy: h2`

	eu.pftk.temu.com/pmm/api/pmm/api	20.93.45.131	200 OK	0 B
URL POST HTTP/2 eu.pftk.temu.com/pmm/api/pmm/api IP 20.93.45.131:443 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.pftk.temu.com FingerprintF4:BE:81:8F:72:EA:45:6C:90:FB:ED:AA:86:7C:F4:6D:10:06:EA:D8 ValidityThu, 13 Jul 2023 13:25:25 GMT - Tue, 13 Aug 2024 13:25:25 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /pmm/api/pmm/api HTTP/1.1 Host: eu.pftk.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ Content-Type: text/plain;charset=UTF-8 Content-Length: 1358 Origin: https://www.temu.com DNT: 1 Connection: keep-alive Cookie: api_uid=CnGMbmY93+GvewBSFn1EAg== Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Fri, 10 May 2024 08:50:45 GMT content-type: application/octet-stream expires: Fri, 10 May 2024 08:50:44 GMT cache-control: no-cache access-control-allow-origin: https://www.temu.com access-control-allow-credentials: true access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content X-Firefox-Spdy: h2`

	www.temu.com/api/poppy/v2/search_activation?scene=search_activation	20.47.117.32	200 OK	8.1 kB
URL POST HTTP/2 www.temu.com/api/poppy/v2/search_activation?scene=search_activation IP 20.47.117.32:443 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.temu.com FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35 ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT File type troff or preprocessor input, ASCII text, with very long lines (9275), with no line terminators Size 8.1 kB (8079 bytes) Hash 4fcede493473b500d17d68c83c87ae0d f5fbf73d15e01e6e081ea260e163f74179ebe1f9 85001f6afa3c100abff8e24a952d4825086edd2a496768d54ae93a9d65777f17 HTTP Headers POST /api/poppy/v2/search_activation?scene=search_activation HTTP/1.1 Host: www.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json, text/plain, /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Content-Type: application/json;charset=UTF-8 Anti-Content: 0aqWtqlFXcQVj99Z5BAUs4VeOtpv8nGPQUZyKkKHmeQj6OPQ5PVF_LB9RzpI2QUM83h8OyymVr6aeCawEafIpbQM1UNqJ4tl4azMIXKtL7V_yFpxF8QqrGndk0COFrVuNrff5LI_NUB97BP5Wict-mFKOdNUFxN1VBB7KcdxyBxmGD_1J82IMGrGS_X4upzjSmiuFE5jfLA0lof_XLBow7kWSqAtjoBuH6ycqKJk2sGTBpZKsZwIVnkwBssC9QGvgbOdKJka48PluEdupJCLwAE8TnOgHfNvYn9DgsLtMSQ3f1FpKy7sy8DIOdqLyaTQku2t409Xa7eXKrwWk2Y5rGK6DBoFA9e6LsLlnDgIAsxAdvio5grbuP9TOGLJHDzEt3u4Jc3q4iLLANTWXQzghSjmERK5Zhi0uI8drKsrXkAdkcEEhVmL4ShrkJL26We-2BvGhqI4 Content-Length: 182 Origin: https://www.temu.com DNT: 1 Connection: keep-alive Cookie: region=151; language=en; currency=NOK; api_uid=CnGMbmY93+GvewBSFn1EAg==; _nano_fp=XpmanpXqXp9YXqTyXC_L9uRjnNpOTbQiLLAb8x7v; timezone=UTC Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK server: nginx date: Fri, 10 May 2024 08:50:45 GMT content-type: application/json content-encoding: gzip x-yak-request-id: 1715331045636-cc83b0bed1b201ff1e476a8465ad4bbb access-control-allow-origin: https://www.temu.com vary: accept-encoding, Origin access-control-allow-headers: Origin, X-Requested-With, Content-Type, X_Requested_With, Accept, X-HTTP-Method-Override, Cookie, AccessToken, PASSID, VerifyAuthToken, Anti-Content access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT access-control-allow-credentials: true strict-transport-security: max-age=31536000 content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/110000007/sec-gif yak-timeinfo: 1715331045636\|91 cip: 91.90.42.154 X-Firefox-Spdy: h2

	dl.kwcdn.com/upload-common/commodity/c8b30c5b-0d15-4800-a24f-f97879ac6fdc.png?imageView2/2/w/120/q/70	104.18.11.132	200 OK	3.5 kB
URL GET HTTP/3 dl.kwcdn.com/upload-common/commodity/c8b30c5b-0d15-4800-a24f-f97879ac6fdc.png?imageView2/2/w/120/q/70 IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type PNG image data, 120 x 56, 8-bit colormap, non-interlaced Size 3.5 kB (3532 bytes) Hash a1e6bfc36156065ad7b0d1fbc6fbd06b f80ea7ce0b9961d10c598a483b3ddcd1029ac6fe 0709c4b8cfe0d0269828190169e616ef8d8eb8001b0d936c1ed95f35133007f2 HTTP Headers `GET /upload-common/commodity/c8b30c5b-0d15-4800-a24f-f97879ac6fdc.png?imageView2/2/w/120/q/70 HTTP/1.1 Host: dl.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Fri, 10 May 2024 08:50:44 GMT content-type: image/png content-length: 3532 cache-control: max-age=31536000 last-modified: Wed, 06 Dec 2023 07:31:49 GMT request-id: e7f1cd3b5a01bed0ac7ffa8ebb5dc125 x-content-type-options: nosniff x-fop-destination-type: fop x-imagine-success: true cf-cache-status: HIT age: 828744 accept-ranges: bytes vary: Accept-Encoding access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef1ecdbb509-OSL alt-svc: h3=":443"; ma=86400

	aimg.kwcdn.com/upload_aimg_b/web/pc/c19eefdc-4dfd-4106-8074-ed8521cacb6e.png.slim.png?imageView2/2/w/30/q/70	104.18.11.132	200 OK	736 B
URL GET HTTP/3 aimg.kwcdn.com/upload_aimg_b/web/pc/c19eefdc-4dfd-4106-8074-ed8521cacb6e.png.slim.png?imageView2/2/w/30/q/70 IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced Size 736 B (736 bytes) Hash d83e59975e657c03f8fbf5f788d40aa0 de0006a1dc7e3ff4f907338cefb4d30e14101560 92085314fe98286cbd3745334ff52ecb4d86d8c81067a8de867634330fa00bd8 HTTP Headers `GET /upload_aimg_b/web/pc/c19eefdc-4dfd-4106-8074-ed8521cacb6e.png.slim.png?imageView2/2/w/30/q/70 HTTP/1.1 Host: aimg.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Fri, 10 May 2024 08:50:45 GMT content-type: image/png content-length: 736 cache-control: max-age=31536000 last-modified: Wed, 06 Dec 2023 13:20:12 GMT request-id: 32e644ecf0d67da5d8aa05a3367e3ff2 x-content-type-options: nosniff x-fop-destination-type: fop x-imagine-success: true cf-cache-status: HIT age: 828751 accept-ranges: bytes vary: Accept-Encoding access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef87d7856aa-OSL alt-svc: h3=":443"; ma=86400

	www.temu.com/?ws-titan-request-sign=dee0ea73	20.157.217.65	101 Switching Protocols	0 B
URL GET HTTP/1.1 www.temu.com/?ws-titan-request-sign=dee0ea73 IP 20.157.217.65:443 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.temu.com FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35 ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /?ws-titan-request-sign=dee0ea73 HTTP/1.1 Host: www.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: https://www.temu.com Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: NaIvS1q6f7Rc+dMqAVnoMg== DNT: 1 Connection: keep-alive, Upgrade Cookie: region=151; language=en; currency=NOK; api_uid=CnGMbmY93+GvewBSFn1EAg==; _nano_fp=XpmanpXqXp9YXqTyXC_L9uRjnNpOTbQiLLAb8x7v; timezone=UTC Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Content-Length: 0 Sec-WebSocket-Accept: fsNQwrP+JkRpgtJOSSB+chjU0os= Connection: Upgrade Upgrade: websocket`

	eu.pftk.temu.com/pmm/api/pmm/api	20.93.45.131	200 OK	0 B
URL POST HTTP/2 eu.pftk.temu.com/pmm/api/pmm/api IP 20.93.45.131:443 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.pftk.temu.com FingerprintF4:BE:81:8F:72:EA:45:6C:90:FB:ED:AA:86:7C:F4:6D:10:06:EA:D8 ValidityThu, 13 Jul 2023 13:25:25 GMT - Tue, 13 Aug 2024 13:25:25 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /pmm/api/pmm/api HTTP/1.1 Host: eu.pftk.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ Content-Type: text/plain;charset=UTF-8 Content-Length: 1381 Origin: https://www.temu.com DNT: 1 Connection: keep-alive Cookie: api_uid=CnGMbmY93+GvewBSFn1EAg== Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Fri, 10 May 2024 08:50:45 GMT content-type: application/octet-stream expires: Fri, 10 May 2024 08:50:44 GMT cache-control: no-cache access-control-allow-origin: https://www.temu.com access-control-allow-credentials: true access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content X-Firefox-Spdy: h2`

	www.temu.com/api/bg/bg-uranus-api/uranus_cart/cart_modify	20.47.117.32	200 OK	11 kB
URL POST HTTP/2 www.temu.com/api/bg/bg-uranus-api/uranus_cart/cart_modify IP 20.47.117.32:443 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.temu.com FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35 ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT File type JSON text data Size 11 kB (11066 bytes) Hash d89a1442de9116c1c1ee10eba3896880 eee170833592e05ab171862c04e3806da1edd965 3460ae79978d5e291621853a1def8e64f01669d3f5e1e95f7884703798e60459 HTTP Headers POST /api/bg/bg-uranus-api/uranus_cart/cart_modify HTTP/1.1 Host: www.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json, text/plain, /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Content-Type: application/json;charset=UTF-8 Anti-Content: 0aqAfqnUGOloF99VOcbB6y2fiXsCYBy3J2LVp_tt0CdIoxF1-yiF1liyTHOpVJuu6npnUQZ3B9mW9CWxPAoLltCZm-aafuNori9dxpif2WyXgM4cXsxzekx4We_jCbNYVLkhSnIg7ePbGQ0x6XJgYnqmBfNwoE3dLgHIHzKDAXbnOGPvDi9su_1j0cFWcftkYFAcWG5jPIOZs5Eof3fJ0-eAMqufvhsdIBbOb1UcZoZUdA_990CKw1dSP9T2Gq92l-olnzM0amW3SwXwHh3pZRbP13ImCPG-tSlEeQwZfa-p4LGVHCJ-z5mdgTzI0nuDsNB72j9d9Sq6wGVNq0M3-vwjdQQigniKPWtT2ajfJIDyfpyRXGW0oaLjV6wOfEF3iGbROaGza0IKJiWbg378MLJeJU02zjyxY5DQcMbmGWF1l1XW1shYlArOJW1gLayF2Odtcq1a Content-Length: 94 Origin: https://www.temu.com DNT: 1 Connection: keep-alive Cookie: region=151; language=en; currency=NOK; api_uid=CnGMbmY93+GvewBSFn1EAg==; _nano_fp=XpmanpXqXp9YXqTyXC_L9uRjnNpOTbQiLLAb8x7v; timezone=UTC Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK server: nginx date: Fri, 10 May 2024 08:50:45 GMT content-type: application/json;charset=UTF-8 content-encoding: gzip x-yak-request-id: 1715331045629-4b5042f2c33500c324b477b33f1788ce access-control-allow-origin: https://www.temu.com vary: accept-encoding, Origin access-control-allow-headers: Origin, X-Requested-With, Content-Type, X_Requested_With, Accept, X-HTTP-Method-Override, Cookie, AccessToken, PASSID, VerifyAuthToken, Anti-Content access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT access-control-allow-credentials: true strict-transport-security: max-age=31536000 content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/110000007/sec-gif yak-timeinfo: 1715331045629\|30 cip: 91.90.42.154 X-Firefox-Spdy: h2

	www.temu.com/api/yasuo-gateway/sms/pc/query	20.47.117.32	200 OK	72 B
URL POST HTTP/2 www.temu.com/api/yasuo-gateway/sms/pc/query IP 20.47.117.32:443 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.temu.com FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35 ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT File type troff or preprocessor input, ASCII text, with no line terminators Size 72 B (72 bytes) Hash 95b9ef47570ab9b552a441fbf092f3d5 5cce0d22abbfc7f8de1086189bf9a1525d4b9b7f 9b7bd086d0190fb5d8c684319683c9bc67582b90a7acb9b53d40030088dcb164 HTTP Headers POST /api/yasuo-gateway/sms/pc/query HTTP/1.1 Host: www.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json, text/plain, /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Content-Type: application/json;charset=UTF-8 Anti-Content: 0aqWfxUkM_Vesxcyu4evzfpvBq-HjiWEI3EF11mI1WuSLhCSfBe-3LI73pDS1MC13A_F1cUE3fe-f3DgVN_5OiXOd7yXsXHGFjQd5yhU5NcqHgsBL_IrtZI39kgqXe2hvS1hv2zWu7-puEf_k-fICB1heMkQp4dBkmo7sS5yX0zaQgZD8-5eB_FeBx1mM3ID7_1HMcKmMZImBxKeBfIDMewyf9wO70Ro0Wf-kMzZEazGHr3zkF3QeSL1SKB4ZK_ZKm74ULkWDvz4Zv7kosMfcet_7z7-MkL21KtrISf8CSL_VDB2F2FIQ477kpD--RZ03fOyPVKqgJXtbVKU45aUPaK0tMXuPrJOpalqOHYtn9TpwHXiTsxdGtKX4nHPsH-29QOweKr26P7p0UShCOM3vkDBMhr-L77Qa7r3_MLQImm8I3F8NmeSrZ1R1bG092Gn3TJz4HOIVn Content-Length: 493 Origin: https://www.temu.com DNT: 1 Connection: keep-alive Cookie: region=151; language=en; currency=NOK; api_uid=CnGMbmY93+GvewBSFn1EAg==; _nano_fp=XpmanpXqXp9YXqTyXC_L9uRjnNpOTbQiLLAb8x7v; timezone=UTC Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK server: nginx date: Fri, 10 May 2024 08:50:45 GMT content-type: application/json;charset=UTF-8 content-encoding: gzip x-yak-request-id: 1715331045828-b355c478f3584a80fa6a92739fd00f90 access-control-allow-origin: https://www.temu.com vary: Accept-Encoding, Origin access-control-allow-headers: Origin, X-Requested-With, Content-Type, X_Requested_With, Accept, X-HTTP-Method-Override, Cookie, AccessToken, PASSID, VerifyAuthToken, Anti-Content access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT access-control-allow-credentials: true strict-transport-security: max-age=31536000 content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/110000007/sec-gif yak-timeinfo: 1715331045828\|2 cip: 91.90.42.154 X-Firefox-Spdy: h2

	www.temu.com/api/phantom/xg/pfb/l1	20.47.117.32	200 OK	114 B
URL GET HTTP/2 www.temu.com/api/phantom/xg/pfb/l1 IP 20.47.117.32:443 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.temu.com FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35 ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT File type troff or preprocessor input, ASCII text, with no line terminators Size 114 B (114 bytes) Hash bb0687da0fb05463be21230ed3fa5de3 874f00ce048e7f938949306983dbdee59f0f1a63 2910d68aaf70adf92b6006ed9add84cad15e47a44df6b805d29467a028d3cf3a HTTP Headers GET /api/phantom/xg/pfb/l1 HTTP/1.1 Host: www.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json, text/plain, /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e DNT: 1 Connection: keep-alive Cookie: region=151; language=en; currency=NOK; api_uid=CnGMbmY93+GvewBSFn1EAg==; _nano_fp=XpmanpXqXp9YXqTyXC_L9uRjnNpOTbQiLLAb8x7v; timezone=UTC Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Fri, 10 May 2024 08:50:46 GMT content-type: application/json;charset=UTF-8 content-encoding: gzip vary: Accept-Encoding x-yak-request-id: 1715331046123-8e38e91513669d6d8790b548c1c36126 strict-transport-security: max-age=31536000 content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/110000007/sec-gif yak-timeinfo: 1715331046123\|2 cip: 91.90.42.154 X-Firefox-Spdy: h2`

	static.kwcdn.com/m-assets/assets/js/react_webpack_runtime_579f16c87eb7a1a0639c.js	104.18.11.132	200 OK	14 kB
URL GET HTTP/3 static.kwcdn.com/m-assets/assets/js/react_webpack_runtime_579f16c87eb7a1a0639c.js IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type JavaScript source, ASCII text, with very long lines (14162) Size 14 kB (14275 bytes) Hash 4734efe8b7d7695fd6f815e78afe641e eb4ee79241b5eb495b8b1e48871bf1ef00cbc137 c3e04b246ff43cb500de73e1ea0e76d5093c8f1c420e31cca91bebe32ac0f232 HTTP Headers `GET /m-assets/assets/js/react_webpack_runtime_579f16c87eb7a1a0639c.js HTTP/1.1 Host: static.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ Origin: https://www.temu.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Fri, 10 May 2024 08:50:44 GMT content-type: application/javascript; charset=utf-8 cache-control: max-age=31536000 content-md5: RzTv6LfXaV/W+BXniv5kHg== etag: W/"0x8DC6E9F7C0CD78D" last-modified: Tue, 07 May 2024 14:10:43 GMT vary: Accept-Encoding x-content-type-options: nosniff cf-cache-status: HIT age: 239138 access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef3c814b509-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	static.kwcdn.com/m-assets/assets/js/biz_layout_search_panel_2150a85bd92c83a5ae08.js	104.18.11.132	200 OK	14 kB
URL GET HTTP/3 static.kwcdn.com/m-assets/assets/js/biz_layout_search_panel_2150a85bd92c83a5ae08.js IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type JavaScript source, ASCII text, with very long lines (13668) Size 14 kB (13783 bytes) Hash 63fd7a14d97435308c5e3a7aa3852c66 d024e5d092768914380d75bc27ce072ac7c5048b 9f10bc7c50e6ea0b475b1cf95430f9c3edb0c144d36928154667c47331c6e3a1 HTTP Headers `GET /m-assets/assets/js/biz_layout_search_panel_2150a85bd92c83a5ae08.js HTTP/1.1 Host: static.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ X-Moz: prefetch Origin: https://www.temu.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Fri, 10 May 2024 08:50:44 GMT content-type: application/javascript; charset=utf-8 cache-control: max-age=31536000 content-md5: Y/16FNl0NTCMXjp6o4UsZg== etag: W/"0x8DC6E9F7C14ECA0" last-modified: Tue, 07 May 2024 14:10:44 GMT vary: Accept-Encoding x-content-type-options: nosniff cf-cache-status: HIT age: 239135 access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef70e23b509-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	www.temu.com/api/server/_stm	20.47.117.32	200 OK	29 B
URL GET HTTP/2 www.temu.com/api/server/_stm IP 20.47.117.32:443 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.temu.com FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35 ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT File type troff or preprocessor input, ASCII text, with no line terminators Size 29 B (29 bytes) Hash d8b3b5c715b94e5faf6f99919424c5f0 0089acb4b1b66addc7a61544907742b333c99dc4 eb04a004f82dfcd6438f3ca54efb070b06678bffed7b260dc31b6f44a1f5d4c8 HTTP Headers GET /api/server/_stm HTTP/1.1 Host: www.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json, text/plain, /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e DNT: 1 Connection: keep-alive Cookie: region=151; language=en; currency=NOK; api_uid=CnGMbmY93+GvewBSFn1EAg==; _nano_fp=XpmanpXqXp9YXqTyXC_L9uRjnNpOTbQiLLAb8x7v; timezone=UTC Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Fri, 10 May 2024 08:50:45 GMT content-type: application/json vary: Accept-Encoding cache-control: no-cache, no-store cip: 91.90.42.154 content-encoding: gzip X-Firefox-Spdy: h2`

	eu.pftk.temu.com/pmm/api/pmm/api	20.93.45.131	200 OK	0 B
URL POST HTTP/2 eu.pftk.temu.com/pmm/api/pmm/api IP 20.93.45.131:443 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.pftk.temu.com FingerprintF4:BE:81:8F:72:EA:45:6C:90:FB:ED:AA:86:7C:F4:6D:10:06:EA:D8 ValidityThu, 13 Jul 2023 13:25:25 GMT - Tue, 13 Aug 2024 13:25:25 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /pmm/api/pmm/api HTTP/1.1 Host: eu.pftk.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ Content-Type: text/plain;charset=UTF-8 Content-Length: 1340 Origin: https://www.temu.com DNT: 1 Connection: keep-alive Cookie: api_uid=CnGMbmY93+GvewBSFn1EAg== Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Fri, 10 May 2024 08:50:45 GMT content-type: application/octet-stream expires: Fri, 10 May 2024 08:50:44 GMT cache-control: no-cache access-control-allow-origin: https://www.temu.com access-control-allow-credentials: true access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content X-Firefox-Spdy: h2`

	eu.pftk.temu.com/pmm/api/pmm/front_err	20.93.45.131	200 OK	0 B
URL POST HTTP/2 eu.pftk.temu.com/pmm/api/pmm/front_err IP 20.93.45.131:443 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.pftk.temu.com FingerprintF4:BE:81:8F:72:EA:45:6C:90:FB:ED:AA:86:7C:F4:6D:10:06:EA:D8 ValidityThu, 13 Jul 2023 13:25:25 GMT - Tue, 13 Aug 2024 13:25:25 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /pmm/api/pmm/front_err HTTP/1.1 Host: eu.pftk.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ Content-Type: text/plain;charset=UTF-8 Content-Length: 5567 Origin: https://www.temu.com DNT: 1 Connection: keep-alive Cookie: api_uid=CnGMbmY93+GvewBSFn1EAg== Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Fri, 10 May 2024 08:50:46 GMT content-type: application/octet-stream expires: Fri, 10 May 2024 08:50:45 GMT cache-control: no-cache access-control-allow-origin: https://www.temu.com access-control-allow-credentials: true access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content X-Firefox-Spdy: h2`

	static.kwcdn.com/m-assets/assets/js/7845_93b55e37ee03039e3f51.js	104.18.11.132	200 OK	30 kB
URL GET HTTP/3 static.kwcdn.com/m-assets/assets/js/7845_93b55e37ee03039e3f51.js IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type JavaScript source, ASCII text, with very long lines (30413) Size 30 kB (30509 bytes) Hash 065e06bee5064826d2696bc85cca0de6 ae3871697a00e453e9c63a6f0e6ac1e2dc91bcae acd6d83a1d794e223651bc0a310734b6b297d9fb93886cc9fdec981a6810ae38 HTTP Headers `GET /m-assets/assets/js/7845_93b55e37ee03039e3f51.js HTTP/1.1 Host: static.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ Origin: https://www.temu.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Fri, 10 May 2024 08:50:45 GMT content-type: application/javascript; charset=utf-8 cache-control: max-age=31536000 content-md5: Bl4GvuUGSCbSaWvIXMoN5g== etag: W/"0x8DC6E9F7C3F2AC3" last-modified: Tue, 07 May 2024 14:10:44 GMT vary: Accept-Encoding x-content-type-options: nosniff cf-cache-status: HIT age: 239136 access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef7dffdb509-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	aimg.kwcdn.com/upload_aimg_b/web/pc/c19eefdc-4dfd-4106-8074-ed8521cacb6e.png.slim.png?imageView2/2/w/30/q/70	0.0.0.0		0 B
URL GET aimg.kwcdn.com/upload_aimg_b/web/pc/c19eefdc-4dfd-4106-8074-ed8521cacb6e.png.slim.png?imageView2/2/w/30/q/70 IP 0.0.0.0:0 ASN #0 Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /upload_aimg_b/web/pc/c19eefdc-4dfd-4106-8074-ed8521cacb6e.png.slim.png?imageView2/2/w/30/q/70 HTTP/1.1 Host: aimg.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache`

	aimg.kwcdn.com/upload_aimg/pc/427c29ba-bef6-439c-9d4c-edbdde47c7e0.png.slim.png?imageView2/2/w/120/q/70	104.18.11.132	200 OK	1.3 kB
URL GET HTTP/3 aimg.kwcdn.com/upload_aimg/pc/427c29ba-bef6-439c-9d4c-edbdde47c7e0.png.slim.png?imageView2/2/w/120/q/70 IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type PNG image data, 60 x 60, 8-bit colormap, non-interlaced Size 1.3 kB (1288 bytes) Hash 1019357c854213de263a74a822a27df7 478008f954fa3efbdd73342e65a0fa86f7b0b088 d5b37be7a9944d8f164753aae6a072d474fbe5f5be9636c33dced8a9494ab958 HTTP Headers `GET /upload_aimg/pc/427c29ba-bef6-439c-9d4c-edbdde47c7e0.png.slim.png?imageView2/2/w/120/q/70 HTTP/1.1 Host: aimg.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Fri, 10 May 2024 08:50:45 GMT content-type: image/png content-length: 1288 cache-control: max-age=31536000 last-modified: Thu, 25 Jan 2024 13:19:12 GMT request-id: 409892810a964098be2a78180c794212 x-content-type-options: nosniff x-fop-destination-type: fop x-imagine-success: true cf-cache-status: HIT age: 828729 accept-ranges: bytes vary: Accept-Encoding access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef9d82856aa-OSL alt-svc: h3=":443"; ma=86400

	aimg.kwcdn.com/upload_aimg/openingemail/flagsnew/eced7c16-0945-4cda-a724-8eef6681646a.png.slim.png?imageView2/2/w/800/q/70	104.18.11.132	200 OK	2.7 kB
URL GET HTTP/3 aimg.kwcdn.com/upload_aimg/openingemail/flagsnew/eced7c16-0945-4cda-a724-8eef6681646a.png.slim.png?imageView2/2/w/800/q/70 IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type PNG image data, 240 x 240, 8-bit colormap, non-interlaced Size 2.7 kB (2650 bytes) Hash 7dd8a23786d999877eb6d28e2ffde736 383b2c120c396436d655c40fffc1b971148e58cd ad5b0359524c46a5f1ebe8812ec85ec9c54c6bfe5c26442ca6fdce4a206a9c20 HTTP Headers `GET /upload_aimg/openingemail/flagsnew/eced7c16-0945-4cda-a724-8eef6681646a.png.slim.png?imageView2/2/w/800/q/70 HTTP/1.1 Host: aimg.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Fri, 10 May 2024 08:50:44 GMT content-type: image/png content-length: 2650 cache-control: max-age=31536000 last-modified: Sun, 21 Apr 2024 20:14:43 GMT request-id: b687970cc6376efe3f0b6397f08799e9 x-content-type-options: nosniff x-fop-destination-type: fop x-imagine-success: true cf-cache-status: HIT age: 833048 accept-ranges: bytes vary: Accept-Encoding access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef1bcb0b509-OSL alt-svc: h3=":443"; ma=86400

	aimg.kwcdn.com/upload_aimg_b/web/pc/728e2277-96f9-4787-bd89-d87e3b6bc2f2.png.slim.png?imageView2/2/w/30/q/70	0.0.0.0		0 B
URL GET aimg.kwcdn.com/upload_aimg_b/web/pc/728e2277-96f9-4787-bd89-d87e3b6bc2f2.png.slim.png?imageView2/2/w/30/q/70 IP 0.0.0.0:0 ASN #0 Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /upload_aimg_b/web/pc/728e2277-96f9-4787-bd89-d87e3b6bc2f2.png.slim.png?imageView2/2/w/30/q/70 HTTP/1.1 Host: aimg.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache`

	aimg.kwcdn.com/upload_aimg_b/web/pc/728e2277-96f9-4787-bd89-d87e3b6bc2f2.png.slim.png?imageView2/2/w/30/q/70	104.18.11.132	200 OK	551 B
URL GET HTTP/3 aimg.kwcdn.com/upload_aimg_b/web/pc/728e2277-96f9-4787-bd89-d87e3b6bc2f2.png.slim.png?imageView2/2/w/30/q/70 IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced Size 551 B (551 bytes) Hash 77719779e69a5bf9fdccbaa345b9522d 36af40a967378737433a468ea184bc7d4ac01835 034e03c02e294b29737d644f330ba2a3c648b31c1d69278dfcc3cc5435f8916a HTTP Headers `GET /upload_aimg_b/web/pc/728e2277-96f9-4787-bd89-d87e3b6bc2f2.png.slim.png?imageView2/2/w/30/q/70 HTTP/1.1 Host: aimg.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Fri, 10 May 2024 08:50:45 GMT content-type: image/png content-length: 551 cache-control: max-age=31536000 last-modified: Tue, 09 Jan 2024 05:02:59 GMT request-id: 6496c9d8a0bd721847daefe608b449e0 x-avi-image-cache: hit x-content-type-options: nosniff x-fop-destination-type: fop x-imagine-success: true cf-cache-status: HIT age: 837189 accept-ranges: bytes vary: Accept-Encoding access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef88da856aa-OSL alt-svc: h3=":443"; ma=86400

	eu.pftk.temu.com/pmm/api/pmm/api	20.93.45.131	200 OK	0 B
URL POST HTTP/2 eu.pftk.temu.com/pmm/api/pmm/api IP 20.93.45.131:443 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.pftk.temu.com FingerprintF4:BE:81:8F:72:EA:45:6C:90:FB:ED:AA:86:7C:F4:6D:10:06:EA:D8 ValidityThu, 13 Jul 2023 13:25:25 GMT - Tue, 13 Aug 2024 13:25:25 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /pmm/api/pmm/api HTTP/1.1 Host: eu.pftk.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ Content-Type: text/plain;charset=UTF-8 Content-Length: 1348 Origin: https://www.temu.com DNT: 1 Connection: keep-alive Cookie: api_uid=CnGMbmY93+GvewBSFn1EAg== Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Fri, 10 May 2024 08:50:45 GMT content-type: application/octet-stream expires: Fri, 10 May 2024 08:50:44 GMT cache-control: no-cache access-control-allow-origin: https://www.temu.com access-control-allow-credentials: true access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content X-Firefox-Spdy: h2`

	static.kwcdn.com/m-assets/assets/js/7845_93b55e37ee03039e3f51.js	104.18.11.132	200 OK	30 kB
URL GET HTTP/3 static.kwcdn.com/m-assets/assets/js/7845_93b55e37ee03039e3f51.js IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type JavaScript source, ASCII text, with very long lines (30413) Size 30 kB (30509 bytes) Hash 065e06bee5064826d2696bc85cca0de6 ae3871697a00e453e9c63a6f0e6ac1e2dc91bcae acd6d83a1d794e223651bc0a310734b6b297d9fb93886cc9fdec981a6810ae38 HTTP Headers `GET /m-assets/assets/js/7845_93b55e37ee03039e3f51.js HTTP/1.1 Host: static.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ X-Moz: prefetch Origin: https://www.temu.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Fri, 10 May 2024 08:50:45 GMT content-type: application/javascript; charset=utf-8 cache-control: max-age=31536000 content-md5: Bl4GvuUGSCbSaWvIXMoN5g== etag: W/"0x8DC6E9F7C3F2AC3" last-modified: Tue, 07 May 2024 14:10:44 GMT vary: Accept-Encoding x-content-type-options: nosniff cf-cache-status: HIT age: 239136 access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef90e5a1bfa-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	aimg.kwcdn.com/upload_aimg_b/web/pc/2077debf-6cf5-463a-84ab-969eee3593a1.png.slim.png?imageView2/2/w/30/q/70	104.18.11.132	200 OK	727 B
URL GET HTTP/3 aimg.kwcdn.com/upload_aimg_b/web/pc/2077debf-6cf5-463a-84ab-969eee3593a1.png.slim.png?imageView2/2/w/30/q/70 IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced Size 727 B (727 bytes) Hash 70a66f149b8dd023dbed4c221da9db2f 3f1c7c06ae76cfd87290b3525852a4b642473931 d41770782a3a95e5d1e74e04450df2c16fc493c3d9fae2ea2e3855973c81c7f0 HTTP Headers `GET /upload_aimg_b/web/pc/2077debf-6cf5-463a-84ab-969eee3593a1.png.slim.png?imageView2/2/w/30/q/70 HTTP/1.1 Host: aimg.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Fri, 10 May 2024 08:50:45 GMT content-type: image/png content-length: 727 cache-control: max-age=31536000 last-modified: Thu, 07 Dec 2023 09:17:55 GMT request-id: c43e5b2a052635863615036800abc8f9 x-content-type-options: nosniff x-fop-destination-type: fop x-imagine-success: true cf-cache-status: HIT age: 823134 accept-ranges: bytes vary: Accept-Encoding access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef88dac56aa-OSL alt-svc: h3=":443"; ma=86400

	static.kwcdn.com/m-assets/assets/js/biz_layout_toolbar_0553ee4c5a9e0caf8439.js	104.18.11.132	200 OK	48 kB
URL GET HTTP/2 static.kwcdn.com/m-assets/assets/js/biz_layout_toolbar_0553ee4c5a9e0caf8439.js IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type JavaScript source, ASCII text, with very long lines (47801) Size 48 kB (47911 bytes) Hash af7be3008c3f148eacefe015aa2e91cd c60e2b08d21830b22f2b23e73d6cd8d2b1891a89 617dc0a2bb1bcef4929030f2debc5d4cfa2cb199f7ab31d357eca3353d342f46 HTTP Headers `GET /m-assets/assets/js/biz_layout_toolbar_0553ee4c5a9e0caf8439.js HTTP/1.1 Host: static.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ Origin: https://www.temu.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 10 May 2024 08:50:45 GMT content-type: application/javascript; charset=utf-8 cache-control: max-age=31536000 content-md5: r3vjAIw/FI6s7+AVqi6RzQ== etag: W/"0x8DC6025D145346F" last-modified: Fri, 19 Apr 2024 04:04:32 GMT vary: Accept-Encoding x-content-type-options: nosniff cf-cache-status: HIT age: 837114 access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef89a140b51-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	www.temu.com/api/phantom/xg/pfb/a3	20.47.117.32	200 OK	65 B
URL GET HTTP/2 www.temu.com/api/phantom/xg/pfb/a3 IP 20.47.117.32:443 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.temu.com FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35 ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT File type troff or preprocessor input, ASCII text, with no line terminators Size 65 B (65 bytes) Hash c6414e5496710ed55ee4f9ec40f156ea 41cba42db5066498b26b124c6014f8404f89eebe 88631f128b21eb159e7e9e24b6a4107ef29ae7fc05b5653b4723b2aee1b7972e HTTP Headers GET /api/phantom/xg/pfb/a3 HTTP/1.1 Host: www.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json, text/plain, /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e DNT: 1 Connection: keep-alive Cookie: region=151; language=en; currency=NOK; api_uid=CnGMbmY93+GvewBSFn1EAg==; _nano_fp=XpmanpXqXp9YXqTyXC_L9uRjnNpOTbQiLLAb8x7v; timezone=UTC Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Fri, 10 May 2024 08:50:45 GMT content-type: application/json;charset=UTF-8 content-encoding: gzip vary: Accept-Encoding x-yak-request-id: 1715331045496-e248b187dc7c1e7ef71950a8549b566b strict-transport-security: max-age=31536000 content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/110000007/sec-gif yak-timeinfo: 1715331045496\|1 cip: 91.90.42.154 X-Firefox-Spdy: h2`

	www.temu.com/api/rubicon/benefit/query/info	20.47.117.32	200 OK	28 B
URL POST HTTP/2 www.temu.com/api/rubicon/benefit/query/info IP 20.47.117.32:443 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.temu.com FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35 ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT File type troff or preprocessor input, ASCII text, with no line terminators Size 28 B (28 bytes) Hash 660e067b6aa4611f6604d845c88d5e6e 5465eae648303473aa395dd854aec7bb90d1d0ae d6de6e3844e2fe1ce81256ae2f88632448f53f861d6188357b26ea0f3ba879ae HTTP Headers POST /api/rubicon/benefit/query/info HTTP/1.1 Host: www.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json, text/plain, /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Content-Type: application/json;charset=UTF-8 Anti-Content: 0aqWfqnFGclVj99ZFOun0L2F8B1IpBsurVuK9JwzMyAInulAgG9PYJtHvatAzfyyNjnh3FMpVrBaECaT7aPI_blM1UNqJmfnmaGvtv4QuFsndq_XBLaDfe-pPti-Gg0Urz61hmVWKTAgoUXXQ6uYu_X6faEJ3s2Y-TKKrdbczyuxyEkhWK7IXIJI-qSjgiuk_J6tjARSsIx6wgGBiVY5pOSvx3CeN-zOvaOrkjqg5uZ9Ct4Z44_2v46gZw36Vf2s2gbGgrjLuQiZYFZF3B_rm_4tRtLf5OqVtr1g0e1UCZ1phuqX10T1tnxTygXztWr8GbXz939d9H_6wGZNq2S38vwyyQQigni1PCtT2mjfJHDyfpyRXGC0amLjZ6wcfE-3iGbRcmGzm0H1JiCbg378SLJeJF0ZAmKUSB8CAGxbzrGdA7ebVcjEYrCoDj7QV6kx3wlv4HOIVm Content-Length: 44 Origin: https://www.temu.com DNT: 1 Connection: keep-alive Cookie: region=151; language=en; currency=NOK; api_uid=CnGMbmY93+GvewBSFn1EAg==; _nano_fp=XpmanpXqXp9YXqTyXC_L9uRjnNpOTbQiLLAb8x7v; timezone=UTC Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK server: nginx date: Fri, 10 May 2024 08:50:45 GMT content-type: application/json content-encoding: gzip x-yak-request-id: 1715331045890-57d751651bd9db7f8f2723bb82fc9667 access-control-allow-origin: https://www.temu.com vary: accept-encoding, Origin access-control-allow-headers: Origin, X-Requested-With, Content-Type, X_Requested_With, Accept, X-HTTP-Method-Override, Cookie, AccessToken, PASSID, VerifyAuthToken, Anti-Content access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT access-control-allow-credentials: true strict-transport-security: max-age=31536000 content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/110000007/sec-gif yak-timeinfo: 1715331045890\|2 cip: 91.90.42.154 X-Firefox-Spdy: h2

	static.kwcdn.com/m-assets/assets/js/biz_layout_anti_fraud_popup_9ccdc7396c0715e35209.js	104.18.11.132	200 OK	4.8 kB
URL GET HTTP/3 static.kwcdn.com/m-assets/assets/js/biz_layout_anti_fraud_popup_9ccdc7396c0715e35209.js IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type ASCII text, with very long lines (4966), with no line terminators Size 4.8 kB (4807 bytes) Hash 1c799dd7b932d6c3a18b10310ea046e1 84d124b192c86ba50b3eeaca3ad8cd38da490d91 adc4936b61ea5fb45b5bdbfdd9d3f28cdd13fcfb8f71e0a06a0edfb88c20ab03 HTTP Headers `GET /m-assets/assets/js/biz_layout_anti_fraud_popup_9ccdc7396c0715e35209.js HTTP/1.1 Host: static.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ X-Moz: prefetch Origin: https://www.temu.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Fri, 10 May 2024 08:50:44 GMT content-type: application/javascript; charset=utf-8 cache-control: max-age=31536000 content-md5: aeHQirrYnlFS5FIIyufKHA== etag: W/"0x8DC4A564E0E7C23" last-modified: Fri, 22 Mar 2024 09:56:11 GMT vary: Accept-Encoding x-content-type-options: nosniff cf-cache-status: HIT age: 837154 access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef70e1eb509-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	static.kwcdn.com/m-assets/assets/js/7666_fbcdc8f1d92b0e0e9ac7.js	104.18.11.132	200 OK	62 kB
URL GET HTTP/3 static.kwcdn.com/m-assets/assets/js/7666_fbcdc8f1d92b0e0e9ac7.js IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type JavaScript source, ASCII text, with very long lines (62382) Size 62 kB (62478 bytes) Hash 5452de4563f0ced1cda37db4aad3429d 722c8ccd5dc3cbcbb1223c30a2da4fca50067c11 c8692f31d652d7215b5331c98d147d34163280b78c367aeae13ce21c24e1e5aa HTTP Headers `GET /m-assets/assets/js/7666_fbcdc8f1d92b0e0e9ac7.js HTTP/1.1 Host: static.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ Origin: https://www.temu.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Fri, 10 May 2024 08:50:45 GMT content-type: application/javascript; charset=utf-8 cache-control: max-age=31536000 content-md5: VFLeRWPwztHNo320qtNCnQ== etag: W/"0x8DC49A5AE5489C1" last-modified: Thu, 21 Mar 2024 12:51:52 GMT vary: Accept-Encoding x-content-type-options: nosniff cf-cache-status: HIT age: 833031 access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef7cfc2b509-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	aimg.kwcdn.com/upload_aimg_b/web/pc/2077debf-6cf5-463a-84ab-969eee3593a1.png.slim.png?imageView2/2/w/30/q/70	0.0.0.0		0 B
URL GET aimg.kwcdn.com/upload_aimg_b/web/pc/2077debf-6cf5-463a-84ab-969eee3593a1.png.slim.png?imageView2/2/w/30/q/70 IP 0.0.0.0:0 ASN #0 Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /upload_aimg_b/web/pc/2077debf-6cf5-463a-84ab-969eee3593a1.png.slim.png?imageView2/2/w/30/q/70 HTTP/1.1 Host: aimg.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache`

	static.kwcdn.com/m-assets/assets/js/biz_vendors_a048f210d77b7d2069c8.js	104.18.11.132	200 OK	1.3 MB
URL GET HTTP/3 static.kwcdn.com/m-assets/assets/js/biz_vendors_a048f210d77b7d2069c8.js IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type Size 1.3 MB (1320398 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /m-assets/assets/js/biz_vendors_a048f210d77b7d2069c8.js HTTP/1.1 Host: static.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ Origin: https://www.temu.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Fri, 10 May 2024 08:50:44 GMT content-type: application/javascript; charset=utf-8 cache-control: max-age=31536000 content-md5: bkBbf2Gh60/ZAkPzmZIpKg== etag: W/"0x8DC6E9F7C8C7C34" last-modified: Tue, 07 May 2024 14:10:44 GMT vary: Accept-Encoding x-content-type-options: nosniff cf-cache-status: HIT age: 239138 access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef3c820b509-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	eu.pftk.temu.com/pmm/api/pmm/api	20.93.45.131	200 OK	0 B
URL POST HTTP/2 eu.pftk.temu.com/pmm/api/pmm/api IP 20.93.45.131:443 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.pftk.temu.com FingerprintF4:BE:81:8F:72:EA:45:6C:90:FB:ED:AA:86:7C:F4:6D:10:06:EA:D8 ValidityThu, 13 Jul 2023 13:25:25 GMT - Tue, 13 Aug 2024 13:25:25 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /pmm/api/pmm/api HTTP/1.1 Host: eu.pftk.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ Content-Type: text/plain;charset=UTF-8 Content-Length: 1369 Origin: https://www.temu.com DNT: 1 Connection: keep-alive Cookie: api_uid=CnGMbmY93+GvewBSFn1EAg== Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Fri, 10 May 2024 08:50:45 GMT content-type: application/octet-stream expires: Fri, 10 May 2024 08:50:44 GMT cache-control: no-cache access-control-allow-origin: https://www.temu.com access-control-allow-credentials: true access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content X-Firefox-Spdy: h2`

	eu.pftk.temu.com/pmm/api/pmm/api	20.93.45.131	200 OK	0 B
URL POST HTTP/2 eu.pftk.temu.com/pmm/api/pmm/api IP 20.93.45.131:443 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.pftk.temu.com FingerprintF4:BE:81:8F:72:EA:45:6C:90:FB:ED:AA:86:7C:F4:6D:10:06:EA:D8 ValidityThu, 13 Jul 2023 13:25:25 GMT - Tue, 13 Aug 2024 13:25:25 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /pmm/api/pmm/api HTTP/1.1 Host: eu.pftk.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ Content-Type: text/plain;charset=UTF-8 Content-Length: 1362 Origin: https://www.temu.com DNT: 1 Connection: keep-alive Cookie: api_uid=CnGMbmY93+GvewBSFn1EAg== Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Fri, 10 May 2024 08:50:46 GMT content-type: application/octet-stream expires: Fri, 10 May 2024 08:50:45 GMT cache-control: no-cache access-control-allow-origin: https://www.temu.com access-control-allow-credentials: true access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content X-Firefox-Spdy: h2`

	www.temu.com/api/phantom/xg/pfb/l1	20.47.117.32	200 OK	114 B
URL GET HTTP/2 www.temu.com/api/phantom/xg/pfb/l1 IP 20.47.117.32:443 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.temu.com FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35 ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT File type troff or preprocessor input, ASCII text, with no line terminators Size 114 B (114 bytes) Hash bb0687da0fb05463be21230ed3fa5de3 874f00ce048e7f938949306983dbdee59f0f1a63 2910d68aaf70adf92b6006ed9add84cad15e47a44df6b805d29467a028d3cf3a HTTP Headers GET /api/phantom/xg/pfb/l1 HTTP/1.1 Host: www.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json, text/plain, /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e DNT: 1 Connection: keep-alive Cookie: region=151; language=en; currency=NOK; api_uid=CnGMbmY93+GvewBSFn1EAg==; _nano_fp=XpmanpXqXp9YXqTyXC_L9uRjnNpOTbQiLLAb8x7v; timezone=UTC Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Fri, 10 May 2024 08:50:46 GMT content-type: application/json;charset=UTF-8 content-encoding: gzip vary: Accept-Encoding x-yak-request-id: 1715331046122-df88fda1a873a920b7bc3ca856e8d62b strict-transport-security: max-age=31536000 content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/110000007/sec-gif yak-timeinfo: 1715331046122\|1 cip: 91.90.42.154 X-Firefox-Spdy: h2`

	www.temu.com/api/phantom/xg/pfb/a4	20.47.117.32	200 OK	194 B
URL POST HTTP/2 www.temu.com/api/phantom/xg/pfb/a4 IP 20.47.117.32:443 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.temu.com FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35 ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT File type troff or preprocessor input, ASCII text, with no line terminators Size 194 B (194 bytes) Hash 7953b605e8f0f39ecdb6efeb6e2d3a4d 5107aab89869e1abff951a697f3c512bed21880f 3fe1d738e947a3e7d2947e56ac7a2ab618424c648d88f0726d041414fb0bb445 HTTP Headers POST /api/phantom/xg/pfb/a4 HTTP/1.1 Host: www.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json, text/plain, /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Content-Type: application/json;charset=UTF-8 Content-Length: 4379 Origin: https://www.temu.com DNT: 1 Connection: keep-alive Cookie: region=151; language=en; currency=NOK; api_uid=CnGMbmY93+GvewBSFn1EAg==; _nano_fp=XpmanpXqXp9YXqTyXC_L9uRjnNpOTbQiLLAb8x7v; timezone=UTC Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK server: nginx date: Fri, 10 May 2024 08:50:46 GMT content-type: application/json;charset=UTF-8 set-cookie: _bee=bPHjkJYwaA6JT5K4rrznR2UDSQDileYA; Max-Age=31536000; Expires=Sat, 10 May 2025 08:50:46 GMT; Path=/; Domain=.temu.com njrpl=bPHjkJYwaA6JT5K4rrznR2UDSQDileYA; Max-Age=31536000; Expires=Sat, 10 May 2025 08:50:46 GMT; Path=/; Domain=.temu.com dilx=RDobnHde7PJ2kLKWCTaBR; Max-Age=31536000; Expires=Sat, 10 May 2025 08:50:46 GMT; Path=/; Domain=.temu.com hfsc=L3yLfYoz6D7815fMfA==; Max-Age=31536000; Expires=Sat, 10 May 2025 08:50:46 GMT; Path=/; HttpOnly; Domain=.temu.com content-encoding: gzip x-yak-request-id: 1715331046155-5af6539c97267f87d172c68404ed38a6 access-control-allow-origin: https://www.temu.com vary: Accept-Encoding, Origin access-control-allow-headers: Origin, X-Requested-With, Content-Type, X_Requested_With, Accept, X-HTTP-Method-Override, Cookie, AccessToken, PASSID, VerifyAuthToken, Anti-Content access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT access-control-allow-credentials: true strict-transport-security: max-age=31536000 content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/110000007/sec-gif yak-timeinfo: 1715331046155\|15 cip: 91.90.42.154 X-Firefox-Spdy: h2

	static.kwcdn.com/m-assets/assets/css/7845-5ad706f79df83afe7e3d.css	104.18.11.132	200 OK	27 kB
URL GET HTTP/3 static.kwcdn.com/m-assets/assets/css/7845-5ad706f79df83afe7e3d.css IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type ASCII text, with very long lines (26957), with no line terminators Size 27 kB (26957 bytes) Hash dfa1f84f686205c5c6431ef4532f13cd 3552f09542ce0864069ed8566978524769b76312 5c91579bbb1c76c9e0baf2f9ae2dd92bc49dc74643e0fff5c998f67cccb0aa63 HTTP Headers `GET /m-assets/assets/css/7845-5ad706f79df83afe7e3d.css HTTP/1.1 Host: static.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ Origin: https://www.temu.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/3 200 OK date: Fri, 10 May 2024 08:50:45 GMT content-type: text/css cache-control: max-age=31536000 content-md5: 36H4T2hiBcXGQx70Uy8TzQ== etag: W/"0x8DC652F3747002A" last-modified: Thu, 25 Apr 2024 13:54:24 GMT vary: Accept-Encoding x-content-type-options: nosniff cf-cache-status: HIT age: 828724 access-control-allow-origin: coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef7dffbb509-OSL content-encoding: br alt-svc: h3=":443"; ma=86400`

	static.kwcdn.com/m-assets/assets/css/biz_layout_toolbar-1df6a3140126d1f39347.css	104.18.11.132	200 OK	23 kB
URL GET HTTP/2 static.kwcdn.com/m-assets/assets/css/biz_layout_toolbar-1df6a3140126d1f39347.css IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type ASCII text, with very long lines (22568), with no line terminators Size 23 kB (22568 bytes) Hash 851c9f56b7818208c2719994d81d2fff 3c00e61de8cf5ddba70a3b47a2bf29ac963880b7 5816858938a5e618e5b53909529f282ec128bfc68ec3f2a9a38adf5ba1fedd46 HTTP Headers `GET /m-assets/assets/css/biz_layout_toolbar-1df6a3140126d1f39347.css HTTP/1.1 Host: static.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ Origin: https://www.temu.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 10 May 2024 08:50:45 GMT content-type: text/css cache-control: max-age=31536000 content-md5: hRyfVreBggjCcZmU2B0v/w== etag: W/"0x8DC49650904298E" last-modified: Thu, 21 Mar 2024 05:09:07 GMT vary: Accept-Encoding x-content-type-options: nosniff cf-cache-status: HIT age: 828724 access-control-allow-origin: coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef89a120b51-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	eu.pftk.temu.com/pmm/api/pmm/api	20.93.45.131	200 OK	0 B
URL POST HTTP/2 eu.pftk.temu.com/pmm/api/pmm/api IP 20.93.45.131:443 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.pftk.temu.com FingerprintF4:BE:81:8F:72:EA:45:6C:90:FB:ED:AA:86:7C:F4:6D:10:06:EA:D8 ValidityThu, 13 Jul 2023 13:25:25 GMT - Tue, 13 Aug 2024 13:25:25 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /pmm/api/pmm/api HTTP/1.1 Host: eu.pftk.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ Content-Type: text/plain;charset=UTF-8 Content-Length: 1371 Origin: https://www.temu.com DNT: 1 Connection: keep-alive Cookie: api_uid=CnGMbmY93+GvewBSFn1EAg== Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Fri, 10 May 2024 08:50:45 GMT content-type: application/octet-stream expires: Fri, 10 May 2024 08:50:44 GMT cache-control: no-cache access-control-allow-origin: https://www.temu.com access-control-allow-credentials: true access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content X-Firefox-Spdy: h2`

	static.kwcdn.com/m-assets/assets/css/biz_layout_activity_coupon_popup-d005c5e43d05c9660c37.css	104.18.11.132	200 OK	23 kB
URL GET HTTP/3 static.kwcdn.com/m-assets/assets/css/biz_layout_activity_coupon_popup-d005c5e43d05c9660c37.css IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type assembler source, ASCII text, with very long lines (23282), with no line terminators Size 23 kB (23282 bytes) Hash 82f7266c3a5d96d6f779d765cadc5923 663de9790a367fa9fb9e8b937944801f550fc00c f8e18921485b536547f255c0902b9f62b21f802f5d62e06c61a9180b90be9cb1 HTTP Headers `GET /m-assets/assets/css/biz_layout_activity_coupon_popup-d005c5e43d05c9660c37.css HTTP/1.1 Host: static.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ Origin: https://www.temu.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/3 200 OK date: Fri, 10 May 2024 08:50:45 GMT content-type: text/css cache-control: max-age=31536000 content-md5: gvcmbDpdltb3eddlytxZIw== etag: W/"0x8DC6E9F7C8B43EA" last-modified: Tue, 07 May 2024 14:10:44 GMT vary: Accept-Encoding x-content-type-options: nosniff cf-cache-status: HIT age: 239134 access-control-allow-origin: coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef7cfd2b509-OSL content-encoding: br alt-svc: h3=":443"; ma=86400`

	www.temu.com/api/phantom/xg/pfb/b	20.47.117.32	200 OK	161 B
URL GET HTTP/2 www.temu.com/api/phantom/xg/pfb/b IP 20.47.117.32:443 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.temu.com FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35 ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT File type troff or preprocessor input, ASCII text, with no line terminators Size 161 B (161 bytes) Hash 94576f20b78d95d1c7cec3a2feb8da9b 1f76a17ebc3e66bcd72e70c02afac9ea5629ac92 661dfc3cdd8162478097c967f535e7a005f19c7cba3b73d2a5a1d0ddbc8d906b HTTP Headers GET /api/phantom/xg/pfb/b HTTP/1.1 Host: www.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json, text/plain, /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e DNT: 1 Connection: keep-alive Cookie: region=151; language=en; currency=NOK; api_uid=CnGMbmY93+GvewBSFn1EAg==; _nano_fp=XpmanpXqXp9YXqTyXC_L9uRjnNpOTbQiLLAb8x7v; timezone=UTC Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK server: nginx date: Fri, 10 May 2024 08:50:45 GMT content-type: application/json;charset=UTF-8 cache-control: max-age=94608000, immutable, private content-encoding: gzip vary: Accept-Encoding x-yak-request-id: 1715331045493-72fe5f61297737a2d6326509c07bf257 strict-transport-security: max-age=31536000 content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/110000007/sec-gif yak-timeinfo: 1715331045493\|2 cip: 91.90.42.154 X-Firefox-Spdy: h2

	static.kwcdn.com/m-assets/assets/js/biz_layout_activity_coupon_popup_bd52b6730f0b89227d03.js	104.18.11.132	200 OK	40 kB
URL GET HTTP/3 static.kwcdn.com/m-assets/assets/js/biz_layout_activity_coupon_popup_bd52b6730f0b89227d03.js IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type JavaScript source, ASCII text, with very long lines (40302) Size 40 kB (40426 bytes) Hash 3f975a34f58e7297d112878984b6b521 b991480ec283ad77ce1c7ed744aafa5dcb962d25 74a5ec1bbf6ca667385e75b079d7901f97654c877914134b5203a43cb9e466c9 HTTP Headers `GET /m-assets/assets/js/biz_layout_activity_coupon_popup_bd52b6730f0b89227d03.js HTTP/1.1 Host: static.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ Origin: https://www.temu.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Fri, 10 May 2024 08:50:45 GMT content-type: application/javascript; charset=utf-8 cache-control: max-age=31536000 content-md5: P5daNPWOcpfREoeJhLa1IQ== etag: W/"0x8DC6025D13D1F53" last-modified: Fri, 19 Apr 2024 04:04:32 GMT vary: Accept-Encoding x-content-type-options: nosniff cf-cache-status: HIT age: 828724 access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef7cfd7b509-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	aimg.kwcdn.com/upload_aimg/pc/0d1c5252-2094-4504-b6fc-34a6a3f87804.png.slim.png?imageView2/2/w/120/q/70	104.18.11.132	200 OK	554 B
URL GET HTTP/3 aimg.kwcdn.com/upload_aimg/pc/0d1c5252-2094-4504-b6fc-34a6a3f87804.png.slim.png?imageView2/2/w/120/q/70 IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type PNG image data, 52 x 52, 8-bit colormap, non-interlaced Size 554 B (554 bytes) Hash aee4ac5c24f74951594fc84b62a9a910 12547d7a58be987d2bbe9ecfe41436e3dcd6dfa0 b9d760dfb38cc3afdd0847f0dd683fa25c085aa3bde02baba18ef29b20de3405 HTTP Headers `GET /upload_aimg/pc/0d1c5252-2094-4504-b6fc-34a6a3f87804.png.slim.png?imageView2/2/w/120/q/70 HTTP/1.1 Host: aimg.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Fri, 10 May 2024 08:50:45 GMT content-type: image/png content-length: 554 cache-control: max-age=31536000 last-modified: Thu, 25 Jan 2024 07:20:20 GMT request-id: 3928584944d5474ac615f4b9a8083bc1 x-avi-image-cache: hit x-content-type-options: nosniff x-fop-destination-type: fop x-imagine-success: true cf-cache-status: HIT age: 823103 accept-ranges: bytes vary: Accept-Encoding access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef9d83556aa-OSL alt-svc: h3=":443"; ma=86400

	www.temu.com/api/phantom/xg/pfb/a4	20.47.117.32	200 OK	194 B
URL POST HTTP/2 www.temu.com/api/phantom/xg/pfb/a4 IP 20.47.117.32:443 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.temu.com FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35 ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT File type troff or preprocessor input, ASCII text, with no line terminators Size 194 B (194 bytes) Hash 7953b605e8f0f39ecdb6efeb6e2d3a4d 5107aab89869e1abff951a697f3c512bed21880f 3fe1d738e947a3e7d2947e56ac7a2ab618424c648d88f0726d041414fb0bb445 HTTP Headers POST /api/phantom/xg/pfb/a4 HTTP/1.1 Host: www.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json, text/plain, /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Content-Type: application/json;charset=UTF-8 Content-Length: 4351 Origin: https://www.temu.com DNT: 1 Connection: keep-alive Cookie: region=151; language=en; currency=NOK; api_uid=CnGMbmY93+GvewBSFn1EAg==; _nano_fp=XpmanpXqXp9YXqTyXC_L9uRjnNpOTbQiLLAb8x7v; timezone=UTC Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK server: nginx date: Fri, 10 May 2024 08:50:46 GMT content-type: application/json;charset=UTF-8 set-cookie: _bee=bPHjkJYwaA6JT5K4rrznR2UDSQDileYA; Max-Age=31536000; Expires=Sat, 10 May 2025 08:50:46 GMT; Path=/; Domain=.temu.com njrpl=bPHjkJYwaA6JT5K4rrznR2UDSQDileYA; Max-Age=31536000; Expires=Sat, 10 May 2025 08:50:46 GMT; Path=/; Domain=.temu.com dilx=RDobnHde7PJ2kLKWCTaBR; Max-Age=31536000; Expires=Sat, 10 May 2025 08:50:46 GMT; Path=/; Domain=.temu.com hfsc=L3yLfYoz6D7815fMfA==; Max-Age=31536000; Expires=Sat, 10 May 2025 08:50:46 GMT; Path=/; HttpOnly; Domain=.temu.com content-encoding: gzip x-yak-request-id: 1715331046123-e4be3f670d88cac7317abf4ee5c3b5d3 access-control-allow-origin: https://www.temu.com vary: Accept-Encoding, Origin access-control-allow-headers: Origin, X-Requested-With, Content-Type, X_Requested_With, Accept, X-HTTP-Method-Override, Cookie, AccessToken, PASSID, VerifyAuthToken, Anti-Content access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT access-control-allow-credentials: true strict-transport-security: max-age=31536000 content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/110000007/sec-gif yak-timeinfo: 1715331046123\|13 cip: 91.90.42.154 X-Firefox-Spdy: h2

	aimg.kwcdn.com/upload_aimg_b/web/pc/98996646-47c5-4020-ab1f-8e6b2ee39358.png.slim.png?imageView2/2/w/30/q/70	0.0.0.0		0 B
URL GET aimg.kwcdn.com/upload_aimg_b/web/pc/98996646-47c5-4020-ab1f-8e6b2ee39358.png.slim.png?imageView2/2/w/30/q/70 IP 0.0.0.0:0 ASN #0 Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /upload_aimg_b/web/pc/98996646-47c5-4020-ab1f-8e6b2ee39358.png.slim.png?imageView2/2/w/30/q/70 HTTP/1.1 Host: aimg.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache`

	static.kwcdn.com/m-assets/assets/js/biz_layout_sc_float_5e1a2ea3b6b7cc11a700.js	104.18.11.132	200 OK	27 kB
URL GET HTTP/3 static.kwcdn.com/m-assets/assets/js/biz_layout_sc_float_5e1a2ea3b6b7cc11a700.js IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type JavaScript source, ASCII text, with very long lines (27155) Size 27 kB (27266 bytes) Hash c10fcb9f1ae8b5fcb1fd0b079534d7fe 1e84e0bdbee7a99afd2131163f504a2e06e06cd3 a74bb6475f4b3363f0480ac29f7f82f9faf0a196832a410abd47bd27b5b2ab8b HTTP Headers `GET /m-assets/assets/js/biz_layout_sc_float_5e1a2ea3b6b7cc11a700.js HTTP/1.1 Host: static.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ Origin: https://www.temu.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Fri, 10 May 2024 08:50:45 GMT content-type: application/javascript; charset=utf-8 cache-control: max-age=31536000 content-md5: wQ/Lnxrotfyx/QsHlTTX/g== etag: W/"0x8DC6E9F7C1206E0" last-modified: Tue, 07 May 2024 14:10:44 GMT vary: Accept-Encoding x-content-type-options: nosniff cf-cache-status: HIT age: 239033 access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef7e812b509-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	aimg.kwcdn.com/upload_aimg_b/web/pc/ab4a5d92-4b54-45f6-b18a-fbb16529d2b3.png.slim.png?imageView2/2/w/30/q/70	0.0.0.0		0 B
URL GET aimg.kwcdn.com/upload_aimg_b/web/pc/ab4a5d92-4b54-45f6-b18a-fbb16529d2b3.png.slim.png?imageView2/2/w/30/q/70 IP 0.0.0.0:0 ASN #0 Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /upload_aimg_b/web/pc/ab4a5d92-4b54-45f6-b18a-fbb16529d2b3.png.slim.png?imageView2/2/w/30/q/70 HTTP/1.1 Host: aimg.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache`

	www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e	20.47.117.32	200 OK	498 kB
URL User Request GET HTTP/2 www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e IP 20.47.117.32:443 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Certificate IssuerGoDaddy.com, Inc. Subject.temu.com FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35 ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT File type Size 498 kB (498289 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e HTTP/1.1 Host: www.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/bgms_unsubscribe_email.html?_p_landing=1&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&is_back=1 DNT: 1 Connection: keep-alive Cookie: region=151; language=en; currency=NOK; api_uid=CnGMbmY93+GvewBSFn1EAg==; _nano_fp=XpmanpXqXp9YXqTyXC_L9uRjnNpOTbQiLLAb8x7v; timezone=UTC Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK server: nginx date: Fri, 10 May 2024 08:50:43 GMT content-type: text/html; charset=UTF-8 content-language: en surrogate-control: no-store cache-control: no-store, no-cache, must-revalidate, proxy-revalidate pragma: no-cache expires: 0 x-xss-protection: 1; mode=block x-content-type-options: nosniff x-accel-buffering: no content-encoding: gzip x-yak-request-id: 1715331043867-2b50243c8d1484421dd04af1fb68859e strict-transport-security: max-age=31536000 content-security-policy-report-only: default-src temu: .temu.com .kwcdn.com wss://.temu.com .paypal.com .googleapis.com .gstatic.com .googletagmanager.com .google-analytics.com .analytics.google.com .doubleclick.net .google.com .googlesyndication.com .googleusercontent.com www.googleadservices.com www.google.cn www.google.com.hk www.google.co.uk www.google.ca www.google.com.au www.google.co.nz google.com connect.facebook.net www.facebook.com appleid.cdn-apple.com socialplugin.facebook.net .cash.app .forter.com www.paypalobjects.com .braintree-api.com .braintreegateway.com cash-f.squarecdn.com api.squareup.com api.lab.amplitude.com .paidy.com .cardinalcommerce.com .stripe.com d3nocrch4qti4v.cloudfront.net duuytoqss3gu4.cloudfront.net df45ay5pw60dy.cloudfront.net d2o5idwacg3gyw.cloudfront.net d3lqotgbn3npr.cloudfront.net d6rak4b14t5gp.cloudfront.net dlthst9q2beh8.cloudfront.net o160250.ingest.sentry.io blob: data: 'unsafe-eval' 'unsafe-inline' 'wasm-unsafe-eval'; form-action 'self'; base-uri 'self'; frame-ancestors 'self'; report-uri /api/sec-csp/110000006/report content-security-policy: default-src temu: .temu.com .kwcdn.com wss://.temu.com .paypal.com .googleapis.com .gstatic.com .googletagmanager.com .google-analytics.com .analytics.google.com .doubleclick.net .google.com .googlesyndication.com .googleusercontent.com www.googleadservices.com www.google.cn www.google.com.hk www.google.co.uk www.google.ca www.google.com.au www.google.co.nz google.com connect.facebook.net www.facebook.com appleid.cdn-apple.com socialplugin.facebook.net .cash.app .forter.com www.paypalobjects.com .braintree-api.com .braintreegateway.com cash-f.squarecdn.com api.squareup.com api.lab.amplitude.com .paidy.com .cardinalcommerce.com *.stripe.com d3nocrch4qti4v.cloudfront.net duuytoqss3gu4.cloudfront.net df45ay5pw60dy.cloudfront.net d2o5idwacg3gyw.cloudfront.net d3lqotgbn3npr.cloudfront.net d6rak4b14t5gp.cloudfront.net dlthst9q2beh8.cloudfront.net o160250.ingest.sentry.io blob: data: 'unsafe-eval' 'unsafe-inline' 'wasm-unsafe-eval'; report-uri /api/sec-csp/110000006/enforce vary: Accept-Encoding, User-Agent referrer-policy: strict-origin-when-cross-origin x-frame-options: SAMEORIGIN cip: 91.90.42.154 X-Firefox-Spdy: h2

	static.kwcdn.com/m-assets/assets/js/biz_layout_activity_download_dialog_113736de5ef222887fbf.js	104.18.11.132	200 OK	33 kB
URL GET HTTP/3 static.kwcdn.com/m-assets/assets/js/biz_layout_activity_download_dialog_113736de5ef222887fbf.js IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type JavaScript source, ASCII text, with very long lines (33187) Size 33 kB (33314 bytes) Hash 28be270b3ab8b2b5683ec643a28a1bf3 89646f94298f512489b3b70bd255e6ec4f87ed06 109a163438765deb4122ed0748a7e9fc4cfaf62aefbbe1b018e9b6d257c0997a HTTP Headers `GET /m-assets/assets/js/biz_layout_activity_download_dialog_113736de5ef222887fbf.js HTTP/1.1 Host: static.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ X-Moz: prefetch Origin: https://www.temu.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Fri, 10 May 2024 08:50:44 GMT content-type: application/javascript; charset=utf-8 cache-control: max-age=31536000 content-md5: KL4nCzq4srVoPsZDooob8w== etag: W/"0x8DC49A5AE36F446" last-modified: Thu, 21 Mar 2024 12:51:52 GMT vary: Accept-Encoding x-content-type-options: nosniff cf-cache-status: HIT age: 828723 access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef6fe08b509-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	eu.pftk.temu.com/pmm/api/pmm/api	20.93.45.131	200 OK	0 B
URL POST HTTP/2 eu.pftk.temu.com/pmm/api/pmm/api IP 20.93.45.131:443 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.pftk.temu.com FingerprintF4:BE:81:8F:72:EA:45:6C:90:FB:ED:AA:86:7C:F4:6D:10:06:EA:D8 ValidityThu, 13 Jul 2023 13:25:25 GMT - Tue, 13 Aug 2024 13:25:25 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /pmm/api/pmm/api HTTP/1.1 Host: eu.pftk.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ Content-Type: text/plain;charset=UTF-8 Content-Length: 1367 Origin: https://www.temu.com DNT: 1 Connection: keep-alive Cookie: api_uid=CnGMbmY93+GvewBSFn1EAg== Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Fri, 10 May 2024 08:50:45 GMT content-type: application/octet-stream expires: Fri, 10 May 2024 08:50:44 GMT cache-control: no-cache access-control-allow-origin: https://www.temu.com access-control-allow-credentials: true access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content X-Firefox-Spdy: h2`

	eu.pftk.temu.com/pmm/api/pmm/api	20.93.45.131	200 OK	0 B
URL POST HTTP/2 eu.pftk.temu.com/pmm/api/pmm/api IP 20.93.45.131:443 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.pftk.temu.com FingerprintF4:BE:81:8F:72:EA:45:6C:90:FB:ED:AA:86:7C:F4:6D:10:06:EA:D8 ValidityThu, 13 Jul 2023 13:25:25 GMT - Tue, 13 Aug 2024 13:25:25 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /pmm/api/pmm/api HTTP/1.1 Host: eu.pftk.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ Content-Type: text/plain;charset=UTF-8 Content-Length: 1366 Origin: https://www.temu.com DNT: 1 Connection: keep-alive Cookie: api_uid=CnGMbmY93+GvewBSFn1EAg== Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Fri, 10 May 2024 08:50:46 GMT content-type: application/octet-stream expires: Fri, 10 May 2024 08:50:45 GMT cache-control: no-cache access-control-allow-origin: https://www.temu.com access-control-allow-credentials: true access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content X-Firefox-Spdy: h2`

	static.kwcdn.com/m-assets/assets/js/biz_layout_activity_coupon_popup_bd52b6730f0b89227d03.js	104.18.11.132	200 OK	40 kB
URL GET HTTP/3 static.kwcdn.com/m-assets/assets/js/biz_layout_activity_coupon_popup_bd52b6730f0b89227d03.js IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type JavaScript source, ASCII text, with very long lines (40302) Size 40 kB (40426 bytes) Hash 3f975a34f58e7297d112878984b6b521 b991480ec283ad77ce1c7ed744aafa5dcb962d25 74a5ec1bbf6ca667385e75b079d7901f97654c877914134b5203a43cb9e466c9 HTTP Headers `GET /m-assets/assets/js/biz_layout_activity_coupon_popup_bd52b6730f0b89227d03.js HTTP/1.1 Host: static.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ X-Moz: prefetch Origin: https://www.temu.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Fri, 10 May 2024 08:50:44 GMT content-type: application/javascript; charset=utf-8 cache-control: max-age=31536000 content-md5: P5daNPWOcpfREoeJhLa1IQ== etag: W/"0x8DC6025D13D1F53" last-modified: Fri, 19 Apr 2024 04:04:32 GMT vary: Accept-Encoding x-content-type-options: nosniff cf-cache-status: HIT age: 828723 access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef6fdfbb509-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	aimg.kwcdn.com/upload_aimg_b/web/pc/98996646-47c5-4020-ab1f-8e6b2ee39358.png.slim.png?imageView2/2/w/30/q/70	104.18.11.132	200 OK	769 B
URL GET HTTP/3 aimg.kwcdn.com/upload_aimg_b/web/pc/98996646-47c5-4020-ab1f-8e6b2ee39358.png.slim.png?imageView2/2/w/30/q/70 IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced Size 769 B (769 bytes) Hash 0ecb46f0bbc8b25c4a372a8e99b45ce6 057a0133d5fe2e710c231612c7910629c49654a9 25e915a006feb57372e6f5c9101c0974938d471792cc8c281a1b0af9c55d733f HTTP Headers `GET /upload_aimg_b/web/pc/98996646-47c5-4020-ab1f-8e6b2ee39358.png.slim.png?imageView2/2/w/30/q/70 HTTP/1.1 Host: aimg.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Fri, 10 May 2024 08:50:45 GMT content-type: image/png content-length: 769 cache-control: max-age=31536000 last-modified: Thu, 07 Dec 2023 09:17:51 GMT request-id: 131fff534c460c2c6592f98e9e70b00b x-content-type-options: nosniff x-fop-destination-type: fop x-imagine-success: true cf-cache-status: HIT age: 828751 accept-ranges: bytes vary: Accept-Encoding access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef87d8f56aa-OSL alt-svc: h3=":443"; ma=86400

	www.temu.com/api/rubicon/benefit/query/info	20.47.117.32	200 OK	28 B
URL POST HTTP/2 www.temu.com/api/rubicon/benefit/query/info IP 20.47.117.32:443 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.temu.com FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35 ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT File type troff or preprocessor input, ASCII text, with no line terminators Size 28 B (28 bytes) Hash 660e067b6aa4611f6604d845c88d5e6e 5465eae648303473aa395dd854aec7bb90d1d0ae d6de6e3844e2fe1ce81256ae2f88632448f53f861d6188357b26ea0f3ba879ae HTTP Headers POST /api/rubicon/benefit/query/info HTTP/1.1 Host: www.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json, text/plain, /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Content-Type: application/json;charset=UTF-8 Anti-Content: 0aqWfqnFGclVj99Z5gLBfe9qm0djfV42aH-c4BtjAD2Whj9faTNyInaKsatAzfyyNjnh3FMpVrBaECaT7aPI_blM1UNqJefneaGng7wpy1203XFUfOu-8dkMq9ekkJ933qZwvxd534G9NPlgiemptYPwES36kSbp9zto2DSUKQ58gaUpey4vd_cPSwteu_vjSmiuF75jPLA4noPwGLsopMkWSqAfvosuHBycq1tAuV07KD594ggTVyyV4_tVtiGKcTbGgLnLuQiZY72Fx6PAJH2sCEN53nESIFD9GTE6kXykJfsnhvL5bSBp_5Ye0Hpwu3-a9F-hwwVlUZ43y6lYuh5DK_RwdfUkPwaEPYLgLncLU9io50rbd6CQOtLHc-tJZZCeJc3qeeLLAN7WnlvnhS8m6N9xEJhBB7mfxy4AUv7vzWGGe_ni7YJiF3i9cOe-gcdthqIe Content-Length: 44 Origin: https://www.temu.com DNT: 1 Connection: keep-alive Cookie: region=151; language=en; currency=NOK; api_uid=CnGMbmY93+GvewBSFn1EAg==; _nano_fp=XpmanpXqXp9YXqTyXC_L9uRjnNpOTbQiLLAb8x7v; timezone=UTC Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK server: nginx date: Fri, 10 May 2024 08:50:45 GMT content-type: application/json content-encoding: gzip x-yak-request-id: 1715331045638-bcbd5f7c2d53a5df5993b071157ec311 access-control-allow-origin: https://www.temu.com vary: accept-encoding, Origin access-control-allow-headers: Origin, X-Requested-With, Content-Type, X_Requested_With, Accept, X-HTTP-Method-Override, Cookie, AccessToken, PASSID, VerifyAuthToken, Anti-Content access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT access-control-allow-credentials: true strict-transport-security: max-age=31536000 content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/110000007/sec-gif yak-timeinfo: 1715331045638\|2 cip: 91.90.42.154 X-Firefox-Spdy: h2

	static.kwcdn.com/m-assets/assets/js/rca_b16aea3cc8197291bb42.js	104.18.11.132	200 OK	85 kB
URL GET HTTP/3 static.kwcdn.com/m-assets/assets/js/rca_b16aea3cc8197291bb42.js IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type Size 85 kB (85305 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /m-assets/assets/js/rca_b16aea3cc8197291bb42.js HTTP/1.1 Host: static.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ Origin: https://www.temu.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Fri, 10 May 2024 08:50:44 GMT content-type: application/javascript; charset=utf-8 cache-control: max-age=31536000 content-md5: nens8rn5xfU1IVadocx5nQ== etag: W/"0x8DC49A5AE34D1B6" last-modified: Thu, 21 Mar 2024 12:51:52 GMT vary: Accept-Encoding x-content-type-options: nosniff cf-cache-status: HIT age: 833030 access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef67d47b509-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	static.kwcdn.com/m-assets/assets/css/biz_layout_sc_float-1cdf02d0afe582bd6180.css	104.18.11.132	200 OK	16 kB
URL GET HTTP/3 static.kwcdn.com/m-assets/assets/css/biz_layout_sc_float-1cdf02d0afe582bd6180.css IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type ASCII text, with very long lines (16044), with no line terminators Size 16 kB (16044 bytes) Hash 597a8ec8f9e4744b6d85866464eb9373 b475388a32657c9081ebcb63a74d108c9a967815 5e9d1063c7cfeb9e78c0cf5244822e758c8e46517a4b9de750be34532a8b1c4c HTTP Headers `GET /m-assets/assets/css/biz_layout_sc_float-1cdf02d0afe582bd6180.css HTTP/1.1 Host: static.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ Origin: https://www.temu.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/3 200 OK date: Fri, 10 May 2024 08:50:45 GMT content-type: text/css cache-control: max-age=31536000 content-md5: WXqOyPnkdEtthYZkZOuTcw== etag: W/"0x8DC6E9F7C8DB487" last-modified: Tue, 07 May 2024 14:10:44 GMT vary: Accept-Encoding x-content-type-options: nosniff cf-cache-status: HIT age: 239033 access-control-allow-origin: coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef7e80fb509-OSL content-encoding: br alt-svc: h3=":443"; ma=86400`

	www.temu.com/api/static/config/get_front_end_page_config?client=PC	20.47.117.32	200 OK	21 kB
URL GET HTTP/2 www.temu.com/api/static/config/get_front_end_page_config?client=PC IP 20.47.117.32:443 ASN #8069 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.temu.com FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35 ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT File type JSON text data Size 21 kB (20759 bytes) Hash ce7eb693344b98c72b1cf81c57d72af0 52d1d378d6787cf3055db7ff69d0a0acad48f017 642389958d3eb7b4a214a93410896d7dcd0a65490fd0fe63a1c10d030c0c5a9c HTTP Headers GET /api/static/config/get_front_end_page_config?client=PC HTTP/1.1 Host: www.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json, text/plain, /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e DNT: 1 Connection: keep-alive Cookie: region=151; language=en; currency=NOK; api_uid=CnGMbmY93+GvewBSFn1EAg==; _nano_fp=XpmanpXqXp9YXqTyXC_L9uRjnNpOTbQiLLAb8x7v; timezone=UTC Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK server: nginx date: Fri, 10 May 2024 08:50:45 GMT content-type: application/json vary: origin,access-control-request-method,access-control-request-headers,accept-encoding content-encoding: gzip x-yak-request-id: 1715331045283-39e1c9f4cd5604fd1425f6ea024a0bb5 strict-transport-security: max-age=31536000 content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/110000007/sec-gif yak-timeinfo: 1715331045283\|7 cip: 91.90.42.154 X-Firefox-Spdy: h2

	static.kwcdn.com/m-assets/assets/js/biz_layout_sc_sidebar_7ffff6beb033cd7864e0.js	104.18.11.132	200 OK	21 kB
URL GET HTTP/3 static.kwcdn.com/m-assets/assets/js/biz_layout_sc_sidebar_7ffff6beb033cd7864e0.js IP 104.18.11.132:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/change-region.html?target_region_id=186&success_url=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_email.html%3F_p_landing%3D1%26_x_src%3Dmail1%26_x_cid%3Dtextmail%26_x_sid%3Dunsubscribe%26msgid%3D186-20240510-16-B-731069553648627712-101-BfTJTs2t&close_url=https%3A%2F%2Fwww.temu.com&_x_src=mail1&_x_cid=textmail&_x_sid=unsubscribe&_x_msgid=186-20240510-16-B-731069553648627712-101-BfTJTs2t&refer_page_name=bgnb_email_unsubscribe&refer_page_id=10089_1715331043307_xi7r6b1enc&refer_page_sn=10089&_x_sessn_id=t6lp7d875e Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type JavaScript source, ASCII text, with very long lines (20852) Size 21 kB (20965 bytes) Hash c37a09847970bdd2423609a0b36bbc34 a1433bcfa927bfefbe2dfede3a0277b054658553 8cb454bad015f814abab31b2f8e02243801c28ba55dd00e39cb8d8c7d571298c HTTP Headers `GET /m-assets/assets/js/biz_layout_sc_sidebar_7ffff6beb033cd7864e0.js HTTP/1.1 Host: static.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.temu.com/ X-Moz: prefetch Origin: https://www.temu.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Fri, 10 May 2024 08:50:45 GMT content-type: application/javascript; charset=utf-8 cache-control: max-age=31536000 content-md5: w3oJhHlwvdJCNgmgs2u8NA== etag: W/"0x8DC6E9F7C138D46" last-modified: Tue, 07 May 2024 14:10:44 GMT vary: Accept-Encoding x-content-type-options: nosniff cf-cache-status: HIT age: 239136 access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 8818aef90e631bfa-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (37)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML