ocsp.godaddy.com/
192.124.249.22 2.1 kB IP 192.124.249.22:0
Hash 26c4ce32741cc3338a33dbeed1d7b46d
e10e78cecfd0df74ac2b5579892d7aefada34e96
e7a0a5d6bf857a1d5d366555c06104a3efd2dbf15db8e6d718d06fb6d47924ec
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 01 Nov 2023 03:23:33 GMT
Content-Type: application/ocsp-response
Content-Length: 2107
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 31 Oct 2023 21:23:06 GMT
Expires: Wed, 01 Nov 2023 21:23:06 GMT
ETag: "e10e78cecfd0df74ac2b5579892d7aefada34e96"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
aimg.kwcdn.com/upload_aimg/dawn/7925093e-3260-4a6b-ac2c-8182125ca0df.png
172.64.152.105200 OK 1.5 kB URL GET HTTP/3 aimg.kwcdn.com/upload_aimg/dawn/7925093e-3260-4a6b-ac2c-8182125ca0df.png
IP 172.64.152.105:443
Requested by https://www.temu.com/ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB
ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT
File type PNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced\012- data
Hash e813a7905590eeb104d554293fe900f1
cf5e7d620231859f217046dd8af67c4be02719c4
3a6539a055020a7d3c2041904eceae444dd6c91f0022345a8ca4f6d87e846683
GET /upload_aimg/dawn/7925093e-3260-4a6b-ac2c-8182125ca0df.png HTTP/1.1
Host: aimg.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.kwcdn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 01 Nov 2023 03:23:34 GMT
content-type: image/png
content-length: 1453
cache-control: max-age=31536000
last-modified: Sun, 04 Dec 2022 19:32:32 GMT
request-id: a81ef0f9f8852c310ce98e819f4129f0
x-content-type-options: nosniff
x-fop-destination-type: fop
x-imagine-success: true
cf-cache-status: HIT
age: 400473
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 81f1051568c9568b-OSL
alt-svc: h3=":443"; ma=86400
aimg.kwcdn.com/upload_aimg/dawn/65349fbe-d82d-4ebb-9d09-ec53784d3627.png.slim.png
172.64.152.105200 OK 11 kB URL GET HTTP/3 aimg.kwcdn.com/upload_aimg/dawn/65349fbe-d82d-4ebb-9d09-ec53784d3627.png.slim.png
IP 172.64.152.105:443
Requested by https://www.temu.com/ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB
ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT
File type PNG image data, 2142 x 832, 8-bit colormap, non-interlaced\012- data
Hash 7568518047739638478866f57782126c
4be130f06b63566d96ccbe0e2fbd70439535a767
32082a4b4c4052bef878f5e35c2dc0738cb900f09c590ead51aaf26d1f445fc8
GET /upload_aimg/dawn/65349fbe-d82d-4ebb-9d09-ec53784d3627.png.slim.png HTTP/1.1
Host: aimg.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.kwcdn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 01 Nov 2023 03:23:34 GMT
content-type: image/png
content-length: 10592
cache-control: max-age=31536000
last-modified: Fri, 24 Feb 2023 02:06:19 GMT
request-id: d11859789b3fcf2c3e2878e1a9e4477c
x-content-type-options: nosniff
x-fop-destination-type: fop
x-imagine-success: true
cf-cache-status: HIT
age: 136347
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 81f1051568ca568b-OSL
alt-svc: h3=":443"; ma=86400
aimg.kwcdn.com/upload_aimg/dawn/e6626d23-4c0b-4fb0-9b53-c06d4f93c2d4.png.slim.png
172.64.152.105200 OK 1.5 kB URL GET HTTP/3 aimg.kwcdn.com/upload_aimg/dawn/e6626d23-4c0b-4fb0-9b53-c06d4f93c2d4.png.slim.png
IP 172.64.152.105:443
Requested by https://www.temu.com/ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB
ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT
File type PNG image data, 528 x 144, 8-bit colormap, non-interlaced\012- data
Hash 27e5c35e32a402ad599abb3c33e4e85b
c9ee3d3ae46385ffa3c64ae65d67caa2433d0c07
ccffc92032ad00f76dd32a2f07a6247965ef193dc008214ef7ce91540fef4574
GET /upload_aimg/dawn/e6626d23-4c0b-4fb0-9b53-c06d4f93c2d4.png.slim.png HTTP/1.1
Host: aimg.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.kwcdn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 01 Nov 2023 03:23:34 GMT
content-type: image/png
content-length: 1519
cache-control: max-age=31536000
last-modified: Thu, 07 Sep 2023 10:19:17 GMT
request-id: eb7c7a6ba0d898b57efad13aa9270970
x-content-type-options: nosniff
x-fop-destination-type: fop
x-imagine-success: true
cf-cache-status: HIT
age: 400473
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 81f1051568cb568b-OSL
alt-svc: h3=":443"; ma=86400
aimg.kwcdn.com/upload_aimg/dawn/b85ccf95-0e14-478b-a400-989ba80c53e7.png.slim.png
172.64.152.105200 OK 24 kB URL GET HTTP/3 aimg.kwcdn.com/upload_aimg/dawn/b85ccf95-0e14-478b-a400-989ba80c53e7.png.slim.png
IP 172.64.152.105:443
Requested by https://www.temu.com/ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB
ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT
File type PNG image data, 2142 x 832, 8-bit colormap, non-interlaced\012- data
Hash 2152c06c8e0cc97d78338162bb18fd24
92f38674a67bfb77177e807980cff27380a6acec
bd2a6afa9ea1e249c09df899e955bdac9758d45270a8b77683c1129e61c5a8c6
GET /upload_aimg/dawn/b85ccf95-0e14-478b-a400-989ba80c53e7.png.slim.png HTTP/1.1
Host: aimg.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.kwcdn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 01 Nov 2023 03:23:34 GMT
content-type: image/png
content-length: 24245
cache-control: max-age=31536000
last-modified: Tue, 01 Aug 2023 16:48:13 GMT
request-id: 438a8e9d7db7777a97525df2d4e3dd4d
x-content-type-options: nosniff
x-fop-destination-type: fop
x-imagine-success: true
cf-cache-status: HIT
age: 136347
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 81f1051568cc568b-OSL
alt-svc: h3=":443"; ma=86400
aimg.kwcdn.com/upload_aimg/dawn/06e27200-b709-4e85-9a73-c0f19fc9baa8.png
172.64.152.105200 OK 1.3 kB URL GET HTTP/3 aimg.kwcdn.com/upload_aimg/dawn/06e27200-b709-4e85-9a73-c0f19fc9baa8.png
IP 172.64.152.105:443
Requested by https://www.temu.com/ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB
ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT
File type PNG image data, 34 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash 746c339d5271025bc8bd77e23dc1a1a4
4ef210fcbc6b6de49849e048f23bebd687cb091a
a630906454581c114482722315e2b448f0a68faecbe1961c8710fef7d4ba35c5
GET /upload_aimg/dawn/06e27200-b709-4e85-9a73-c0f19fc9baa8.png HTTP/1.1
Host: aimg.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.kwcdn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 01 Nov 2023 03:23:34 GMT
content-type: image/png
content-length: 1304
cache-control: max-age=31536000
last-modified: Mon, 05 Dec 2022 19:00:43 GMT
request-id: 95878408e60b5596e19766f0872d75e2
x-content-type-options: nosniff
x-fop-destination-type: fop
x-imagine-success: true
cf-cache-status: HIT
age: 607813
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 81f1051568cd568b-OSL
alt-svc: h3=":443"; ma=86400
ocsp.godaddy.com/
192.124.249.41 2.1 kB IP 192.124.249.41:0
Hash 26c4ce32741cc3338a33dbeed1d7b46d
e10e78cecfd0df74ac2b5579892d7aefada34e96
e7a0a5d6bf857a1d5d366555c06104a3efd2dbf15db8e6d718d06fb6d47924ec
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 01 Nov 2023 03:23:34 GMT
Content-Type: application/ocsp-response
Content-Length: 2107
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 31 Oct 2023 21:23:06 GMT
Expires: Wed, 01 Nov 2023 21:23:06 GMT
ETag: "e10e78cecfd0df74ac2b5579892d7aefada34e96"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
aimg.kwcdn.com/upload_aimg/dawn/32105797-b1c4-450a-a3da-536e892ed66a.png?imageView2/2/w/1300/q/80
172.64.152.105200 OK 10 kB URL GET HTTP/3 aimg.kwcdn.com/upload_aimg/dawn/32105797-b1c4-450a-a3da-536e892ed66a.png?imageView2/2/w/1300/q/80
IP 172.64.152.105:443
Requested by https://www.temu.com/ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB
ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT
File type PNG image data, 400 x 400, 8-bit/color RGB, non-interlaced\012- data
Hash 6b52fefe14120f80189183996d45fe1f
a8d70d2bc7a0e2acfabd8919efaec53871181575
705364318430a57986f49ebd8f215a89a142dd0b1691728706f00adf211abbb9
GET /upload_aimg/dawn/32105797-b1c4-450a-a3da-536e892ed66a.png?imageView2/2/w/1300/q/80 HTTP/1.1
Host: aimg.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 01 Nov 2023 03:23:35 GMT
content-type: image/png
content-length: 9987
cache-control: max-age=31536000
last-modified: Sat, 26 Nov 2022 19:54:39 GMT
request-id: dc8b4dd6ee9fef7aac3c0e37d00d2149
x-content-type-options: nosniff
x-fop-destination-type: fop
x-imagine-success: true
cf-cache-status: HIT
age: 316907
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 81f1051939e3568b-OSL
alt-svc: h3=":443"; ma=86400
aimg.kwcdn.com/upload_aimg/dawn/78fe67fd-50cf-4a24-ba2b-41e096296ba0.png?imageView2/2/w/1300/q/80
172.64.152.105200 OK 10 kB URL GET HTTP/3 aimg.kwcdn.com/upload_aimg/dawn/78fe67fd-50cf-4a24-ba2b-41e096296ba0.png?imageView2/2/w/1300/q/80
IP 172.64.152.105:443
Requested by https://www.temu.com/ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB
ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT
File type PNG image data, 400 x 400, 8-bit/color RGB, non-interlaced\012- data
Hash ab04b1bcd19ae608d5cc35f29878f8c7
35c6ac357cfce87bd55a6a1d4b8e828d597aca30
f675f3134800db90b0f1f1c89278a9787827a284f4fde16cc71e2a30b8926b92
GET /upload_aimg/dawn/78fe67fd-50cf-4a24-ba2b-41e096296ba0.png?imageView2/2/w/1300/q/80 HTTP/1.1
Host: aimg.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 01 Nov 2023 03:23:35 GMT
content-type: image/png
content-length: 10396
cache-control: max-age=31536000
last-modified: Fri, 02 Dec 2022 14:08:01 GMT
request-id: 57a5ed084c92b0a62a5b895b17a3bba6
x-content-type-options: nosniff
x-fop-destination-type: fop
x-imagine-success: true
cf-cache-status: HIT
age: 471957
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 81f1051939e2568b-OSL
alt-svc: h3=":443"; ma=86400
ocsp.godaddy.com/
192.124.249.22 2.1 kB IP 192.124.249.22:0
Hash 9610cc6270a71578cc3f6aedd2aed8fa
9a04df05430efe92ae55800821965476ab78832f
81a259e51a67cc16ffaa68c935e57939e8525ed6f1c97c6dae9eeac92c11fb40
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 01 Nov 2023 03:23:34 GMT
Content-Type: application/ocsp-response
Content-Length: 2107
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 31 Oct 2023 21:59:15 GMT
Expires: Wed, 01 Nov 2023 21:59:15 GMT
ETag: "9a04df05430efe92ae55800821965476ab78832f"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.godaddy.com/
192.124.249.22 2.1 kB IP 192.124.249.22:0
Hash 9610cc6270a71578cc3f6aedd2aed8fa
9a04df05430efe92ae55800821965476ab78832f
81a259e51a67cc16ffaa68c935e57939e8525ed6f1c97c6dae9eeac92c11fb40
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 01 Nov 2023 03:23:35 GMT
Content-Type: application/ocsp-response
Content-Length: 2107
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 31 Oct 2023 21:59:15 GMT
Expires: Wed, 01 Nov 2023 21:59:15 GMT
ETag: "9a04df05430efe92ae55800821965476ab78832f"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.godaddy.com/
192.124.249.36 2.1 kB IP 192.124.249.36:0
Hash 9610cc6270a71578cc3f6aedd2aed8fa
9a04df05430efe92ae55800821965476ab78832f
81a259e51a67cc16ffaa68c935e57939e8525ed6f1c97c6dae9eeac92c11fb40
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 01 Nov 2023 03:23:35 GMT
Content-Type: application/ocsp-response
Content-Length: 2107
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 31 Oct 2023 21:59:15 GMT
Expires: Wed, 01 Nov 2023 21:59:15 GMT
ETag: "9a04df05430efe92ae55800821965476ab78832f"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.godaddy.com/
192.124.249.36 2.1 kB IP 192.124.249.36:0
Hash 9610cc6270a71578cc3f6aedd2aed8fa
9a04df05430efe92ae55800821965476ab78832f
81a259e51a67cc16ffaa68c935e57939e8525ed6f1c97c6dae9eeac92c11fb40
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 01 Nov 2023 03:23:35 GMT
Content-Type: application/ocsp-response
Content-Length: 2107
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 31 Oct 2023 21:59:15 GMT
Expires: Wed, 01 Nov 2023 21:59:15 GMT
ETag: "9a04df05430efe92ae55800821965476ab78832f"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.godaddy.com/
192.124.249.36 2.1 kB IP 192.124.249.36:0
Hash 9610cc6270a71578cc3f6aedd2aed8fa
9a04df05430efe92ae55800821965476ab78832f
81a259e51a67cc16ffaa68c935e57939e8525ed6f1c97c6dae9eeac92c11fb40
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 01 Nov 2023 03:23:35 GMT
Content-Type: application/ocsp-response
Content-Length: 2107
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 31 Oct 2023 21:59:15 GMT
Expires: Wed, 01 Nov 2023 21:59:15 GMT
ETag: "9a04df05430efe92ae55800821965476ab78832f"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.godaddy.com/
192.124.249.36 2.1 kB IP 192.124.249.36:0
Hash ca9eebb7aabd2bf72b0276398cc6d5e2
1c5877f841069c308843a19499baec959e3a16a0
edec32c9e0dbc79d9e41d83c2ffb51e78cbcf68b4566cc5f5323b359844b755e
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 01 Nov 2023 03:23:35 GMT
Content-Type: application/ocsp-response
Content-Length: 2108
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 31 Oct 2023 22:04:58 GMT
Expires: Wed, 01 Nov 2023 22:04:58 GMT
ETag: "1c5877f841069c308843a19499baec959e3a16a0"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
eu.thtk.temu.com/c/th.gif
20.223.34.138200 OK 2.1 kB URL POST HTTP/2 eu.thtk.temu.com/c/th.gif
IP 20.223.34.138:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B
Certificate IssuerGoDaddy.com, Inc.
Subject*.thtk.temu.com
Fingerprint6C:16:D5:C1:7B:12:5A:3B:10:7F:8E:44:DE:D9:C2:4B:A5:CD:FA:D6
ValidityThu, 13 Jul 2023 13:25:23 GMT - Tue, 13 Aug 2024 13:25:23 GMT
Hash ca9eebb7aabd2bf72b0276398cc6d5e2
1c5877f841069c308843a19499baec959e3a16a0
edec32c9e0dbc79d9e41d83c2ffb51e78cbcf68b4566cc5f5323b359844b755e
POST /c/th.gif HTTP/1.1
Host: eu.thtk.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 643
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Cookie: api_uid=CnEixmVBxLUvTABjrLCrAg==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 01 Nov 2023 03:23:35 GMT
content-type: image/gif
expires: Wed, 01 Nov 2023 03:23:34 GMT
cache-control: no-cache
access-control-allow-origin: https://www.temu.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content
X-Firefox-Spdy: h2
www.temu.com/api/phantom/xg/pfb/a4
20.123.110.224200 OK 194 B URL POST HTTP/3 www.temu.com/api/phantom/xg/pfb/a4
IP 20.123.110.224:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B
Certificate IssuerGoDaddy.com, Inc.
Subject*.temu.com
FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35
ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 712108f2080c80335f0524155259b591
02463d4463e8339e36c1c70c75f531a493692a94
9e6cd0ce80cbba19fdc22583d7d07bb0fc8a119015d90488c34a2ecddc67aa7e
POST /api/phantom/xg/pfb/a4 HTTP/1.1
Host: www.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
Content-Length: 2333
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B
Cookie: region=151; language=en; currency=NOK; api_uid=CnEixmVBxLUvTABjrLCrAg==; timezone=UTC; _nano_fp=XpEbl0Colp9an5XJX9_Q~YKc3XsSsQPCtOD17CCj
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
server: nginx
date: Wed, 01 Nov 2023 03:23:35 GMT
content-type: application/json;charset=UTF-8
set-cookie: _bee=MtzZ1yBws63LLKmBRL3LxFhy4YLxReY2; Max-Age=31536000; Expires=Thu, 31 Oct 2024 03:23:35 GMT; Path=/; Domain=.temu.com
njrpl=MtzZ1yBws63LLKmBRL3LxFhy4YLxReY2; Max-Age=31536000; Expires=Thu, 31 Oct 2024 03:23:35 GMT; Path=/; Domain=.temu.com
dilx=UM0SdlZjhyqLI_r0NoORy; Max-Age=31536000; Expires=Thu, 31 Oct 2024 03:23:35 GMT; Path=/; Domain=.temu.com
hfsc=L32DcIEw4D751p/Efw==; Max-Age=31536000; Expires=Thu, 31 Oct 2024 03:23:35 GMT; Path=/; HttpOnly; Domain=.temu.com
content-encoding: gzip
x-yak-request-id: 1698809015891-c6354db1cc66343f48821ce8d3e7ecf8
access-control-allow-origin: https://www.temu.com
vary: Accept-Encoding, Origin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, X_Requested_With, Accept, X-HTTP-Method-Override, Cookie, AccessToken, PASSID, VerifyAuthToken, Anti-Content
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
strict-transport-security: max-age=2592000
content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/110000007/sec-gif
yak-timeinfo: 1698809015891|15
cip: 91.90.42.154
alt-svc: h3=":443"; ma=86400
www.temu.com/ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B
20.123.110.224200 OK 232 kB URL User Request GET HTTP/2 www.temu.com/ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B
IP 20.123.110.224:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Certificate IssuerGoDaddy.com, Inc.
Subject*.temu.com
FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35
ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT
Size 232 kB (231726 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B HTTP/1.1
Host: www.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 01 Nov 2023 03:23:33 GMT
content-type: text/html; charset=UTF-8
content-language: en
surrogate-control: no-store
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate
pragma: no-cache
expires: 0
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-accel-buffering: no
content-encoding: gzip
x-yak-request-id: 1698809013554-86b2e05ccff9ad6ee70b8747ed0a802d
strict-transport-security: max-age=2592000
set-cookie: region=151; Expires=Mon, 29-Apr-24 03:23:33 GMT; Path=/
language=en; Expires=Mon, 29-Apr-24 03:23:33 GMT; Path=/
currency=NOK; Expires=Mon, 29-Apr-24 03:23:33 GMT; Path=/
api_uid=CnEixmVBxLUvTABjrLCrAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.temu.com; path=/
content-security-policy-report-only: default-src *.temu.com *.kwcdn.com wss://*.temu.com *.paypal.com *.googleapis.com *.gstatic.com *.googletagmanager.com *.google-analytics.com *.analytics.google.com *.doubleclick.net *.google.com *.googlesyndication.com *.googleusercontent.com www.googleadservices.com www.google.cn www.google.com.hk www.google.co.uk www.google.ca www.google.com.au www.google.co.nz google.com connect.facebook.net www.facebook.com appleid.cdn-apple.com socialplugin.facebook.net *.cash.app *.forter.com blob: data: 'unsafe-eval' 'unsafe-inline' 'wasm-eval'; report-uri /api/sec-csp/110000006/sec-gif
vary: Accept-Encoding, User-Agent
x-frame-options: SAMEORIGIN
cip: 91.90.42.154
X-Firefox-Spdy: h2
static.kwcdn.com/m-assets/assets/js/biz_vendors_6cf8ea0824cc0d496770.js
172.64.152.105200 OK 440 kB URL GET HTTP/2 static.kwcdn.com/m-assets/assets/js/biz_vendors_6cf8ea0824cc0d496770.js
IP 172.64.152.105:443
Requested by https://www.temu.com/ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB
ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT
Size 440 kB (439641 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m-assets/assets/js/biz_vendors_6cf8ea0824cc0d496770.js HTTP/1.1
Host: static.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 01 Nov 2023 03:23:34 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cache-control: max-age=31536000
content-md5: tXhPvrm/VdyDE+NyE6sHtg==
etag: W/"0x8DBD9F911E31163"
last-modified: Tue, 31 Oct 2023 10:06:37 GMT
x-content-type-options: nosniff
x-pos-request-id: 7c333da4-301e-0080-47ed-0b82ad000000
cf-cache-status: HIT
age: 57132
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 81f10514ca285697-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.kwcdn.com/m-assets/assets/js/ruby_free_right_1913a4bb58b1cc42fa76.js
172.64.152.105200 OK 2.5 MB URL GET HTTP/2 static.kwcdn.com/m-assets/assets/js/ruby_free_right_1913a4bb58b1cc42fa76.js
IP 172.64.152.105:443
Requested by https://www.temu.com/ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB
ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT
Size 2.5 MB (2523910 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m-assets/assets/js/ruby_free_right_1913a4bb58b1cc42fa76.js HTTP/1.1
Host: static.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 01 Nov 2023 03:23:34 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cache-control: max-age=31536000
content-md5: cOhuHBC1TfP36haKOAHT6w==
etag: W/"0x8DBD9F9118E46F4"
last-modified: Tue, 31 Oct 2023 10:06:36 GMT
x-content-type-options: nosniff
x-pos-request-id: aef1f9b2-f01e-0070-4aed-0b27f8000000
cf-cache-status: HIT
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 81f10514da2e5697-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.temu.com/api/phantom/xg/pfb/a4
20.123.110.224200 OK 194 B URL POST HTTP/3 www.temu.com/api/phantom/xg/pfb/a4
IP 20.123.110.224:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B
Certificate IssuerGoDaddy.com, Inc.
Subject*.temu.com
FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35
ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash bb22ab2c54a9b05f5585c880257e3ce4
3970f658e4d50908d1993a4c6c5bc1df888c1f8d
252cd11979bd7ee19683e1fed8bb41a214774f68d357ea30fc2753c29704a466
POST /api/phantom/xg/pfb/a4 HTTP/1.1
Host: www.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
Content-Length: 2336
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B
Cookie: region=151; language=en; currency=NOK; api_uid=CnEixmVBxLUvTABjrLCrAg==; timezone=UTC; _nano_fp=XpEbl0Colp9an5XJX9_Q~YKc3XsSsQPCtOD17CCj
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
server: nginx
date: Wed, 01 Nov 2023 03:23:35 GMT
content-type: application/json;charset=UTF-8
set-cookie: _bee=WFeG7HuhqM8cZHzJxxZ4UynjyFNT7eYR; Max-Age=31536000; Expires=Thu, 31 Oct 2024 03:23:35 GMT; Path=/; Domain=.temu.com
njrpl=WFeG7HuhqM8cZHzJxxZ4UynjyFNT7eYR; Max-Age=31536000; Expires=Thu, 31 Oct 2024 03:23:35 GMT; Path=/; Domain=.temu.com
dilx=UM0SdlZjhyqLI_r0NoORy; Max-Age=31536000; Expires=Thu, 31 Oct 2024 03:23:35 GMT; Path=/; Domain=.temu.com
hfsc=L32DcIEw4D751p/FfA==; Max-Age=31536000; Expires=Thu, 31 Oct 2024 03:23:35 GMT; Path=/; HttpOnly; Domain=.temu.com
content-encoding: gzip
x-yak-request-id: 1698809015878-3404414fe2f02d5448e1628a997fdaad
access-control-allow-origin: https://www.temu.com
vary: Accept-Encoding, Origin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, X_Requested_With, Accept, X-HTTP-Method-Override, Cookie, AccessToken, PASSID, VerifyAuthToken, Anti-Content
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
strict-transport-security: max-age=2592000
content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/110000007/sec-gif
yak-timeinfo: 1698809015878|26
cip: 91.90.42.154
alt-svc: h3=":443"; ma=86400
www.temu.com/favicon.ico
20.123.110.224200 OK 17 kB IP 20.123.110.224:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B
Certificate IssuerGoDaddy.com, Inc.
Subject*.temu.com
FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35
ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT
File type MS Windows icon resource - 1 icon, 64x64, 32 bits/pixel\012- data
Hash d26edcc90efcd957d6c0cecb09bba13b
398b0409df13c402e913d9caf5fce84eeeb0423a
9e50f7118d02f2fc45af374163bf05bb6467869ff0333751d2e0d9a0401e8b5e
GET /favicon.ico HTTP/1.1
Host: www.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B
Cookie: region=151; language=en; currency=NOK; api_uid=CnEixmVBxLUvTABjrLCrAg==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 01 Nov 2023 03:23:34 GMT
content-type: image/x-icon
cache-control: max-age=3600
x-yak-request-id: 1698809014697-bef7b3ecbeb42e3dd1f70756599cbc75
strict-transport-security: max-age=2592000
content-security-policy-report-only: default-src *.temu.com *.kwcdn.com wss://*.temu.com *.paypal.com *.googleapis.com *.gstatic.com *.googletagmanager.com *.google-analytics.com *.analytics.google.com *.doubleclick.net *.google.com *.googlesyndication.com *.googleusercontent.com www.googleadservices.com www.google.cn www.google.com.hk www.google.co.uk www.google.ca www.google.com.au www.google.co.nz google.com connect.facebook.net www.facebook.com appleid.cdn-apple.com socialplugin.facebook.net *.cash.app *.forter.com blob: data: 'unsafe-eval' 'unsafe-inline' 'wasm-eval'; report-uri /api/sec-csp/110000006/sec-gif
vary: User-Agent
x-frame-options: SAMEORIGIN
cip: 91.90.42.154
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.kwcdn.com/m-assets/assets/js/risk-finger-h5_092c0ede732873e0bb69.js
172.64.152.105200 OK 73 kB URL GET HTTP/3 static.kwcdn.com/m-assets/assets/js/risk-finger-h5_092c0ede732873e0bb69.js
IP 172.64.152.105:443
Requested by https://www.temu.com/ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB
ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m-assets/assets/js/risk-finger-h5_092c0ede732873e0bb69.js HTTP/1.1
Host: static.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 01 Nov 2023 03:23:35 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cache-control: max-age=31536000
content-md5: nIkY9E8Di/6PKwvxTTV1Eg==
etag: W/"0x8DBD4447C77CCEB"
last-modified: Tue, 24 Oct 2023 03:51:21 GMT
x-content-type-options: nosniff
x-pos-request-id: 6d8bea02-001e-004b-7f2d-0623fe000000
cf-cache-status: HIT
age: 507949
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 81f1051858d05699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.temu.com/api/server/_stm
20.123.110.224200 OK 29 B URL GET HTTP/3 www.temu.com/api/server/_stm
IP 20.123.110.224:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B
Certificate IssuerGoDaddy.com, Inc.
Subject*.temu.com
FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35
ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 0fc96b92e8713ef6515ecd5242923a0a
40fbbc4c4c96037029a58c90a235d2919dafcecc
6131e7e9edc6cce1b8f824cc71b97b7ad0aae6a403a5157b4d28751c0329ce46
GET /api/server/_stm HTTP/1.1
Host: www.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B
Cookie: region=151; language=en; currency=NOK; api_uid=CnEixmVBxLUvTABjrLCrAg==; timezone=UTC; _nano_fp=XpEbl0Colp9an5XJX9_Q~YKc3XsSsQPCtOD17CCj
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
server: nginx
date: Wed, 01 Nov 2023 03:23:35 GMT
content-type: application/json
vary: accept-encoding
cache-control: no-cache, no-store
cip: 91.90.42.154
content-encoding: gzip
www.temu.com/api/phantom/dm/wl/cg
20.123.110.224200 OK 112 B URL GET HTTP/3 www.temu.com/api/phantom/dm/wl/cg
IP 20.123.110.224:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B
Certificate IssuerGoDaddy.com, Inc.
Subject*.temu.com
FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35
ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash b27fb22ce11a5835b4d9f9821fbde1dc
2423d7509446510882224eb144ca22930260d806
8c73c87d0ac6b5acd8e0fc7953f5fa35c756d59ccd390de45dfec69530b29147
GET /api/phantom/dm/wl/cg HTTP/1.1
Host: www.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B
Cookie: region=151; language=en; currency=NOK; api_uid=CnEixmVBxLUvTABjrLCrAg==; timezone=UTC; _nano_fp=XpEbl0Colp9an5XJX9_Q~YKc3XsSsQPCtOD17CCj
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
server: nginx
date: Wed, 01 Nov 2023 03:23:35 GMT
content-type: application/json;charset=UTF-8
content-encoding: gzip
vary: Accept-Encoding
x-yak-request-id: 1698809015357-b147d906857a3190ef5d962ae6e1c61a
strict-transport-security: max-age=2592000
content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/110000007/sec-gif
yak-timeinfo: 1698809015357|1
cip: 91.90.42.154
alt-svc: h3=":443"; ma=86400
static.kwcdn.com/m-assets/assets/css/8745-e95e25f03ce457fc2208.css
172.64.152.105200 OK 116 kB URL GET HTTP/2 static.kwcdn.com/m-assets/assets/css/8745-e95e25f03ce457fc2208.css
IP 172.64.152.105:443
Requested by https://www.temu.com/ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB
ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 116 kB (115538 bytes)
Hash 8398d3442fff606846e478937621ce48
a6588ad2c80ebfb583b355ee8b0fd5214424babf
852c25f0ec3f0158c899820570beca1f44b8482bc4678bb1260839746db48b0d
GET /m-assets/assets/css/8745-e95e25f03ce457fc2208.css HTTP/1.1
Host: static.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 01 Nov 2023 03:23:34 GMT
content-type: text/css
vary: Accept-Encoding
cache-control: max-age=31536000
content-md5: g5jTRC//YGhG5HiTdiHOSA==
etag: W/"0x8DBD9EC85CEBF33"
last-modified: Tue, 31 Oct 2023 08:36:48 GMT
x-content-type-options: nosniff
x-pos-request-id: d352b425-101e-003a-52d5-0bfafc000000
cf-cache-status: HIT
age: 57132
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 81f10512a9745697-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
eu.pftk.temu.com/pmm/api/pmm/defined
20.123.108.148200 OK 0 B URL POST HTTP/2 eu.pftk.temu.com/pmm/api/pmm/defined
IP 20.123.108.148:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B
Certificate IssuerGoDaddy.com, Inc.
Subject*.pftk.temu.com
FingerprintF4:BE:81:8F:72:EA:45:6C:90:FB:ED:AA:86:7C:F4:6D:10:06:EA:D8
ValidityThu, 13 Jul 2023 13:25:25 GMT - Tue, 13 Aug 2024 13:25:25 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pmm/api/pmm/defined HTTP/1.1
Host: eu.pftk.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1884
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Cookie: api_uid=CnEixmVBxLUvTABjrLCrAg==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 01 Nov 2023 03:23:35 GMT
content-type: application/octet-stream
expires: Wed, 01 Nov 2023 03:23:34 GMT
cache-control: no-cache
access-control-allow-origin: https://www.temu.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content
X-Firefox-Spdy: h2
www.temu.com/api/phantom/xg/pfb/a3
20.123.110.224200 OK 65 B URL GET HTTP/3 www.temu.com/api/phantom/xg/pfb/a3
IP 20.123.110.224:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B
Certificate IssuerGoDaddy.com, Inc.
Subject*.temu.com
FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35
ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash c6414e5496710ed55ee4f9ec40f156ea
41cba42db5066498b26b124c6014f8404f89eebe
88631f128b21eb159e7e9e24b6a4107ef29ae7fc05b5653b4723b2aee1b7972e
GET /api/phantom/xg/pfb/a3 HTTP/1.1
Host: www.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B
Cookie: region=151; language=en; currency=NOK; api_uid=CnEixmVBxLUvTABjrLCrAg==; timezone=UTC; _nano_fp=XpEbl0Colp9an5XJX9_Q~YKc3XsSsQPCtOD17CCj
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
server: nginx
date: Wed, 01 Nov 2023 03:23:35 GMT
content-type: application/json;charset=UTF-8
content-encoding: gzip
vary: Accept-Encoding
x-yak-request-id: 1698809015358-2ad6ff5327968a6d153fccd3d82bfe01
strict-transport-security: max-age=2592000
content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/110000007/sec-gif
yak-timeinfo: 1698809015358|1
cip: 91.90.42.154
alt-svc: h3=":443"; ma=86400
www.temu.com/api/phantom/xg/pfb/l1
20.123.110.224200 OK 114 B URL GET HTTP/3 www.temu.com/api/phantom/xg/pfb/l1
IP 20.123.110.224:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B
Certificate IssuerGoDaddy.com, Inc.
Subject*.temu.com
FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35
ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash bb0687da0fb05463be21230ed3fa5de3
874f00ce048e7f938949306983dbdee59f0f1a63
2910d68aaf70adf92b6006ed9add84cad15e47a44df6b805d29467a028d3cf3a
GET /api/phantom/xg/pfb/l1 HTTP/1.1
Host: www.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B
Cookie: region=151; language=en; currency=NOK; api_uid=CnEixmVBxLUvTABjrLCrAg==; timezone=UTC; _nano_fp=XpEbl0Colp9an5XJX9_Q~YKc3XsSsQPCtOD17CCj
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
server: nginx
date: Wed, 01 Nov 2023 03:23:35 GMT
content-type: application/json;charset=UTF-8
content-encoding: gzip
vary: Accept-Encoding
x-yak-request-id: 1698809015880-5629484c55ca4ca6878d6b7182f19a97
strict-transport-security: max-age=2592000
content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/110000007/sec-gif
yak-timeinfo: 1698809015880|2
cip: 91.90.42.154
alt-svc: h3=":443"; ma=86400
static.kwcdn.com/m-assets/assets/css/biz_vendors-9c1dc331d37147bce60c.css
172.64.152.105200 OK 34 kB URL GET HTTP/2 static.kwcdn.com/m-assets/assets/css/biz_vendors-9c1dc331d37147bce60c.css
IP 172.64.152.105:443
Requested by https://www.temu.com/ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB
ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m-assets/assets/css/biz_vendors-9c1dc331d37147bce60c.css HTTP/1.1
Host: static.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 01 Nov 2023 03:23:34 GMT
content-type: text/css
vary: Accept-Encoding
cache-control: max-age=31536000
content-md5: TPtZTKvFiHhnNFr2G/FAbw==
etag: W/"0x8DBD81A11BE4EB4"
last-modified: Sun, 29 Oct 2023 00:57:48 GMT
x-content-type-options: nosniff
x-pos-request-id: 3212146e-101e-0092-090a-0a648b000000
cf-cache-status: HIT
age: 258769
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 81f10512a9575697-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
aimg.kwcdn.com/upload_aimg/dawn/12f53c06-2818-4285-83c2-8dfacbebb37b.ttf
172.64.152.105200 OK 31 kB URL GET HTTP/3 aimg.kwcdn.com/upload_aimg/dawn/12f53c06-2818-4285-83c2-8dfacbebb37b.ttf
IP 172.64.152.105:443
Requested by https://www.temu.com/ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB
ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT
File type TrueType Font data, 10 tables, 1st "OS/2", 22 names, Macintosh, Copyright \302\254\302\251 2023 temu. All rights reserved.TemuMarket HeavyRegular2.001;MONO;Temu\012- data
Hash bdcddd649010f8f50cddc66c7d208cf9
80e119731bcf49c7ff4d16354354ad119d519ee6
8dbc708bd214c0ac24edde6523d540b124d8de22abbe87923f4f923545cef940
GET /upload_aimg/dawn/12f53c06-2818-4285-83c2-8dfacbebb37b.ttf HTTP/1.1
Host: aimg.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://static.kwcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 01 Nov 2023 03:23:34 GMT
content-type: font/ttf
cache-control: max-age=31536000
content-md5: vc3dZJAQ+PUM3cZsfSCM+Q==
etag: W/"bdcddd649010f8f50cddc66c7d208cf9"
last-modified: Wed, 19 Apr 2023 09:00:25 GMT
x-content-type-options: nosniff
x-pos-request-id: f6603be1-f01e-008c-0686-7376b4000000
cf-cache-status: HIT
age: 597049
vary: Accept-Encoding
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 81f10515682e5699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
static.kwcdn.com/m-assets/assets/js/dynamic_vendors_9ba98012942f9e18bb80.js
172.64.152.105200 OK 209 kB URL GET HTTP/3 static.kwcdn.com/m-assets/assets/js/dynamic_vendors_9ba98012942f9e18bb80.js
IP 172.64.152.105:443
Requested by https://www.temu.com/ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB
ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT
Size 209 kB (208946 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m-assets/assets/js/dynamic_vendors_9ba98012942f9e18bb80.js HTTP/1.1
Host: static.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 01 Nov 2023 03:23:35 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cache-control: max-age=31536000
content-md5: taVt12iVQkmPueXzWY/ECA==
etag: W/"0x8DBD4447D4CD830"
last-modified: Tue, 24 Oct 2023 03:51:22 GMT
x-content-type-options: nosniff
x-pos-request-id: 638e6818-901e-008a-462d-068cb8000000
cf-cache-status: HIT
age: 418719
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 81f1051858be5699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
static.kwcdn.com/m-assets/assets/js/vendors_07ba115885eac13108d8.js
172.64.152.105200 OK 524 kB URL GET HTTP/2 static.kwcdn.com/m-assets/assets/js/vendors_07ba115885eac13108d8.js
IP 172.64.152.105:443
Requested by https://www.temu.com/ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB
ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT
Size 524 kB (524193 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m-assets/assets/js/vendors_07ba115885eac13108d8.js HTTP/1.1
Host: static.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 01 Nov 2023 03:23:34 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cache-control: max-age=31536000
content-md5: nV9x2MHCdyt9bb7URxmpPw==
etag: W/"0x8DBD82BF18B355D"
last-modified: Sun, 29 Oct 2023 03:05:45 GMT
x-content-type-options: nosniff
x-pos-request-id: c4dcc74f-101e-0016-6415-0a9fd6000000
cf-cache-status: HIT
age: 258769
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 81f10514ca2a5697-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.kwcdn.com/m-assets/assets/js/4208_e4378c30181ed52d121f.js
172.64.152.105200 OK 85 kB URL GET HTTP/3 static.kwcdn.com/m-assets/assets/js/4208_e4378c30181ed52d121f.js
IP 172.64.152.105:443
Requested by https://www.temu.com/ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB
ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m-assets/assets/js/4208_e4378c30181ed52d121f.js HTTP/1.1
Host: static.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 01 Nov 2023 03:23:34 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cache-control: max-age=31536000
content-md5: s4hyeKwqS17u8taCQGq7XQ==
etag: W/"0x8DBA531C0F2A09F"
last-modified: Fri, 25 Aug 2023 06:08:51 GMT
x-content-type-options: nosniff
x-pos-request-id: 37482b5b-201e-0089-7f1b-d7f1be000000
cf-cache-status: HIT
age: 602651
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 81f10516a8695699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
eu.pftk.temu.com/pmm/api/pmm/defined
20.123.108.148200 OK 0 B URL POST HTTP/2 eu.pftk.temu.com/pmm/api/pmm/defined
IP 20.123.108.148:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B
Certificate IssuerGoDaddy.com, Inc.
Subject*.pftk.temu.com
FingerprintF4:BE:81:8F:72:EA:45:6C:90:FB:ED:AA:86:7C:F4:6D:10:06:EA:D8
ValidityThu, 13 Jul 2023 13:25:25 GMT - Tue, 13 Aug 2024 13:25:25 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pmm/api/pmm/defined HTTP/1.1
Host: eu.pftk.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1917
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Cookie: api_uid=CnEixmVBxLUvTABjrLCrAg==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 01 Nov 2023 03:23:35 GMT
content-type: application/octet-stream
expires: Wed, 01 Nov 2023 03:23:34 GMT
cache-control: no-cache
access-control-allow-origin: https://www.temu.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content
X-Firefox-Spdy: h2
eu.pftk.temu.com/pmm/api/pmm/api
20.123.108.148200 OK 0 B URL POST HTTP/2 eu.pftk.temu.com/pmm/api/pmm/api
IP 20.123.108.148:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B
Certificate IssuerGoDaddy.com, Inc.
Subject*.pftk.temu.com
FingerprintF4:BE:81:8F:72:EA:45:6C:90:FB:ED:AA:86:7C:F4:6D:10:06:EA:D8
ValidityThu, 13 Jul 2023 13:25:25 GMT - Tue, 13 Aug 2024 13:25:25 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pmm/api/pmm/api HTTP/1.1
Host: eu.pftk.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1796
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Cookie: api_uid=CnEixmVBxLUvTABjrLCrAg==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 01 Nov 2023 03:23:35 GMT
content-type: application/octet-stream
expires: Wed, 01 Nov 2023 03:23:34 GMT
cache-control: no-cache
access-control-allow-origin: https://www.temu.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content
X-Firefox-Spdy: h2
www.temu.com/api/phantom/xg/pfb/l1
20.123.110.224200 OK 114 B URL GET HTTP/3 www.temu.com/api/phantom/xg/pfb/l1
IP 20.123.110.224:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B
Certificate IssuerGoDaddy.com, Inc.
Subject*.temu.com
FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35
ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash bb0687da0fb05463be21230ed3fa5de3
874f00ce048e7f938949306983dbdee59f0f1a63
2910d68aaf70adf92b6006ed9add84cad15e47a44df6b805d29467a028d3cf3a
GET /api/phantom/xg/pfb/l1 HTTP/1.1
Host: www.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B
Cookie: region=151; language=en; currency=NOK; api_uid=CnEixmVBxLUvTABjrLCrAg==; timezone=UTC; _nano_fp=XpEbl0Colp9an5XJX9_Q~YKc3XsSsQPCtOD17CCj
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
server: nginx
date: Wed, 01 Nov 2023 03:23:35 GMT
content-type: application/json;charset=UTF-8
content-encoding: gzip
vary: Accept-Encoding
x-yak-request-id: 1698809015894-65478f65f5f8957dac292309472511da
strict-transport-security: max-age=2592000
content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/110000007/sec-gif
yak-timeinfo: 1698809015894|1
cip: 91.90.42.154
alt-svc: h3=":443"; ma=86400
static.kwcdn.com/m-assets/assets/css/ruby_free_right-10f2b7128fad3f3b2964.css
172.64.152.105200 OK 776 kB URL GET HTTP/2 static.kwcdn.com/m-assets/assets/css/ruby_free_right-10f2b7128fad3f3b2964.css
IP 172.64.152.105:443
Requested by https://www.temu.com/ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB
ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 776 kB (776267 bytes)
Hash a4abf2ab89e959f76dc8b9d956fb8a19
19a30e23eb1fd20a9a85610c9c73de628cf868d2
da440c78523470b5cd211cc3810acad7009d758f74cb168b51c3247b6a243794
GET /m-assets/assets/css/ruby_free_right-10f2b7128fad3f3b2964.css HTTP/1.1
Host: static.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 01 Nov 2023 03:23:34 GMT
content-type: text/css
vary: Accept-Encoding
cache-control: max-age=31536000
content-md5: pKvyq4npWfdtyLnZVvuKGQ==
etag: W/"0x8DBD9289C88AB5C"
last-modified: Mon, 30 Oct 2023 09:14:25 GMT
x-content-type-options: nosniff
x-pos-request-id: b34fd32c-c01e-002f-0514-0bcdd4000000
cf-cache-status: HIT
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 81f10512a96b5697-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.kwcdn.com/m-assets/assets/js/react_webpack_runtime_3f58d683b6ad845a1a6c.js
172.64.152.105200 OK 51 kB URL GET HTTP/2 static.kwcdn.com/m-assets/assets/js/react_webpack_runtime_3f58d683b6ad845a1a6c.js
IP 172.64.152.105:443
Requested by https://www.temu.com/ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB
ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT
File type ASCII text, with very long lines (50751)
Hash 81c361837cae845f29a0e962dfc4c82b
9fc8fed56dc5c7b526fd89a8125e47f31d627a10
83ed4d1a8f8454e2446cd5ddeb1aa8276f23bcf3e454156c508c8d07dad680b9
GET /m-assets/assets/js/react_webpack_runtime_3f58d683b6ad845a1a6c.js HTTP/1.1
Host: static.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 01 Nov 2023 03:23:34 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cache-control: max-age=31536000
content-md5: gcNhg3yuhF8poOli38TIKw==
etag: W/"0x8DBD9F91110EBDB"
last-modified: Tue, 31 Oct 2023 10:06:35 GMT
x-content-type-options: nosniff
x-pos-request-id: e2f7ca7c-101e-0092-37ed-0b648b000000
cf-cache-status: HIT
age: 57132
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 81f10514ca275697-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.temu.com/api/phantom/xg/pfb/b
20.123.110.224200 OK 161 B URL GET HTTP/3 www.temu.com/api/phantom/xg/pfb/b
IP 20.123.110.224:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B
Certificate IssuerGoDaddy.com, Inc.
Subject*.temu.com
FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35
ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 7940668cdab2c42445f23357597d63dd
0912d50d3c3b3aeb7b4d7727cb31765b055de4da
2303187da94d2e265071a9a7a2d265486e25b41b65739c53c7b8ae9703a50c3d
GET /api/phantom/xg/pfb/b HTTP/1.1
Host: www.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B
Cookie: region=151; language=en; currency=NOK; api_uid=CnEixmVBxLUvTABjrLCrAg==; timezone=UTC; _nano_fp=XpEbl0Colp9an5XJX9_Q~YKc3XsSsQPCtOD17CCj
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
server: nginx
date: Wed, 01 Nov 2023 03:23:35 GMT
content-type: application/json;charset=UTF-8
cache-control: max-age=94608000, immutable, private
content-encoding: gzip
vary: Accept-Encoding
x-yak-request-id: 1698809015361-0e90277d868ea8d3e528ee82a3b61d08
strict-transport-security: max-age=2592000
content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/110000007/sec-gif
yak-timeinfo: 1698809015361|2
cip: 91.90.42.154
alt-svc: h3=":443"; ma=86400
aimg.kwcdn.com/upload_aimg/dawn/bab4c552-e8ad-46e5-b1b0-4aa47e220429.ttf
172.64.152.105200 OK 31 kB URL GET HTTP/3 aimg.kwcdn.com/upload_aimg/dawn/bab4c552-e8ad-46e5-b1b0-4aa47e220429.ttf
IP 172.64.152.105:443
Requested by https://www.temu.com/ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB
ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT
File type TrueType Font data, 10 tables, 1st "OS/2", 22 names, Macintosh, Copyright \302\254\302\251 2023 Temu. All rights reserved.TemuMarket-BoldBold2.001;MONO;TemuMark\012- data
Hash e0248a90fee4bcf882845317355e09f6
ddc96c9886623f21e7c0ef4682d72133c8d71148
8e4b66c4be42c2d5a98639ed4638824efd6ee0b4972daad3929f93a8bc26debb
GET /upload_aimg/dawn/bab4c552-e8ad-46e5-b1b0-4aa47e220429.ttf HTTP/1.1
Host: aimg.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://static.kwcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 01 Nov 2023 03:23:34 GMT
content-type: font/ttf
cache-control: max-age=31536000
content-md5: 4CSKkP7kvPiChFMXNV4J9g==
etag: W/"e0248a90fee4bcf882845317355e09f6"
last-modified: Wed, 19 Apr 2023 09:00:25 GMT
x-content-type-options: nosniff
x-pos-request-id: d2050974-d01e-009e-4388-739092000000
cf-cache-status: HIT
age: 329060
vary: Accept-Encoding
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 81f10515682d5699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
static.kwcdn.com/m-assets/assets/js/8745_5a2cd9a3cbf91dac9c60.js
172.64.152.105200 OK 528 kB URL GET HTTP/2 static.kwcdn.com/m-assets/assets/js/8745_5a2cd9a3cbf91dac9c60.js
IP 172.64.152.105:443
Requested by https://www.temu.com/ruby_free_right.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_comp_expired=1698847886&team_type=C&gs_team_remove=1&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=personal&refer_share_id=3AeoGyWI1j2Q0HSExQxsrXM9QEARKkyB&refer_share_channel=copy_link&refer_share_suin=BDIRDWR6XZAZB6ZQGAZQFJRH2ODZRW5KLDHTKA6I32YFA&group_sn=231031-858BD74332A953031297&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=477846401&gs_og_title=%D9%87%D9%84%20%D9%8A%D9%85%D9%83%D9%86%D9%83%20%D9%82%D8%A8%D9%88%D9%84%20%D8%AF%D8%B9%D9%88%D8%AA%D9%8A%20%D8%AD%D8%AA%D9%89%20%D8%A3%D8%AA%D9%85%D9%83%D9%86%20%D9%85%D9%86%20%D8%A7%D9%84%D8%AD%D8%B5%D9%88%D9%84%20%D8%B9%D9%84%D9%89%20%D9%87%D8%AF%D9%8A%D8%A9%20%D9%85%D8%AC%D8%A7%D9%86%D9%8A%D8%A9&gs_og_description=%D8%A7%D8%B6%D8%BA%D8%B7%20%D8%B9%D9%84%D9%89%20%D8%A7%D9%84%D8%B1%D8%A7%D8%A8%D8%B7%20%D8%A7%D9%84%D8%A2%D9%86%20%D9%88%D8%B4%D8%A7%D8%B1%D9%83%20%D9%81%D9%8A%20%D9%87%EF%BF%BD%25B
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB
ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT
Size 528 kB (527973 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m-assets/assets/js/8745_5a2cd9a3cbf91dac9c60.js HTTP/1.1
Host: static.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 01 Nov 2023 03:23:34 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cache-control: max-age=31536000
content-md5: 0owGVsZCljcQifzU/BrUmg==
etag: W/"0x8DBD9F911E29C41"
last-modified: Tue, 31 Oct 2023 10:06:37 GMT
x-content-type-options: nosniff
x-pos-request-id: 0874d186-f01e-0024-03ed-0be8c3000000
cf-cache-status: HIT
age: 57132
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 81f10514ca2d5697-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2