Report - www.temu.com/u/3KwoltrH9MQbU2aI

Report Overview

Visited public
2023-09-23 17:52:05
Tags
URL
www.temu.com/u/3KwoltrH9MQbU2aI
Finishing URL
www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png
IP / ASN
20.105.12.146
#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Title
Get Free Gifts

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
eu.pftk.temu.com	unknown	2003-04-29	2023-04-25 17:58:50	2023-09-22 18:39:14	1.6 kB	1.4 kB	20.123.108.148
ocsp.godaddy.com	698	1999-03-02	2012-05-20 21:28:57	2023-09-23 05:11:26	2.3 kB	18 kB	192.124.249.22
www.temu.com	unknown	2003-04-29	2021-09-28 09:23:29	2023-09-22 19:15:47	16 kB	264 kB	20.105.12.146
aimg.kwcdn.com	unknown	2022-08-08	2022-09-05 12:50:08	2023-09-22 18:40:22	478 B	19 kB	172.64.152.105
static.kwcdn.com	unknown	2022-08-08	2022-09-05 12:50:07	2023-09-22 18:40:22	3.3 kB	5.5 MB	104.18.35.151
eu.thtk.temu.com	unknown	2003-04-29	2023-04-25 17:58:49	2023-09-22 18:17:28	3.8 kB	3.2 kB	4.207.236.117
locale.temu.com	unknown	2003-04-29	2022-09-05 12:50:08	2023-09-22 18:17:27	1.1 kB	2.2 kB	20.67.142.53

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-09-23 17:51:48	low	Client IP	74.125.24.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-09-23 17:51:48	low	Client IP	64.233.163.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-09-23 17:51:48	low	Client IP	216.93.246.18	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2023-09-23 17:51:48	low	Client IP	62.71.2.168	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2023-09-23 17:51:48	low	Client IP	74.125.24.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-09-23 17:51:48	low	Client IP	64.233.163.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-09-23 17:51:48	low	Client IP	212.227.67.33	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2023-09-23 17:51:48	low	Client IP	216.93.246.18	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2023-09-23 17:51:48	low	Client IP	77.72.169.210	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2023-09-23 17:51:48	low	Client IP	77.72.169.212	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2023-09-23 17:51:48	low	Client IP	62.71.2.168	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2023-09-23 17:51:48	low	Client IP	185.53.178.50	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2023-09-23 17:51:48	low	Client IP	172.253.121.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-09-23 17:51:48	low	Client IP	212.227.67.33	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2023-09-23 17:51:48	low	Client IP	74.125.204.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-09-23 17:51:48	low	Client IP	77.72.169.210	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2023-09-23 17:51:48	low	Client IP	172.217.213.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-09-23 17:51:48	low	Client IP	77.72.169.212	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2023-09-23 17:51:48	low	Client IP	75.2.81.221	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2023-09-23 17:51:48	low	Client IP	185.53.178.50	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2023-09-23 17:51:48	low	Client IP	74.125.24.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-09-23 17:51:48	low	Client IP	172.253.121.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-09-23 17:51:48	low	Client IP	64.233.163.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-09-23 17:51:48	low	Client IP	74.125.204.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-09-23 17:51:48	low	Client IP	216.93.246.18	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2023-09-23 17:51:48	low	Client IP	172.217.213.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-09-23 17:51:48	low	Client IP	75.2.81.221	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2023-09-23 17:51:48	low	Client IP	62.71.2.168	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2023-09-23 17:51:48	low	Client IP	212.227.67.33	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2023-09-23 17:51:48	low	Client IP	77.72.169.210	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2023-09-23 17:51:48	low	Client IP	77.72.169.212	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2023-09-23 17:51:48	low	Client IP	185.53.178.50	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2023-09-23 17:51:48	low	Client IP	172.253.121.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-09-23 17:51:48	low	Client IP	74.125.204.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-09-23 17:51:48	low	Client IP	172.217.213.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-09-23 17:51:48	low	Client IP	75.2.81.221	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2023-09-23 17:51:48	low	Client IP	74.125.24.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-09-23 17:51:48	low	Client IP	64.233.163.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-09-23 17:51:48	low	Client IP	216.93.246.18	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2023-09-23 17:51:48	low	Client IP	62.71.2.168	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2023-09-23 17:51:48	low	Client IP	212.227.67.33	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2023-09-23 17:51:48	low	Client IP	77.72.169.210	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2023-09-23 17:51:49	low	Client IP	77.72.169.212	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2023-09-23 17:51:49	low	Client IP	185.53.178.50	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2023-09-23 17:51:49	low	Client IP	172.253.121.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-09-23 17:51:49	low	Client IP	74.125.204.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-09-23 17:51:49	low	Client IP	172.217.213.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-09-23 17:51:49	low	Client IP	75.2.81.221	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2023-09-23 17:51:49	low	Client IP	74.125.24.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-09-23 17:51:49	low	Client IP	64.233.163.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-09-23 17:51:49	low	Client IP	216.93.246.18	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2023-09-23 17:51:49	low	Client IP	62.71.2.168	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2023-09-23 17:51:49	low	Client IP	212.227.67.33	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2023-09-23 17:51:49	low	Client IP	77.72.169.210	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2023-09-23 17:51:49	low	Client IP	77.72.169.212	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2023-09-23 17:51:49	low	Client IP	185.53.178.50	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2023-09-23 17:51:49	low	Client IP	172.253.121.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-09-23 17:51:49	low	Client IP	74.125.204.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-09-23 17:51:49	low	Client IP	172.217.213.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-09-23 17:51:49	low	Client IP	75.2.81.221	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2023-09-23 17:51:51	low	Client IP	74.125.24.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-09-23 17:51:51	low	Client IP	64.233.163.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-09-23 17:51:51	low	Client IP	216.93.246.18	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2023-09-23 17:51:51	low	Client IP	62.71.2.168	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2023-09-23 17:51:51	low	Client IP	212.227.67.33	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2023-09-23 17:51:51	low	Client IP	77.72.169.210	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2023-09-23 17:51:51	low	Client IP	77.72.169.212	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2023-09-23 17:51:51	low	Client IP	185.53.178.50	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2023-09-23 17:51:51	low	Client IP	172.253.121.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-09-23 17:51:51	low	Client IP	74.125.204.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-09-23 17:51:51	low	Client IP	172.217.213.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-09-23 17:51:51	low	Client IP	75.2.81.221	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2023-09-23 17:51:54	low	Client IP	74.125.24.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (22)

	URL	From	Size	First Seen	Last Seen
	www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png	ScriptElement	71 B	2023-06-03	2024-08-21
Pretty URL www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png IP 20.105.12.146 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-03 00:28 Last Seen2024-08-21 09:44 Times Seen601 Hash 4eaf8beff3d4f57655aae933a58e1120 1c8c450f79ca5f0d47f018a6d3bb8a1fd3876658 38af04034b3ffe5b3f068a04e933abb22c5c8c63e141f870b4cbac836bd30039 Loading...

	www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png	ScriptElement	1.6 kB	2023-03-12	2025-03-06
Pretty URL www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png IP 20.105.12.146 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 10:46 Last Seen2025-03-06 17:04 Times Seen6733 Hash 73919c7408b9fee8ac0922aa760aaabe c383275441da7e76b8f9d410c1f9526cae3eb175 985329d357eb52535d98073a8817e5ef0c64512812710f5e6fcc666f498f74f0 Loading...

	www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png	ScriptElement	2.7 kB	2023-09-22	2024-08-21
Pretty URL www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png IP 20.105.12.146 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-22 21:40 Last Seen2024-08-21 06:03 Times Seen15 Hash 4e8e6376d65d2f174e46ca2cd4c2dbad 625067a0671751b1d8157ce2afca24245b0002ba 40da82ee28c7975e49c460595ff6911a7321a69420b033865ae2a356e0f2a2d7 Loading...

	www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png	ScriptElement	1.9 kB	2023-03-26	2024-08-21
Pretty URL www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png IP 20.105.12.146 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-26 13:37 Last Seen2024-08-21 09:44 Times Seen1523 Hash aa74e4f5c1e2c49ed7bc9f281ea07486 8e8fcad0a00ac69b7fbeb44aaf4980b636d86b3d 1de23989da83b74576f04de2b44948a3ec5f3c06571b461e6973c1163f933b5f Loading...

	www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png	ScriptElement	13 kB	2023-08-06	2024-08-21
Pretty URL www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png IP 20.105.12.146 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-06 15:24 Last Seen2024-08-21 09:44 Times Seen531 Hash 841ee1b721060f9768ef51d78ca95547 80d6011cda877df703d69280c1b48e83589e7611 2b0faf37dcf08a18777c23001e90eaf4efe73ff3b48eab47e7a989ffb28ea606 Loading...

	www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png	ScriptElement	125 B	2023-07-04	2024-08-21
Pretty URL www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png IP 20.105.12.146 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-04 21:29 Last Seen2024-08-21 09:44 Times Seen481 Hash b6e3ecf4fe4078f930b5c2fc9ef2b708 b7ab7bec5bdcd8cd8975716299cbcc9959c5d8cd 06459435de0ebde88f09e1f8eb71e0c37115782579c231f3e1a323d0a1fefaa5 Loading...

	static.kwcdn.com/m-assets/assets/js/ruby_free_goods_cc0ad6f387a3ce07d207.js	ScriptElement	3.5 MB	2023-09-23	2024-08-21
Pretty URL static.kwcdn.com/m-assets/assets/js/ruby_free_goods_cc0ad6f387a3ce07d207.js IP 104.18.35.151 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-23 01:14 Last Seen2024-08-21 06:01 Times Seen8 Hash d36fa758a3b0b9f064ef8d74d93f56d7 d8c83ce70659d9dd67c141f8398584ec7e4f2eaf ccc31d6a5bc0465e7f6228f1b4d2d3b5848aeee422662468dd043cbe1b99343f Loading...

	static.kwcdn.com/m-assets/assets/js/risk-finger-h5_25b7481b04f85f00493b.js	ScriptElement	100 kB	2023-07-16	2024-08-21
Pretty URL static.kwcdn.com/m-assets/assets/js/risk-finger-h5_25b7481b04f85f00493b.js IP 104.18.35.151 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-16 17:25 Last Seen2024-08-21 09:44 Times Seen161 Hash 14693e43d0111d5b21a76149d73df7ad 075368b079fe4b31005fb638f9108d8823f1b0f2 4731c8b1df562f0ef1afac79c58fda2b2ab79d82e6e4009d87537ae2e77cda73 Loading...

	www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png	ScriptElement	58 B	2023-03-12	2024-08-21
Pretty URL www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png IP 20.105.12.146 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 14:31 Last Seen2024-08-21 09:44 Times Seen1509 Hash 8cb9d2758bbfe1f576d9da02f75e40a1 dec61c38c2af88a9f3204ac9cde8d21fa40cec2b 09c4cd0b878c256978529c5670ef421a02c3cf54218de3e6db3a9d7a4aa0f823 Loading...

	www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png	ScriptElement	904 B	2023-09-23	2024-08-21
Pretty URL www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png IP 20.105.12.146 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-23 01:14 Last Seen2024-08-21 06:01 Times Seen8 Hash cf02e9e0f88d206585ec74d59856bf0c 2255a6eec68e94941fd01c1554669122cb01019e dff6f23cac957003caaed06a3b47354ba7dc95d295c7bd6a181d72d6ebbdb6f2 Loading...

	www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png	ScriptElement	225 B	2023-03-12	2024-08-21
Pretty URL www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png IP 20.105.12.146 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 14:31 Last Seen2024-08-21 09:44 Times Seen928 Hash d090e03ad7fd3c801c28e94eb27b8122 a89f107f271dfac4f5b33c786aa3b6be9bfdd950 a549dc008656f83f16ec4c01af9964504f63c0e28e30005b39d833481e207a4e Loading...

	www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png	ScriptElement	164 B	2023-03-12	2025-05-11
Pretty URL www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png IP 20.105.12.146 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 10:46 Last Seen2025-05-11 09:16 Times Seen9653 Hash b1a2e8c7e2ab9488bc47ff63785cfe59 4d743d470c2e8eb4c34e35151af4f24c4c5c1c28 bea22307a65a6b4e4620453372741280bbae75c4faed1adb4acec5910541706b Loading...

	www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png	ScriptElement	210 kB	2023-09-23	2024-08-21
Pretty URL www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png IP 20.105.12.146 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-23 01:14 Last Seen2024-08-21 06:01 Times Seen9 Hash b4602918ab2b019ccb090120e011314c 54484630516783332c173cd8ed656d67a116f394 722014106696ff7bf96afd3987d6711a234b3bcab9f322da39227e501d681c9b Loading...

	www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png	ScriptElement	28 B	2023-03-13	2024-10-13
Pretty URL www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png IP 20.105.12.146 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 08:52 Last Seen2024-10-13 13:26 Times Seen5942 Hash 089eaa2bbeb4564f697c227b356348ff 8533d2f08e01eb7596c8f2950ed101ee2c694887 35d5a70170732265dd5d51bb64f082616e28be1f500ecb28be3513dca25f86b2 Loading...

	www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png	ScriptElement	920 B	2023-07-03	2024-08-21
Pretty URL www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png IP 20.105.12.146 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-03 20:53 Last Seen2024-08-21 09:44 Times Seen933 Hash 047755da8068d678fb67d51986540ff3 b3ca824c7948f8ca4510a61b8e909beea3326bc6 bae99835ce2935ece67d701512762d6548fe47612241d2920fb5d2bd1c006f1b Loading...

	static.kwcdn.com/m-assets/assets/js/vendors_3af600f6a0cdf0bf5aa6.js	ScriptElement	455 kB	2023-09-09	2024-08-21
Pretty URL static.kwcdn.com/m-assets/assets/js/vendors_3af600f6a0cdf0bf5aa6.js IP 104.18.35.151 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-09 21:18 Last Seen2024-08-21 07:12 Times Seen65 Hash bdbaa7a3621dceb96ecff26c84790afa 5d0e2131c5c9ee4387da521f6be6313be29ee277 06c3e68e4426c3c204809c3087dd744fe74e731676c2d61d3feb6177a7b5ac63 Loading...

	static.kwcdn.com/m-assets/assets/js/4208_e4378c30181ed52d121f.js	ScriptElement	85 kB	2023-05-22	2024-08-21
Pretty URL static.kwcdn.com/m-assets/assets/js/4208_e4378c30181ed52d121f.js IP 104.18.35.151 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-22 19:12 Last Seen2024-08-21 09:44 Times Seen683 Hash b3887278ac2a4b5eeef2d682406abb5d 789df875fff3a169da43dbe83a756465be92e4bb a161e971c18da83ea4c415261c40d3ba7184a757ddcbb5f67a925f790aeccf57 Loading...

	www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png	ScriptElement	450 B	2023-03-12	2025-05-11
Pretty URL www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png IP 20.105.12.146 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 10:46 Last Seen2025-05-11 09:16 Times Seen8767 Hash 1e9e2ded2636cdae712b85f48ea2b2fb ba375470397098fdca39cf07b8910674417312dc 6385bf5b852614bef40e1e8d0e6e5f3964549d7d4025a66d5efc63fe884cce94 Loading...

	www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png	ScriptElement	36 B	2023-08-29	2025-05-11
Pretty URL www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png IP 20.105.12.146 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-29 20:06 Last Seen2025-05-11 09:16 Times Seen9309 Hash f55de8f23ddfdc8c4b76bc74a32ff57e afdb707a84ff173048f21b72e6efe7ab9ef86e16 2aa16913a260d09e1a3421410616cca55e9e131507c60c9b7cb38c1b990cfd51 Loading...

	www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png	ScriptElement	369 B	2024-08-21	2024-08-21
Pretty URL www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png IP 20.105.12.146 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-21 05:56 Last Seen2024-08-21 05:56 Times Seen1 Hash fa39260a8bdf0f7045ff8906699f5ebd 245c6243f41ef0a766cc50baf3a5a58701da64e0 9d7e2298d40ee42f4a930a09c34a98b0b93177934a990f167db8646220c59289 Loading...

	static.kwcdn.com/m-assets/assets/js/react_webpack_runtime_8c824c6e84db878024ea.js	ScriptElement	27 kB	2023-09-23	2023-09-24
Pretty URL static.kwcdn.com/m-assets/assets/js/react_webpack_runtime_8c824c6e84db878024ea.js IP 104.18.35.151 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-23 01:14 Last Seen2023-09-24 23:47 Times Seen14 Hash 7e8a4a95b9b8ca6dbba15d9fab942038 ba67dc18671409ddf960f9a194a42c4691ebc636 0b134150e94bab0fb7c44a136cf37049006fd1cb4c1079d071b4227c0c330050 Loading...

	static.kwcdn.com/m-assets/assets/js/biz_vendors_92ff55f2af4cf0983848.js	ScriptElement	300 kB	2023-09-23	2024-08-21
Pretty URL static.kwcdn.com/m-assets/assets/js/biz_vendors_92ff55f2af4cf0983848.js IP 104.18.35.151 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-23 01:14 Last Seen2024-08-21 06:01 Times Seen8 Hash d10f9f222359ac1e457fe0edfb5722de 170372f87eed6a61dcf6e4c3700faaaebd165d6d df45b748148241589349df0479a7eecb9bcef4060ab0bdc6d68add79f61e544e Loading...

HTTP Transactions (38)

	URL	IP	Response	Size
	ocsp.godaddy.com/	192.124.249.22		2.1 kB
URL ocsp.godaddy.com/ IP 192.124.249.22:0 ASN #30148 SUCURI-SEC File type data Size 2.1 kB (2107 bytes) Hash d4afb4704dde1d29e674f916c251795f 1a574c172ff2ab7e8398c0c48cb6dddc4e042dc7 0c1d88a8cf176fee38106f50bd320afde47662f54f01460097a124d34f66ff3c HTTP Headers `POST / HTTP/1.1 Host: ocsp.godaddy.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 75 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: Sucuri/Cloudproxy Date: Sat, 23 Sep 2023 17:51:46 GMT Content-Type: application/ocsp-response Content-Length: 2107 Connection: keep-alive X-Sucuri-ID: 19022 Content-Transfer-Encoding: Binary Cache-Control: public, no-transform, must-revalidate Last-Modified: Sat, 23 Sep 2023 09:44:21 GMT Expires: Sun, 24 Sep 2023 09:44:21 GMT ETag: "1a574c172ff2ab7e8398c0c48cb6dddc4e042dc7" P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"`

	www.temu.com/u/3KwoltrH9MQbU2aI	20.105.12.146	302 Found	0 B
URL User Request GET HTTP/2 www.temu.com/u/3KwoltrH9MQbU2aI IP 20.105.12.146:443 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Certificate IssuerGoDaddy.com, Inc. Subject.temu.com FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35 ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /u/3KwoltrH9MQbU2aI HTTP/1.1 Host: www.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 302 Found server: nginx date: Sat, 23 Sep 2023 17:51:45 GMT content-type: text/html;charset=UTF-8 content-length: 0 location: https://www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png x-yak-request-id: 1695491505685-285a0a0901c0335d83183de7720b8e92 strict-transport-security: max-age=2592000 set-cookie: region=151; Expires=Thu, 21-Mar-24 17:51:45 GMT; Path=/ language=en; Expires=Thu, 21-Mar-24 17:51:45 GMT; Path=/ currency=NOK; Expires=Thu, 21-Mar-24 17:51:45 GMT; Path=/ api_uid=CnAGzGUPJbEWUQClZWLcAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.temu.com; path=/ content-security-policy-report-only: default-src .temu.com .kwcdn.com wss://.temu.com .googleapis.com .gstatic.com .googletagmanager.com .google-analytics.com .analytics.google.com .doubleclick.net .google.com .googlesyndication.com .googleusercontent.com www.googleadservices.com www.google.cn www.google.com.hk www.google.co.uk www.google.ca www.google.com.au www.google.co.nz google.com connect.facebook.net www.facebook.com appleid.cdn-apple.com socialplugin.facebook.net .cash.app *.forter.com blob: data: 'unsafe-eval' 'unsafe-inline' 'wasm-eval'; report-uri /api/sec-csp/110000006/sec-gif vary: User-Agent x-frame-options: SAMEORIGIN cip: 91.90.42.154 X-Firefox-Spdy: h2

	ocsp.godaddy.com/	192.124.249.24		2.1 kB
URL ocsp.godaddy.com/ IP 192.124.249.24:0 ASN #30148 SUCURI-SEC File type data Size 2.1 kB (2107 bytes) Hash d4afb4704dde1d29e674f916c251795f 1a574c172ff2ab7e8398c0c48cb6dddc4e042dc7 0c1d88a8cf176fee38106f50bd320afde47662f54f01460097a124d34f66ff3c HTTP Headers `POST / HTTP/1.1 Host: ocsp.godaddy.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 75 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: Sucuri/Cloudproxy Date: Sat, 23 Sep 2023 17:51:46 GMT Content-Type: application/ocsp-response Content-Length: 2107 Connection: keep-alive X-Sucuri-ID: 19024 Content-Transfer-Encoding: Binary Cache-Control: public, no-transform, must-revalidate Last-Modified: Sat, 23 Sep 2023 09:44:21 GMT Expires: Sun, 24 Sep 2023 09:44:21 GMT ETag: "1a574c172ff2ab7e8398c0c48cb6dddc4e042dc7" P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"`

	aimg.kwcdn.com/upload_aimg/dawn/5ea8a749-5879-4749-8a81-0e69cd361303.png.slim.png	172.64.152.105	200 OK	19 kB
URL GET HTTP/2 aimg.kwcdn.com/upload_aimg/dawn/5ea8a749-5879-4749-8a81-0e69cd361303.png.slim.png IP 172.64.152.105:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type PNG image data, 470 x 328, 8-bit colormap, non-interlaced\012- data Size 19 kB (18595 bytes) Hash 5bcec11d2b497f3f16822b36489ec5b6 1823e11f2efaf6590e09e8f8178e09971f792f1b 41f753cb40c792a19a625a2434f7ded86b43376ce1813ef3bf056a7f52c6157c HTTP Headers `GET /upload_aimg/dawn/5ea8a749-5879-4749-8a81-0e69cd361303.png.slim.png HTTP/1.1 Host: aimg.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://static.kwcdn.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Sat, 23 Sep 2023 17:51:46 GMT content-type: image/png content-length: 18595 cache-control: max-age=31536000 last-modified: Wed, 28 Dec 2022 19:55:17 GMT request-id: d86e9b6f34ce6116c58d4027d48e5e6f x-content-type-options: nosniff x-fop-destination-type: fop x-imagine-success: true cf-cache-status: HIT age: 2000263 accept-ranges: bytes vary: Accept-Encoding access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 80b4a33ba928069b-OSL X-Firefox-Spdy: h2

	ocsp.godaddy.com/	192.124.249.22		2.1 kB
URL ocsp.godaddy.com/ IP 192.124.249.22:0 ASN #30148 SUCURI-SEC File type data Size 2.1 kB (2108 bytes) Hash 0e20de2613a46ec438447ec24e1618bb 078bd6e2feb413dc1a90d47cc33cad4874a6ff35 917a2d0e245824323a72b0291c99da406d9bb22b55e80639dcdecbba817b6bd5 HTTP Headers `POST / HTTP/1.1 Host: ocsp.godaddy.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 76 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: Sucuri/Cloudproxy Date: Sat, 23 Sep 2023 17:51:47 GMT Content-Type: application/ocsp-response Content-Length: 2108 Connection: keep-alive X-Sucuri-ID: 19022 Content-Transfer-Encoding: Binary Cache-Control: public, no-transform, must-revalidate Last-Modified: Sat, 23 Sep 2023 15:58:55 GMT Expires: Sun, 24 Sep 2023 15:58:55 GMT ETag: "078bd6e2feb413dc1a90d47cc33cad4874a6ff35" P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"`

	ocsp.godaddy.com/	192.124.249.41		2.1 kB
URL ocsp.godaddy.com/ IP 192.124.249.41:0 ASN #30148 SUCURI-SEC File type data Size 2.1 kB (2107 bytes) Hash f90a8dd172d7149d46442438b4cc081b 7137fd8cb23f8e88c0e4e9ef00b062b49b431543 69964b6d56c8a5e188d3dc7446a688b2f8aee4d0d18a707a09b92bba3efa0262 HTTP Headers `POST / HTTP/1.1 Host: ocsp.godaddy.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 75 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: Sucuri/Cloudproxy Date: Sat, 23 Sep 2023 17:51:47 GMT Content-Type: application/ocsp-response Content-Length: 2107 Connection: keep-alive X-Sucuri-ID: 19041 Content-Transfer-Encoding: Binary Cache-Control: public, no-transform, must-revalidate Last-Modified: Sat, 23 Sep 2023 05:30:32 GMT Expires: Sun, 24 Sep 2023 05:30:32 GMT ETag: "7137fd8cb23f8e88c0e4e9ef00b062b49b431543" P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"`

	ocsp.godaddy.com/	192.124.249.41		2.1 kB
URL ocsp.godaddy.com/ IP 192.124.249.41:0 ASN #30148 SUCURI-SEC File type data Size 2.1 kB (2107 bytes) Hash f90a8dd172d7149d46442438b4cc081b 7137fd8cb23f8e88c0e4e9ef00b062b49b431543 69964b6d56c8a5e188d3dc7446a688b2f8aee4d0d18a707a09b92bba3efa0262 HTTP Headers `POST / HTTP/1.1 Host: ocsp.godaddy.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 75 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: Sucuri/Cloudproxy Date: Sat, 23 Sep 2023 17:51:47 GMT Content-Type: application/ocsp-response Content-Length: 2107 Connection: keep-alive X-Sucuri-ID: 19041 Content-Transfer-Encoding: Binary Cache-Control: public, no-transform, must-revalidate Last-Modified: Sat, 23 Sep 2023 05:30:32 GMT Expires: Sun, 24 Sep 2023 05:30:32 GMT ETag: "7137fd8cb23f8e88c0e4e9ef00b062b49b431543" P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"`

	ocsp.godaddy.com/	192.124.249.22		2.1 kB
URL ocsp.godaddy.com/ IP 192.124.249.22:0 ASN #30148 SUCURI-SEC File type data Size 2.1 kB (2107 bytes) Hash f90a8dd172d7149d46442438b4cc081b 7137fd8cb23f8e88c0e4e9ef00b062b49b431543 69964b6d56c8a5e188d3dc7446a688b2f8aee4d0d18a707a09b92bba3efa0262 HTTP Headers `POST / HTTP/1.1 Host: ocsp.godaddy.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 75 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: Sucuri/Cloudproxy Date: Sat, 23 Sep 2023 17:51:47 GMT Content-Type: application/ocsp-response Content-Length: 2107 Connection: keep-alive X-Sucuri-ID: 19022 Content-Transfer-Encoding: Binary Cache-Control: public, no-transform, must-revalidate Last-Modified: Sat, 23 Sep 2023 05:30:32 GMT Expires: Sun, 24 Sep 2023 05:30:32 GMT ETag: "7137fd8cb23f8e88c0e4e9ef00b062b49b431543" P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"`

	ocsp.godaddy.com/	192.124.249.41		2.1 kB
URL ocsp.godaddy.com/ IP 192.124.249.41:0 ASN #30148 SUCURI-SEC File type data Size 2.1 kB (2107 bytes) Hash f90a8dd172d7149d46442438b4cc081b 7137fd8cb23f8e88c0e4e9ef00b062b49b431543 69964b6d56c8a5e188d3dc7446a688b2f8aee4d0d18a707a09b92bba3efa0262 HTTP Headers `POST / HTTP/1.1 Host: ocsp.godaddy.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 75 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: Sucuri/Cloudproxy Date: Sat, 23 Sep 2023 17:51:47 GMT Content-Type: application/ocsp-response Content-Length: 2107 Connection: keep-alive X-Sucuri-ID: 19041 Content-Transfer-Encoding: Binary Cache-Control: public, no-transform, must-revalidate Last-Modified: Sat, 23 Sep 2023 05:30:32 GMT Expires: Sun, 24 Sep 2023 05:30:32 GMT ETag: "7137fd8cb23f8e88c0e4e9ef00b062b49b431543" P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"`

	static.kwcdn.com/m-assets/assets/css/ruby_free_goods_ec87f750b6bcc0e1ec15.css	104.18.35.151	200 OK	1.0 MB
URL GET HTTP/2 static.kwcdn.com/m-assets/assets/css/ruby_free_goods_ec87f750b6bcc0e1ec15.css IP 104.18.35.151:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type Size 1.0 MB (1042102 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /m-assets/assets/css/ruby_free_goods_ec87f750b6bcc0e1ec15.css HTTP/1.1 Host: static.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.temu.com DNT: 1 Connection: keep-alive Referer: https://www.temu.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Sat, 23 Sep 2023 17:51:46 GMT content-type: text/css vary: Accept-Encoding cache-control: max-age=31536000 content-md5: 65RG41Vz9LJrym9+SO0J2Q== etag: W/"0x8DBBA9C1CDCC085" last-modified: Thu, 21 Sep 2023 12:13:06 GMT x-content-type-options: nosniff x-pos-request-id: 77edba28-801e-006f-4585-ec1ec5000000 cf-cache-status: HIT age: 192689 access-control-allow-origin: coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 80b4a3397b015697-OSL content-encoding: br X-Firefox-Spdy: h2

	eu.thtk.temu.com/c/th.gif	4.207.236.117	200 OK	0 B
URL POST HTTP/2 eu.thtk.temu.com/c/th.gif IP 4.207.236.117:443 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png Certificate IssuerGoDaddy.com, Inc. Subject.thtk.temu.com Fingerprint6C:16:D5:C1:7B:12:5A:3B:10:7F:8E:44:DE:D9:C2:4B:A5:CD:FA:D6 ValidityThu, 13 Jul 2023 13:25:23 GMT - Tue, 13 Aug 2024 13:25:23 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /c/th.gif HTTP/1.1 Host: eu.thtk.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 751 Origin: https://www.temu.com DNT: 1 Connection: keep-alive Referer: https://www.temu.com/ Cookie: api_uid=CnAGzGUPJbEWUQClZWLcAg== Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site` `HTTP/2 200 OK date: Sat, 23 Sep 2023 17:51:47 GMT content-type: image/gif expires: Sat, 23 Sep 2023 17:51:46 GMT cache-control: no-cache access-control-allow-origin: https://www.temu.com access-control-allow-credentials: true access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content X-Firefox-Spdy: h2`

	static.kwcdn.com/m-assets/assets/js/react_webpack_runtime_8c824c6e84db878024ea.js	104.18.35.151	200 OK	27 kB
URL GET HTTP/2 static.kwcdn.com/m-assets/assets/js/react_webpack_runtime_8c824c6e84db878024ea.js IP 104.18.35.151:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type ASCII text, with very long lines (26603) Size 27 kB (26674 bytes) Hash 7e8a4a95b9b8ca6dbba15d9fab942038 ba67dc18671409ddf960f9a194a42c4691ebc636 0b134150e94bab0fb7c44a136cf37049006fd1cb4c1079d071b4227c0c330050 HTTP Headers `GET /m-assets/assets/js/react_webpack_runtime_8c824c6e84db878024ea.js HTTP/1.1 Host: static.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.temu.com DNT: 1 Connection: keep-alive Referer: https://www.temu.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Sat, 23 Sep 2023 17:51:46 GMT content-type: application/javascript; charset=utf-8 vary: Accept-Encoding cache-control: max-age=31536000 content-md5: fopKlbm4ym27oV2fq5QgOA== etag: W/"0x8DBBB41F0E38E7C" last-modified: Fri, 22 Sep 2023 08:00:09 GMT x-content-type-options: nosniff x-pos-request-id: cf7f6622-701e-003c-0e2c-ed00f0000000 cf-cache-status: HIT age: 120864 access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 80b4a33b5c895697-OSL content-encoding: br X-Firefox-Spdy: h2

	static.kwcdn.com/m-assets/assets/js/4208_e4378c30181ed52d121f.js	104.18.35.151	200 OK	85 kB
URL GET HTTP/2 static.kwcdn.com/m-assets/assets/js/4208_e4378c30181ed52d121f.js IP 104.18.35.151:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type Size 85 kB (85274 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /m-assets/assets/js/4208_e4378c30181ed52d121f.js HTTP/1.1 Host: static.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.temu.com DNT: 1 Connection: keep-alive Referer: https://www.temu.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Sat, 23 Sep 2023 17:51:46 GMT content-type: application/javascript; charset=utf-8 vary: Accept-Encoding cache-control: max-age=31536000 content-md5: s4hyeKwqS17u8taCQGq7XQ== etag: W/"0x8DBA531C0F2A09F" last-modified: Fri, 25 Aug 2023 06:08:51 GMT x-content-type-options: nosniff x-pos-request-id: 37482b5b-201e-0089-7f1b-d7f1be000000 cf-cache-status: HIT age: 2546120 access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 80b4a33d8e2e5697-OSL content-encoding: br X-Firefox-Spdy: h2

	www.temu.com/api/phantom/xg/pfb/a4	20.105.12.146	200 OK	194 B
URL POST HTTP/3 www.temu.com/api/phantom/xg/pfb/a4 IP 20.105.12.146:443 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png Certificate IssuerGoDaddy.com, Inc. Subject.temu.com FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35 ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT File type troff or preprocessor input, ASCII text, with no line terminators Size 194 B (194 bytes) Hash e689d83da70ead15dfffd98da708598a 083347658a2abe280a02db8da017fd05ceb95041 9efbfdc9791dfe5824c06697de85f71ff3b608a3f17e60e37861a2d2c077d40b HTTP Headers POST /api/phantom/xg/pfb/a4 HTTP/1.1 Host: www.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/json, text/plain, /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json;charset=UTF-8 Content-Length: 2160 Origin: https://www.temu.com DNT: 1 Connection: keep-alive Referer: https://www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png Cookie: region=151; language=en; currency=NOK; api_uid=CnAGzGUPJbEWUQClZWLcAg==; timezone=UTC; _nano_fp=XpEbnpTbXpdonqTjXo_ZWroAi4muKVoMQ0BndeQ7 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK server: nginx date: Sat, 23 Sep 2023 17:51:47 GMT content-type: application/json;charset=UTF-8 set-cookie: _bee=Lqkw6sTMfRVo7CcLWu4fUhrWzixOweYD; Max-Age=31536000; Expires=Sun, 22 Sep 2024 17:51:47 GMT; Path=/; Domain=.temu.com njrpl=Lqkw6sTMfRVo7CcLWu4fUhrWzixOweYD; Max-Age=31536000; Expires=Sun, 22 Sep 2024 17:51:47 GMT; Path=/; Domain=.temu.com dilx=N65ui3PBnv7VGUk8tROVj; Max-Age=31536000; Expires=Sun, 22 Sep 2024 17:51:47 GMT; Path=/; Domain=.temu.com hfsc=L32DfY056Dv41J7FeA==; Max-Age=31536000; Expires=Sun, 22 Sep 2024 17:51:47 GMT; Path=/; HttpOnly; Domain=.temu.com content-encoding: gzip x-yak-request-id: 1695491507986-469046e0d14ad280b3e1a38e477c074a access-control-allow-origin: https://www.temu.com vary: Accept-Encoding, Origin access-control-allow-headers: Origin, X-Requested-With, Content-Type, X_Requested_With, Accept, X-HTTP-Method-Override, Cookie, AccessToken, PASSID, VerifyAuthToken, Anti-Content access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT access-control-allow-credentials: true strict-transport-security: max-age=2592000 content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/110000007/sec-gif yak-timeinfo: 1695491507986\|11 cip: 91.90.42.154 alt-svc: h3=":443"; ma=86400

	eu.thtk.temu.com/c/th.gif	4.207.236.117	200 OK	0 B
URL POST HTTP/2 eu.thtk.temu.com/c/th.gif IP 4.207.236.117:443 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png Certificate IssuerGoDaddy.com, Inc. Subject.thtk.temu.com Fingerprint6C:16:D5:C1:7B:12:5A:3B:10:7F:8E:44:DE:D9:C2:4B:A5:CD:FA:D6 ValidityThu, 13 Jul 2023 13:25:23 GMT - Tue, 13 Aug 2024 13:25:23 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /c/th.gif HTTP/1.1 Host: eu.thtk.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 824 Origin: https://www.temu.com DNT: 1 Connection: keep-alive Referer: https://www.temu.com/ Cookie: api_uid=CnAGzGUPJbEWUQClZWLcAg==; _bee=Lqkw6sTMfRVo7CcLWu4fUhrWzixOweYD; njrpl=Lqkw6sTMfRVo7CcLWu4fUhrWzixOweYD; dilx=N65ui3PBnv7VGUk8tROVj; hfsc=L32DfY056Dv41J7FeA== Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site `HTTP/2 200 OK date: Sat, 23 Sep 2023 17:51:48 GMT content-type: image/gif expires: Sat, 23 Sep 2023 17:51:47 GMT cache-control: no-cache access-control-allow-origin: https://www.temu.com access-control-allow-credentials: true access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content X-Firefox-Spdy: h2`

	locale.temu.com/api/bg/huygens/region/locate	20.67.142.53	200 OK	0 B
URL OPTIONS HTTP/2 locale.temu.com/api/bg/huygens/region/locate IP 20.67.142.53:443 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png Certificate IssuerGoDaddy.com, Inc. Subject.temu.com FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35 ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /api/bg/huygens/region/locate HTTP/1.1 Host: locale.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type Referer: https://www.temu.com/ Origin: https://www.temu.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK server: nginx date: Sat, 23 Sep 2023 17:51:47 GMT content-type: application/octet-stream x-yak-request-id: 1695491507325-d1655de6c822179c0d8763d79bdeb12b access-control-allow-origin: https://www.temu.com vary: Accept-Encoding, Origin access-control-allow-headers: Origin, X-Requested-With, Content-Type, X_Requested_With, Accept, X-HTTP-Method-Override, Cookie, AccessToken, PASSID, VerifyAuthToken, Anti-Content access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT access-control-allow-credentials: true strict-transport-security: max-age=2592000 yak-timeinfo: 1695491507325\|0 set-cookie: api_uid=CnFQJGUPJbONEAEOrDRZAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.temu.com; path=/ content-encoding: gzip cip: 91.90.42.154 X-Firefox-Spdy: h2

	locale.temu.com/api/bg/huygens/region/locate	20.105.12.146	200 OK	778 B
URL POST HTTP/3 locale.temu.com/api/bg/huygens/region/locate IP 20.105.12.146:443 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png Certificate IssuerGoDaddy.com, Inc. Subject.temu.com FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35 ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT File type troff or preprocessor input, ASCII text, with very long lines (890), with no line terminators Size 778 B (778 bytes) Hash 8e4f94267e52cdd3b2f95d2217d0b4d6 c575736078b357b4a32facadbb0daabe4ebfd794 9238df11e6a47f206fb491134e603e1a6b0f1ebb30ee4a6aba8197481ec676b2 HTTP Headers POST /api/bg/huygens/region/locate HTTP/1.1 Host: locale.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/json, text/plain, /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json;charset=UTF-8 Content-Length: 2 Origin: https://www.temu.com DNT: 1 Connection: keep-alive Referer: https://www.temu.com/ Cookie: api_uid=CnAGzGUPJbEWUQClZWLcAg== Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK server: nginx date: Sat, 23 Sep 2023 17:51:47 GMT content-type: application/json;charset=UTF-8 content-encoding: gzip x-yak-request-id: 1695491507377-6f8eefe7984fc1ccc712bc94c4d960df access-control-allow-origin: https://www.temu.com vary: Accept-Encoding, Origin access-control-allow-headers: Origin, X-Requested-With, Content-Type, X_Requested_With, Accept, X-HTTP-Method-Override, Cookie, AccessToken, PASSID, VerifyAuthToken, Anti-Content access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT access-control-allow-credentials: true strict-transport-security: max-age=2592000 yak-timeinfo: 1695491507377\|1 cip: 91.90.42.154

	www.temu.com/api/phantom/xg/pfb/b	20.105.12.146	200 OK	161 B
URL GET HTTP/3 www.temu.com/api/phantom/xg/pfb/b IP 20.105.12.146:443 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png Certificate IssuerGoDaddy.com, Inc. Subject.temu.com FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35 ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT File type troff or preprocessor input, ASCII text, with no line terminators Size 161 B (161 bytes) Hash f9df133dd4fff19109eaf6ce885a9395 b44d656c7b983750bae926f9eee54bbba55af587 823c07cf8481cd093bca8125acd1bf93bcc4a2a0eb97f09466deecab89a979c0 HTTP Headers GET /api/phantom/xg/pfb/b HTTP/1.1 Host: www.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/json, text/plain, /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png Cookie: region=151; language=en; currency=NOK; api_uid=CnAGzGUPJbEWUQClZWLcAg==; timezone=UTC Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK server: nginx date: Sat, 23 Sep 2023 17:51:47 GMT content-type: application/json;charset=UTF-8 cache-control: max-age=94608000, immutable, private content-encoding: gzip vary: Accept-Encoding x-yak-request-id: 1695491507397-5c0e3eca78f848fd11b3b9f43404bdbd strict-transport-security: max-age=2592000 content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/110000007/sec-gif yak-timeinfo: 1695491507397\|2 cip: 91.90.42.154 alt-svc: h3=":443"; ma=86400

	eu.pftk.temu.com/pmm/api/pmm/api	20.123.108.148	200 OK	0 B
URL POST HTTP/2 eu.pftk.temu.com/pmm/api/pmm/api IP 20.123.108.148:443 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png Certificate IssuerGoDaddy.com, Inc. Subject.pftk.temu.com FingerprintF4:BE:81:8F:72:EA:45:6C:90:FB:ED:AA:86:7C:F4:6D:10:06:EA:D8 ValidityThu, 13 Jul 2023 13:25:25 GMT - Tue, 13 Aug 2024 13:25:25 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /pmm/api/pmm/api HTTP/1.1 Host: eu.pftk.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 1752 Origin: https://www.temu.com DNT: 1 Connection: keep-alive Referer: https://www.temu.com/ Cookie: api_uid=CnAGzGUPJbEWUQClZWLcAg== Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Sat, 23 Sep 2023 17:51:47 GMT content-type: application/octet-stream expires: Sat, 23 Sep 2023 17:51:46 GMT cache-control: no-cache access-control-allow-origin: https://www.temu.com access-control-allow-credentials: true access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content X-Firefox-Spdy: h2`

	static.kwcdn.com/m-assets/assets/js/vendors_3af600f6a0cdf0bf5aa6.js	104.18.35.151	200 OK	455 kB
URL GET HTTP/2 static.kwcdn.com/m-assets/assets/js/vendors_3af600f6a0cdf0bf5aa6.js IP 104.18.35.151:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type Size 455 kB (454683 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /m-assets/assets/js/vendors_3af600f6a0cdf0bf5aa6.js HTTP/1.1 Host: static.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.temu.com DNT: 1 Connection: keep-alive Referer: https://www.temu.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Sat, 23 Sep 2023 17:51:46 GMT content-type: application/javascript; charset=utf-8 vary: Accept-Encoding cache-control: max-age=31536000 content-md5: vbqno2Idzrluz/JshHkK+g== etag: W/"0x8DBAF7B2CD9AE6F" last-modified: Thu, 07 Sep 2023 08:19:37 GMT x-content-type-options: nosniff x-pos-request-id: 4dab7066-601e-004d-7164-e1d9f2000000 cf-cache-status: HIT age: 1413042 access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 80b4a33b5c8a5697-OSL content-encoding: br X-Firefox-Spdy: h2

	www.temu.com/api/phantom/dm/wl/cg	20.105.12.146	200 OK	112 B
URL GET HTTP/3 www.temu.com/api/phantom/dm/wl/cg IP 20.105.12.146:443 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png Certificate IssuerGoDaddy.com, Inc. Subject.temu.com FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35 ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT File type troff or preprocessor input, ASCII text, with no line terminators Size 112 B (112 bytes) Hash b27fb22ce11a5835b4d9f9821fbde1dc 2423d7509446510882224eb144ca22930260d806 8c73c87d0ac6b5acd8e0fc7953f5fa35c756d59ccd390de45dfec69530b29147 HTTP Headers GET /api/phantom/dm/wl/cg HTTP/1.1 Host: www.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/json, text/plain, /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png Cookie: region=151; language=en; currency=NOK; api_uid=CnAGzGUPJbEWUQClZWLcAg==; timezone=UTC Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/3 200 OK server: nginx date: Sat, 23 Sep 2023 17:51:47 GMT content-type: application/json;charset=UTF-8 content-encoding: gzip vary: Accept-Encoding x-yak-request-id: 1695491507385-35dc9254d7c633f20c9354e72244e02f strict-transport-security: max-age=2592000 content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/110000007/sec-gif yak-timeinfo: 1695491507385\|1 cip: 91.90.42.154 alt-svc: h3=":443"; ma=86400`

	www.temu.com/api/phantom/xg/pfb/l1	20.105.12.146	200 OK	114 B
URL GET HTTP/3 www.temu.com/api/phantom/xg/pfb/l1 IP 20.105.12.146:443 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png Certificate IssuerGoDaddy.com, Inc. Subject.temu.com FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35 ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT File type troff or preprocessor input, ASCII text, with no line terminators Size 114 B (114 bytes) Hash bb0687da0fb05463be21230ed3fa5de3 874f00ce048e7f938949306983dbdee59f0f1a63 2910d68aaf70adf92b6006ed9add84cad15e47a44df6b805d29467a028d3cf3a HTTP Headers GET /api/phantom/xg/pfb/l1 HTTP/1.1 Host: www.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/json, text/plain, /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png Cookie: region=151; language=en; currency=NOK; api_uid=CnAGzGUPJbEWUQClZWLcAg==; timezone=UTC; _nano_fp=XpEbnpTbXpdonqTjXo_ZWroAi4muKVoMQ0BndeQ7 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/3 200 OK server: nginx date: Sat, 23 Sep 2023 17:51:47 GMT content-type: application/json;charset=UTF-8 content-encoding: gzip vary: Accept-Encoding x-yak-request-id: 1695491507976-02da04f8ae10302c362f116731bae3d8 strict-transport-security: max-age=2592000 content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/110000007/sec-gif yak-timeinfo: 1695491507976\|1 cip: 91.90.42.154 alt-svc: h3=":443"; ma=86400`

	www.temu.com/api/phantom/xg/pfb/l1	20.105.12.146	200 OK	114 B
URL GET HTTP/3 www.temu.com/api/phantom/xg/pfb/l1 IP 20.105.12.146:443 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png Certificate IssuerGoDaddy.com, Inc. Subject.temu.com FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35 ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT File type troff or preprocessor input, ASCII text, with no line terminators Size 114 B (114 bytes) Hash bb0687da0fb05463be21230ed3fa5de3 874f00ce048e7f938949306983dbdee59f0f1a63 2910d68aaf70adf92b6006ed9add84cad15e47a44df6b805d29467a028d3cf3a HTTP Headers GET /api/phantom/xg/pfb/l1 HTTP/1.1 Host: www.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/json, text/plain, /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png Cookie: region=151; language=en; currency=NOK; api_uid=CnAGzGUPJbEWUQClZWLcAg==; timezone=UTC; _nano_fp=XpEbnpTbXpdonqTjXo_ZWroAi4muKVoMQ0BndeQ7 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/3 200 OK server: nginx date: Sat, 23 Sep 2023 17:51:47 GMT content-type: application/json;charset=UTF-8 content-encoding: gzip vary: Accept-Encoding x-yak-request-id: 1695491507991-99c33812a7c6242dfcb36d7422b5f27e strict-transport-security: max-age=2592000 content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/110000007/sec-gif yak-timeinfo: 1695491507991\|1 cip: 91.90.42.154 alt-svc: h3=":443"; ma=86400`

	www.temu.com/favicon.ico	20.105.12.146	200 OK	17 kB
URL GET HTTP/3 www.temu.com/favicon.ico IP 20.105.12.146:443 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png Certificate IssuerGoDaddy.com, Inc. Subject.temu.com FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35 ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT File type MS Windows icon resource - 1 icon, 64x64, 32 bits/pixel\012- data Size 17 kB (16958 bytes) Hash d26edcc90efcd957d6c0cecb09bba13b 398b0409df13c402e913d9caf5fce84eeeb0423a 9e50f7118d02f2fc45af374163bf05bb6467869ff0333751d2e0d9a0401e8b5e HTTP Headers GET /favicon.ico HTTP/1.1 Host: www.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png Cookie: region=151; language=en; currency=NOK; api_uid=CnAGzGUPJbEWUQClZWLcAg== Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK server: nginx date: Sat, 23 Sep 2023 17:51:46 GMT content-type: image/x-icon cache-control: max-age=3600 x-yak-request-id: 1695491506470-be41145c4c22e4ba6058e97f72e046b3 strict-transport-security: max-age=2592000 content-security-policy-report-only: default-src .temu.com .kwcdn.com wss://.temu.com .googleapis.com .gstatic.com .googletagmanager.com .google-analytics.com .analytics.google.com .doubleclick.net .google.com .googlesyndication.com .googleusercontent.com www.googleadservices.com www.google.cn www.google.com.hk www.google.co.uk www.google.ca www.google.com.au www.google.co.nz google.com connect.facebook.net www.facebook.com appleid.cdn-apple.com socialplugin.facebook.net .cash.app .forter.com blob: data: 'unsafe-eval' 'unsafe-inline' 'wasm-eval'; report-uri /api/sec-csp/110000006/sec-gif vary: User-Agent x-frame-options: SAMEORIGIN cip: 91.90.42.154 alt-svc: h3=":443"; ma=86400

	eu.pftk.temu.com/pmm/api/pmm/defined	20.123.108.148	200 OK	0 B
URL POST HTTP/2 eu.pftk.temu.com/pmm/api/pmm/defined IP 20.123.108.148:443 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png Certificate IssuerGoDaddy.com, Inc. Subject.pftk.temu.com FingerprintF4:BE:81:8F:72:EA:45:6C:90:FB:ED:AA:86:7C:F4:6D:10:06:EA:D8 ValidityThu, 13 Jul 2023 13:25:25 GMT - Tue, 13 Aug 2024 13:25:25 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /pmm/api/pmm/defined HTTP/1.1 Host: eu.pftk.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 1855 Origin: https://www.temu.com DNT: 1 Connection: keep-alive Referer: https://www.temu.com/ Cookie: api_uid=CnAGzGUPJbEWUQClZWLcAg== Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Sat, 23 Sep 2023 17:51:47 GMT content-type: application/octet-stream expires: Sat, 23 Sep 2023 17:51:46 GMT cache-control: no-cache access-control-allow-origin: https://www.temu.com access-control-allow-credentials: true access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content X-Firefox-Spdy: h2`

	www.temu.com/api/phantom/xg/pfb/a4	20.105.12.146	200 OK	194 B
URL POST HTTP/3 www.temu.com/api/phantom/xg/pfb/a4 IP 20.105.12.146:443 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png Certificate IssuerGoDaddy.com, Inc. Subject.temu.com FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35 ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT File type troff or preprocessor input, ASCII text, with no line terminators Size 194 B (194 bytes) Hash e689d83da70ead15dfffd98da708598a 083347658a2abe280a02db8da017fd05ceb95041 9efbfdc9791dfe5824c06697de85f71ff3b608a3f17e60e37861a2d2c077d40b HTTP Headers POST /api/phantom/xg/pfb/a4 HTTP/1.1 Host: www.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/json, text/plain, /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json;charset=UTF-8 Content-Length: 2159 Origin: https://www.temu.com DNT: 1 Connection: keep-alive Referer: https://www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png Cookie: region=151; language=en; currency=NOK; api_uid=CnAGzGUPJbEWUQClZWLcAg==; timezone=UTC; _nano_fp=XpEbnpTbXpdonqTjXo_ZWroAi4muKVoMQ0BndeQ7 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK server: nginx date: Sat, 23 Sep 2023 17:51:47 GMT content-type: application/json;charset=UTF-8 set-cookie: _bee=Lqkw6sTMfRVo7CcLWu4fUhrWzixOweYD; Max-Age=31536000; Expires=Sun, 22 Sep 2024 17:51:47 GMT; Path=/; Domain=.temu.com njrpl=Lqkw6sTMfRVo7CcLWu4fUhrWzixOweYD; Max-Age=31536000; Expires=Sun, 22 Sep 2024 17:51:47 GMT; Path=/; Domain=.temu.com dilx=N65ui3PBnv7VGUk8tROVj; Max-Age=31536000; Expires=Sun, 22 Sep 2024 17:51:47 GMT; Path=/; Domain=.temu.com hfsc=L32DfY056Dv41J7FeA==; Max-Age=31536000; Expires=Sun, 22 Sep 2024 17:51:47 GMT; Path=/; HttpOnly; Domain=.temu.com content-encoding: gzip x-yak-request-id: 1695491507974-11d4f0125f173b1b45c566037b702886 access-control-allow-origin: https://www.temu.com vary: Accept-Encoding, Origin access-control-allow-headers: Origin, X-Requested-With, Content-Type, X_Requested_With, Accept, X-HTTP-Method-Override, Cookie, AccessToken, PASSID, VerifyAuthToken, Anti-Content access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT access-control-allow-credentials: true strict-transport-security: max-age=2592000 content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/110000007/sec-gif yak-timeinfo: 1695491507974\|11 cip: 91.90.42.154 alt-svc: h3=":443"; ma=86400

	static.kwcdn.com/m-assets/assets/js/biz_vendors_92ff55f2af4cf0983848.js	104.18.35.151	200 OK	300 kB
URL GET HTTP/2 static.kwcdn.com/m-assets/assets/js/biz_vendors_92ff55f2af4cf0983848.js IP 104.18.35.151:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type Size 300 kB (299946 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /m-assets/assets/js/biz_vendors_92ff55f2af4cf0983848.js HTTP/1.1 Host: static.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.temu.com DNT: 1 Connection: keep-alive Referer: https://www.temu.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Sat, 23 Sep 2023 17:51:46 GMT content-type: application/javascript; charset=utf-8 vary: Accept-Encoding cache-control: max-age=31536000 content-md5: n3ksV+DQfDkfOsWWcrjXiA== etag: W/"0x8DBBB41F15F3C14" last-modified: Fri, 22 Sep 2023 08:00:09 GMT x-content-type-options: nosniff x-pos-request-id: 37c92c49-701e-003c-512c-ed00f0000000 cf-cache-status: HIT age: 120864 access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 80b4a33b5c8c5697-OSL content-encoding: br X-Firefox-Spdy: h2

	www.temu.com/api/server/_stm	20.105.12.146	200 OK	29 B
URL GET HTTP/3 www.temu.com/api/server/_stm IP 20.105.12.146:443 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png Certificate IssuerGoDaddy.com, Inc. Subject.temu.com FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35 ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT File type troff or preprocessor input, ASCII text, with no line terminators Size 29 B (29 bytes) Hash e5cce5ffc74f4a7742aaa1a0e39235af b3717017291857ba5f682c84fb0635272ace0f7f 1fb00a1fd11deedf493f57dbc28832cab7b463031c2cf7c7ec9f56350758a8b1 HTTP Headers GET /api/server/_stm HTTP/1.1 Host: www.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/json, text/plain, /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png Cookie: region=151; language=en; currency=NOK; api_uid=CnAGzGUPJbEWUQClZWLcAg==; timezone=UTC; _nano_fp=XpEbnpTbXpdonqTjXo_ZWroAi4muKVoMQ0BndeQ7 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/3 200 OK server: nginx date: Sat, 23 Sep 2023 17:51:47 GMT content-type: application/json vary: accept-encoding cache-control: no-cache, no-store cip: 91.90.42.154 content-encoding: gzip`

	eu.thtk.temu.com/c/th.gif	4.207.236.117	200 OK	0 B
URL POST HTTP/2 eu.thtk.temu.com/c/th.gif IP 4.207.236.117:443 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png Certificate IssuerGoDaddy.com, Inc. Subject.thtk.temu.com Fingerprint6C:16:D5:C1:7B:12:5A:3B:10:7F:8E:44:DE:D9:C2:4B:A5:CD:FA:D6 ValidityThu, 13 Jul 2023 13:25:23 GMT - Tue, 13 Aug 2024 13:25:23 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /c/th.gif HTTP/1.1 Host: eu.thtk.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 1963 Origin: https://www.temu.com DNT: 1 Connection: keep-alive Referer: https://www.temu.com/ Cookie: api_uid=CnAGzGUPJbEWUQClZWLcAg== Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site` `HTTP/2 200 OK date: Sat, 23 Sep 2023 17:51:47 GMT content-type: image/gif expires: Sat, 23 Sep 2023 17:51:46 GMT cache-control: no-cache access-control-allow-origin: https://www.temu.com access-control-allow-credentials: true access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content X-Firefox-Spdy: h2`

	eu.thtk.temu.com/c/th.gif	4.207.236.117	200 OK	0 B
URL POST HTTP/2 eu.thtk.temu.com/c/th.gif IP 4.207.236.117:443 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png Certificate IssuerGoDaddy.com, Inc. Subject.thtk.temu.com Fingerprint6C:16:D5:C1:7B:12:5A:3B:10:7F:8E:44:DE:D9:C2:4B:A5:CD:FA:D6 ValidityThu, 13 Jul 2023 13:25:23 GMT - Tue, 13 Aug 2024 13:25:23 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /c/th.gif HTTP/1.1 Host: eu.thtk.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 773 Origin: https://www.temu.com DNT: 1 Connection: keep-alive Referer: https://www.temu.com/ Cookie: api_uid=CnAGzGUPJbEWUQClZWLcAg== Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site` `HTTP/2 200 OK date: Sat, 23 Sep 2023 17:51:47 GMT content-type: image/gif expires: Sat, 23 Sep 2023 17:51:46 GMT cache-control: no-cache access-control-allow-origin: https://www.temu.com access-control-allow-credentials: true access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content X-Firefox-Spdy: h2`

	www.temu.com/api/phantom/xg/pfb/a3	20.105.12.146	200 OK	65 B
URL GET HTTP/3 www.temu.com/api/phantom/xg/pfb/a3 IP 20.105.12.146:443 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png Certificate IssuerGoDaddy.com, Inc. Subject.temu.com FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35 ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT File type troff or preprocessor input, ASCII text, with no line terminators Size 65 B (65 bytes) Hash c6414e5496710ed55ee4f9ec40f156ea 41cba42db5066498b26b124c6014f8404f89eebe 88631f128b21eb159e7e9e24b6a4107ef29ae7fc05b5653b4723b2aee1b7972e HTTP Headers GET /api/phantom/xg/pfb/a3 HTTP/1.1 Host: www.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/json, text/plain, /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png Cookie: region=151; language=en; currency=NOK; api_uid=CnAGzGUPJbEWUQClZWLcAg==; timezone=UTC Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/3 200 OK server: nginx date: Sat, 23 Sep 2023 17:51:47 GMT content-type: application/json;charset=UTF-8 content-encoding: gzip vary: Accept-Encoding x-yak-request-id: 1695491507389-17df8d84e707ae637039eaf5f62a623f strict-transport-security: max-age=2592000 content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/110000007/sec-gif yak-timeinfo: 1695491507389\|1 cip: 91.90.42.154 alt-svc: h3=":443"; ma=86400`

	eu.thtk.temu.com/c/th.gif	4.207.236.117	200 OK	0 B
URL POST HTTP/2 eu.thtk.temu.com/c/th.gif IP 4.207.236.117:443 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png Certificate IssuerGoDaddy.com, Inc. Subject.thtk.temu.com Fingerprint6C:16:D5:C1:7B:12:5A:3B:10:7F:8E:44:DE:D9:C2:4B:A5:CD:FA:D6 ValidityThu, 13 Jul 2023 13:25:23 GMT - Tue, 13 Aug 2024 13:25:23 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /c/th.gif HTTP/1.1 Host: eu.thtk.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 824 Origin: https://www.temu.com DNT: 1 Connection: keep-alive Referer: https://www.temu.com/ Cookie: api_uid=CnAGzGUPJbEWUQClZWLcAg==; _bee=Lqkw6sTMfRVo7CcLWu4fUhrWzixOweYD; njrpl=Lqkw6sTMfRVo7CcLWu4fUhrWzixOweYD; dilx=N65ui3PBnv7VGUk8tROVj; hfsc=L32DfY056Dv41J7FeA== Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site `HTTP/2 200 OK date: Sat, 23 Sep 2023 17:51:48 GMT content-type: image/gif expires: Sat, 23 Sep 2023 17:51:47 GMT cache-control: no-cache access-control-allow-origin: https://www.temu.com access-control-allow-credentials: true access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content X-Firefox-Spdy: h2`

	static.kwcdn.com/m-assets/assets/js/ruby_free_goods_cc0ad6f387a3ce07d207.js	104.18.35.151	200 OK	3.5 MB
URL GET HTTP/2 static.kwcdn.com/m-assets/assets/js/ruby_free_goods_cc0ad6f387a3ce07d207.js IP 104.18.35.151:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type Size 3.5 MB (3479388 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /m-assets/assets/js/ruby_free_goods_cc0ad6f387a3ce07d207.js HTTP/1.1 Host: static.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.temu.com DNT: 1 Connection: keep-alive Referer: https://www.temu.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Sat, 23 Sep 2023 17:51:46 GMT content-type: application/javascript; charset=utf-8 vary: Accept-Encoding cache-control: max-age=31536000 content-md5: 02+nWKOwufBk74102T9W1w== etag: W/"0x8DBBB41F1668E01" last-modified: Fri, 22 Sep 2023 08:00:10 GMT x-content-type-options: nosniff x-pos-request-id: a8f32015-201e-0065-092c-ed10d0000000 cf-cache-status: HIT age: 120864 access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 80b4a33b6c8e5697-OSL content-encoding: br X-Firefox-Spdy: h2

	static.kwcdn.com/m-assets/assets/js/risk-finger-h5_25b7481b04f85f00493b.js	104.18.35.151	200 OK	100 kB
URL GET HTTP/2 static.kwcdn.com/m-assets/assets/js/risk-finger-h5_25b7481b04f85f00493b.js IP 104.18.35.151:443 ASN #13335 CLOUDFLARENET Requested by https://www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png Certificate IssuerGoDaddy.com, Inc. Subject.kwcdn.com Fingerprint8E:20:D0:9F:7B:0A:C3:EA:D1:3B:83:B0:98:01:3E:92:E0:ED:ED:AB ValiditySun, 09 Jul 2023 08:39:48 GMT - Fri, 09 Aug 2024 08:39:48 GMT File type Size 100 kB (99588 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /m-assets/assets/js/risk-finger-h5_25b7481b04f85f00493b.js HTTP/1.1 Host: static.kwcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.temu.com DNT: 1 Connection: keep-alive Referer: https://www.temu.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Sat, 23 Sep 2023 17:51:47 GMT content-type: application/javascript; charset=utf-8 vary: Accept-Encoding cache-control: max-age=31536000 content-md5: FGk+Q9ARHVshp2FJ1z33rQ== etag: W/"0x8DBA3173DFA722F" last-modified: Tue, 22 Aug 2023 13:54:02 GMT x-content-type-options: nosniff x-pos-request-id: 6a812081-b01e-0064-1454-d53bd2000000 cf-cache-status: HIT age: 2546121 access-control-allow-origin: * coloid: 83 timing-allow-origin: * x-cip: 91.90.42.154 server: cloudflare cf-ray: 80b4a33fe8705697-OSL content-encoding: br X-Firefox-Spdy: h2

	eu.thtk.temu.com/c/th.gif	4.207.236.117	200 OK	0 B
URL POST HTTP/2 eu.thtk.temu.com/c/th.gif IP 4.207.236.117:443 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png Certificate IssuerGoDaddy.com, Inc. Subject.thtk.temu.com Fingerprint6C:16:D5:C1:7B:12:5A:3B:10:7F:8E:44:DE:D9:C2:4B:A5:CD:FA:D6 ValidityThu, 13 Jul 2023 13:25:23 GMT - Tue, 13 Aug 2024 13:25:23 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /c/th.gif HTTP/1.1 Host: eu.thtk.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 752 Origin: https://www.temu.com DNT: 1 Connection: keep-alive Referer: https://www.temu.com/ Cookie: api_uid=CnAGzGUPJbEWUQClZWLcAg== Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site` `HTTP/2 200 OK date: Sat, 23 Sep 2023 17:51:47 GMT content-type: image/gif expires: Sat, 23 Sep 2023 17:51:46 GMT cache-control: no-cache access-control-allow-origin: https://www.temu.com access-control-allow-credentials: true access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content X-Firefox-Spdy: h2`

	eu.pftk.temu.com/pmm/api/pmm/api	20.123.108.148	200 OK	0 B
URL POST HTTP/2 eu.pftk.temu.com/pmm/api/pmm/api IP 20.123.108.148:443 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png Certificate IssuerGoDaddy.com, Inc. Subject.pftk.temu.com FingerprintF4:BE:81:8F:72:EA:45:6C:90:FB:ED:AA:86:7C:F4:6D:10:06:EA:D8 ValidityThu, 13 Jul 2023 13:25:25 GMT - Tue, 13 Aug 2024 13:25:25 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /pmm/api/pmm/api HTTP/1.1 Host: eu.pftk.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 1734 Origin: https://www.temu.com DNT: 1 Connection: keep-alive Referer: https://www.temu.com/ Cookie: api_uid=CnAGzGUPJbEWUQClZWLcAg== Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Sat, 23 Sep 2023 17:51:47 GMT content-type: application/octet-stream expires: Sat, 23 Sep 2023 17:51:46 GMT cache-control: no-cache access-control-allow-origin: https://www.temu.com access-control-allow-credentials: true access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content X-Firefox-Spdy: h2`

	eu.thtk.temu.com/c/th.gif	4.207.236.117	200 OK	0 B
URL POST HTTP/2 eu.thtk.temu.com/c/th.gif IP 4.207.236.117:443 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png Certificate IssuerGoDaddy.com, Inc. Subject.thtk.temu.com Fingerprint6C:16:D5:C1:7B:12:5A:3B:10:7F:8E:44:DE:D9:C2:4B:A5:CD:FA:D6 ValidityThu, 13 Jul 2023 13:25:23 GMT - Tue, 13 Aug 2024 13:25:23 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /c/th.gif HTTP/1.1 Host: eu.thtk.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 824 Origin: https://www.temu.com DNT: 1 Connection: keep-alive Referer: https://www.temu.com/ Cookie: api_uid=CnAGzGUPJbEWUQClZWLcAg==; _bee=Lqkw6sTMfRVo7CcLWu4fUhrWzixOweYD; njrpl=Lqkw6sTMfRVo7CcLWu4fUhrWzixOweYD; dilx=N65ui3PBnv7VGUk8tROVj; hfsc=L32DfY056Dv41J7FeA== Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site `HTTP/2 200 OK date: Sat, 23 Sep 2023 17:51:48 GMT content-type: image/gif expires: Sat, 23 Sep 2023 17:51:47 GMT cache-control: no-cache access-control-allow-origin: https://www.temu.com access-control-allow-credentials: true access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content X-Firefox-Spdy: h2`

	www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png	20.105.12.146	200 OK	236 kB
URL User Request GET HTTP/2 www.temu.com/ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png IP 20.105.12.146:443 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Certificate IssuerGoDaddy.com, Inc. Subject.temu.com FingerprintDF:7A:E2:E8:63:59:CD:A2:AF:E9:56:63:9A:99:1E:4F:71:A7:30:35 ValidityThu, 13 Jul 2023 13:25:20 GMT - Tue, 13 Aug 2024 13:25:20 GMT File type Size 236 kB (236426 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /ruby_free_goods.html?_bg_fs=1&_p_rfs=1&btn_active=1&fish_banner=no&gs_code_way=3&gs_comp_expired=1695494837&needs_login=1&login_scene=7&_p_login_channel=activity&_x_campaign=mkt_activity&_x_sid=free_goods_invite&_x_share_id=ab88qEWzpvdJrz4LLP4valWEOIo0Ktw3&_x_cid=mkt_activity_goods&refer_share_id=coGdlTLAUUe0NGSH77X9fxa7uDruK8Ul&refer_share_channel=snapchat_chat&refer_share_suin=BA7FC4ZNSF3LYORQGAZ2S57O3YPMH6ZCAKACQDOGHFDSE&group_sn=230922-64AAB88D5ECF6B9A1492&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_goods&_ex_sid=free_goods_invite&gs_invite_code=454262528&gs_og_title=Peux-tu%20accepter%20mon%20invitation%20afin%20que%20je%20puisse%20obtenir%20un%20cadeau%20gratuit%3F&gs_og_description=Clique%20sur%20le%20lien%20maintenant%20et%20participe%20%26agrave%3B%20cet%20%26eacute%3Bv%26egrave%3Bnement.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2F8ef0924c-446d-4ed3-8e7e-fa2a442685bf.png.slim.png HTTP/1.1 Host: www.temu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Cookie: region=151; language=en; currency=NOK; api_uid=CnAGzGUPJbEWUQClZWLcAg== Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK server: nginx date: Sat, 23 Sep 2023 17:51:45 GMT content-type: text/html; charset=UTF-8 content-language: en surrogate-control: no-store cache-control: no-store, no-cache, must-revalidate, proxy-revalidate pragma: no-cache expires: 0 x-xss-protection: 1; mode=block x-content-type-options: nosniff x-accel-buffering: no content-encoding: gzip x-yak-request-id: 1695491505746-34a7f04e2d213d0e49b49f8597cf6a62 strict-transport-security: max-age=2592000 content-security-policy-report-only: default-src .temu.com .kwcdn.com wss://.temu.com .googleapis.com .gstatic.com .googletagmanager.com .google-analytics.com .analytics.google.com .doubleclick.net .google.com .googlesyndication.com .googleusercontent.com www.googleadservices.com www.google.cn www.google.com.hk www.google.co.uk www.google.ca www.google.com.au www.google.co.nz google.com connect.facebook.net www.facebook.com appleid.cdn-apple.com socialplugin.facebook.net .cash.app *.forter.com blob: data: 'unsafe-eval' 'unsafe-inline' 'wasm-eval'; report-uri /api/sec-csp/110000006/sec-gif vary: Accept-Encoding, User-Agent x-frame-options: SAMEORIGIN cip: 91.90.42.154 alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (22)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by