ocsp.godaddy.com/
192.124.249.24 1.8 kB IP 192.124.249.24:0
Hash 54b76ad0ea8a7ab9851ca0bc61c401e6
896f207d583abc1946e8c1cf0aab74ff1b5b7907
42b51a1c345c6eec2f13deb9cb741493f946edf8ad18a0c96a89be4df22fdb56
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 01 Jun 2023 05:08:37 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 31 May 2023 13:37:48 GMT
Expires: Thu, 01 Jun 2023 13:37:48 GMT
ETag: "896f207d583abc1946e8c1cf0aab74ff1b5b7907"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
aimg.kwcdn.com/upload_aimg/lp/35387982-c12e-4d5f-93d8-8f7bfdb4554a.png.slim.png?imageView2/2/w/1300/q/80
172.64.147.2200 OK 1.6 kB URL GET HTTP/2 aimg.kwcdn.com/upload_aimg/lp/35387982-c12e-4d5f-93d8-8f7bfdb4554a.png.slim.png?imageView2/2/w/1300/q/80
IP 172.64.147.2:443
Requested by https://www.temu.com/bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms&locale_override=163~en~EUR
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
FingerprintF1:1F:F1:F1:EE:92:73:E3:9F:A1:6B:0D:07:9A:D9:37:A7:2A:06:B2
ValidityWed, 10 Aug 2022 07:46:22 GMT - Thu, 10 Aug 2023 07:46:22 GMT
File type PNG image data, 136 x 88, 8-bit/color RGBA, non-interlaced\012- data
Hash 64ffc3ba2711de059709aeaeacfded4a
8dbbb64106bbaf593ef87ceb25c11e2fe4e84795
0f6c23cce2e99ab0d9abd8817b521d1291e9ca6cb8f7a94ff3f2b5076deee19e
GET /upload_aimg/lp/35387982-c12e-4d5f-93d8-8f7bfdb4554a.png.slim.png?imageView2/2/w/1300/q/80 HTTP/1.1
Host: aimg.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Jun 2023 05:08:38 GMT
content-type: image/png
content-length: 1636
cache-control: max-age=31536000
last-modified: Fri, 09 Dec 2022 04:01:33 GMT
request-id: 74d56adc33646039398dfac3dbf5ce31
x-content-type-options: nosniff
x-fop-destination-type: fop
x-imagine-success: true
cf-cache-status: HIT
age: 4976283
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 7d04f09c7ed20b65-OSL
X-Firefox-Spdy: h2
www.temu.com/bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms&locale_override=163~en~EUR
20.223.39.110200 OK 140 kB URL User Request GET HTTP/2 www.temu.com/bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms&locale_override=163~en~EUR
IP 20.223.39.110:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Certificate IssuerGoDaddy.com, Inc.
Subject*.temu.com
FingerprintE3:6B:F9:98:96:EC:C1:BD:F3:DD:E4:04:90:C8:EF:14:6C:BE:F2:5E
ValiditySun, 14 Aug 2022 08:24:19 GMT - Mon, 14 Aug 2023 08:24:19 GMT
File type gzip compressed data, max speed, from Unix\012- data
Size 140 kB (140335 bytes)
Hash 5a5800b0ecf40f641dda550155b0b3fa
864fa57db6634fd68552160386e02e2cf9714f72
4e40f3c28d0404dfbc8d20f2a7ef094e26fc54338e0a9cb239d4e0020e89acd5
GET /bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms&locale_override=163~en~EUR HTTP/1.1
Host: www.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Nginx
date: Thu, 01 Jun 2023 05:08:37 GMT
content-type: text/html; charset=UTF-8
content-language: en
surrogate-control: no-store
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate
pragma: no-cache
expires: 0
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-accel-buffering: no
content-encoding: gzip
x-yak-request-id: 1685596117959-9a575f262437cb6c7befb4f88d1376c3
strict-transport-security: max-age=2592000
set-cookie: region=163; Expires=Sat, 01-Jul-23 05:08:37 GMT; Path=/
language=en; Expires=Sat, 01-Jul-23 05:08:37 GMT; Path=/
currency=EUR; Expires=Sat, 01-Jul-23 05:08:37 GMT; Path=/
api_uid=CnAs+mR4J9VOHwCJyj+GAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.temu.com; path=/
content-security-policy-report-only: default-src *.temu.com *.kwcdn.com wss://*.temu.com *.googleapis.com *.gstatic.com *.googletagmanager.com *.google-analytics.com *.analytics.google.com *.doubleclick.net *.google.com *.googlesyndication.com *.googleusercontent.com www.googleadservices.com www.google.cn www.google.com.hk www.google.co.uk www.google.ca www.google.com.au www.google.co.nz google.com connect.facebook.net www.facebook.com appleid.cdn-apple.com socialplugin.facebook.net *.cash.app *.forter.com blob: data: 'unsafe-eval' 'unsafe-inline' 'wasm-eval'; report-uri /api/sec-csp/c/sec-gif
vary: Accept-Encoding, User-Agent
x-frame-options: SAMEORIGIN
cip: 91.90.42.154
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.24 1.8 kB IP 192.124.249.24:0
Hash 497f0b7aed80ec7492bdb61037236f7f
4954d6d1a28ba42ca1a389a0d0d45f554fa1e98f
3d0fdaf90e353566750df2336a0d374972a31a71808a90f97c683285282d1163
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 01 Jun 2023 05:08:39 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 01 Jun 2023 03:16:57 GMT
Expires: Fri, 02 Jun 2023 03:16:57 GMT
ETag: "4954d6d1a28ba42ca1a389a0d0d45f554fa1e98f"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.godaddy.com/
192.124.249.24 1.8 kB IP 192.124.249.24:0
Hash 497f0b7aed80ec7492bdb61037236f7f
4954d6d1a28ba42ca1a389a0d0d45f554fa1e98f
3d0fdaf90e353566750df2336a0d374972a31a71808a90f97c683285282d1163
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 01 Jun 2023 05:08:39 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 01 Jun 2023 03:16:57 GMT
Expires: Fri, 02 Jun 2023 03:16:57 GMT
ETag: "4954d6d1a28ba42ca1a389a0d0d45f554fa1e98f"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.godaddy.com/
192.124.249.24 1.8 kB IP 192.124.249.24:0
Hash 8c2087fcacc5b8af2e332ba3b2ff9275
9d0f60f11405d9155996fc16f4e1e6b48fc6a31e
12b96b854ce7198b947fd2ed83eee0ed2914afe34d9ce0bf62edaa81d90e6a82
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 01 Jun 2023 05:08:39 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 31 May 2023 23:31:08 GMT
Expires: Thu, 01 Jun 2023 23:31:08 GMT
ETag: "9d0f60f11405d9155996fc16f4e1e6b48fc6a31e"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
eu.matk.temu.com/s/organic?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&src=sms&referer=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_sms.html%3Fmsgid%3D163-20230601-09-O-606301440741724160-415-8Pkl5nm4%26_p_landing%3D1%26_x_src%3Dsms&adg_mtid=077fd4b0f4fb4&launch_id=077fd4b0f4fb4&hash_token=b7e6601b9255e08ce4955a383828f5db&jump_url=%2Findex.html%3Flaunch_id%3D077fd4b0f4fb4%26msgid%3D163-20230601-09-O-606301440741724160-415-8Pkl5nm4%26_x_src%3Dsms%26_x_vst_scene%3Dadg%26adg_ctx%3De-0e7d9764%26locale_override%3D163~en~EUR&install_referer=adg_reftag%3Db7e6601b9255e08ce4955a383828f5db%26src%3Dsms%26msgid%3D163-20230601-09-O-606301440741724160-415-8Pkl5nm4%26vst_type%3Dadg&step=init&cli_region=163&cli_currency=EUR&cli_language=en&adg_plat_type=h5&adg_aty=others&adg_dnld=main&adg_csite=others&adg_parse_path=%2Fbgms_unsubscribe_sms.html¤cy=EUR&language=en®ion=163&adg_app=Firefox&page_sn=13620&client_time=1685596118806&pkg_version=423&pkg_name=lib-launch&ping_type=beacon
13.107.237.53200 OK 0 B URL POST HTTP/2 eu.matk.temu.com/s/organic?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&src=sms&referer=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_sms.html%3Fmsgid%3D163-20230601-09-O-606301440741724160-415-8Pkl5nm4%26_p_landing%3D1%26_x_src%3Dsms&adg_mtid=077fd4b0f4fb4&launch_id=077fd4b0f4fb4&hash_token=b7e6601b9255e08ce4955a383828f5db&jump_url=%2Findex.html%3Flaunch_id%3D077fd4b0f4fb4%26msgid%3D163-20230601-09-O-606301440741724160-415-8Pkl5nm4%26_x_src%3Dsms%26_x_vst_scene%3Dadg%26adg_ctx%3De-0e7d9764%26locale_override%3D163~en~EUR&install_referer=adg_reftag%3Db7e6601b9255e08ce4955a383828f5db%26src%3Dsms%26msgid%3D163-20230601-09-O-606301440741724160-415-8Pkl5nm4%26vst_type%3Dadg&step=init&cli_region=163&cli_currency=EUR&cli_language=en&adg_plat_type=h5&adg_aty=others&adg_dnld=main&adg_csite=others&adg_parse_path=%2Fbgms_unsubscribe_sms.html¤cy=EUR&language=en®ion=163&adg_app=Firefox&page_sn=13620&client_time=1685596118806&pkg_version=423&pkg_name=lib-launch&ping_type=beacon
IP 13.107.237.53:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms&locale_override=163~en~EUR
Certificate IssuerGoDaddy.com, Inc.
Subject*.matk.temu.com
FingerprintA5:FB:08:D0:0F:3B:2A:51:50:6F:F2:D7:67:2E:76:09:2B:46:8D:A4
ValiditySun, 14 Aug 2022 08:50:10 GMT - Mon, 14 Aug 2023 08:50:10 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /s/organic?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&src=sms&referer=https%3A%2F%2Fwww.temu.com%2Fbgms_unsubscribe_sms.html%3Fmsgid%3D163-20230601-09-O-606301440741724160-415-8Pkl5nm4%26_p_landing%3D1%26_x_src%3Dsms&adg_mtid=077fd4b0f4fb4&launch_id=077fd4b0f4fb4&hash_token=b7e6601b9255e08ce4955a383828f5db&jump_url=%2Findex.html%3Flaunch_id%3D077fd4b0f4fb4%26msgid%3D163-20230601-09-O-606301440741724160-415-8Pkl5nm4%26_x_src%3Dsms%26_x_vst_scene%3Dadg%26adg_ctx%3De-0e7d9764%26locale_override%3D163~en~EUR&install_referer=adg_reftag%3Db7e6601b9255e08ce4955a383828f5db%26src%3Dsms%26msgid%3D163-20230601-09-O-606301440741724160-415-8Pkl5nm4%26vst_type%3Dadg&step=init&cli_region=163&cli_currency=EUR&cli_language=en&adg_plat_type=h5&adg_aty=others&adg_dnld=main&adg_csite=others&adg_parse_path=%2Fbgms_unsubscribe_sms.html¤cy=EUR&language=en®ion=163&adg_app=Firefox&page_sn=13620&client_time=1685596118806&pkg_version=423&pkg_name=lib-launch&ping_type=beacon HTTP/1.1
Host: eu.matk.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Cookie: api_uid=CnAs+mR4J9VOHwCJyj+GAg==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
cache-control: no-cache,private, no-cache, no-store, must-revalidate, proxy-revalidate, no-transform, max-age=0
content-type: application/octet-stream
expires: Thu, 01 Jun 2023 05:08:38 GMT
access-control-allow-origin: https://www.temu.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken
x-cache: CONFIG_NOCACHE
x-azure-ref: 01yd4ZAAAAACid4p6nIByRJBSd72GuZvJU1ZHMjBFREdFMDYwOQAxNjU2MGUxMS1iMDg3LTQ3YTEtOWFmYS00NWU5YWNmZThhNTE=
date: Thu, 01 Jun 2023 05:08:39 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.24 1.8 kB IP 192.124.249.24:0
Hash 497f0b7aed80ec7492bdb61037236f7f
4954d6d1a28ba42ca1a389a0d0d45f554fa1e98f
3d0fdaf90e353566750df2336a0d374972a31a71808a90f97c683285282d1163
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 01 Jun 2023 05:08:39 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 01 Jun 2023 03:16:57 GMT
Expires: Fri, 02 Jun 2023 03:16:57 GMT
ETag: "4954d6d1a28ba42ca1a389a0d0d45f554fa1e98f"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.godaddy.com/
192.124.249.24 1.8 kB IP 192.124.249.24:0
Hash 497f0b7aed80ec7492bdb61037236f7f
4954d6d1a28ba42ca1a389a0d0d45f554fa1e98f
3d0fdaf90e353566750df2336a0d374972a31a71808a90f97c683285282d1163
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 01 Jun 2023 05:08:41 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 01 Jun 2023 03:16:57 GMT
Expires: Fri, 02 Jun 2023 03:16:57 GMT
ETag: "4954d6d1a28ba42ca1a389a0d0d45f554fa1e98f"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.godaddy.com/
192.124.249.24 1.8 kB IP 192.124.249.24:0
Hash 497f0b7aed80ec7492bdb61037236f7f
4954d6d1a28ba42ca1a389a0d0d45f554fa1e98f
3d0fdaf90e353566750df2336a0d374972a31a71808a90f97c683285282d1163
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 01 Jun 2023 05:08:41 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 01 Jun 2023 03:16:57 GMT
Expires: Fri, 02 Jun 2023 03:16:57 GMT
ETag: "4954d6d1a28ba42ca1a389a0d0d45f554fa1e98f"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
static.kwcdn.com/m-assets/assets/js/biz_vendors_27bd7b06333518af4a5f.js
172.64.147.2200 OK 345 kB URL GET HTTP/2 static.kwcdn.com/m-assets/assets/js/biz_vendors_27bd7b06333518af4a5f.js
IP 172.64.147.2:443
Requested by https://www.temu.com/bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms&locale_override=163~en~EUR
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
FingerprintF1:1F:F1:F1:EE:92:73:E3:9F:A1:6B:0D:07:9A:D9:37:A7:2A:06:B2
ValidityWed, 10 Aug 2022 07:46:22 GMT - Thu, 10 Aug 2023 07:46:22 GMT
Size 345 kB (345019 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m-assets/assets/js/biz_vendors_27bd7b06333518af4a5f.js HTTP/1.1
Host: static.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 01 Jun 2023 05:08:38 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding, Accept-Encoding
cache-control: max-age=31536000
content-md5: iWc7U2H2lUIv+OpONks0VA==
etag: W/"0x8DB6245A7D828B6"
last-modified: Thu, 01 Jun 2023 02:12:31 GMT
x-content-type-options: nosniff
x-pos-request-id: ae3eb47b-301e-0028-252f-941cda000000
cf-cache-status: HIT
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 7d04f09c5be7b4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2
eu.thtk.temu.com/c/th.gif
20.223.36.124200 OK 0 B URL POST HTTP/2 eu.thtk.temu.com/c/th.gif
IP 20.223.36.124:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms&locale_override=163~en~EUR
Certificate IssuerGoDaddy.com, Inc.
Subject*.thtk.temu.com
FingerprintB9:F9:97:E6:27:77:DF:19:91:B1:A7:C5:03:C3:9E:3B:B5:5F:38:08
ValiditySun, 14 Aug 2022 08:45:04 GMT - Mon, 14 Aug 2023 08:45:04 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /c/th.gif HTTP/1.1
Host: eu.thtk.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 666
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Cookie: api_uid=CnAs+mR4J9VOHwCJyj+GAg==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 01 Jun 2023 05:08:39 GMT
content-type: image/gif
expires: Thu, 01 Jun 2023 05:08:38 GMT
cache-control: no-cache
access-control-allow-origin: https://www.temu.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content
X-Firefox-Spdy: h2
www.temu.com/api/server/_stm
20.223.39.110200 OK 29 B URL GET HTTP/2 www.temu.com/api/server/_stm
IP 20.223.39.110:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms&locale_override=163~en~EUR
Certificate IssuerGoDaddy.com, Inc.
Subject*.temu.com
FingerprintE3:6B:F9:98:96:EC:C1:BD:F3:DD:E4:04:90:C8:EF:14:6C:BE:F2:5E
ValiditySun, 14 Aug 2022 08:24:19 GMT - Mon, 14 Aug 2023 08:24:19 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 20320e1b8e835432d68b1333b0f55993
096eb7954d52c965928720c362e8b74336ea4cc0
f79181ec48745f841c7a3472f4498ac3565d4a5fb234f77602cce1f0c0c70ec8
GET /api/server/_stm HTTP/1.1
Host: www.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms
Cookie: region=163; language=en; currency=EUR; api_uid=CnAs+mR4J9VOHwCJyj+GAg==; timezone=UTC; _nano_fp=XpEJnpdbn5gal0dJl9_9krhH7FlosuqAhogWtt0F
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Nginx
date: Thu, 01 Jun 2023 05:08:39 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
cip: 91.90.42.154
content-encoding: gzip
X-Firefox-Spdy: h2
static.kwcdn.com/m-assets/assets/js/react_webpack_runtime_df3bf1a8f373b8603d67.js
172.64.147.2200 OK 5.3 kB URL GET HTTP/2 static.kwcdn.com/m-assets/assets/js/react_webpack_runtime_df3bf1a8f373b8603d67.js
IP 172.64.147.2:443
Requested by https://www.temu.com/bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms&locale_override=163~en~EUR
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
FingerprintF1:1F:F1:F1:EE:92:73:E3:9F:A1:6B:0D:07:9A:D9:37:A7:2A:06:B2
ValidityWed, 10 Aug 2022 07:46:22 GMT - Thu, 10 Aug 2023 07:46:22 GMT
File type ASCII text, with very long lines (5463), with no line terminators
Hash fd20bc4549cb7ebdda13170362334980
d152a7847e710dc60ca3b1a777ddea8789795d55
12491d88a99d1f6decf3bb68a3adef146938e14866f1a34ac376cb265ed16f37
GET /m-assets/assets/js/react_webpack_runtime_df3bf1a8f373b8603d67.js HTTP/1.1
Host: static.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 01 Jun 2023 05:08:38 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding, Accept-Encoding
cache-control: max-age=31536000
content-md5: rV8dC5OfTVByo5URM8mpDQ==
etag: W/"0x8DB61878F1FDEA9"
last-modified: Wed, 31 May 2023 03:31:45 GMT
x-content-type-options: nosniff
x-pos-request-id: 1f14a3fa-601e-0009-2985-93a6eb000000
cf-cache-status: HIT
age: 75847
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 7d04f09c6bf4b4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.temu.com/api/phantom/xg/pfb/l1
20.223.39.110200 OK 114 B URL GET HTTP/2 www.temu.com/api/phantom/xg/pfb/l1
IP 20.223.39.110:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms&locale_override=163~en~EUR
Certificate IssuerGoDaddy.com, Inc.
Subject*.temu.com
FingerprintE3:6B:F9:98:96:EC:C1:BD:F3:DD:E4:04:90:C8:EF:14:6C:BE:F2:5E
ValiditySun, 14 Aug 2022 08:24:19 GMT - Mon, 14 Aug 2023 08:24:19 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash bb0687da0fb05463be21230ed3fa5de3
874f00ce048e7f938949306983dbdee59f0f1a63
2910d68aaf70adf92b6006ed9add84cad15e47a44df6b805d29467a028d3cf3a
GET /api/phantom/xg/pfb/l1 HTTP/1.1
Host: www.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms
Cookie: region=163; language=en; currency=EUR; api_uid=CnAs+mR4J9VOHwCJyj+GAg==; timezone=UTC; _nano_fp=XpEJnpdbn5gal0dJl9_9krhH7FlosuqAhogWtt0F
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Nginx
date: Thu, 01 Jun 2023 05:08:39 GMT
content-type: application/json;charset=UTF-8
content-encoding: gzip
vary: Accept-Encoding
x-yak-request-id: 1685596119293-e4ac669c5479c7d875e1269b4f6e881c
strict-transport-security: max-age=2592000
content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/c-api/sec-gif
yak-timeinfo: 1685596119293|1
cip: 91.90.42.154
X-Firefox-Spdy: h2
aimg.kwcdn.com/upload_aimg/web/7cede14c-55ff-416f-8494-d3b91ec166e7.ico
0.0.0.0 0 B URL GET aimg.kwcdn.com/upload_aimg/web/7cede14c-55ff-416f-8494-d3b91ec166e7.ico
IP 0.0.0.0:0
Requested by https://www.temu.com/bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms&locale_override=163~en~EUR
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
FingerprintF1:1F:F1:F1:EE:92:73:E3:9F:A1:6B:0D:07:9A:D9:37:A7:2A:06:B2
ValidityWed, 10 Aug 2022 07:46:22 GMT - Thu, 10 Aug 2023 07:46:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /upload_aimg/web/7cede14c-55ff-416f-8494-d3b91ec166e7.ico HTTP/1.1
Host: aimg.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 01 Jun 2023 05:08:38 GMT
content-type: image/vnd.microsoft.icon
cache-control: max-age=31536000
content-md5: d67cdQSLrraKG7dS7Nnsxg==
etag: W/"77aedc75048baeb68a1bb752ecd9ecc6"
last-modified: Sun, 18 Sep 2022 13:49:04 GMT
x-content-type-options: nosniff
x-pos-request-id: a276e88f-f01e-0060-4737-0697da000000
cf-cache-status: HIT
age: 7253173
vary: Accept-Encoding
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 7d04f09defb30b65-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.kwcdn.com/m-assets/assets/css/cookie-prompt_08c13aad2a941d79d393.css
172.64.147.2200 OK 8.3 kB URL GET HTTP/2 static.kwcdn.com/m-assets/assets/css/cookie-prompt_08c13aad2a941d79d393.css
IP 172.64.147.2:443
Requested by https://www.temu.com/bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms&locale_override=163~en~EUR
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
FingerprintF1:1F:F1:F1:EE:92:73:E3:9F:A1:6B:0D:07:9A:D9:37:A7:2A:06:B2
ValidityWed, 10 Aug 2022 07:46:22 GMT - Thu, 10 Aug 2023 07:46:22 GMT
File type ASCII text, with very long lines (8272), with no line terminators
Hash e7a02d74320181f3476afe8effac9161
5e5f82dbff119157a6409156c3a20f78f4d36209
da8e0aca549e6fdd7e78ace5c759492faab066eb2354ab4f5168d9bcb471963e
GET /m-assets/assets/css/cookie-prompt_08c13aad2a941d79d393.css HTTP/1.1
Host: static.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 01 Jun 2023 05:08:38 GMT
content-type: text/css
vary: Accept-Encoding
cache-control: max-age=31536000
content-md5: W7TKCT9dvoUMLhloVCVdQg==
etag: W/"0x8DB521E89DC1646"
last-modified: Thu, 11 May 2023 12:52:11 GMT
x-content-type-options: nosniff
x-pos-request-id: 6460792d-101e-00ae-6075-88b183000000
cf-cache-status: HIT
age: 1154749
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 7d04f09ef85d0b65-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.temu.com/api/phantom/xg/pfb/a4
20.223.39.110200 OK 194 B URL POST HTTP/2 www.temu.com/api/phantom/xg/pfb/a4
IP 20.223.39.110:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms&locale_override=163~en~EUR
Certificate IssuerGoDaddy.com, Inc.
Subject*.temu.com
FingerprintE3:6B:F9:98:96:EC:C1:BD:F3:DD:E4:04:90:C8:EF:14:6C:BE:F2:5E
ValiditySun, 14 Aug 2022 08:24:19 GMT - Mon, 14 Aug 2023 08:24:19 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 8682218537d52a62c7b9d2ca8f610cd3
bf571131aadd0a297d449131b6603d096ce84b47
33671001375e6fc5609db585ec34cc4b14dbef16f78bcc943362f727bb85f720
POST /api/phantom/xg/pfb/a4 HTTP/1.1
Host: www.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
Content-Length: 1809
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms
Cookie: region=163; language=en; currency=EUR; api_uid=CnAs+mR4J9VOHwCJyj+GAg==; timezone=UTC; _nano_fp=XpEJnpdbn5gal0dJl9_9krhH7FlosuqAhogWtt0F
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Nginx
date: Thu, 01 Jun 2023 05:08:39 GMT
content-type: application/json;charset=UTF-8
set-cookie: _bee=LxXIzholbUd1bu2ZqrRkeQ1XWcioXbHN; Max-Age=31536000; Expires=Fri, 31 May 2024 05:08:39 GMT; Path=/; Domain=.temu.com
njrpl=LxXIzholbUd1bu2ZqrRkeQ1XWcioXbHN; Max-Age=31536000; Expires=Fri, 31 May 2024 05:08:39 GMT; Path=/; Domain=.temu.com
dilx=Dfu8F8_tdMwBClfaVQKux; Max-Age=31536000; Expires=Fri, 31 May 2024 05:08:39 GMT; Path=/; Domain=.temu.com
hfsc=L32CfYw57z/52pXEew==; Max-Age=31536000; Expires=Fri, 31 May 2024 05:08:39 GMT; Path=/; HttpOnly; Domain=.temu.com
content-encoding: gzip
x-yak-request-id: 1685596119289-acb2609bfa86297946784dbaad2036f1
access-control-allow-origin: https://www.temu.com
vary: Accept-Encoding, Origin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, X_Requested_With, Accept, X-HTTP-Method-Override, Cookie, AccessToken, PASSID, VerifyAuthToken, Anti-Content
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
strict-transport-security: max-age=2592000
content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/c-api/sec-gif
yak-timeinfo: 1685596119289|12
cip: 91.90.42.154
X-Firefox-Spdy: h2
www.temu.com/api/phantom/xg/pfb/a4
20.223.39.110200 OK 194 B URL POST HTTP/2 www.temu.com/api/phantom/xg/pfb/a4
IP 20.223.39.110:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms&locale_override=163~en~EUR
Certificate IssuerGoDaddy.com, Inc.
Subject*.temu.com
FingerprintE3:6B:F9:98:96:EC:C1:BD:F3:DD:E4:04:90:C8:EF:14:6C:BE:F2:5E
ValiditySun, 14 Aug 2022 08:24:19 GMT - Mon, 14 Aug 2023 08:24:19 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 8682218537d52a62c7b9d2ca8f610cd3
bf571131aadd0a297d449131b6603d096ce84b47
33671001375e6fc5609db585ec34cc4b14dbef16f78bcc943362f727bb85f720
POST /api/phantom/xg/pfb/a4 HTTP/1.1
Host: www.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
Content-Length: 1809
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms
Cookie: region=163; language=en; currency=EUR; api_uid=CnAs+mR4J9VOHwCJyj+GAg==; timezone=UTC; _nano_fp=XpEJnpdbn5gal0dJl9_9krhH7FlosuqAhogWtt0F; _bee=LxXIzholbUd1bu2ZqrRkeQ1XWcioXbHN; njrpl=LxXIzholbUd1bu2ZqrRkeQ1XWcioXbHN; dilx=Dfu8F8_tdMwBClfaVQKux; hfsc=L32CfYw57z/52pXEew==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Nginx
date: Thu, 01 Jun 2023 05:08:39 GMT
content-type: application/json;charset=UTF-8
set-cookie: _bee=LxXIzholbUd1bu2ZqrRkeQ1XWcioXbHN; Max-Age=31536000; Expires=Fri, 31 May 2024 05:08:39 GMT; Path=/; Domain=.temu.com
njrpl=LxXIzholbUd1bu2ZqrRkeQ1XWcioXbHN; Max-Age=31536000; Expires=Fri, 31 May 2024 05:08:39 GMT; Path=/; Domain=.temu.com
dilx=Dfu8F8_tdMwBClfaVQKux; Max-Age=31536000; Expires=Fri, 31 May 2024 05:08:39 GMT; Path=/; Domain=.temu.com
hfsc=L32CfYw57z/52pXEew==; Max-Age=31536000; Expires=Fri, 31 May 2024 05:08:39 GMT; Path=/; HttpOnly; Domain=.temu.com
content-encoding: gzip
x-yak-request-id: 1685596119385-2aca0a7bde6cc6f1951b816736bb2d71
access-control-allow-origin: https://www.temu.com
vary: Accept-Encoding, Origin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, X_Requested_With, Accept, X-HTTP-Method-Override, Cookie, AccessToken, PASSID, VerifyAuthToken, Anti-Content
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
strict-transport-security: max-age=2592000
content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/c-api/sec-gif
yak-timeinfo: 1685596119385|11
cip: 91.90.42.154
X-Firefox-Spdy: h2
static.kwcdn.com/m-assets/assets/js/vendors_7aab69934e712751d25e.js
172.64.147.2200 OK 507 kB URL GET HTTP/2 static.kwcdn.com/m-assets/assets/js/vendors_7aab69934e712751d25e.js
IP 172.64.147.2:443
Requested by https://www.temu.com/bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms&locale_override=163~en~EUR
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
FingerprintF1:1F:F1:F1:EE:92:73:E3:9F:A1:6B:0D:07:9A:D9:37:A7:2A:06:B2
ValidityWed, 10 Aug 2022 07:46:22 GMT - Thu, 10 Aug 2023 07:46:22 GMT
Size 507 kB (507083 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m-assets/assets/js/vendors_7aab69934e712751d25e.js HTTP/1.1
Host: static.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 01 Jun 2023 05:08:38 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding
cache-control: max-age=31536000
content-md5: BKiq5e8Y+0PkplcpfhqN7A==
etag: W/"0x8DB5AA4F7D9E808"
last-modified: Mon, 22 May 2023 09:14:38 GMT
x-content-type-options: nosniff
x-pos-request-id: 3912482e-a01e-0091-75ab-8c198d000000
cf-cache-status: HIT
age: 221818
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 7d04f09c5bebb4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.kwcdn.com/m-assets/assets/js/733_0e141ac3dc1033f0d5d4.js
172.64.147.2200 OK 47 kB URL GET HTTP/2 static.kwcdn.com/m-assets/assets/js/733_0e141ac3dc1033f0d5d4.js
IP 172.64.147.2:443
Requested by https://www.temu.com/bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms&locale_override=163~en~EUR
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
FingerprintF1:1F:F1:F1:EE:92:73:E3:9F:A1:6B:0D:07:9A:D9:37:A7:2A:06:B2
ValidityWed, 10 Aug 2022 07:46:22 GMT - Thu, 10 Aug 2023 07:46:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m-assets/assets/js/733_0e141ac3dc1033f0d5d4.js HTTP/1.1
Host: static.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 01 Jun 2023 05:08:38 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding, Accept-Encoding
cache-control: max-age=31536000
content-md5: hUdiBunCxzmljXJVqSyCtA==
etag: W/"0x8DB61878F22EB78"
last-modified: Wed, 31 May 2023 03:31:45 GMT
x-content-type-options: nosniff
x-pos-request-id: 1e2698b6-001e-004b-3a85-9323fe000000
cf-cache-status: HIT
age: 75847
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 7d04f09c6bf1b4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.kwcdn.com/m-assets/assets/js/cookie-prompt_319825338272b5dbdce3.js
172.64.147.2200 OK 31 kB URL GET HTTP/2 static.kwcdn.com/m-assets/assets/js/cookie-prompt_319825338272b5dbdce3.js
IP 172.64.147.2:443
Requested by https://www.temu.com/bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms&locale_override=163~en~EUR
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
FingerprintF1:1F:F1:F1:EE:92:73:E3:9F:A1:6B:0D:07:9A:D9:37:A7:2A:06:B2
ValidityWed, 10 Aug 2022 07:46:22 GMT - Thu, 10 Aug 2023 07:46:22 GMT
File type ASCII text, with very long lines (31079)
Hash 22d448ff5a54ed45ee4bcb25e0e7b353
13be550a6b00a3795bb61e97f55aafaa1503ffac
2dc63f807e3d2ee954880979113e373b2892d7e14c4807a7746c6493971ea640
GET /m-assets/assets/js/cookie-prompt_319825338272b5dbdce3.js HTTP/1.1
Host: static.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 01 Jun 2023 05:08:38 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding, Accept-Encoding
cache-control: max-age=31536000
content-md5: ItRI/1pU7UXuS8sl4OezUw==
etag: W/"0x8DB61878F24E6FD"
last-modified: Wed, 31 May 2023 03:31:45 GMT
x-content-type-options: nosniff
x-pos-request-id: 1c66c636-801e-0053-4285-93cbcd000000
cf-cache-status: HIT
age: 72518
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 7d04f09ef8650b65-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.temu.com/api/server/_stm?t=1685596118479
20.223.39.110200 OK 29 B URL GET HTTP/2 www.temu.com/api/server/_stm?t=1685596118479
IP 20.223.39.110:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms&locale_override=163~en~EUR
Certificate IssuerGoDaddy.com, Inc.
Subject*.temu.com
FingerprintE3:6B:F9:98:96:EC:C1:BD:F3:DD:E4:04:90:C8:EF:14:6C:BE:F2:5E
ValiditySun, 14 Aug 2022 08:24:19 GMT - Mon, 14 Aug 2023 08:24:19 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash f0fdd62a33c90d468ff7506e9e009ce1
55ef9041b977d4d83315e8b0b28a8148e2ac97c4
923960e401945ec29b3fd9df6638c82a6a5e7a4a4182f1db6febd843e6d3e7de
GET /api/server/_stm?t=1685596118479 HTTP/1.1
Host: www.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms
Cookie: region=163; language=en; currency=EUR; api_uid=CnAs+mR4J9VOHwCJyj+GAg==; timezone=UTC
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Nginx
date: Thu, 01 Jun 2023 05:08:38 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
cip: 91.90.42.154
content-encoding: gzip
X-Firefox-Spdy: h2
eu.thtk.temu.com/c/th.gif
20.223.36.124200 OK 0 B URL POST HTTP/2 eu.thtk.temu.com/c/th.gif
IP 20.223.36.124:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms&locale_override=163~en~EUR
Certificate IssuerGoDaddy.com, Inc.
Subject*.thtk.temu.com
FingerprintB9:F9:97:E6:27:77:DF:19:91:B1:A7:C5:03:C3:9E:3B:B5:5F:38:08
ValiditySun, 14 Aug 2022 08:45:04 GMT - Mon, 14 Aug 2023 08:45:04 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /c/th.gif HTTP/1.1
Host: eu.thtk.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 726
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Cookie: api_uid=CnAs+mR4J9VOHwCJyj+GAg==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 01 Jun 2023 05:08:39 GMT
content-type: image/gif
expires: Thu, 01 Jun 2023 05:08:38 GMT
cache-control: no-cache
access-control-allow-origin: https://www.temu.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content
X-Firefox-Spdy: h2
locale.temu.com/api/bg/huygens/region/locate
20.237.30.240200 OK 0 B URL OPTIONS HTTP/2 locale.temu.com/api/bg/huygens/region/locate
IP 20.237.30.240:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms&locale_override=163~en~EUR
Certificate IssuerGoDaddy.com, Inc.
Subject*.temu.com
FingerprintE3:6B:F9:98:96:EC:C1:BD:F3:DD:E4:04:90:C8:EF:14:6C:BE:F2:5E
ValiditySun, 14 Aug 2022 08:24:19 GMT - Mon, 14 Aug 2023 08:24:19 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/bg/huygens/region/locate HTTP/1.1
Host: locale.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.temu.com/
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Nginx
date: Thu, 01 Jun 2023 05:08:39 GMT
content-type: application/octet-stream
x-yak-request-id: 1685596119206-74adc3e757f18a44f6db580c2f98fdd8
access-control-allow-origin: https://www.temu.com
vary: Accept-Encoding, Origin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, X_Requested_With, Accept, X-HTTP-Method-Override, Cookie, AccessToken, PASSID, VerifyAuthToken, Anti-Content
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
strict-transport-security: max-age=2592000
yak-timeinfo: 1685596119206|0
set-cookie: api_uid=Cmy6L2R4J9cMJADzmZwCAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.temu.com; path=/
content-encoding: gzip
cip: 91.90.42.154
X-Firefox-Spdy: h2
www.temu.com/api/jade/neutrino/dnld/info/get
20.223.39.110200 OK 1.9 kB URL POST HTTP/2 www.temu.com/api/jade/neutrino/dnld/info/get
IP 20.223.39.110:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms&locale_override=163~en~EUR
Certificate IssuerGoDaddy.com, Inc.
Subject*.temu.com
FingerprintE3:6B:F9:98:96:EC:C1:BD:F3:DD:E4:04:90:C8:EF:14:6C:BE:F2:5E
ValiditySun, 14 Aug 2022 08:24:19 GMT - Mon, 14 Aug 2023 08:24:19 GMT
File type troff or preprocessor input, ASCII text, with very long lines (1956), with no line terminators
Hash 556348a6ccc32ca51687569393773688
e1f0a10cb2e44cd1ede55f93a38e14a566e28bdd
b0725f4e48468c5a4105653d8e513891d361caf48db60ad2610acb22fc96f6c0
POST /api/jade/neutrino/dnld/info/get HTTP/1.1
Host: www.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
Content-Length: 208
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms
Cookie: region=163; language=en; currency=EUR; api_uid=CnAs+mR4J9VOHwCJyj+GAg==; timezone=UTC
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Nginx
date: Thu, 01 Jun 2023 05:08:38 GMT
content-type: application/json
content-encoding: gzip
x-yak-request-id: 1685596118960-c4a3f061ce005ec87c60c171f75af394
access-control-allow-origin: https://www.temu.com
vary: accept-encoding, Origin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, X_Requested_With, Accept, X-HTTP-Method-Override, Cookie, AccessToken, PASSID, VerifyAuthToken, Anti-Content
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
strict-transport-security: max-age=2592000
content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/c-api/sec-gif
yak-timeinfo: 1685596118960|4
cip: 91.90.42.154
X-Firefox-Spdy: h2
eu.pftk.temu.com/pmm/api/pmm/api
20.123.109.81200 OK 0 B URL POST HTTP/2 eu.pftk.temu.com/pmm/api/pmm/api
IP 20.123.109.81:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms&locale_override=163~en~EUR
Certificate IssuerGoDaddy.com, Inc.
Subject*.pftk.temu.com
Fingerprint94:42:06:85:35:5A:BE:7F:22:14:B6:92:63:9C:70:C6:09:CE:96:9F
ValiditySun, 14 Aug 2022 08:56:12 GMT - Mon, 14 Aug 2023 08:56:12 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pmm/api/pmm/api HTTP/1.1
Host: eu.pftk.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 918
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Cookie: api_uid=CnAs+mR4J9VOHwCJyj+GAg==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 01 Jun 2023 05:08:40 GMT
content-type: application/octet-stream
expires: Thu, 01 Jun 2023 05:08:39 GMT
cache-control: no-cache
access-control-allow-origin: https://www.temu.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content
X-Firefox-Spdy: h2
eu.pftk.temu.com/pmm/api/pmm/defined
20.123.109.81200 OK 0 B URL POST HTTP/2 eu.pftk.temu.com/pmm/api/pmm/defined
IP 20.123.109.81:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms&locale_override=163~en~EUR
Certificate IssuerGoDaddy.com, Inc.
Subject*.pftk.temu.com
Fingerprint94:42:06:85:35:5A:BE:7F:22:14:B6:92:63:9C:70:C6:09:CE:96:9F
ValiditySun, 14 Aug 2022 08:56:12 GMT - Mon, 14 Aug 2023 08:56:12 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pmm/api/pmm/defined HTTP/1.1
Host: eu.pftk.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 3424
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Cookie: api_uid=CnAs+mR4J9VOHwCJyj+GAg==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 01 Jun 2023 05:08:39 GMT
content-type: application/octet-stream
expires: Thu, 01 Jun 2023 05:08:38 GMT
cache-control: no-cache
access-control-allow-origin: https://www.temu.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content
X-Firefox-Spdy: h2
www.temu.com/api/phantom/xg/pfb/l1
20.223.39.110200 OK 114 B URL GET HTTP/2 www.temu.com/api/phantom/xg/pfb/l1
IP 20.223.39.110:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms&locale_override=163~en~EUR
Certificate IssuerGoDaddy.com, Inc.
Subject*.temu.com
FingerprintE3:6B:F9:98:96:EC:C1:BD:F3:DD:E4:04:90:C8:EF:14:6C:BE:F2:5E
ValiditySun, 14 Aug 2022 08:24:19 GMT - Mon, 14 Aug 2023 08:24:19 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash bb0687da0fb05463be21230ed3fa5de3
874f00ce048e7f938949306983dbdee59f0f1a63
2910d68aaf70adf92b6006ed9add84cad15e47a44df6b805d29467a028d3cf3a
GET /api/phantom/xg/pfb/l1 HTTP/1.1
Host: www.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms
Cookie: region=163; language=en; currency=EUR; api_uid=CnAs+mR4J9VOHwCJyj+GAg==; timezone=UTC; _nano_fp=XpEJnpdbn5gal0dJl9_9krhH7FlosuqAhogWtt0F; _bee=LxXIzholbUd1bu2ZqrRkeQ1XWcioXbHN; njrpl=LxXIzholbUd1bu2ZqrRkeQ1XWcioXbHN; dilx=Dfu8F8_tdMwBClfaVQKux; hfsc=L32CfYw57z/52pXEew==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Nginx
date: Thu, 01 Jun 2023 05:08:39 GMT
content-type: application/json;charset=UTF-8
content-encoding: gzip
vary: Accept-Encoding
x-yak-request-id: 1685596119386-7cd972d52cb41a4d2a4290e15361d9f6
strict-transport-security: max-age=2592000
content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/c-api/sec-gif
yak-timeinfo: 1685596119386|1
cip: 91.90.42.154
X-Firefox-Spdy: h2
static.kwcdn.com/m-assets/assets/js/bgms_unsubscribe_sms_883793b4f461ae56210f.js
172.64.147.2200 OK 11 kB URL GET HTTP/2 static.kwcdn.com/m-assets/assets/js/bgms_unsubscribe_sms_883793b4f461ae56210f.js
IP 172.64.147.2:443
Requested by https://www.temu.com/bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms&locale_override=163~en~EUR
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
FingerprintF1:1F:F1:F1:EE:92:73:E3:9F:A1:6B:0D:07:9A:D9:37:A7:2A:06:B2
ValidityWed, 10 Aug 2022 07:46:22 GMT - Thu, 10 Aug 2023 07:46:22 GMT
File type ASCII text, with very long lines (10619)
Hash 8aa6a3bde36589bd39651a774733c53b
97be7ec0725f6813c143f819a184952a7981c7df
a989973143715a434d75689de12d9e2300b6b033ecc99d1cbaff8cdccd35b1a0
GET /m-assets/assets/js/bgms_unsubscribe_sms_883793b4f461ae56210f.js HTTP/1.1
Host: static.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 01 Jun 2023 05:08:38 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding, Accept-Encoding
cache-control: max-age=31536000
content-md5: iqajveNlib05ZRp3RzPFOw==
etag: W/"0x8DB61878F1A3A48"
last-modified: Wed, 31 May 2023 03:31:45 GMT
x-content-type-options: nosniff
x-pos-request-id: 8e3f5a9e-301e-0038-0c85-93acf8000000
cf-cache-status: HIT
age: 72519
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 7d04f09c5bedb4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2
eu.pftk.temu.com/pmm/api/pmm/defined
20.123.109.81200 OK 0 B URL POST HTTP/2 eu.pftk.temu.com/pmm/api/pmm/defined
IP 20.123.109.81:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms&locale_override=163~en~EUR
Certificate IssuerGoDaddy.com, Inc.
Subject*.pftk.temu.com
Fingerprint94:42:06:85:35:5A:BE:7F:22:14:B6:92:63:9C:70:C6:09:CE:96:9F
ValiditySun, 14 Aug 2022 08:56:12 GMT - Mon, 14 Aug 2023 08:56:12 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pmm/api/pmm/defined HTTP/1.1
Host: eu.pftk.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 606
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Cookie: api_uid=CnAs+mR4J9VOHwCJyj+GAg==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 01 Jun 2023 05:08:39 GMT
content-type: application/octet-stream
expires: Thu, 01 Jun 2023 05:08:38 GMT
cache-control: no-cache
access-control-allow-origin: https://www.temu.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content
X-Firefox-Spdy: h2
locale.temu.com/api/bg/huygens/region/locate
20.237.30.240200 OK 781 B URL POST HTTP/2 locale.temu.com/api/bg/huygens/region/locate
IP 20.237.30.240:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms&locale_override=163~en~EUR
Certificate IssuerGoDaddy.com, Inc.
Subject*.temu.com
FingerprintE3:6B:F9:98:96:EC:C1:BD:F3:DD:E4:04:90:C8:EF:14:6C:BE:F2:5E
ValiditySun, 14 Aug 2022 08:24:19 GMT - Mon, 14 Aug 2023 08:24:19 GMT
File type troff or preprocessor input, ASCII text, with very long lines (900), with no line terminators
Hash b6f95c3422ef3c9445415a0a9e9db0fe
746ee6e97583411c48d6a4fc354ff4af167d6b21
b057701911dbe9d0dec1f7505febbecb60d9b17ae7b6a9020ad262060eee70b3
POST /api/bg/huygens/region/locate HTTP/1.1
Host: locale.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
Content-Length: 2
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Cookie: api_uid=CnAs+mR4J9VOHwCJyj+GAg==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Nginx
date: Thu, 01 Jun 2023 05:08:39 GMT
content-type: application/json;charset=UTF-8
content-encoding: gzip
x-yak-request-id: 1685596119321-0d48683a9c54c97c968d87e91e86ac22
access-control-allow-origin: https://www.temu.com
vary: Accept-Encoding, Origin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, X_Requested_With, Accept, X-HTTP-Method-Override, Cookie, AccessToken, PASSID, VerifyAuthToken, Anti-Content
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
strict-transport-security: max-age=2592000
yak-timeinfo: 1685596119321|1
cip: 91.90.42.154
X-Firefox-Spdy: h2
static.kwcdn.com/m-assets/assets/js/risk-finger-h5_be570e21fd008e59fa59.js
172.64.147.2200 OK 99 kB URL GET HTTP/2 static.kwcdn.com/m-assets/assets/js/risk-finger-h5_be570e21fd008e59fa59.js
IP 172.64.147.2:443
Requested by https://www.temu.com/bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms&locale_override=163~en~EUR
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
FingerprintF1:1F:F1:F1:EE:92:73:E3:9F:A1:6B:0D:07:9A:D9:37:A7:2A:06:B2
ValidityWed, 10 Aug 2022 07:46:22 GMT - Thu, 10 Aug 2023 07:46:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m-assets/assets/js/risk-finger-h5_be570e21fd008e59fa59.js HTTP/1.1
Host: static.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 01 Jun 2023 05:08:38 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding, Accept-Encoding
cache-control: max-age=31536000
content-md5: HOShWvdErf5fxe4YVuDQkQ==
etag: W/"0x8DB61878F244AD3"
last-modified: Wed, 31 May 2023 03:31:45 GMT
x-content-type-options: nosniff
x-pos-request-id: 3825cae1-b01e-0048-1685-935ef8000000
cf-cache-status: HIT
age: 75846
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 7d04f09ee8580b65-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.kwcdn.com/m-assets/assets/js/risk-control-anti_fd894bb5dbe294edef79.js
172.64.147.2200 OK 78 kB URL GET HTTP/2 static.kwcdn.com/m-assets/assets/js/risk-control-anti_fd894bb5dbe294edef79.js
IP 172.64.147.2:443
Requested by https://www.temu.com/bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms&locale_override=163~en~EUR
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
FingerprintF1:1F:F1:F1:EE:92:73:E3:9F:A1:6B:0D:07:9A:D9:37:A7:2A:06:B2
ValidityWed, 10 Aug 2022 07:46:22 GMT - Thu, 10 Aug 2023 07:46:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m-assets/assets/js/risk-control-anti_fd894bb5dbe294edef79.js HTTP/1.1
Host: static.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 01 Jun 2023 05:08:38 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding
cache-control: max-age=31536000
content-md5: GN1jwzQ22kbLdjBVRkZayg==
etag: W/"0x8DB5C34D61A6E3C"
last-modified: Wed, 24 May 2023 08:57:00 GMT
x-content-type-options: nosniff
x-pos-request-id: 018838ca-301e-00ac-0149-8ee787000000
cf-cache-status: HIT
age: 221818
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 7d04f09e4fe90b65-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.temu.com/api/phantom/dm/wl/cg
20.223.39.110200 OK 112 B URL GET HTTP/2 www.temu.com/api/phantom/dm/wl/cg
IP 20.223.39.110:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms&locale_override=163~en~EUR
Certificate IssuerGoDaddy.com, Inc.
Subject*.temu.com
FingerprintE3:6B:F9:98:96:EC:C1:BD:F3:DD:E4:04:90:C8:EF:14:6C:BE:F2:5E
ValiditySun, 14 Aug 2022 08:24:19 GMT - Mon, 14 Aug 2023 08:24:19 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash b27fb22ce11a5835b4d9f9821fbde1dc
2423d7509446510882224eb144ca22930260d806
8c73c87d0ac6b5acd8e0fc7953f5fa35c756d59ccd390de45dfec69530b29147
GET /api/phantom/dm/wl/cg HTTP/1.1
Host: www.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms
Cookie: region=163; language=en; currency=EUR; api_uid=CnAs+mR4J9VOHwCJyj+GAg==; timezone=UTC; _nano_fp=XpEJnpdbn5gal0dJl9_9krhH7FlosuqAhogWtt0F
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Nginx
date: Thu, 01 Jun 2023 05:08:39 GMT
content-type: application/json;charset=UTF-8
content-encoding: gzip
vary: Accept-Encoding
x-yak-request-id: 1685596119160-17497eead3f13cb06a3cd0da12e41b61
strict-transport-security: max-age=2592000
content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/c-api/sec-gif
yak-timeinfo: 1685596119160|1
cip: 91.90.42.154
X-Firefox-Spdy: h2
eu.pftk.temu.com/pmm/api/pmm/api
20.123.109.81200 OK 0 B URL POST HTTP/2 eu.pftk.temu.com/pmm/api/pmm/api
IP 20.123.109.81:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms&locale_override=163~en~EUR
Certificate IssuerGoDaddy.com, Inc.
Subject*.pftk.temu.com
Fingerprint94:42:06:85:35:5A:BE:7F:22:14:B6:92:63:9C:70:C6:09:CE:96:9F
ValiditySun, 14 Aug 2022 08:56:12 GMT - Mon, 14 Aug 2023 08:56:12 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pmm/api/pmm/api HTTP/1.1
Host: eu.pftk.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 960
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Cookie: api_uid=CnAs+mR4J9VOHwCJyj+GAg==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 01 Jun 2023 05:08:39 GMT
content-type: application/octet-stream
expires: Thu, 01 Jun 2023 05:08:38 GMT
cache-control: no-cache
access-control-allow-origin: https://www.temu.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content
X-Firefox-Spdy: h2
eu.pftk.temu.com/pmm/api/pmm/api
20.123.109.81200 OK 0 B URL POST HTTP/2 eu.pftk.temu.com/pmm/api/pmm/api
IP 20.123.109.81:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms&locale_override=163~en~EUR
Certificate IssuerGoDaddy.com, Inc.
Subject*.pftk.temu.com
Fingerprint94:42:06:85:35:5A:BE:7F:22:14:B6:92:63:9C:70:C6:09:CE:96:9F
ValiditySun, 14 Aug 2022 08:56:12 GMT - Mon, 14 Aug 2023 08:56:12 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pmm/api/pmm/api HTTP/1.1
Host: eu.pftk.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 969
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Cookie: api_uid=CnAs+mR4J9VOHwCJyj+GAg==; _bee=LxXIzholbUd1bu2ZqrRkeQ1XWcioXbHN; njrpl=LxXIzholbUd1bu2ZqrRkeQ1XWcioXbHN; dilx=Dfu8F8_tdMwBClfaVQKux; hfsc=L32CfYw57z/52pXEew==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 01 Jun 2023 05:08:39 GMT
content-type: application/octet-stream
expires: Thu, 01 Jun 2023 05:08:38 GMT
cache-control: no-cache
access-control-allow-origin: https://www.temu.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content
X-Firefox-Spdy: h2
static.kwcdn.com/m-assets/assets/css/bgms_unsubscribe_sms_328127dc19466e83bdb4.css
172.64.147.2200 OK 6.3 kB URL GET HTTP/2 static.kwcdn.com/m-assets/assets/css/bgms_unsubscribe_sms_328127dc19466e83bdb4.css
IP 172.64.147.2:443
Requested by https://www.temu.com/bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms&locale_override=163~en~EUR
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
FingerprintF1:1F:F1:F1:EE:92:73:E3:9F:A1:6B:0D:07:9A:D9:37:A7:2A:06:B2
ValidityWed, 10 Aug 2022 07:46:22 GMT - Thu, 10 Aug 2023 07:46:22 GMT
File type ASCII text, with very long lines (6362), with no line terminators
Hash 4308c64c51e432a31102caa66d1e881b
bdbd7a3a8d99fbc75a4cfe726fc7b3bf3ebfcb4d
2270563e57b6e2c71590d48a1929490687ddd7613a9e73ed43fd2f6db5f91649
GET /m-assets/assets/css/bgms_unsubscribe_sms_328127dc19466e83bdb4.css HTTP/1.1
Host: static.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 01 Jun 2023 05:08:38 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding
cache-control: max-age=31536000
content-md5: dy56hoPtksEsj7nwEjE/GQ==
etag: W/"0x8DB57A482272133"
last-modified: Thu, 18 May 2023 13:33:47 GMT
x-content-type-options: nosniff
x-pos-request-id: 66712691-401e-009f-058e-89bb90000000
cf-cache-status: HIT
age: 1087208
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 7d04f09c5ec60b65-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.temu.com/api/phantom/xg/pfb/a3
20.223.39.110200 OK 65 B URL GET HTTP/2 www.temu.com/api/phantom/xg/pfb/a3
IP 20.223.39.110:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms&locale_override=163~en~EUR
Certificate IssuerGoDaddy.com, Inc.
Subject*.temu.com
FingerprintE3:6B:F9:98:96:EC:C1:BD:F3:DD:E4:04:90:C8:EF:14:6C:BE:F2:5E
ValiditySun, 14 Aug 2022 08:24:19 GMT - Mon, 14 Aug 2023 08:24:19 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash c6414e5496710ed55ee4f9ec40f156ea
41cba42db5066498b26b124c6014f8404f89eebe
88631f128b21eb159e7e9e24b6a4107ef29ae7fc05b5653b4723b2aee1b7972e
GET /api/phantom/xg/pfb/a3 HTTP/1.1
Host: www.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms
Cookie: region=163; language=en; currency=EUR; api_uid=CnAs+mR4J9VOHwCJyj+GAg==; timezone=UTC; _nano_fp=XpEJnpdbn5gal0dJl9_9krhH7FlosuqAhogWtt0F
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Nginx
date: Thu, 01 Jun 2023 05:08:39 GMT
content-type: application/json;charset=UTF-8
content-encoding: gzip
vary: Accept-Encoding
x-yak-request-id: 1685596119161-ce2c2e2b7a088f910bf36cf448d3dbea
strict-transport-security: max-age=2592000
content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/c-api/sec-gif
yak-timeinfo: 1685596119161|1
cip: 91.90.42.154
X-Firefox-Spdy: h2
eu.pftk.temu.com/pmm/api/pmm/api
20.123.109.81200 OK 0 B URL POST HTTP/2 eu.pftk.temu.com/pmm/api/pmm/api
IP 20.123.109.81:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms&locale_override=163~en~EUR
Certificate IssuerGoDaddy.com, Inc.
Subject*.pftk.temu.com
Fingerprint94:42:06:85:35:5A:BE:7F:22:14:B6:92:63:9C:70:C6:09:CE:96:9F
ValiditySun, 14 Aug 2022 08:56:12 GMT - Mon, 14 Aug 2023 08:56:12 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pmm/api/pmm/api HTTP/1.1
Host: eu.pftk.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 941
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Cookie: api_uid=CnAs+mR4J9VOHwCJyj+GAg==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 01 Jun 2023 05:08:39 GMT
content-type: application/octet-stream
expires: Thu, 01 Jun 2023 05:08:38 GMT
cache-control: no-cache
access-control-allow-origin: https://www.temu.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content
X-Firefox-Spdy: h2
eu.pftk.temu.com/pmm/api/pmm/defined
20.123.109.81200 OK 0 B URL POST HTTP/2 eu.pftk.temu.com/pmm/api/pmm/defined
IP 20.123.109.81:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/bgms_unsubscribe_sms.html?msgid=163-20230601-09-O-606301440741724160-415-8Pkl5nm4&_p_landing=1&_x_src=sms&locale_override=163~en~EUR
Certificate IssuerGoDaddy.com, Inc.
Subject*.pftk.temu.com
Fingerprint94:42:06:85:35:5A:BE:7F:22:14:B6:92:63:9C:70:C6:09:CE:96:9F
ValiditySun, 14 Aug 2022 08:56:12 GMT - Mon, 14 Aug 2023 08:56:12 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pmm/api/pmm/defined HTTP/1.1
Host: eu.pftk.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 807
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Cookie: api_uid=CnAs+mR4J9VOHwCJyj+GAg==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 01 Jun 2023 05:08:40 GMT
content-type: application/octet-stream
expires: Thu, 01 Jun 2023 05:08:39 GMT
cache-control: no-cache
access-control-allow-origin: https://www.temu.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content
X-Firefox-Spdy: h2