ocsp.godaddy.com/
192.124.249.22 1.8 kB IP 192.124.249.22:0
Hash 12656d67cc7d8b2c2d5cb0efc9a44a3f
4e82f2d4cd05c0dc5d564cd00ba80bc7b78fcca5
3f020295215a8fd9be86ace2942f3ae81904bd2cdd74923f84e3c3a3134ed08d
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 09 Jun 2023 02:34:43 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 08 Jun 2023 21:56:30 GMT
Expires: Fri, 09 Jun 2023 21:56:30 GMT
ETag: "4e82f2d4cd05c0dc5d564cd00ba80bc7b78fcca5"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
temu.com/s/qKiIg8F1RGLGJtD
20.15.0.12302 Found 0 B URL User Request GET HTTP/2 temu.com/s/qKiIg8F1RGLGJtD
IP 20.15.0.12:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Certificate IssuerGoDaddy.com, Inc.
Subject*.temu.com
FingerprintE3:6B:F9:98:96:EC:C1:BD:F3:DD:E4:04:90:C8:EF:14:6C:BE:F2:5E
ValiditySun, 14 Aug 2022 08:24:19 GMT - Mon, 14 Aug 2023 08:24:19 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/qKiIg8F1RGLGJtD HTTP/1.1
Host: temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: Nginx
date: Fri, 09 Jun 2023 02:34:44 GMT
content-type: text/html;charset=UTF-8
content-length: 0
location: https://www.temu.com/niffler_reward.html?_bg_fs=1&share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&_p_rfs=1&gs_code_way=3&gs_use_retention=0&gs_comp_type=3&gs_comp_style=9&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=app_push&refer_share_id=QFTiHDtVQIEcJhX4wIrUYBSNzv67RjOS&refer_share_channel=copy_link&refer_share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&group_sn=154af70ef4bd3ea6becce32c48f8869d&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_cash&_ex_sid=cash_share&gs_invite_code=169041617&gs_og_title=To%20participate%20in%20this%20event%F0%9F%94%A5%2C%20download%20and%20register%20on%20Temu%20with%20my%20link.&gs_og_description=Temu%3A%20Team%20up%2C%20price%20down.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2Ffaa9fa7a-b18c-4389-a889-74f061def7e4.jpg.slim.jpeg&gs_og_ios_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2F040121be-7946-4fc3-ac07-692261d2e20e.png.slim.png
x-yak-request-id: 1686278084174-1798b285cfae341dd2c7533b48b11fc6
strict-transport-security: max-age=2592000
set-cookie: region=210; Expires=Sun, 09-Jul-23 02:34:44 GMT; Path=/
language=en; Expires=Sun, 09-Jul-23 02:34:44 GMT; Path=/
currency=GBP; Expires=Sun, 09-Jul-23 02:34:44 GMT; Path=/
api_uid=CnCj72SCj8S95AB/GY6dAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=temu.com; path=/
content-security-policy-report-only: default-src *.temu.com *.kwcdn.com wss://*.temu.com *.googleapis.com *.gstatic.com *.googletagmanager.com *.google-analytics.com *.analytics.google.com *.doubleclick.net *.google.com *.googlesyndication.com *.googleusercontent.com www.googleadservices.com www.google.cn www.google.com.hk www.google.co.uk www.google.ca www.google.com.au www.google.co.nz google.com connect.facebook.net www.facebook.com appleid.cdn-apple.com socialplugin.facebook.net *.cash.app *.forter.com blob: data: 'unsafe-eval' 'unsafe-inline' 'wasm-eval'; report-uri /api/sec-csp/c/sec-gif
vary: User-Agent
x-frame-options: SAMEORIGIN
cip: 91.90.42.154
X-Firefox-Spdy: h2
aimg.kwcdn.com/upload_aimg/dawn/5ea8a749-5879-4749-8a81-0e69cd361303.png.slim.png
104.18.40.254200 OK 19 kB URL GET HTTP/2 aimg.kwcdn.com/upload_aimg/dawn/5ea8a749-5879-4749-8a81-0e69cd361303.png.slim.png
IP 104.18.40.254:443
Requested by https://www.temu.com/niffler_reward.html?_bg_fs=1&share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&_p_rfs=1&gs_code_way=3&gs_use_retention=0&gs_comp_type=3&gs_comp_style=9&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=app_push&refer_share_id=QFTiHDtVQIEcJhX4wIrUYBSNzv67RjOS&refer_share_channel=copy_link&refer_share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&group_sn=154af70ef4bd3ea6becce32c48f8869d&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_cash&_ex_sid=cash_share&gs_invite_code=169041617&gs_og_title=To%20participate%20in%20this%20event%F0%9F%94%A5%2C%20download%20and%20register%20on%20Temu%20with%20my%20link.&gs_og_description=Temu%3A%20Team%20up%2C%20price%20down.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2Ffaa9fa7a-b18c-4389-a889-74f061def7e4.jpg.slim.jpeg&gs_og_ios_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2F040121be-7946-4fc3-ac07-692261d2e20e.png.slim.png
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
FingerprintF1:1F:F1:F1:EE:92:73:E3:9F:A1:6B:0D:07:9A:D9:37:A7:2A:06:B2
ValidityWed, 10 Aug 2022 07:46:22 GMT - Thu, 10 Aug 2023 07:46:22 GMT
File type PNG image data, 470 x 328, 8-bit colormap, non-interlaced\012- data
Hash 5bcec11d2b497f3f16822b36489ec5b6
1823e11f2efaf6590e09e8f8178e09971f792f1b
41f753cb40c792a19a625a2434f7ded86b43376ce1813ef3bf056a7f52c6157c
GET /upload_aimg/dawn/5ea8a749-5879-4749-8a81-0e69cd361303.png.slim.png HTTP/1.1
Host: aimg.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.kwcdn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Jun 2023 02:34:45 GMT
content-type: image/png
content-length: 18595
cache-control: max-age=31536000
last-modified: Fri, 09 Dec 2022 05:54:31 GMT
request-id: 80d484941c11447ed478757d3bffb391
x-content-type-options: nosniff
x-fop-destination-type: fop
x-imagine-success: true
cf-cache-status: HIT
age: 15702993
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 7d45fa32b8bf1bfe-OSL
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.22 1.8 kB IP 192.124.249.22:0
Hash 0c3385793c59acc9dac25b9973b3a29e
4d3834f19add0b46570786a5bb8a87b55ebf99e6
de171e91fabb07aa19d6e52d41031f6fa0e772ab3e5bf54b5ef57514c48d5d03
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 09 Jun 2023 02:34:45 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 08 Jun 2023 21:32:32 GMT
Expires: Fri, 09 Jun 2023 21:32:32 GMT
ETag: "4d3834f19add0b46570786a5bb8a87b55ebf99e6"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.godaddy.com/
192.124.249.22 1.8 kB IP 192.124.249.22:0
Hash 0c3385793c59acc9dac25b9973b3a29e
4d3834f19add0b46570786a5bb8a87b55ebf99e6
de171e91fabb07aa19d6e52d41031f6fa0e772ab3e5bf54b5ef57514c48d5d03
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 09 Jun 2023 02:34:45 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 08 Jun 2023 21:32:32 GMT
Expires: Fri, 09 Jun 2023 21:32:32 GMT
ETag: "4d3834f19add0b46570786a5bb8a87b55ebf99e6"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
www.temu.com/api/phantom/dm/wl/cg
20.105.12.146200 OK 1.9 kB URL GET HTTP/2 www.temu.com/api/phantom/dm/wl/cg
IP 20.105.12.146:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/niffler_reward.html?_bg_fs=1&share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&_p_rfs=1&gs_code_way=3&gs_use_retention=0&gs_comp_type=3&gs_comp_style=9&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=app_push&refer_share_id=QFTiHDtVQIEcJhX4wIrUYBSNzv67RjOS&refer_share_channel=copy_link&refer_share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&group_sn=154af70ef4bd3ea6becce32c48f8869d&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_cash&_ex_sid=cash_share&gs_invite_code=169041617&gs_og_title=To%20participate%20in%20this%20event%F0%9F%94%A5%2C%20download%20and%20register%20on%20Temu%20with%20my%20link.&gs_og_description=Temu%3A%20Team%20up%2C%20price%20down.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2Ffaa9fa7a-b18c-4389-a889-74f061def7e4.jpg.slim.jpeg&gs_og_ios_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2F040121be-7946-4fc3-ac07-692261d2e20e.png.slim.png
Certificate IssuerGoDaddy.com, Inc.
Subject*.temu.com
FingerprintE3:6B:F9:98:96:EC:C1:BD:F3:DD:E4:04:90:C8:EF:14:6C:BE:F2:5E
ValiditySun, 14 Aug 2022 08:24:19 GMT - Mon, 14 Aug 2023 08:24:19 GMT
File type gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)\012- data
Hash 2bd6ef72ac7d882605c9d36bd0af87bd
c0cae61d06e73dd677172d57ccc858ded5990f88
ae90c76ae12507f7501d0c971a35e486ee06f83d5d410dc0bd5f73e48817a717
GET /api/phantom/dm/wl/cg HTTP/1.1
Host: www.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/niffler_reward.html?_bg_fs=1&share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&_p_rfs=1&gs_code_way=3&gs_use_retention=0&gs_comp_type=3&gs_comp_style=9&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=app_push&refer_share_id=QFTiHDtVQIEcJhX4wIrUYBSNzv67RjOS&refer_share_channel=copy_link&refer_share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&group_sn=154af70ef4bd3ea6becce32c48f8869d&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_cash&_ex_sid=cash_share&gs_invite_code=169041617&gs_og_title=To%20participate%20in%20this%20event%F0%9F%94%A5%2C%20download%20and%20register%20on%20Temu%20with%20my%20link.&gs_og_description=Temu%3A%20Team%20up%2C%20price%20down.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2Ffaa9fa7a-b18c-4389-a889-74f061def7e4.jpg.slim.jpeg&gs_og_ios_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2F040121be-7946-4fc3-ac07-692261d2e20e.png.slim.png
Cookie: api_uid=CnCj72SCj8S95AB/GY6dAg==; region=210; language=en; currency=GBP; timezone=UTC; _nano_fp=XpEJn5P8l09JnpTYnC_A8hwf~z4VMZ3wRM2Su7nM
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: Nginx
date: Fri, 09 Jun 2023 02:34:45 GMT
content-type: application/json;charset=UTF-8
content-encoding: gzip
vary: Accept-Encoding
x-yak-request-id: 1686278085836-c3ef81ca1053eb9cf976bd5c738bc30a
strict-transport-security: max-age=2592000
content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/c-api/sec-gif
yak-timeinfo: 1686278085836|1
cip: 91.90.42.154
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.22 1.8 kB IP 192.124.249.22:0
Hash 0c3385793c59acc9dac25b9973b3a29e
4d3834f19add0b46570786a5bb8a87b55ebf99e6
de171e91fabb07aa19d6e52d41031f6fa0e772ab3e5bf54b5ef57514c48d5d03
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 09 Jun 2023 02:34:47 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 08 Jun 2023 21:32:32 GMT
Expires: Fri, 09 Jun 2023 21:32:32 GMT
ETag: "4d3834f19add0b46570786a5bb8a87b55ebf99e6"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
static.kwcdn.com/m-assets/assets/css/cookie-prompt_2ea9f302cd4980d62235.css
104.18.40.254200 OK 5.1 kB URL GET HTTP/2 static.kwcdn.com/m-assets/assets/css/cookie-prompt_2ea9f302cd4980d62235.css
IP 104.18.40.254:443
Requested by https://www.temu.com/niffler_reward.html?_bg_fs=1&share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&_p_rfs=1&gs_code_way=3&gs_use_retention=0&gs_comp_type=3&gs_comp_style=9&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=app_push&refer_share_id=QFTiHDtVQIEcJhX4wIrUYBSNzv67RjOS&refer_share_channel=copy_link&refer_share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&group_sn=154af70ef4bd3ea6becce32c48f8869d&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_cash&_ex_sid=cash_share&gs_invite_code=169041617&gs_og_title=To%20participate%20in%20this%20event%F0%9F%94%A5%2C%20download%20and%20register%20on%20Temu%20with%20my%20link.&gs_og_description=Temu%3A%20Team%20up%2C%20price%20down.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2Ffaa9fa7a-b18c-4389-a889-74f061def7e4.jpg.slim.jpeg&gs_og_ios_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2F040121be-7946-4fc3-ac07-692261d2e20e.png.slim.png
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
FingerprintF1:1F:F1:F1:EE:92:73:E3:9F:A1:6B:0D:07:9A:D9:37:A7:2A:06:B2
ValidityWed, 10 Aug 2022 07:46:22 GMT - Thu, 10 Aug 2023 07:46:22 GMT
File type ASCII text, with very long lines (5064), with no line terminators
Hash e4b9f57f938039b64de4e912d75f4f3b
4def460903c5719871a8df505e84b87c19b9f6ae
ed311a1d1b8c9bd7700a2e7ce075164296e9d381c7881df048e7387896378771
GET /m-assets/assets/css/cookie-prompt_2ea9f302cd4980d62235.css HTTP/1.1
Host: static.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 09 Jun 2023 02:34:45 GMT
content-type: text/css
vary: Accept-Encoding
cache-control: max-age=31536000
content-md5: SHF06rYR3ig7WPLSJUSrYg==
etag: W/"487174eab611de283b58f2d22544ab62"
last-modified: Thu, 04 May 2023 12:09:20 GMT
x-content-type-options: nosniff
x-pos-request-id: 355a6650-101e-007e-0a81-7e85e5000000
cf-cache-status: HIT
age: 3075345
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 7d45fa3358f51bfe-OSL
content-encoding: br
X-Firefox-Spdy: h2
eu.thtk.temu.com/c/th.gif
20.223.35.25200 OK 0 B URL POST HTTP/2 eu.thtk.temu.com/c/th.gif
IP 20.223.35.25:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/niffler_reward.html?_bg_fs=1&share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&_p_rfs=1&gs_code_way=3&gs_use_retention=0&gs_comp_type=3&gs_comp_style=9&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=app_push&refer_share_id=QFTiHDtVQIEcJhX4wIrUYBSNzv67RjOS&refer_share_channel=copy_link&refer_share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&group_sn=154af70ef4bd3ea6becce32c48f8869d&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_cash&_ex_sid=cash_share&gs_invite_code=169041617&gs_og_title=To%20participate%20in%20this%20event%F0%9F%94%A5%2C%20download%20and%20register%20on%20Temu%20with%20my%20link.&gs_og_description=Temu%3A%20Team%20up%2C%20price%20down.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2Ffaa9fa7a-b18c-4389-a889-74f061def7e4.jpg.slim.jpeg&gs_og_ios_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2F040121be-7946-4fc3-ac07-692261d2e20e.png.slim.png
Certificate IssuerGoDaddy.com, Inc.
Subject*.thtk.temu.com
FingerprintB9:F9:97:E6:27:77:DF:19:91:B1:A7:C5:03:C3:9E:3B:B5:5F:38:08
ValiditySun, 14 Aug 2022 08:45:04 GMT - Mon, 14 Aug 2023 08:45:04 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /c/th.gif HTTP/1.1
Host: eu.thtk.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1849
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Cookie: api_uid=CnCj72SCj8S95AB/GY6dAg==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Fri, 09 Jun 2023 02:34:45 GMT
content-type: image/gif
expires: Fri, 09 Jun 2023 02:34:44 GMT
cache-control: no-cache
access-control-allow-origin: https://www.temu.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content
X-Firefox-Spdy: h2
www.temu.com/niffler_reward.html?_bg_fs=1&share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&_p_rfs=1&gs_code_way=3&gs_use_retention=0&gs_comp_type=3&gs_comp_style=9&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=app_push&refer_share_id=QFTiHDtVQIEcJhX4wIrUYBSNzv67RjOS&refer_share_channel=copy_link&refer_share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&group_sn=154af70ef4bd3ea6becce32c48f8869d&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_cash&_ex_sid=cash_share&gs_invite_code=169041617&gs_og_title=To%20participate%20in%20this%20event%F0%9F%94%A5%2C%20download%20and%20register%20on%20Temu%20with%20my%20link.&gs_og_description=Temu%3A%20Team%20up%2C%20price%20down.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2Ffaa9fa7a-b18c-4389-a889-74f061def7e4.jpg.slim.jpeg&gs_og_ios_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2F040121be-7946-4fc3-ac07-692261d2e20e.png.slim.png
20.105.12.146200 OK 153 kB URL User Request GET HTTP/2 www.temu.com/niffler_reward.html?_bg_fs=1&share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&_p_rfs=1&gs_code_way=3&gs_use_retention=0&gs_comp_type=3&gs_comp_style=9&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=app_push&refer_share_id=QFTiHDtVQIEcJhX4wIrUYBSNzv67RjOS&refer_share_channel=copy_link&refer_share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&group_sn=154af70ef4bd3ea6becce32c48f8869d&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_cash&_ex_sid=cash_share&gs_invite_code=169041617&gs_og_title=To%20participate%20in%20this%20event%F0%9F%94%A5%2C%20download%20and%20register%20on%20Temu%20with%20my%20link.&gs_og_description=Temu%3A%20Team%20up%2C%20price%20down.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2Ffaa9fa7a-b18c-4389-a889-74f061def7e4.jpg.slim.jpeg&gs_og_ios_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2F040121be-7946-4fc3-ac07-692261d2e20e.png.slim.png
IP 20.105.12.146:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Certificate IssuerGoDaddy.com, Inc.
Subject*.temu.com
FingerprintE3:6B:F9:98:96:EC:C1:BD:F3:DD:E4:04:90:C8:EF:14:6C:BE:F2:5E
ValiditySun, 14 Aug 2022 08:24:19 GMT - Mon, 14 Aug 2023 08:24:19 GMT
Size 153 kB (153144 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /niffler_reward.html?_bg_fs=1&share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&_p_rfs=1&gs_code_way=3&gs_use_retention=0&gs_comp_type=3&gs_comp_style=9&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=app_push&refer_share_id=QFTiHDtVQIEcJhX4wIrUYBSNzv67RjOS&refer_share_channel=copy_link&refer_share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&group_sn=154af70ef4bd3ea6becce32c48f8869d&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_cash&_ex_sid=cash_share&gs_invite_code=169041617&gs_og_title=To%20participate%20in%20this%20event%F0%9F%94%A5%2C%20download%20and%20register%20on%20Temu%20with%20my%20link.&gs_og_description=Temu%3A%20Team%20up%2C%20price%20down.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2Ffaa9fa7a-b18c-4389-a889-74f061def7e4.jpg.slim.jpeg&gs_og_ios_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2F040121be-7946-4fc3-ac07-692261d2e20e.png.slim.png HTTP/1.1
Host: www.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: api_uid=CnCj72SCj8S95AB/GY6dAg==
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Nginx
date: Fri, 09 Jun 2023 02:34:44 GMT
content-type: text/html; charset=UTF-8
content-language: en
surrogate-control: no-store
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate
pragma: no-cache
expires: 0
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-accel-buffering: no
content-encoding: gzip
x-yak-request-id: 1686278084596-c939dafe16b1e06d8b1ace51bbca61a2
strict-transport-security: max-age=2592000
set-cookie: region=210; Expires=Sun, 09-Jul-23 02:34:44 GMT; Path=/
language=en; Expires=Sun, 09-Jul-23 02:34:44 GMT; Path=/
currency=GBP; Expires=Sun, 09-Jul-23 02:34:44 GMT; Path=/
content-security-policy-report-only: default-src *.temu.com *.kwcdn.com wss://*.temu.com *.googleapis.com *.gstatic.com *.googletagmanager.com *.google-analytics.com *.analytics.google.com *.doubleclick.net *.google.com *.googlesyndication.com *.googleusercontent.com www.googleadservices.com www.google.cn www.google.com.hk www.google.co.uk www.google.ca www.google.com.au www.google.co.nz google.com connect.facebook.net www.facebook.com appleid.cdn-apple.com socialplugin.facebook.net *.cash.app *.forter.com blob: data: 'unsafe-eval' 'unsafe-inline' 'wasm-eval'; report-uri /api/sec-csp/c/sec-gif
vary: Accept-Encoding, User-Agent
x-frame-options: SAMEORIGIN
cip: 91.90.42.154
X-Firefox-Spdy: h2
static.kwcdn.com/m-assets/assets/js/react_webpack_runtime_d308fc69fa55592db56c.js
104.18.40.254200 OK 16 kB URL GET HTTP/2 static.kwcdn.com/m-assets/assets/js/react_webpack_runtime_d308fc69fa55592db56c.js
IP 104.18.40.254:443
Requested by https://www.temu.com/niffler_reward.html?_bg_fs=1&share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&_p_rfs=1&gs_code_way=3&gs_use_retention=0&gs_comp_type=3&gs_comp_style=9&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=app_push&refer_share_id=QFTiHDtVQIEcJhX4wIrUYBSNzv67RjOS&refer_share_channel=copy_link&refer_share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&group_sn=154af70ef4bd3ea6becce32c48f8869d&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_cash&_ex_sid=cash_share&gs_invite_code=169041617&gs_og_title=To%20participate%20in%20this%20event%F0%9F%94%A5%2C%20download%20and%20register%20on%20Temu%20with%20my%20link.&gs_og_description=Temu%3A%20Team%20up%2C%20price%20down.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2Ffaa9fa7a-b18c-4389-a889-74f061def7e4.jpg.slim.jpeg&gs_og_ios_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2F040121be-7946-4fc3-ac07-692261d2e20e.png.slim.png
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
FingerprintF1:1F:F1:F1:EE:92:73:E3:9F:A1:6B:0D:07:9A:D9:37:A7:2A:06:B2
ValidityWed, 10 Aug 2022 07:46:22 GMT - Thu, 10 Aug 2023 07:46:22 GMT
File type ASCII text, with very long lines (15871)
Hash 44893a25b78ba15688235d20be75b754
7cadc86989e4da2cc1d6034ea9bbaedb5a1c9300
6ad9f5db05f8c867a3f7a06bebc8218dfaf77ea407ad4d8d475c45c4dd70eb28
GET /m-assets/assets/js/react_webpack_runtime_d308fc69fa55592db56c.js HTTP/1.1
Host: static.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 09 Jun 2023 02:34:45 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding, Accept-Encoding
cache-control: max-age=31536000
content-md5: RIk6JbeLoVaII10gvnW3VA==
etag: W/"0x8DB681C2AD91061"
last-modified: Thu, 08 Jun 2023 12:30:39 GMT
x-content-type-options: nosniff
x-pos-request-id: 6370bc5c-201e-0049-7b05-9a75fa000000
cf-cache-status: HIT
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 7d45fa300a891bfa-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.kwcdn.com/m-assets/assets/js/vendors_d2dd8ea0b296a841a037.js
104.18.40.254200 OK 578 kB URL GET HTTP/2 static.kwcdn.com/m-assets/assets/js/vendors_d2dd8ea0b296a841a037.js
IP 104.18.40.254:443
Requested by https://www.temu.com/niffler_reward.html?_bg_fs=1&share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&_p_rfs=1&gs_code_way=3&gs_use_retention=0&gs_comp_type=3&gs_comp_style=9&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=app_push&refer_share_id=QFTiHDtVQIEcJhX4wIrUYBSNzv67RjOS&refer_share_channel=copy_link&refer_share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&group_sn=154af70ef4bd3ea6becce32c48f8869d&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_cash&_ex_sid=cash_share&gs_invite_code=169041617&gs_og_title=To%20participate%20in%20this%20event%F0%9F%94%A5%2C%20download%20and%20register%20on%20Temu%20with%20my%20link.&gs_og_description=Temu%3A%20Team%20up%2C%20price%20down.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2Ffaa9fa7a-b18c-4389-a889-74f061def7e4.jpg.slim.jpeg&gs_og_ios_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2F040121be-7946-4fc3-ac07-692261d2e20e.png.slim.png
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
FingerprintF1:1F:F1:F1:EE:92:73:E3:9F:A1:6B:0D:07:9A:D9:37:A7:2A:06:B2
ValidityWed, 10 Aug 2022 07:46:22 GMT - Thu, 10 Aug 2023 07:46:22 GMT
Size 578 kB (577703 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m-assets/assets/js/vendors_d2dd8ea0b296a841a037.js HTTP/1.1
Host: static.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 09 Jun 2023 02:34:45 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding
cache-control: max-age=31536000
content-md5: 0gAV8yHdVLka8EeegJ0C9g==
etag: W/"0x8DB5F2FE96306D0"
last-modified: Sun, 28 May 2023 03:59:18 GMT
x-content-type-options: nosniff
x-pos-request-id: 73a0ceaf-401e-000b-182e-91f0ef000000
cf-cache-status: HIT
age: 1010271
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 7d45fa301a8d1bfa-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.kwcdn.com/m-assets/assets/js/6829_7fe9357d6447739e4b7f.js
104.18.40.254200 OK 111 kB URL GET HTTP/2 static.kwcdn.com/m-assets/assets/js/6829_7fe9357d6447739e4b7f.js
IP 104.18.40.254:443
Requested by https://www.temu.com/niffler_reward.html?_bg_fs=1&share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&_p_rfs=1&gs_code_way=3&gs_use_retention=0&gs_comp_type=3&gs_comp_style=9&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=app_push&refer_share_id=QFTiHDtVQIEcJhX4wIrUYBSNzv67RjOS&refer_share_channel=copy_link&refer_share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&group_sn=154af70ef4bd3ea6becce32c48f8869d&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_cash&_ex_sid=cash_share&gs_invite_code=169041617&gs_og_title=To%20participate%20in%20this%20event%F0%9F%94%A5%2C%20download%20and%20register%20on%20Temu%20with%20my%20link.&gs_og_description=Temu%3A%20Team%20up%2C%20price%20down.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2Ffaa9fa7a-b18c-4389-a889-74f061def7e4.jpg.slim.jpeg&gs_og_ios_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2F040121be-7946-4fc3-ac07-692261d2e20e.png.slim.png
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
FingerprintF1:1F:F1:F1:EE:92:73:E3:9F:A1:6B:0D:07:9A:D9:37:A7:2A:06:B2
ValidityWed, 10 Aug 2022 07:46:22 GMT - Thu, 10 Aug 2023 07:46:22 GMT
Size 111 kB (110770 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m-assets/assets/js/6829_7fe9357d6447739e4b7f.js HTTP/1.1
Host: static.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 09 Jun 2023 02:34:45 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding, Accept-Encoding
cache-control: max-age=31536000
content-md5: igp48sa23I4DVqhrXt+IDQ==
etag: W/"0x8DB6269DBDDCC84"
last-modified: Thu, 01 Jun 2023 06:31:40 GMT
x-content-type-options: nosniff
x-pos-request-id: 557dda28-c01e-0013-4e54-9418dc000000
cf-cache-status: HIT
age: 665733
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 7d45fa301a901bfa-OSL
content-encoding: br
X-Firefox-Spdy: h2
eu.thtk.temu.com/c/th.gif
20.223.35.25200 OK 0 B URL POST HTTP/2 eu.thtk.temu.com/c/th.gif
IP 20.223.35.25:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/niffler_reward.html?_bg_fs=1&share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&_p_rfs=1&gs_code_way=3&gs_use_retention=0&gs_comp_type=3&gs_comp_style=9&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=app_push&refer_share_id=QFTiHDtVQIEcJhX4wIrUYBSNzv67RjOS&refer_share_channel=copy_link&refer_share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&group_sn=154af70ef4bd3ea6becce32c48f8869d&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_cash&_ex_sid=cash_share&gs_invite_code=169041617&gs_og_title=To%20participate%20in%20this%20event%F0%9F%94%A5%2C%20download%20and%20register%20on%20Temu%20with%20my%20link.&gs_og_description=Temu%3A%20Team%20up%2C%20price%20down.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2Ffaa9fa7a-b18c-4389-a889-74f061def7e4.jpg.slim.jpeg&gs_og_ios_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2F040121be-7946-4fc3-ac07-692261d2e20e.png.slim.png
Certificate IssuerGoDaddy.com, Inc.
Subject*.thtk.temu.com
FingerprintB9:F9:97:E6:27:77:DF:19:91:B1:A7:C5:03:C3:9E:3B:B5:5F:38:08
ValiditySun, 14 Aug 2022 08:45:04 GMT - Mon, 14 Aug 2023 08:45:04 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /c/th.gif HTTP/1.1
Host: eu.thtk.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 622
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Cookie: api_uid=CnCj72SCj8S95AB/GY6dAg==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Fri, 09 Jun 2023 02:34:45 GMT
content-type: image/gif
expires: Fri, 09 Jun 2023 02:34:44 GMT
cache-control: no-cache
access-control-allow-origin: https://www.temu.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content
X-Firefox-Spdy: h2
eu.thtk.temu.com/c/th.gif
20.223.35.25200 OK 0 B URL POST HTTP/2 eu.thtk.temu.com/c/th.gif
IP 20.223.35.25:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/niffler_reward.html?_bg_fs=1&share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&_p_rfs=1&gs_code_way=3&gs_use_retention=0&gs_comp_type=3&gs_comp_style=9&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=app_push&refer_share_id=QFTiHDtVQIEcJhX4wIrUYBSNzv67RjOS&refer_share_channel=copy_link&refer_share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&group_sn=154af70ef4bd3ea6becce32c48f8869d&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_cash&_ex_sid=cash_share&gs_invite_code=169041617&gs_og_title=To%20participate%20in%20this%20event%F0%9F%94%A5%2C%20download%20and%20register%20on%20Temu%20with%20my%20link.&gs_og_description=Temu%3A%20Team%20up%2C%20price%20down.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2Ffaa9fa7a-b18c-4389-a889-74f061def7e4.jpg.slim.jpeg&gs_og_ios_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2F040121be-7946-4fc3-ac07-692261d2e20e.png.slim.png
Certificate IssuerGoDaddy.com, Inc.
Subject*.thtk.temu.com
FingerprintB9:F9:97:E6:27:77:DF:19:91:B1:A7:C5:03:C3:9E:3B:B5:5F:38:08
ValiditySun, 14 Aug 2022 08:45:04 GMT - Mon, 14 Aug 2023 08:45:04 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /c/th.gif HTTP/1.1
Host: eu.thtk.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 622
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Cookie: api_uid=CnCj72SCj8S95AB/GY6dAg==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Fri, 09 Jun 2023 02:34:46 GMT
content-type: image/gif
expires: Fri, 09 Jun 2023 02:34:45 GMT
cache-control: no-cache
access-control-allow-origin: https://www.temu.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content
X-Firefox-Spdy: h2
locale.temu.com/api/bg/huygens/region/locate
20.237.30.240200 OK 781 B URL POST HTTP/2 locale.temu.com/api/bg/huygens/region/locate
IP 20.237.30.240:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/niffler_reward.html?_bg_fs=1&share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&_p_rfs=1&gs_code_way=3&gs_use_retention=0&gs_comp_type=3&gs_comp_style=9&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=app_push&refer_share_id=QFTiHDtVQIEcJhX4wIrUYBSNzv67RjOS&refer_share_channel=copy_link&refer_share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&group_sn=154af70ef4bd3ea6becce32c48f8869d&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_cash&_ex_sid=cash_share&gs_invite_code=169041617&gs_og_title=To%20participate%20in%20this%20event%F0%9F%94%A5%2C%20download%20and%20register%20on%20Temu%20with%20my%20link.&gs_og_description=Temu%3A%20Team%20up%2C%20price%20down.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2Ffaa9fa7a-b18c-4389-a889-74f061def7e4.jpg.slim.jpeg&gs_og_ios_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2F040121be-7946-4fc3-ac07-692261d2e20e.png.slim.png
Certificate IssuerGoDaddy.com, Inc.
Subject*.temu.com
FingerprintE3:6B:F9:98:96:EC:C1:BD:F3:DD:E4:04:90:C8:EF:14:6C:BE:F2:5E
ValiditySun, 14 Aug 2022 08:24:19 GMT - Mon, 14 Aug 2023 08:24:19 GMT
File type troff or preprocessor input, ASCII text, with very long lines (900), with no line terminators
Hash ac550614f717cb5321a193a8ec575c2c
4c0a04e3df3df2904790e70e1ce1ca022f7dc295
5b040f57c45c9a1b2d6374a50355ab9fb378c1ffc7de5451e51572b472afd6ca
POST /api/bg/huygens/region/locate HTTP/1.1
Host: locale.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
Content-Length: 2
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Cookie: api_uid=CnCj72SCj8S95AB/GY6dAg==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Nginx
date: Fri, 09 Jun 2023 02:34:46 GMT
content-type: application/json;charset=UTF-8
content-encoding: gzip
x-yak-request-id: 1686278086071-8e607bc662ddff07f0e77dbe52e37e59
access-control-allow-origin: https://www.temu.com
vary: Accept-Encoding, Origin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, X_Requested_With, Accept, X-HTTP-Method-Override, Cookie, AccessToken, PASSID, VerifyAuthToken, Anti-Content
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
strict-transport-security: max-age=2592000
yak-timeinfo: 1686278086071|1
cip: 91.90.42.154
X-Firefox-Spdy: h2
www.temu.com/api/phantom/xg/pfb/l1
20.105.12.146200 OK 114 B URL GET HTTP/2 www.temu.com/api/phantom/xg/pfb/l1
IP 20.105.12.146:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/niffler_reward.html?_bg_fs=1&share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&_p_rfs=1&gs_code_way=3&gs_use_retention=0&gs_comp_type=3&gs_comp_style=9&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=app_push&refer_share_id=QFTiHDtVQIEcJhX4wIrUYBSNzv67RjOS&refer_share_channel=copy_link&refer_share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&group_sn=154af70ef4bd3ea6becce32c48f8869d&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_cash&_ex_sid=cash_share&gs_invite_code=169041617&gs_og_title=To%20participate%20in%20this%20event%F0%9F%94%A5%2C%20download%20and%20register%20on%20Temu%20with%20my%20link.&gs_og_description=Temu%3A%20Team%20up%2C%20price%20down.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2Ffaa9fa7a-b18c-4389-a889-74f061def7e4.jpg.slim.jpeg&gs_og_ios_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2F040121be-7946-4fc3-ac07-692261d2e20e.png.slim.png
Certificate IssuerGoDaddy.com, Inc.
Subject*.temu.com
FingerprintE3:6B:F9:98:96:EC:C1:BD:F3:DD:E4:04:90:C8:EF:14:6C:BE:F2:5E
ValiditySun, 14 Aug 2022 08:24:19 GMT - Mon, 14 Aug 2023 08:24:19 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash bb0687da0fb05463be21230ed3fa5de3
874f00ce048e7f938949306983dbdee59f0f1a63
2910d68aaf70adf92b6006ed9add84cad15e47a44df6b805d29467a028d3cf3a
GET /api/phantom/xg/pfb/l1 HTTP/1.1
Host: www.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/niffler_reward.html?_bg_fs=1&share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&_p_rfs=1&gs_code_way=3&gs_use_retention=0&gs_comp_type=3&gs_comp_style=9&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=app_push&refer_share_id=QFTiHDtVQIEcJhX4wIrUYBSNzv67RjOS&refer_share_channel=copy_link&refer_share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&group_sn=154af70ef4bd3ea6becce32c48f8869d&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_cash&_ex_sid=cash_share&gs_invite_code=169041617&gs_og_title=To%20participate%20in%20this%20event%F0%9F%94%A5%2C%20download%20and%20register%20on%20Temu%20with%20my%20link.&gs_og_description=Temu%3A%20Team%20up%2C%20price%20down.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2Ffaa9fa7a-b18c-4389-a889-74f061def7e4.jpg.slim.jpeg&gs_og_ios_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2F040121be-7946-4fc3-ac07-692261d2e20e.png.slim.png
Cookie: api_uid=CnCj72SCj8S95AB/GY6dAg==; region=210; language=en; currency=GBP; timezone=UTC; _nano_fp=XpEJn5P8l09JnpTYnC_A8hwf~z4VMZ3wRM2Su7nM
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Nginx
date: Fri, 09 Jun 2023 02:34:46 GMT
content-type: application/json;charset=UTF-8
content-encoding: gzip
vary: Accept-Encoding
x-yak-request-id: 1686278086457-cd26c478137598d64c22e00124ead3af
strict-transport-security: max-age=2592000
content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/c-api/sec-gif
yak-timeinfo: 1686278086457|1
cip: 91.90.42.154
X-Firefox-Spdy: h2
static.kwcdn.com/m-assets/assets/css/biz_vendors_b1f976b95aaa0cb22d09.css
104.18.40.254200 OK 88 kB URL GET HTTP/2 static.kwcdn.com/m-assets/assets/css/biz_vendors_b1f976b95aaa0cb22d09.css
IP 104.18.40.254:443
Requested by https://www.temu.com/niffler_reward.html?_bg_fs=1&share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&_p_rfs=1&gs_code_way=3&gs_use_retention=0&gs_comp_type=3&gs_comp_style=9&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=app_push&refer_share_id=QFTiHDtVQIEcJhX4wIrUYBSNzv67RjOS&refer_share_channel=copy_link&refer_share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&group_sn=154af70ef4bd3ea6becce32c48f8869d&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_cash&_ex_sid=cash_share&gs_invite_code=169041617&gs_og_title=To%20participate%20in%20this%20event%F0%9F%94%A5%2C%20download%20and%20register%20on%20Temu%20with%20my%20link.&gs_og_description=Temu%3A%20Team%20up%2C%20price%20down.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2Ffaa9fa7a-b18c-4389-a889-74f061def7e4.jpg.slim.jpeg&gs_og_ios_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2F040121be-7946-4fc3-ac07-692261d2e20e.png.slim.png
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
FingerprintF1:1F:F1:F1:EE:92:73:E3:9F:A1:6B:0D:07:9A:D9:37:A7:2A:06:B2
ValidityWed, 10 Aug 2022 07:46:22 GMT - Thu, 10 Aug 2023 07:46:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m-assets/assets/css/biz_vendors_b1f976b95aaa0cb22d09.css HTTP/1.1
Host: static.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 09 Jun 2023 02:34:45 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding
cache-control: max-age=31536000
content-md5: kYwdcvxm6B5zGaKlu+qYXQ==
etag: W/"0x8DB601BD9A7CA64"
last-modified: Mon, 29 May 2023 08:08:13 GMT
x-content-type-options: nosniff
x-pos-request-id: f29a15a7-001e-0033-4605-9289ef000000
cf-cache-status: HIT
age: 915334
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 7d45fa301faa1bfe-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.kwcdn.com/m-assets/assets/css/niffler_reward_5126904f2b24ab986a0c.css
104.18.40.254200 OK 376 kB URL GET HTTP/2 static.kwcdn.com/m-assets/assets/css/niffler_reward_5126904f2b24ab986a0c.css
IP 104.18.40.254:443
Requested by https://www.temu.com/niffler_reward.html?_bg_fs=1&share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&_p_rfs=1&gs_code_way=3&gs_use_retention=0&gs_comp_type=3&gs_comp_style=9&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=app_push&refer_share_id=QFTiHDtVQIEcJhX4wIrUYBSNzv67RjOS&refer_share_channel=copy_link&refer_share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&group_sn=154af70ef4bd3ea6becce32c48f8869d&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_cash&_ex_sid=cash_share&gs_invite_code=169041617&gs_og_title=To%20participate%20in%20this%20event%F0%9F%94%A5%2C%20download%20and%20register%20on%20Temu%20with%20my%20link.&gs_og_description=Temu%3A%20Team%20up%2C%20price%20down.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2Ffaa9fa7a-b18c-4389-a889-74f061def7e4.jpg.slim.jpeg&gs_og_ios_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2F040121be-7946-4fc3-ac07-692261d2e20e.png.slim.png
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
FingerprintF1:1F:F1:F1:EE:92:73:E3:9F:A1:6B:0D:07:9A:D9:37:A7:2A:06:B2
ValidityWed, 10 Aug 2022 07:46:22 GMT - Thu, 10 Aug 2023 07:46:22 GMT
File type ASCII text, with very long lines (8853)
Size 376 kB (375451 bytes)
Hash ad31598e947b443c75a10e5a44cfb0c5
07ecf54b644773347a87389ffcb81a41232a8198
ca8e2d1dd371f5ef2aaf88b36ecdfbc2070aa3de514956a64f56d1a0ad4f536b
GET /m-assets/assets/css/niffler_reward_5126904f2b24ab986a0c.css HTTP/1.1
Host: static.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 09 Jun 2023 02:34:45 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding
cache-control: max-age=31536000
content-md5: rTFZjpR7RDx1oQ5aRM+wxQ==
etag: W/"0x8DB6722153664EF"
last-modified: Wed, 07 Jun 2023 06:40:28 GMT
x-content-type-options: nosniff
x-pos-request-id: 6ca57941-801e-0053-580c-99cbcd000000
cf-cache-status: HIT
age: 151172
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 7d45fa302fad1bfe-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.kwcdn.com/m-assets/assets/js/627_10879b8571bd0200093b.js
104.18.40.254200 OK 65 kB URL GET HTTP/2 static.kwcdn.com/m-assets/assets/js/627_10879b8571bd0200093b.js
IP 104.18.40.254:443
Requested by https://www.temu.com/niffler_reward.html?_bg_fs=1&share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&_p_rfs=1&gs_code_way=3&gs_use_retention=0&gs_comp_type=3&gs_comp_style=9&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=app_push&refer_share_id=QFTiHDtVQIEcJhX4wIrUYBSNzv67RjOS&refer_share_channel=copy_link&refer_share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&group_sn=154af70ef4bd3ea6becce32c48f8869d&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_cash&_ex_sid=cash_share&gs_invite_code=169041617&gs_og_title=To%20participate%20in%20this%20event%F0%9F%94%A5%2C%20download%20and%20register%20on%20Temu%20with%20my%20link.&gs_og_description=Temu%3A%20Team%20up%2C%20price%20down.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2Ffaa9fa7a-b18c-4389-a889-74f061def7e4.jpg.slim.jpeg&gs_og_ios_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2F040121be-7946-4fc3-ac07-692261d2e20e.png.slim.png
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
FingerprintF1:1F:F1:F1:EE:92:73:E3:9F:A1:6B:0D:07:9A:D9:37:A7:2A:06:B2
ValidityWed, 10 Aug 2022 07:46:22 GMT - Thu, 10 Aug 2023 07:46:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m-assets/assets/js/627_10879b8571bd0200093b.js HTTP/1.1
Host: static.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 09 Jun 2023 02:34:45 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding
cache-control: max-age=31536000
content-md5: ySOKA/pjOeFdcxbsOR/wMQ==
etag: W/"0x8DB59D989A8F98A"
last-modified: Sun, 21 May 2023 08:58:25 GMT
x-content-type-options: nosniff
x-pos-request-id: 3dc64aeb-401e-000b-76c2-8bf0ef000000
cf-cache-status: HIT
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 7d45fa302a981bfa-OSL
content-encoding: br
X-Firefox-Spdy: h2
locale.temu.com/api/bg/huygens/region/locate
20.237.30.240200 OK 0 B URL OPTIONS HTTP/2 locale.temu.com/api/bg/huygens/region/locate
IP 20.237.30.240:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/niffler_reward.html?_bg_fs=1&share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&_p_rfs=1&gs_code_way=3&gs_use_retention=0&gs_comp_type=3&gs_comp_style=9&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=app_push&refer_share_id=QFTiHDtVQIEcJhX4wIrUYBSNzv67RjOS&refer_share_channel=copy_link&refer_share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&group_sn=154af70ef4bd3ea6becce32c48f8869d&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_cash&_ex_sid=cash_share&gs_invite_code=169041617&gs_og_title=To%20participate%20in%20this%20event%F0%9F%94%A5%2C%20download%20and%20register%20on%20Temu%20with%20my%20link.&gs_og_description=Temu%3A%20Team%20up%2C%20price%20down.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2Ffaa9fa7a-b18c-4389-a889-74f061def7e4.jpg.slim.jpeg&gs_og_ios_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2F040121be-7946-4fc3-ac07-692261d2e20e.png.slim.png
Certificate IssuerGoDaddy.com, Inc.
Subject*.temu.com
FingerprintE3:6B:F9:98:96:EC:C1:BD:F3:DD:E4:04:90:C8:EF:14:6C:BE:F2:5E
ValiditySun, 14 Aug 2022 08:24:19 GMT - Mon, 14 Aug 2023 08:24:19 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/bg/huygens/region/locate HTTP/1.1
Host: locale.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.temu.com/
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Nginx
date: Fri, 09 Jun 2023 02:34:45 GMT
content-type: application/octet-stream
x-yak-request-id: 1686278085964-5382e3655f41a00c1e5449970e15ba04
access-control-allow-origin: https://www.temu.com
vary: Accept-Encoding, Origin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, X_Requested_With, Accept, X-HTTP-Method-Override, Cookie, AccessToken, PASSID, VerifyAuthToken, Anti-Content
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
strict-transport-security: max-age=2592000
yak-timeinfo: 1686278085964|0
set-cookie: api_uid=Cm1YjWSCj8WylQEEySB2Ag==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.temu.com; path=/
content-encoding: gzip
cip: 91.90.42.154
X-Firefox-Spdy: h2
www.temu.com/api/phantom/xg/pfb/l1
20.105.12.146200 OK 114 B URL GET HTTP/2 www.temu.com/api/phantom/xg/pfb/l1
IP 20.105.12.146:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/niffler_reward.html?_bg_fs=1&share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&_p_rfs=1&gs_code_way=3&gs_use_retention=0&gs_comp_type=3&gs_comp_style=9&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=app_push&refer_share_id=QFTiHDtVQIEcJhX4wIrUYBSNzv67RjOS&refer_share_channel=copy_link&refer_share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&group_sn=154af70ef4bd3ea6becce32c48f8869d&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_cash&_ex_sid=cash_share&gs_invite_code=169041617&gs_og_title=To%20participate%20in%20this%20event%F0%9F%94%A5%2C%20download%20and%20register%20on%20Temu%20with%20my%20link.&gs_og_description=Temu%3A%20Team%20up%2C%20price%20down.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2Ffaa9fa7a-b18c-4389-a889-74f061def7e4.jpg.slim.jpeg&gs_og_ios_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2F040121be-7946-4fc3-ac07-692261d2e20e.png.slim.png
Certificate IssuerGoDaddy.com, Inc.
Subject*.temu.com
FingerprintE3:6B:F9:98:96:EC:C1:BD:F3:DD:E4:04:90:C8:EF:14:6C:BE:F2:5E
ValiditySun, 14 Aug 2022 08:24:19 GMT - Mon, 14 Aug 2023 08:24:19 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash bb0687da0fb05463be21230ed3fa5de3
874f00ce048e7f938949306983dbdee59f0f1a63
2910d68aaf70adf92b6006ed9add84cad15e47a44df6b805d29467a028d3cf3a
GET /api/phantom/xg/pfb/l1 HTTP/1.1
Host: www.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/niffler_reward.html?_bg_fs=1&share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&_p_rfs=1&gs_code_way=3&gs_use_retention=0&gs_comp_type=3&gs_comp_style=9&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=app_push&refer_share_id=QFTiHDtVQIEcJhX4wIrUYBSNzv67RjOS&refer_share_channel=copy_link&refer_share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&group_sn=154af70ef4bd3ea6becce32c48f8869d&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_cash&_ex_sid=cash_share&gs_invite_code=169041617&gs_og_title=To%20participate%20in%20this%20event%F0%9F%94%A5%2C%20download%20and%20register%20on%20Temu%20with%20my%20link.&gs_og_description=Temu%3A%20Team%20up%2C%20price%20down.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2Ffaa9fa7a-b18c-4389-a889-74f061def7e4.jpg.slim.jpeg&gs_og_ios_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2F040121be-7946-4fc3-ac07-692261d2e20e.png.slim.png
Cookie: api_uid=CnCj72SCj8S95AB/GY6dAg==; region=210; language=en; currency=GBP; timezone=UTC; _nano_fp=XpEJn5P8l09JnpTYnC_A8hwf~z4VMZ3wRM2Su7nM
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Nginx
date: Fri, 09 Jun 2023 02:34:46 GMT
content-type: application/json;charset=UTF-8
content-encoding: gzip
vary: Accept-Encoding
x-yak-request-id: 1686278086431-874234257f5d6644c5b762b6ca532fa7
strict-transport-security: max-age=2592000
content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/c-api/sec-gif
yak-timeinfo: 1686278086431|1
cip: 91.90.42.154
X-Firefox-Spdy: h2
static.kwcdn.com/m-assets/assets/js/biz_vendors_85ffca8e0c27c8f5fccb.js
104.18.40.254200 OK 496 kB URL GET HTTP/2 static.kwcdn.com/m-assets/assets/js/biz_vendors_85ffca8e0c27c8f5fccb.js
IP 104.18.40.254:443
Requested by https://www.temu.com/niffler_reward.html?_bg_fs=1&share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&_p_rfs=1&gs_code_way=3&gs_use_retention=0&gs_comp_type=3&gs_comp_style=9&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=app_push&refer_share_id=QFTiHDtVQIEcJhX4wIrUYBSNzv67RjOS&refer_share_channel=copy_link&refer_share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&group_sn=154af70ef4bd3ea6becce32c48f8869d&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_cash&_ex_sid=cash_share&gs_invite_code=169041617&gs_og_title=To%20participate%20in%20this%20event%F0%9F%94%A5%2C%20download%20and%20register%20on%20Temu%20with%20my%20link.&gs_og_description=Temu%3A%20Team%20up%2C%20price%20down.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2Ffaa9fa7a-b18c-4389-a889-74f061def7e4.jpg.slim.jpeg&gs_og_ios_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2F040121be-7946-4fc3-ac07-692261d2e20e.png.slim.png
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
FingerprintF1:1F:F1:F1:EE:92:73:E3:9F:A1:6B:0D:07:9A:D9:37:A7:2A:06:B2
ValidityWed, 10 Aug 2022 07:46:22 GMT - Thu, 10 Aug 2023 07:46:22 GMT
Size 496 kB (496229 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m-assets/assets/js/biz_vendors_85ffca8e0c27c8f5fccb.js HTTP/1.1
Host: static.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 09 Jun 2023 02:34:45 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding, Accept-Encoding
cache-control: max-age=31536000
content-md5: bURPy19e3XUiOlGJKRoOsg==
etag: W/"0x8DB681C2B2354EF"
last-modified: Thu, 08 Jun 2023 12:30:39 GMT
x-content-type-options: nosniff
x-pos-request-id: 55df1c15-701e-0010-0405-9a65da000000
cf-cache-status: HIT
age: 50097
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 7d45fa301a8e1bfa-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.kwcdn.com/m-assets/assets/js/cookie-prompt_af8823579bcad63d6b7d.js
104.18.40.254200 OK 15 kB URL GET HTTP/2 static.kwcdn.com/m-assets/assets/js/cookie-prompt_af8823579bcad63d6b7d.js
IP 104.18.40.254:443
Requested by https://www.temu.com/niffler_reward.html?_bg_fs=1&share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&_p_rfs=1&gs_code_way=3&gs_use_retention=0&gs_comp_type=3&gs_comp_style=9&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=app_push&refer_share_id=QFTiHDtVQIEcJhX4wIrUYBSNzv67RjOS&refer_share_channel=copy_link&refer_share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&group_sn=154af70ef4bd3ea6becce32c48f8869d&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_cash&_ex_sid=cash_share&gs_invite_code=169041617&gs_og_title=To%20participate%20in%20this%20event%F0%9F%94%A5%2C%20download%20and%20register%20on%20Temu%20with%20my%20link.&gs_og_description=Temu%3A%20Team%20up%2C%20price%20down.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2Ffaa9fa7a-b18c-4389-a889-74f061def7e4.jpg.slim.jpeg&gs_og_ios_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2F040121be-7946-4fc3-ac07-692261d2e20e.png.slim.png
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
FingerprintF1:1F:F1:F1:EE:92:73:E3:9F:A1:6B:0D:07:9A:D9:37:A7:2A:06:B2
ValidityWed, 10 Aug 2022 07:46:22 GMT - Thu, 10 Aug 2023 07:46:22 GMT
File type ASCII text, with very long lines (14537)
Hash 3586bffc996a6f3948456bca14256a88
c93d1f48a4221cf543de4186d7cbe5a386d7b3b2
13db0575f5b42fa5afaa11f236fc4fef7d8e3b2bc2c46878b17aa653ff15fa28
GET /m-assets/assets/js/cookie-prompt_af8823579bcad63d6b7d.js HTTP/1.1
Host: static.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 09 Jun 2023 02:34:45 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding, Accept-Encoding
cache-control: max-age=31536000
content-md5: NYa//JlqbzlIRWvKFCVqiA==
etag: W/"0x8DB603E5E59F01C"
last-modified: Mon, 29 May 2023 12:15:19 GMT
x-content-type-options: nosniff
x-pos-request-id: bc31498d-b01e-0064-1027-923bd2000000
cf-cache-status: HIT
age: 909887
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 7d45fa3358f71bfe-OSL
content-encoding: br
X-Firefox-Spdy: h2
eu.pftk.temu.com/pmm/api/pmm/api
20.123.108.148200 OK 0 B URL POST HTTP/2 eu.pftk.temu.com/pmm/api/pmm/api
IP 20.123.108.148:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/niffler_reward.html?_bg_fs=1&share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&_p_rfs=1&gs_code_way=3&gs_use_retention=0&gs_comp_type=3&gs_comp_style=9&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=app_push&refer_share_id=QFTiHDtVQIEcJhX4wIrUYBSNzv67RjOS&refer_share_channel=copy_link&refer_share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&group_sn=154af70ef4bd3ea6becce32c48f8869d&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_cash&_ex_sid=cash_share&gs_invite_code=169041617&gs_og_title=To%20participate%20in%20this%20event%F0%9F%94%A5%2C%20download%20and%20register%20on%20Temu%20with%20my%20link.&gs_og_description=Temu%3A%20Team%20up%2C%20price%20down.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2Ffaa9fa7a-b18c-4389-a889-74f061def7e4.jpg.slim.jpeg&gs_og_ios_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2F040121be-7946-4fc3-ac07-692261d2e20e.png.slim.png
Certificate IssuerGoDaddy.com, Inc.
Subject*.pftk.temu.com
Fingerprint94:42:06:85:35:5A:BE:7F:22:14:B6:92:63:9C:70:C6:09:CE:96:9F
ValiditySun, 14 Aug 2022 08:56:12 GMT - Mon, 14 Aug 2023 08:56:12 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pmm/api/pmm/api HTTP/1.1
Host: eu.pftk.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1746
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Cookie: api_uid=CnCj72SCj8S95AB/GY6dAg==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 09 Jun 2023 02:34:46 GMT
content-type: application/octet-stream
expires: Fri, 09 Jun 2023 02:34:45 GMT
cache-control: no-cache
access-control-allow-origin: https://www.temu.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content
X-Firefox-Spdy: h2
www.temu.com/api/phantom/xg/pfb/a3
20.105.12.146200 OK 65 B URL GET HTTP/2 www.temu.com/api/phantom/xg/pfb/a3
IP 20.105.12.146:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/niffler_reward.html?_bg_fs=1&share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&_p_rfs=1&gs_code_way=3&gs_use_retention=0&gs_comp_type=3&gs_comp_style=9&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=app_push&refer_share_id=QFTiHDtVQIEcJhX4wIrUYBSNzv67RjOS&refer_share_channel=copy_link&refer_share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&group_sn=154af70ef4bd3ea6becce32c48f8869d&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_cash&_ex_sid=cash_share&gs_invite_code=169041617&gs_og_title=To%20participate%20in%20this%20event%F0%9F%94%A5%2C%20download%20and%20register%20on%20Temu%20with%20my%20link.&gs_og_description=Temu%3A%20Team%20up%2C%20price%20down.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2Ffaa9fa7a-b18c-4389-a889-74f061def7e4.jpg.slim.jpeg&gs_og_ios_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2F040121be-7946-4fc3-ac07-692261d2e20e.png.slim.png
Certificate IssuerGoDaddy.com, Inc.
Subject*.temu.com
FingerprintE3:6B:F9:98:96:EC:C1:BD:F3:DD:E4:04:90:C8:EF:14:6C:BE:F2:5E
ValiditySun, 14 Aug 2022 08:24:19 GMT - Mon, 14 Aug 2023 08:24:19 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash c6414e5496710ed55ee4f9ec40f156ea
41cba42db5066498b26b124c6014f8404f89eebe
88631f128b21eb159e7e9e24b6a4107ef29ae7fc05b5653b4723b2aee1b7972e
GET /api/phantom/xg/pfb/a3 HTTP/1.1
Host: www.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/niffler_reward.html?_bg_fs=1&share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&_p_rfs=1&gs_code_way=3&gs_use_retention=0&gs_comp_type=3&gs_comp_style=9&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=app_push&refer_share_id=QFTiHDtVQIEcJhX4wIrUYBSNzv67RjOS&refer_share_channel=copy_link&refer_share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&group_sn=154af70ef4bd3ea6becce32c48f8869d&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_cash&_ex_sid=cash_share&gs_invite_code=169041617&gs_og_title=To%20participate%20in%20this%20event%F0%9F%94%A5%2C%20download%20and%20register%20on%20Temu%20with%20my%20link.&gs_og_description=Temu%3A%20Team%20up%2C%20price%20down.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2Ffaa9fa7a-b18c-4389-a889-74f061def7e4.jpg.slim.jpeg&gs_og_ios_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2F040121be-7946-4fc3-ac07-692261d2e20e.png.slim.png
Cookie: api_uid=CnCj72SCj8S95AB/GY6dAg==; region=210; language=en; currency=GBP; timezone=UTC; _nano_fp=XpEJn5P8l09JnpTYnC_A8hwf~z4VMZ3wRM2Su7nM
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Nginx
date: Fri, 09 Jun 2023 02:34:45 GMT
content-type: application/json;charset=UTF-8
content-encoding: gzip
vary: Accept-Encoding
x-yak-request-id: 1686278085837-473ba42070969591fd58038dfdcf1054
strict-transport-security: max-age=2592000
content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/c-api/sec-gif
yak-timeinfo: 1686278085837|1
cip: 91.90.42.154
X-Firefox-Spdy: h2
www.temu.com/api/phantom/xg/pfb/b
20.105.12.146200 OK 161 B URL GET HTTP/2 www.temu.com/api/phantom/xg/pfb/b
IP 20.105.12.146:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/niffler_reward.html?_bg_fs=1&share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&_p_rfs=1&gs_code_way=3&gs_use_retention=0&gs_comp_type=3&gs_comp_style=9&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=app_push&refer_share_id=QFTiHDtVQIEcJhX4wIrUYBSNzv67RjOS&refer_share_channel=copy_link&refer_share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&group_sn=154af70ef4bd3ea6becce32c48f8869d&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_cash&_ex_sid=cash_share&gs_invite_code=169041617&gs_og_title=To%20participate%20in%20this%20event%F0%9F%94%A5%2C%20download%20and%20register%20on%20Temu%20with%20my%20link.&gs_og_description=Temu%3A%20Team%20up%2C%20price%20down.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2Ffaa9fa7a-b18c-4389-a889-74f061def7e4.jpg.slim.jpeg&gs_og_ios_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2F040121be-7946-4fc3-ac07-692261d2e20e.png.slim.png
Certificate IssuerGoDaddy.com, Inc.
Subject*.temu.com
FingerprintE3:6B:F9:98:96:EC:C1:BD:F3:DD:E4:04:90:C8:EF:14:6C:BE:F2:5E
ValiditySun, 14 Aug 2022 08:24:19 GMT - Mon, 14 Aug 2023 08:24:19 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash ba09e49986af4ebdf4700e767315cc9c
32f5289acbb8368dce376d4955f53ea57b00a8b9
738f755741a07243b2a4d973c40ec954fc9a4527b1f7b8aeb653e5e488b51cf9
GET /api/phantom/xg/pfb/b HTTP/1.1
Host: www.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/niffler_reward.html?_bg_fs=1&share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&_p_rfs=1&gs_code_way=3&gs_use_retention=0&gs_comp_type=3&gs_comp_style=9&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=app_push&refer_share_id=QFTiHDtVQIEcJhX4wIrUYBSNzv67RjOS&refer_share_channel=copy_link&refer_share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&group_sn=154af70ef4bd3ea6becce32c48f8869d&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_cash&_ex_sid=cash_share&gs_invite_code=169041617&gs_og_title=To%20participate%20in%20this%20event%F0%9F%94%A5%2C%20download%20and%20register%20on%20Temu%20with%20my%20link.&gs_og_description=Temu%3A%20Team%20up%2C%20price%20down.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2Ffaa9fa7a-b18c-4389-a889-74f061def7e4.jpg.slim.jpeg&gs_og_ios_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2F040121be-7946-4fc3-ac07-692261d2e20e.png.slim.png
Cookie: api_uid=CnCj72SCj8S95AB/GY6dAg==; region=210; language=en; currency=GBP; timezone=UTC; _nano_fp=XpEJn5P8l09JnpTYnC_A8hwf~z4VMZ3wRM2Su7nM
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Nginx
date: Fri, 09 Jun 2023 02:34:45 GMT
content-type: application/json;charset=UTF-8
cache-control: max-age=94608000, immutable, private
content-encoding: gzip
vary: Accept-Encoding
x-yak-request-id: 1686278085840-3cf511b5f5d5034843508962540a576d
strict-transport-security: max-age=2592000
content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/c-api/sec-gif
yak-timeinfo: 1686278085840|2
cip: 91.90.42.154
X-Firefox-Spdy: h2
www.temu.com/api/server/_stm
20.105.12.146200 OK 29 B URL GET HTTP/2 www.temu.com/api/server/_stm
IP 20.105.12.146:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/niffler_reward.html?_bg_fs=1&share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&_p_rfs=1&gs_code_way=3&gs_use_retention=0&gs_comp_type=3&gs_comp_style=9&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=app_push&refer_share_id=QFTiHDtVQIEcJhX4wIrUYBSNzv67RjOS&refer_share_channel=copy_link&refer_share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&group_sn=154af70ef4bd3ea6becce32c48f8869d&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_cash&_ex_sid=cash_share&gs_invite_code=169041617&gs_og_title=To%20participate%20in%20this%20event%F0%9F%94%A5%2C%20download%20and%20register%20on%20Temu%20with%20my%20link.&gs_og_description=Temu%3A%20Team%20up%2C%20price%20down.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2Ffaa9fa7a-b18c-4389-a889-74f061def7e4.jpg.slim.jpeg&gs_og_ios_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2F040121be-7946-4fc3-ac07-692261d2e20e.png.slim.png
Certificate IssuerGoDaddy.com, Inc.
Subject*.temu.com
FingerprintE3:6B:F9:98:96:EC:C1:BD:F3:DD:E4:04:90:C8:EF:14:6C:BE:F2:5E
ValiditySun, 14 Aug 2022 08:24:19 GMT - Mon, 14 Aug 2023 08:24:19 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 43e0ad481e27c57505e53df2ea3da7af
939362398ef7edcfb46431805c39892518ba1d77
9ee5b0a08c66cf6a217a2becea07ef20937370fdc20f45ece07271625f2e0e43
GET /api/server/_stm HTTP/1.1
Host: www.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/niffler_reward.html?_bg_fs=1&share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&_p_rfs=1&gs_code_way=3&gs_use_retention=0&gs_comp_type=3&gs_comp_style=9&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=app_push&refer_share_id=QFTiHDtVQIEcJhX4wIrUYBSNzv67RjOS&refer_share_channel=copy_link&refer_share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&group_sn=154af70ef4bd3ea6becce32c48f8869d&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_cash&_ex_sid=cash_share&gs_invite_code=169041617&gs_og_title=To%20participate%20in%20this%20event%F0%9F%94%A5%2C%20download%20and%20register%20on%20Temu%20with%20my%20link.&gs_og_description=Temu%3A%20Team%20up%2C%20price%20down.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2Ffaa9fa7a-b18c-4389-a889-74f061def7e4.jpg.slim.jpeg&gs_og_ios_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2F040121be-7946-4fc3-ac07-692261d2e20e.png.slim.png
Cookie: api_uid=CnCj72SCj8S95AB/GY6dAg==; region=210; language=en; currency=GBP; timezone=UTC; _nano_fp=XpEJn5P8l09JnpTYnC_A8hwf~z4VMZ3wRM2Su7nM
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Nginx
date: Fri, 09 Jun 2023 02:34:45 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
cip: 91.90.42.154
content-encoding: gzip
X-Firefox-Spdy: h2
www.temu.com/api/phantom/xg/pfb/a4
20.105.12.146200 OK 194 B URL POST HTTP/2 www.temu.com/api/phantom/xg/pfb/a4
IP 20.105.12.146:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/niffler_reward.html?_bg_fs=1&share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&_p_rfs=1&gs_code_way=3&gs_use_retention=0&gs_comp_type=3&gs_comp_style=9&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=app_push&refer_share_id=QFTiHDtVQIEcJhX4wIrUYBSNzv67RjOS&refer_share_channel=copy_link&refer_share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&group_sn=154af70ef4bd3ea6becce32c48f8869d&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_cash&_ex_sid=cash_share&gs_invite_code=169041617&gs_og_title=To%20participate%20in%20this%20event%F0%9F%94%A5%2C%20download%20and%20register%20on%20Temu%20with%20my%20link.&gs_og_description=Temu%3A%20Team%20up%2C%20price%20down.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2Ffaa9fa7a-b18c-4389-a889-74f061def7e4.jpg.slim.jpeg&gs_og_ios_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2F040121be-7946-4fc3-ac07-692261d2e20e.png.slim.png
Certificate IssuerGoDaddy.com, Inc.
Subject*.temu.com
FingerprintE3:6B:F9:98:96:EC:C1:BD:F3:DD:E4:04:90:C8:EF:14:6C:BE:F2:5E
ValiditySun, 14 Aug 2022 08:24:19 GMT - Mon, 14 Aug 2023 08:24:19 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash f1a792607f7d1b04a0082b16bd2fc61f
cdcaf27b028ed279189e571fef658a678dae6fe4
3430ee4da666c3885a506fd3bfe479d822f9567265c7556996e537433aaa9a3d
POST /api/phantom/xg/pfb/a4 HTTP/1.1
Host: www.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
Content-Length: 1897
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/niffler_reward.html?_bg_fs=1&share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&_p_rfs=1&gs_code_way=3&gs_use_retention=0&gs_comp_type=3&gs_comp_style=9&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=app_push&refer_share_id=QFTiHDtVQIEcJhX4wIrUYBSNzv67RjOS&refer_share_channel=copy_link&refer_share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&group_sn=154af70ef4bd3ea6becce32c48f8869d&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_cash&_ex_sid=cash_share&gs_invite_code=169041617&gs_og_title=To%20participate%20in%20this%20event%F0%9F%94%A5%2C%20download%20and%20register%20on%20Temu%20with%20my%20link.&gs_og_description=Temu%3A%20Team%20up%2C%20price%20down.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2Ffaa9fa7a-b18c-4389-a889-74f061def7e4.jpg.slim.jpeg&gs_og_ios_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2F040121be-7946-4fc3-ac07-692261d2e20e.png.slim.png
Cookie: api_uid=CnCj72SCj8S95AB/GY6dAg==; region=210; language=en; currency=GBP; timezone=UTC; _nano_fp=XpEJn5P8l09JnpTYnC_A8hwf~z4VMZ3wRM2Su7nM
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Nginx
date: Fri, 09 Jun 2023 02:34:46 GMT
content-type: application/json;charset=UTF-8
set-cookie: _bee=tXGNvett0E4TkoaSgu4NLP5BmzvV0aox; Max-Age=31536000; Expires=Sat, 08 Jun 2024 02:34:46 GMT; Path=/; Domain=.temu.com
njrpl=tXGNvett0E4TkoaSgu4NLP5BmzvV0aox; Max-Age=31536000; Expires=Sat, 08 Jun 2024 02:34:46 GMT; Path=/; Domain=.temu.com
dilx=f8t3zRG~Z6H1BeKANFI8n; Max-Age=31536000; Expires=Sat, 08 Jun 2024 02:34:46 GMT; Path=/; Domain=.temu.com
hfsc=L32Cfos34T7w1ZPOfA==; Max-Age=31536000; Expires=Sat, 08 Jun 2024 02:34:46 GMT; Path=/; HttpOnly; Domain=.temu.com
content-encoding: gzip
x-yak-request-id: 1686278086429-4b2dc8a72c056e02fb1f00460b401bab
access-control-allow-origin: https://www.temu.com
vary: Accept-Encoding, Origin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, X_Requested_With, Accept, X-HTTP-Method-Override, Cookie, AccessToken, PASSID, VerifyAuthToken, Anti-Content
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
strict-transport-security: max-age=2592000
content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/c-api/sec-gif
yak-timeinfo: 1686278086429|13
cip: 91.90.42.154
X-Firefox-Spdy: h2
www.temu.com/api/phantom/xg/pfb/a4
20.105.12.146200 OK 194 B URL POST HTTP/2 www.temu.com/api/phantom/xg/pfb/a4
IP 20.105.12.146:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/niffler_reward.html?_bg_fs=1&share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&_p_rfs=1&gs_code_way=3&gs_use_retention=0&gs_comp_type=3&gs_comp_style=9&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=app_push&refer_share_id=QFTiHDtVQIEcJhX4wIrUYBSNzv67RjOS&refer_share_channel=copy_link&refer_share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&group_sn=154af70ef4bd3ea6becce32c48f8869d&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_cash&_ex_sid=cash_share&gs_invite_code=169041617&gs_og_title=To%20participate%20in%20this%20event%F0%9F%94%A5%2C%20download%20and%20register%20on%20Temu%20with%20my%20link.&gs_og_description=Temu%3A%20Team%20up%2C%20price%20down.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2Ffaa9fa7a-b18c-4389-a889-74f061def7e4.jpg.slim.jpeg&gs_og_ios_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2F040121be-7946-4fc3-ac07-692261d2e20e.png.slim.png
Certificate IssuerGoDaddy.com, Inc.
Subject*.temu.com
FingerprintE3:6B:F9:98:96:EC:C1:BD:F3:DD:E4:04:90:C8:EF:14:6C:BE:F2:5E
ValiditySun, 14 Aug 2022 08:24:19 GMT - Mon, 14 Aug 2023 08:24:19 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash f1a792607f7d1b04a0082b16bd2fc61f
cdcaf27b028ed279189e571fef658a678dae6fe4
3430ee4da666c3885a506fd3bfe479d822f9567265c7556996e537433aaa9a3d
POST /api/phantom/xg/pfb/a4 HTTP/1.1
Host: www.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
Content-Length: 1897
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/niffler_reward.html?_bg_fs=1&share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&_p_rfs=1&gs_code_way=3&gs_use_retention=0&gs_comp_type=3&gs_comp_style=9&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=app_push&refer_share_id=QFTiHDtVQIEcJhX4wIrUYBSNzv67RjOS&refer_share_channel=copy_link&refer_share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&group_sn=154af70ef4bd3ea6becce32c48f8869d&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_cash&_ex_sid=cash_share&gs_invite_code=169041617&gs_og_title=To%20participate%20in%20this%20event%F0%9F%94%A5%2C%20download%20and%20register%20on%20Temu%20with%20my%20link.&gs_og_description=Temu%3A%20Team%20up%2C%20price%20down.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2Ffaa9fa7a-b18c-4389-a889-74f061def7e4.jpg.slim.jpeg&gs_og_ios_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2F040121be-7946-4fc3-ac07-692261d2e20e.png.slim.png
Cookie: api_uid=CnCj72SCj8S95AB/GY6dAg==; region=210; language=en; currency=GBP; timezone=UTC; _nano_fp=XpEJn5P8l09JnpTYnC_A8hwf~z4VMZ3wRM2Su7nM
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Nginx
date: Fri, 09 Jun 2023 02:34:46 GMT
content-type: application/json;charset=UTF-8
set-cookie: _bee=tXGNvett0E4TkoaSgu4NLP5BmzvV0aox; Max-Age=31536000; Expires=Sat, 08 Jun 2024 02:34:46 GMT; Path=/; Domain=.temu.com
njrpl=tXGNvett0E4TkoaSgu4NLP5BmzvV0aox; Max-Age=31536000; Expires=Sat, 08 Jun 2024 02:34:46 GMT; Path=/; Domain=.temu.com
dilx=f8t3zRG~Z6H1BeKANFI8n; Max-Age=31536000; Expires=Sat, 08 Jun 2024 02:34:46 GMT; Path=/; Domain=.temu.com
hfsc=L32Cfos34T7w1ZPOfA==; Max-Age=31536000; Expires=Sat, 08 Jun 2024 02:34:46 GMT; Path=/; HttpOnly; Domain=.temu.com
content-encoding: gzip
x-yak-request-id: 1686278086453-4c26dfdaa07dc0f66ae6962aefcb4002
access-control-allow-origin: https://www.temu.com
vary: Accept-Encoding, Origin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, X_Requested_With, Accept, X-HTTP-Method-Override, Cookie, AccessToken, PASSID, VerifyAuthToken, Anti-Content
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
strict-transport-security: max-age=2592000
content-security-policy-report-only: default-src 'none';script-src 'report-sample';report-uri /api/sec-csp/c-api/sec-gif
yak-timeinfo: 1686278086453|11
cip: 91.90.42.154
X-Firefox-Spdy: h2
static.kwcdn.com/m-assets/assets/js/niffler_reward_837f355cc816a378d56b.js
104.18.40.254200 OK 694 kB URL GET HTTP/2 static.kwcdn.com/m-assets/assets/js/niffler_reward_837f355cc816a378d56b.js
IP 104.18.40.254:443
Requested by https://www.temu.com/niffler_reward.html?_bg_fs=1&share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&_p_rfs=1&gs_code_way=3&gs_use_retention=0&gs_comp_type=3&gs_comp_style=9&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=app_push&refer_share_id=QFTiHDtVQIEcJhX4wIrUYBSNzv67RjOS&refer_share_channel=copy_link&refer_share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&group_sn=154af70ef4bd3ea6becce32c48f8869d&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_cash&_ex_sid=cash_share&gs_invite_code=169041617&gs_og_title=To%20participate%20in%20this%20event%F0%9F%94%A5%2C%20download%20and%20register%20on%20Temu%20with%20my%20link.&gs_og_description=Temu%3A%20Team%20up%2C%20price%20down.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2Ffaa9fa7a-b18c-4389-a889-74f061def7e4.jpg.slim.jpeg&gs_og_ios_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2F040121be-7946-4fc3-ac07-692261d2e20e.png.slim.png
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
FingerprintF1:1F:F1:F1:EE:92:73:E3:9F:A1:6B:0D:07:9A:D9:37:A7:2A:06:B2
ValidityWed, 10 Aug 2022 07:46:22 GMT - Thu, 10 Aug 2023 07:46:22 GMT
Size 694 kB (694114 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m-assets/assets/js/niffler_reward_837f355cc816a378d56b.js HTTP/1.1
Host: static.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 09 Jun 2023 02:34:45 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding, Accept-Encoding
cache-control: max-age=31536000
content-md5: +DRQdlIAqs3nbBEm7/S38g==
etag: W/"0x8DB681C2AEF0625"
last-modified: Thu, 08 Jun 2023 12:30:39 GMT
x-content-type-options: nosniff
x-pos-request-id: 6dac657d-f01e-008c-6e05-9a76b4000000
cf-cache-status: HIT
age: 50097
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 7d45fa301a961bfa-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.kwcdn.com/m-assets/assets/js/4208_92c027ef2eec0ce13678.js
104.18.40.254200 OK 85 kB URL GET HTTP/2 static.kwcdn.com/m-assets/assets/js/4208_92c027ef2eec0ce13678.js
IP 104.18.40.254:443
Requested by https://www.temu.com/niffler_reward.html?_bg_fs=1&share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&_p_rfs=1&gs_code_way=3&gs_use_retention=0&gs_comp_type=3&gs_comp_style=9&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=app_push&refer_share_id=QFTiHDtVQIEcJhX4wIrUYBSNzv67RjOS&refer_share_channel=copy_link&refer_share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&group_sn=154af70ef4bd3ea6becce32c48f8869d&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_cash&_ex_sid=cash_share&gs_invite_code=169041617&gs_og_title=To%20participate%20in%20this%20event%F0%9F%94%A5%2C%20download%20and%20register%20on%20Temu%20with%20my%20link.&gs_og_description=Temu%3A%20Team%20up%2C%20price%20down.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2Ffaa9fa7a-b18c-4389-a889-74f061def7e4.jpg.slim.jpeg&gs_og_ios_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2F040121be-7946-4fc3-ac07-692261d2e20e.png.slim.png
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
FingerprintF1:1F:F1:F1:EE:92:73:E3:9F:A1:6B:0D:07:9A:D9:37:A7:2A:06:B2
ValidityWed, 10 Aug 2022 07:46:22 GMT - Thu, 10 Aug 2023 07:46:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m-assets/assets/js/4208_92c027ef2eec0ce13678.js HTTP/1.1
Host: static.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 09 Jun 2023 02:34:45 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding
cache-control: max-age=31536000
content-md5: dQa8kNdGyX+b/q2DjMjfDQ==
etag: W/"0x8DB59AEC6EB2E97"
last-modified: Sun, 21 May 2023 03:52:19 GMT
x-content-type-options: nosniff
x-pos-request-id: 1c8978f2-c01e-0097-3eaf-8be381000000
cf-cache-status: HIT
age: 1620814
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 7d45fa3278b61bfe-OSL
content-encoding: br
X-Firefox-Spdy: h2
eu.pftk.temu.com/pmm/api/pmm/api
20.123.108.148200 OK 0 B URL POST HTTP/2 eu.pftk.temu.com/pmm/api/pmm/api
IP 20.123.108.148:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/niffler_reward.html?_bg_fs=1&share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&_p_rfs=1&gs_code_way=3&gs_use_retention=0&gs_comp_type=3&gs_comp_style=9&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=app_push&refer_share_id=QFTiHDtVQIEcJhX4wIrUYBSNzv67RjOS&refer_share_channel=copy_link&refer_share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&group_sn=154af70ef4bd3ea6becce32c48f8869d&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_cash&_ex_sid=cash_share&gs_invite_code=169041617&gs_og_title=To%20participate%20in%20this%20event%F0%9F%94%A5%2C%20download%20and%20register%20on%20Temu%20with%20my%20link.&gs_og_description=Temu%3A%20Team%20up%2C%20price%20down.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2Ffaa9fa7a-b18c-4389-a889-74f061def7e4.jpg.slim.jpeg&gs_og_ios_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2F040121be-7946-4fc3-ac07-692261d2e20e.png.slim.png
Certificate IssuerGoDaddy.com, Inc.
Subject*.pftk.temu.com
Fingerprint94:42:06:85:35:5A:BE:7F:22:14:B6:92:63:9C:70:C6:09:CE:96:9F
ValiditySun, 14 Aug 2022 08:56:12 GMT - Mon, 14 Aug 2023 08:56:12 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pmm/api/pmm/api HTTP/1.1
Host: eu.pftk.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1766
Origin: https://www.temu.com
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Cookie: api_uid=CnCj72SCj8S95AB/GY6dAg==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 09 Jun 2023 02:34:46 GMT
content-type: application/octet-stream
expires: Fri, 09 Jun 2023 02:34:45 GMT
cache-control: no-cache
access-control-allow-origin: https://www.temu.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override, Cookie, AccessToken, Anti-Content
X-Firefox-Spdy: h2
www.temu.com/favicon.ico
20.105.12.146200 OK 17 kB IP 20.105.12.146:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.temu.com/niffler_reward.html?_bg_fs=1&share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&_p_rfs=1&gs_code_way=3&gs_use_retention=0&gs_comp_type=3&gs_comp_style=9&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=app_push&refer_share_id=QFTiHDtVQIEcJhX4wIrUYBSNzv67RjOS&refer_share_channel=copy_link&refer_share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&group_sn=154af70ef4bd3ea6becce32c48f8869d&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_cash&_ex_sid=cash_share&gs_invite_code=169041617&gs_og_title=To%20participate%20in%20this%20event%F0%9F%94%A5%2C%20download%20and%20register%20on%20Temu%20with%20my%20link.&gs_og_description=Temu%3A%20Team%20up%2C%20price%20down.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2Ffaa9fa7a-b18c-4389-a889-74f061def7e4.jpg.slim.jpeg&gs_og_ios_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2F040121be-7946-4fc3-ac07-692261d2e20e.png.slim.png
Certificate IssuerGoDaddy.com, Inc.
Subject*.temu.com
FingerprintE3:6B:F9:98:96:EC:C1:BD:F3:DD:E4:04:90:C8:EF:14:6C:BE:F2:5E
ValiditySun, 14 Aug 2022 08:24:19 GMT - Mon, 14 Aug 2023 08:24:19 GMT
File type MS Windows icon resource - 1 icon, 64x64, 32 bits/pixel\012- data
Hash d26edcc90efcd957d6c0cecb09bba13b
398b0409df13c402e913d9caf5fce84eeeb0423a
9e50f7118d02f2fc45af374163bf05bb6467869ff0333751d2e0d9a0401e8b5e
GET /favicon.ico HTTP/1.1
Host: www.temu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/niffler_reward.html?_bg_fs=1&share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&_p_rfs=1&gs_code_way=3&gs_use_retention=0&gs_comp_type=3&gs_comp_style=9&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=app_push&refer_share_id=QFTiHDtVQIEcJhX4wIrUYBSNzv67RjOS&refer_share_channel=copy_link&refer_share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&group_sn=154af70ef4bd3ea6becce32c48f8869d&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_cash&_ex_sid=cash_share&gs_invite_code=169041617&gs_og_title=To%20participate%20in%20this%20event%F0%9F%94%A5%2C%20download%20and%20register%20on%20Temu%20with%20my%20link.&gs_og_description=Temu%3A%20Team%20up%2C%20price%20down.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2Ffaa9fa7a-b18c-4389-a889-74f061def7e4.jpg.slim.jpeg&gs_og_ios_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2F040121be-7946-4fc3-ac07-692261d2e20e.png.slim.png
Cookie: api_uid=CnCj72SCj8S95AB/GY6dAg==; region=210; language=en; currency=GBP
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Nginx
date: Fri, 09 Jun 2023 02:34:45 GMT
content-type: image/x-icon
cache-control: max-age=3600
x-yak-request-id: 1686278085520-064bd5b42972301ec21392c8203ea013
strict-transport-security: max-age=2592000
content-security-policy-report-only: default-src *.temu.com *.kwcdn.com wss://*.temu.com *.googleapis.com *.gstatic.com *.googletagmanager.com *.google-analytics.com *.analytics.google.com *.doubleclick.net *.google.com *.googlesyndication.com *.googleusercontent.com www.googleadservices.com www.google.cn www.google.com.hk www.google.co.uk www.google.ca www.google.com.au www.google.co.nz google.com connect.facebook.net www.facebook.com appleid.cdn-apple.com socialplugin.facebook.net *.cash.app *.forter.com blob: data: 'unsafe-eval' 'unsafe-inline' 'wasm-eval'; report-uri /api/sec-csp/c/sec-gif
vary: User-Agent
x-frame-options: SAMEORIGIN
cip: 91.90.42.154
X-Firefox-Spdy: h2
static.kwcdn.com/m-assets/assets/js/risk-finger-h5_a042823502a0fd344038.js
104.18.40.254200 OK 125 kB URL GET HTTP/2 static.kwcdn.com/m-assets/assets/js/risk-finger-h5_a042823502a0fd344038.js
IP 104.18.40.254:443
Requested by https://www.temu.com/niffler_reward.html?_bg_fs=1&share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&_p_rfs=1&gs_code_way=3&gs_use_retention=0&gs_comp_type=3&gs_comp_style=9&needs_login=1&login_scene=7&_p_login_channel=activity&_x_sid=app_push&refer_share_id=QFTiHDtVQIEcJhX4wIrUYBSNzv67RjOS&refer_share_channel=copy_link&refer_share_suin=BA7SDRKYIEAFJMJQGAZ2FLD7Y4AZTXYJEGU5FOA7Y2W3O&group_sn=154af70ef4bd3ea6becce32c48f8869d&_ex_campaign=mkt_activity&_ex_cid=mkt_activity_cash&_ex_sid=cash_share&gs_invite_code=169041617&gs_og_title=To%20participate%20in%20this%20event%F0%9F%94%A5%2C%20download%20and%20register%20on%20Temu%20with%20my%20link.&gs_og_description=Temu%3A%20Team%20up%2C%20price%20down.&gs_og_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2Ffaa9fa7a-b18c-4389-a889-74f061def7e4.jpg.slim.jpeg&gs_og_ios_image=https%3A%2F%2Faimg.kwcdn.com%2Fupload_aimg%2Fdawn%2Freward%2F040121be-7946-4fc3-ac07-692261d2e20e.png.slim.png
Certificate IssuerGoDaddy.com, Inc.
Subject*.kwcdn.com
FingerprintF1:1F:F1:F1:EE:92:73:E3:9F:A1:6B:0D:07:9A:D9:37:A7:2A:06:B2
ValidityWed, 10 Aug 2022 07:46:22 GMT - Thu, 10 Aug 2023 07:46:22 GMT
Size 125 kB (125169 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m-assets/assets/js/risk-finger-h5_a042823502a0fd344038.js HTTP/1.1
Host: static.kwcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.temu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 09 Jun 2023 02:34:45 GMT
content-type: application/javascript
vary: Accept-Encoding
cache-control: max-age=31536000
content-md5: lzKHMOh35gBh/LSHHGYt6w==
etag: W/"0x8DB544A82494834"
last-modified: Sun, 14 May 2023 07:11:59 GMT
x-content-type-options: nosniff
x-pos-request-id: ede96cd8-f01e-004c-0a36-86f2f0000000
cf-cache-status: HIT
age: 2209417
access-control-allow-origin: *
coloid: 83
timing-allow-origin: *
x-cip: 91.90.42.154
server: cloudflare
cf-ray: 7d45fa3348ec1bfe-OSL
content-encoding: br
X-Firefox-Spdy: h2