Report - www.tf9jthtrk.com/8LJN3/55M6S/?source_id=621323&sub1=621323&sub2=10594657

Report Overview

Submitted URL
www.tf9jthtrk.com/8LJN3/55M6S/?source_id=621323&sub1=621323&sub2=10594657
IP
34.117.111.166
ASN
#15169 GOOGLE
Submitted
2023-06-10 15:25:59
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
ads.anura.io	75730	2016-03-22	2016-10-30	2023-06-09	467 B	464 B	54.230.111.27
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2023-06-10	440 B	1.8 kB	104.17.25.14
devops.tortexperts.com	unknown	2020-04-01	2021-10-02	2023-05-27	1.8 kB	10 kB	138.197.100.36
www.googletagmanager.com	75	2011-11-11	2013-05-22	2023-06-10	434 B	50 kB	142.250.74.168
ec.instapagemetrics.com	61192	2020-08-11	2020-10-23	2023-06-09	542 B	493 B	34.71.95.65
script.anura.io	43801	2016-03-22	2017-05-19	2023-06-09	1.7 kB	58 kB	18.130.201.213
d2m2wsoho8qq12.cloudfront.net	unknown	2008-04-25	2013-05-25	2023-06-09	717 B	4.0 kB	54.230.245.38
cdn.trustedform.com	24659	2009-02-13	2020-08-27	2023-06-09	937 B	113 kB	54.230.111.91
cdn.neverbounce.com	118809	2014-05-19	2018-09-16	2023-06-08	436 B	98 kB	54.230.111.89
g.fastcdn.co	52185	2017-01-13	2019-02-01	2023-06-09	3.1 kB	133 kB	35.244.137.202
v.fastcdn.co	51212	2017-01-13	2017-02-10	2023-06-09	5.6 kB	349 kB	104.18.8.227
cdn.instapagemetrics.com	61897	2020-08-11	2020-08-11	2023-06-09	425 B	20 kB	34.120.27.38
api.trustedform.com	23021	2009-02-13	2012-10-29	2023-06-09	3.8 kB	9.9 kB	54.209.19.170
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2023-06-10	2.7 kB	219 kB	216.58.207.227
api.neverbounce.com	63813	2014-05-19	2015-04-02	2023-06-07	511 B	441 B	54.144.101.18
create.lidstatic.com	24133	2015-08-14	2015-09-23	2023-06-09	502 B	127 kB	172.67.41.229
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2023-06-10	1.5 kB	37 kB	142.250.74.106
create.leadid.com	14598	2010-07-11	2014-01-22	2023-06-09	3.1 kB	5.5 kB	3.213.164.48
deviceid.trueleadid.com	2097	2010-11-03	2018-07-10	2023-06-09	713 B	4.5 kB	34.235.91.111
www.tf9jthtrk.com	unknown	2023-04-06	2023-06-08	2023-06-09	958 B	10 kB	34.117.111.166
tortexperts.leadspediatrack.com	unknown	2013-03-28	2022-06-09	2023-06-09	570 B	532 B	52.35.40.212
www.talcumlawsuitclaims.com	unknown	2020-03-10	2020-03-10	2023-06-09	607 B	26 kB	104.18.27.189
heatmap-events-collector.instapage.com	54233	2001-09-05	2020-03-04	2023-06-09	982 B	14 kB	34.71.95.65

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-06-10 15:25:41	low	Client IP	18.158.229.59	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard Low Port)

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (36)

	URL	Size	First Seen	Last Seen
	unknown	16 B	2023-04-10	2024-04-19
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-04-10 15:57:29 Last Seen2024-04-19 23:05:42 Times Seen33463 Hash 7c3c3ddeb80438dcbb3d081d2d00e152 5a4016732ee72ec77b4f6ab17047bcea6d2ea34d 321b4f657afbf8ba49518e6ab4cbad07ea967d0b4c68f71c7deed05ed09c1187 Loading...

	g.fastcdn.co/js/Form.3fd784d2583a7f2b41b1.js	92 kB	2023-04-17	2024-01-02
Pretty URL g.fastcdn.co/js/Form.3fd784d2583a7f2b41b1.js IP 35.244.137.202 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-17 07:27:59 Last Seen2024-01-02 10:30:23 Times Seen208 Hash c665e332a13e59885d85d7fe999589a0 d2a3f6c5143d275401ade1a13e6a600c675e6e9e 5f63295c1097235a248f97f7dab130263c4814fe576616fa1153017c24fa2460 Loading...

	unknown	46 B	2023-04-11	2024-04-19
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 22:36:29 Last Seen2024-04-19 12:13:32 Times Seen5888 Hash 5c399557f73fcf0024f42259cf94ee17 d2f46cbd088e9b289e63cc23e2377462c6459e3f 254e737260e5ff4f6043abc4ab52ee1f9ea6e9eab066b5c7ac1665c4cf75692b Loading...

	d2m2wsoho8qq12.cloudfront.net/iframe.html?token=6066EC16-1A14-46B2-0513-1CE28D282E71&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=5DD359DE-A4DA-6505-31C2-212BECDD131B&lac=43280F24-DA2D-8B48-A2BC-8CCB47265652	0 B	2023-03-07	2024-04-20
Pretty URL d2m2wsoho8qq12.cloudfront.net/iframe.html?token=6066EC16-1A14-46B2-0513-1CE28D282E71&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=5DD359DE-A4DA-6505-31C2-212BECDD131B&lac=43280F24-DA2D-8B48-A2BC-8CCB47265652 IP 54.230.245.38 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-20 05:49:47 Times Seen36969739 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	create.leadid.com/2.11.9/SaveDeviceId.js?lac=43280F24-DA2D-8B48-A2BC-8CCB47265652&lck=5DD359DE-A4DA-6505-31C2-212BECDD131B&methods=48&token=6066EC16-1A14-46B2-0513-1CE28D282E71&uuid=bf85c6fd9ff744da811b5d83af0eca9d	0 B	2023-03-07	2024-04-20
Pretty URL create.leadid.com/2.11.9/SaveDeviceId.js?lac=43280F24-DA2D-8B48-A2BC-8CCB47265652&lck=5DD359DE-A4DA-6505-31C2-212BECDD131B&methods=48&token=6066EC16-1A14-46B2-0513-1CE28D282E71&uuid=bf85c6fd9ff744da811b5d83af0eca9d IP 3.213.164.48 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-20 05:49:47 Times Seen36969739 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	g.fastcdn.co/js/utils.c997ba789ee31fe61b1e.js	57 kB	2023-04-17	2024-02-27
Pretty URL g.fastcdn.co/js/utils.c997ba789ee31fe61b1e.js IP 35.244.137.202 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-17 07:27:59 Last Seen2024-02-27 01:27:36 Times Seen387 Hash b7f60770ab9d188b3e2bab7c3a206bf9 fee4ac3e666b7337500f66edc910e1a8ade2d2fd d3f78cb0b847eb9b33ee21c6e92fbf4bf4d9fd9cc992963d5491149242d6d1b6 Loading...

	g.fastcdn.co/js/LegacyVendors.9d4b6af660c0e1798b50.js	90 kB	2023-04-25	2024-04-16
Pretty URL g.fastcdn.co/js/LegacyVendors.9d4b6af660c0e1798b50.js IP 35.244.137.202 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-25 21:40:30 Last Seen2024-04-16 10:18:06 Times Seen198 Hash a47cf255cfb6395951f8206aa227cdf3 1d4bc3b520f916f28ce0888dc99f6dfe93d76f53 1f29f9fa83fe6deaed043de807534108e2e819ad149d10da35caea2b4f06fcd2 Loading...

	cdn.instapagemetrics.com/t/js/3/it.js	55 kB	2023-03-07	2024-04-16
Pretty URL cdn.instapagemetrics.com/t/js/3/it.js IP 34.120.27.38 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:27:12 Last Seen2024-04-16 23:19:35 Times Seen678 Hash eee931187060719ab17a352de2424e0c 0aa427fa2d22d22e3e08c21f598cc9f2d09efa61 853d7ef6b54d838c009d01e4857b499d7ec4f71f6fced1e2e3c463fd393ccb29 Loading...

	www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61	390 B	2023-03-29	2023-11-06
Pretty URL www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 IP 104.18.27.189 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-29 23:03:45 Last Seen2023-11-06 16:02:40 Times Seen27 Hash 5a21d973e5110e93d3f3ee03676100e9 59afe63508d1d1af150febaf9b002f03fa40a66e 70579813c1cd7cbef61a81b329f6994d39d8ee08436e58fcc2a9679329a3bb1e Loading...

	devops.tortexperts.com/js/uuid2.js	1.5 kB	2023-03-11	2024-02-06
Pretty URL devops.tortexperts.com/js/uuid2.js IP 138.197.100.36 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:26:42 Last Seen2024-02-06 03:55:32 Times Seen173 Hash 7d51e42e6f49a8960eb4cb30598a9bcc 15a597273e8b463a49d5bb7dd76711226c70a82c c83517c9af089cba90b664aa9aec659110cfed01c6a80a8d8b3052d7a6f5cc73 Loading...

	www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61	745 B	2023-06-09	2023-06-10
Pretty URL www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 IP 104.18.27.189 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-09 15:56:28 Last Seen2023-06-10 17:26:00 Times Seen3 Hash abab29422f280084bae83b54f38d80c0 f944937733623c5a26403be5d9f38ff1d7ce7faf 328c6b596b50a1965f1a30139c212fa6fc5c4529c886a206ef622c8b29629815 Loading...

	g.fastcdn.co/js/sptw.f58afe926be16f9087f6.js	61 kB	2023-04-17	2024-02-27
Pretty URL g.fastcdn.co/js/sptw.f58afe926be16f9087f6.js IP 35.244.137.202 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-17 07:27:59 Last Seen2024-02-27 01:27:36 Times Seen396 Hash 9cc542b3ff535a95630cef690feeb602 5b5fd7c1f4736e7e35eb0c67054251f1812ecffd 2f501a1f108450d30ba92757a996b5220f3619d86629a664bd72715676928b6f Loading...

	g.fastcdn.co/js/LazyImage.59626ef3f961b8927cb6.js	2.0 kB	2023-04-17	2024-04-16
Pretty URL g.fastcdn.co/js/LazyImage.59626ef3f961b8927cb6.js IP 35.244.137.202 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-17 07:27:59 Last Seen2024-04-16 23:19:35 Times Seen601 Hash d4815f76fa0358811ce0c53aa0e184d3 2f954efcedc4502a9d2d15532cc8bb7997a3cf8e 047794317b70504540fd8504bd67eec9a33e7e7b9558fb2f73a0a0de663a51c3 Loading...

	www.talcumlawsuitclaims.com/sandbox%20eval%20code	147 B	2023-04-11	2024-04-20
Pretty URL www.talcumlawsuitclaims.com/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-04-20 04:45:28 Times Seen341014 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	create.lidstatic.com/campaign/5dd359de-a4da-6505-31c2-212becdd131b.js?snippet_version=2&callback=jornayaCallback	126 kB	2023-03-29	2023-11-06
Pretty URL create.lidstatic.com/campaign/5dd359de-a4da-6505-31c2-212becdd131b.js?snippet_version=2&callback=jornayaCallback IP 172.67.41.229 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:03:45 Last Seen2023-11-06 16:02:40 Times Seen29 Hash cfee926c16f1d856be0167423ae5b0fb cf84dc66abac28f3f2f7a6af488b564be3c95435 5cd243525b4dc7e6ece5c68ccd226e19ead13308465975f1403e81efd1948f9b Loading...

	g.fastcdn.co/js/cm.js	52 kB	2023-03-07	2024-04-16
Pretty URL g.fastcdn.co/js/cm.js IP 35.244.137.202 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:27:12 Last Seen2024-04-16 23:19:35 Times Seen664 Hash 69201b044f9e912cc72b07e4ffbf9555 4a31f53b5a91f52b28f10a84be73d6cffce01706 dd8625bfa35604f050e4dcc7ff10c2c31d7cdf1ce7bdf4cde0d0415dcc74e2fb Loading...

	devops.tortexperts.com/api/js/landing/832628421495051	681 B	2023-03-29	2023-11-06
Pretty URL devops.tortexperts.com/api/js/landing/832628421495051 IP 138.197.100.36 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:03:45 Last Seen2023-11-06 16:02:40 Times Seen43 Hash bc9da58173289c211eb957736bf775c5 b612837df9827912d41e0e721dfa15916460e7a0 b5124ec9726d41ba9ac23533d8e104575d2b5d48a8d56b0b82d9b7f840a5d68d Loading...

	devops.tortexperts.com/js/zaplanding.js	6.4 kB	2023-06-09	2023-08-16
Pretty URL devops.tortexperts.com/js/zaplanding.js IP 138.197.100.36 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-09 15:56:28 Last Seen2023-08-16 18:48:58 Times Seen118 Hash 79907eca2ce12d49b8d7fd53b2eb4a9b b737e2b636b75add9c0dcc1c449578ff5e588fe0 9e01a1322ad12730d14c64fe45a97a38522af94522cb185ce7a9061d47a290ac Loading...

	www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61	1.4 kB	2023-04-17	2024-02-27
Pretty URL www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 IP 104.18.27.189 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-17 07:27:59 Last Seen2024-02-27 01:27:36 Times Seen192 Hash d09c39ca7dfc958e81d5ef6f7f35eb58 c54b57cc1f8b7507761c760694b60b0e74b66045 aeee01c9184346989d54a828933d56cfc4cd0b2f1b3caaadf73890ab282d4ca9 Loading...

	heatmap-events-collector.instapage.com/static/lib.js	25 kB	2023-03-08	2024-01-03
Pretty URL heatmap-events-collector.instapage.com/static/lib.js IP 34.71.95.65 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:39:25 Last Seen2024-01-03 08:37:45 Times Seen379 Hash bad6d1265922530c249a22dab2ca7a04 748cf00af5a64d69797702248de3e0f667192491 5adf96e308da99ff859ce9f9def91ab592aaf77f0cd528a09727c40dbccaac5a Loading...

	script.anura.io/request.js?instance=1765050722&source=61&campaign=621323&additional=%7B%221%22%3A%22648495f479bd7%22%2C%222%22%3A%2210594657%22%2C%223%22%3A%22%22%2C%224%22%3A%22%22%2C%225%22%3A%22%22%2C%226%22%3A%221%22%2C%227%22%3A%22%22%7D&callback=anuraResponseHandler&138979474042	56 kB	2023-06-10	2023-06-10
Pretty URL script.anura.io/request.js?instance=1765050722&source=61&campaign=621323&additional=%7B%221%22%3A%22648495f479bd7%22%2C%222%22%3A%2210594657%22%2C%223%22%3A%22%22%2C%224%22%3A%22%22%2C%225%22%3A%22%22%2C%226%22%3A%221%22%2C%227%22%3A%22%22%7D&callback=anuraResponseHandler&138979474042 IP 18.130.201.213 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-10 17:26:00 Last Seen2023-06-10 17:26:00 Times Seen2 Hash 3a48d1ed27362f0dbb44bddd353c8e7f a2f6fb6e68eba80d760764dfd87b9608c26bbf3b 2cb79ed64c24cbbf9e30281a0f81aad425dea22ce3189ce6dd4ac5560ef60120 Loading...

	www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61	315 B	2023-03-07	2024-04-16
Pretty URL www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 IP 104.18.27.189 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:27:12 Last Seen2024-04-16 23:19:35 Times Seen333 Hash 812299998c311071950e2bd5ea5dc8bd c573ff5b5e45f3df1e3b040c64706972342d1c56 c5f98a4945de3d643eb4d81915f69ba551241d7f5798e55122531daffbbb3a3e Loading...

	www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61	86 B	2023-03-14	2024-01-02
Pretty URL www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 IP 104.18.27.189 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-14 09:57:12 Last Seen2024-01-02 19:01:34 Times Seen49 Hash 5ed9372b05735168270f2e97927553be 84d31722d403d5eea4ae94b21b0907a83a554a59 0bba771a4180c5845ae49a417d85dae878fa130801dcf3c172b71800056789f0 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-MF6MD7K	128 kB	2023-06-10	2023-06-10
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-MF6MD7K IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-10 17:26:00 Last Seen2023-06-10 17:26:00 Times Seen2 Hash 701d800eca95ef617fb1e749287657d0 982d6dfe7f1c3e0835fa0c369a0a0559156e4f21 24ac0391c3724771d9492916ebbc08a80a0c40ba9736ddbb586e2984cd22e978 Loading...

	api.trustedform.com/trustedform.js?provide_referrer=false&field=xxTrustedFormCertUrl&l=16864107411370.7243385914752665	7.5 kB	2023-05-12	2023-08-18
Pretty URL api.trustedform.com/trustedform.js?provide_referrer=false&field=xxTrustedFormCertUrl&l=16864107411370.7243385914752665 IP 54.209.19.170 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-12 21:13:47 Last Seen2023-08-18 17:59:15 Times Seen591 Hash 88ddf717f635b54023edd7480431e1d1 331e6a49d576b60547bdf48458aff2b56a1dd12e d95166940395c50be562fe538c85311002d62b83da8f68a8500be092f4bf98fd Loading...

	cdn.neverbounce.com/widget/dist/NeverBounce.js	98 kB	2023-03-10	2024-04-10
Pretty URL cdn.neverbounce.com/widget/dist/NeverBounce.js IP 54.230.111.89 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 06:11:05 Last Seen2024-04-10 04:46:31 Times Seen195 Hash c1e06621030dfcba15b88abbcaa546eb f7b7ae2b4466464d37d362e4b3662cc0cf29241c c99d11cb4960d6e1918ed55d5bcbb316d38b51098e2efc1201904d7274d3273e Loading...

	deviceid.trueleadid.com/iframe.html?token=6066EC16-1A14-46B2-0513-1CE28D282E71&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=5DD359DE-A4DA-6505-31C2-212BECDD131B&lac=43280F24-DA2D-8B48-A2BC-8CCB47265652	4.2 kB	2023-04-05	2024-04-18
Pretty URL deviceid.trueleadid.com/iframe.html?token=6066EC16-1A14-46B2-0513-1CE28D282E71&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=5DD359DE-A4DA-6505-31C2-212BECDD131B&lac=43280F24-DA2D-8B48-A2BC-8CCB47265652 IP 34.235.91.111 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-05 03:18:50 Last Seen2024-04-18 12:28:00 Times Seen1606 Hash 888397723b0cae5a849306756b87634d 2afbc2fe73160ce20dc626b552d4a2f84dce5d79 e5a55390140fb7ef34b7eec67edb995dd3ae18f313b72aeb6a1921cc2d6dd3ad Loading...

	www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61	436 B	2023-03-29	2023-11-06
Pretty URL www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 IP 104.18.27.189 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-29 23:03:45 Last Seen2023-11-06 16:02:40 Times Seen30 Hash 8016ecc85099dccd50df0ca2e9ceb530 4a3e3a6da269831331a75949888708d7b7aa2671 c06ac4de9d02ffba97c80f3c383a510a6f5986fd3f8eacc091022911c9e29586 Loading...

	cdnjs.cloudflare.com/ajax/libs/loadjs/4.2.0/loadjs.min.js	1.7 kB	2023-03-07	2024-04-18
Pretty URL cdnjs.cloudflare.com/ajax/libs/loadjs/4.2.0/loadjs.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:31:23 Last Seen2024-04-18 15:48:44 Times Seen696 Hash 5b0c342066986ecf7a21ca39c900db46 cf576ac94048a5a44589bae6d79790e9f8906de6 9e706a6f7bc551ddf626c15cd76c1c251c0009871b6977cab0b3bf25391cbd9a Loading...

	g.fastcdn.co/js/Cradle.c9144221d5b5d6147353.js	15 kB	2023-04-17	2024-04-16
Pretty URL g.fastcdn.co/js/Cradle.c9144221d5b5d6147353.js IP 35.244.137.202 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-17 07:27:59 Last Seen2024-04-16 23:19:35 Times Seen624 Hash 22cac33bb98da5afa4e1a89ff8606bfc d3f33e896d64fa3927c07de1dbaaab3875408554 ecc3883f7b177edcd6a59dcdb4f957cba8a1df5180202fcd3f30bd33dd6f7d7b Loading...

	www.tf9jthtrk.com/scripts/sdk/everflow.js	32 kB	2023-06-09	2023-08-16
Pretty URL www.tf9jthtrk.com/scripts/sdk/everflow.js IP 34.117.111.166 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-09 15:56:28 Last Seen2023-08-16 18:48:58 Times Seen102 Hash b21b7a76cd6758be9ce22a07004752bc 0659b50c33dbe28c2eb2abec42fe837e2aeea6aa 0c458ae49142cd735b26d28261d4bf204e6b30cd69a03000506702582fed59a1 Loading...

	www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61	3.6 kB	2023-03-29	2023-11-06
Pretty URL www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 IP 104.18.27.189 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-29 23:03:45 Last Seen2023-11-06 16:02:40 Times Seen27 Hash 4750055f0a5c2326313f2a4d99312f91 b424e9f1b05d1134d3e32662ace072b1b50cc452 6cf5d7fe3188f10583e224c23396c25689ec52afc7c2cb406c9c8f3618254447 Loading...

	www.google-analytics.com/analytics.js	4.7 kB	2023-04-11	2024-04-20
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-04-20 04:45:28 Times Seen340519 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	api.neverbounce.com/v4/poe/notify?key=public_558d6d3d44cf91fec048ec9d8c3961c2&event=form.load&callback=__neverbounce_284004	62 B	2023-06-10	2023-06-10
Pretty URL api.neverbounce.com/v4/poe/notify?key=public_558d6d3d44cf91fec048ec9d8c3961c2&event=form.load&callback=__neverbounce_284004 IP 54.144.101.18 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-10 17:26:00 Last Seen2023-06-10 17:26:00 Times Seen1 Hash 041bdb761e827c58f78c0bada42401d9 6f0de23f15a46d6f3c12e52f3e8f17d802e755fb ae832cde9c42a83675a2c59aac0351473356f3158730675285dc28df8c415040 Loading...

	cdn.trustedform.com/trustedform-1.8.39.js	105 kB	2023-05-12	2023-08-18
Pretty URL cdn.trustedform.com/trustedform-1.8.39.js IP 54.230.111.91 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-12 21:13:47 Last Seen2023-08-18 17:59:16 Times Seen1062 Hash 9c2830f2c2e5b9cb27e0e7f151317cbe 7e0b45f1cf0f826b0aaaf792e20bdd77d27c6b3a fe63c3d6c4d4486e0a2323e205377a04c96e054f37f4d87a7b8bab0091c19c14 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 5923e6a91fd004cc0815f0a5494f6368	14 B	2023-03-07	2024-04-18
Pretty Observations First Seen2023-03-07 01:03:43 Last Seen2024-04-18 12:28:01 Times Seen2526 Hash 5923e6a91fd004cc0815f0a5494f6368 6f0cc8f774ac9d8240ffe81a9c659c9612d7bb70 0510de046e8325540849bad09f31eaaa3e9256fafd330c5d57327dc948812a33 Loading...

HTTP Transactions (64)

	URL	IP	Response	Size
	www.tf9jthtrk.com/8LJN3/55M6S/?source_id=621323&sub1=621323&sub2=10594657	34.117.111.166	302 Found	173 B
URL User Request GET HTTP/2 www.tf9jthtrk.com/8LJN3/55M6S/?source_id=621323&sub1=621323&sub2=10594657 IP 34.117.111.166:443 ASN #15169 GOOGLE Certificate IssuerStarfield Technologies, Inc. Subjecttf9jthtrk.com FingerprintCD:52:31:5C:02:E6:41:3B:AE:BC:AB:06:0C:34:3E:B3:04:79:58:07 ValidityThu, 06 Apr 2023 20:12:47 GMT - Sat, 06 Apr 2024 20:12:47 GMT File type HTML document, ASCII text Size 173 B (173 bytes) Hash 127965f6956cc021f98dd3a417b039bf 3ed64b248338fe00e125752f51d8e6ff165150b5 a60c0bddee3c8aaeb594c98ca994bfc9a9fad4d6d0bca25b04078003a0539db2 HTTP Headers GET /8LJN3/55M6S/?source_id=621323&sub1=621323&sub2=10594657 HTTP/1.1 Host: www.tf9jthtrk.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 302 Found server: nginx date: Sat, 10 Jun 2023 15:25:39 GMT content-type: text/html; charset=utf-8 content-length: 173 accept-ch: Sec-Ch-Ua-Platform-Version location: https://tortexperts.leadspediatrack.com/?c=61&lp=8&efid=654c41efcd334974aaf6e1abc59d72cf&s1=621323&s2=10594657&s3=&s4=&s5= set-cookie: uniqueClick_55M6S=9875bae0-8703-4e07-bc3a-a8d01482e5c9:1686410739; Path=/; Expires=Sun, 11 Jun 2023 15:25:39 GMT; Secure; SameSite=None transaction_id=654c41efcd334974aaf6e1abc59d72cf; Path=/; Expires=Fri, 08 Sep 2023 15:25:39 GMT; Secure; SameSite=None vary: Origin x-eflow-request-id: b198b78e-96db-4694-abdd-747ea7f58aa5 via: 1.1 google alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	tortexperts.leadspediatrack.com/?c=61&lp=8&efid=654c41efcd334974aaf6e1abc59d72cf&s1=621323&s2=10594657&s3=&s4=&s5=	52.35.40.212	302 Found	0 B
URL User Request GET HTTP/2 tortexperts.leadspediatrack.com/?c=61&lp=8&efid=654c41efcd334974aaf6e1abc59d72cf&s1=621323&s2=10594657&s3=&s4=&s5= IP 52.35.40.212:443 ASN #16509 AMAZON-02 Certificate IssuerAmazon Subject.leadspediatrack.com Fingerprint10:94:FF:FF:4D:48:6A:90:45:94:47:DE:44:8A:FD:9F:BE:77:E1:0C ValidityFri, 10 Feb 2023 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /?c=61&lp=8&efid=654c41efcd334974aaf6e1abc59d72cf&s1=621323&s2=10594657&s3=&s4=&s5= HTTP/1.1 Host: tortexperts.leadspediatrack.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 302 Found date: Sat, 10 Jun 2023 15:25:40 GMT content-type: text/html; charset=UTF-8 content-length: 0 location: https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 server: Apache/2.4.46 (Amazon) PHP/5.6.40 x-powered-by: PHP/5.6.40 set-cookie: PHPSESSID=5nghdjhclhd3la7rmaujb8oik2; path=/ expires: Sat, 26 Jul 1997 05:00:00 GMT cache-control: no-cache, must-revalidate pragma: no-cache X-Firefox-Spdy: h2

	www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61	104.18.27.189	200 OK	25 kB
URL User Request GET HTTP/2 www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 IP 104.18.27.189:443 ASN #13335 CLOUDFLARENET Certificate IssuerLet's Encrypt Subjectwww.talcumlawsuitclaims.com Fingerprint76:D2:81:72:EF:0E:A4:9B:CA:2F:40:A4:92:41:EF:19:E1:C2:6B:9D ValidityMon, 08 May 2023 19:14:27 GMT - Sun, 06 Aug 2023 19:14:26 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (32449) Size 25 kB (24905 bytes) Hash ae40a21d45ce34570ab8a6ea7eb008af a21de4dfe9fcd43370cb74c11d41ed4f52847395 6a957e1b46a647fec8e8042f8e078781a46ef2e8b12ff69dd8650ff582883de0 HTTP Headers GET /?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 HTTP/1.1 Host: www.talcumlawsuitclaims.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Sat, 10 Jun 2023 15:25:40 GMT content-type: text/html; charset=utf-8 access-control-allow-origin: * etag: W/"189d6-wCa8Rh1/jCkW/c903uvgesDKvcs" vary: Accept-Encoding content-encoding: gzip strict-transport-security: max-age=2592000 via: 1.1 google, 1.1 google cf-cache-status: DYNAMIC set-cookie: __cf_bm=K3UwTpxSUT4Y7jqXbXQrjsIJw3vQqWSVAdnvcrQNg5g-1686410740-0-Aam1UCqmwS6v7SvnEOdIA0NAOIl/o+MHAE2OUWBsPfANMAk7A7yia6N7AzQ5NlG+7xNDechQgTBYMp03e09p74M=; path=/; expires=Sat, 10-Jun-23 15:55:40 GMT; domain=.www.talcumlawsuitclaims.com; HttpOnly; Secure; SameSite=None server: cloudflare cf-ray: 7d52a0d95c36b515-OSL X-Firefox-Spdy: h2

	cdnjs.cloudflare.com/ajax/libs/loadjs/4.2.0/loadjs.min.js	104.17.25.14	200 OK	801 B
URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/loadjs/4.2.0/loadjs.min.js IP 104.17.25.14:443 ASN #13335 CLOUDFLARENET Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintA9:11:71:07:07:92:48:7E:A9:3C:E8:32:25:3F:EB:AC:7D:51:7E:8F ValidityWed, 03 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT File type ASCII text, with very long lines (1674), with no line terminators Size 801 B (801 bytes) Hash 5b0c342066986ecf7a21ca39c900db46 cf576ac94048a5a44589bae6d79790e9f8906de6 9e706a6f7bc551ddf626c15cd76c1c251c0009871b6977cab0b3bf25391cbd9a HTTP Headers `GET /ajax/libs/loadjs/4.2.0/loadjs.min.js HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.talcumlawsuitclaims.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Sat, 10 Jun 2023 15:25:41 GMT content-type: application/javascript; charset=utf-8 content-length: 801 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb03ed2-68a" last-modified: Mon, 04 May 2020 16:12:02 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: HIT age: 4654722 expires: Thu, 30 May 2024 15:25:41 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QB0GHqtaysmeCmnoJFDDU0WPNjBmIA4JCsyjNAxRdMjnfAeHPHkn2YjVWww0JK0Antap6QB%2BviDK7jpUscgR%2B4ttVbbFF2ePhDkTKqwf3L3nKFLRG%2BIZupjjJX%2BBGHbbXmLvAijM"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 7d52a0dc4d1b0b49-OSL alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	g.fastcdn.co/js/Form.3fd784d2583a7f2b41b1.js	35.244.137.202	200 OK	23 kB
URL GET HTTP/2 g.fastcdn.co/js/Form.3fd784d2583a7f2b41b1.js IP 35.244.137.202:443 ASN #15169 GOOGLE Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerGoogle Trust Services LLC Subjectg.fastcdn.co Fingerprint49:FE:F6:1C:3A:DA:D1:46:94:0A:92:4B:E3:98:0B:51:DA:9D:41:66 ValidityThu, 25 May 2023 12:00:54 GMT - Wed, 23 Aug 2023 12:53:07 GMT File type C source, ASCII text, with very long lines (65536), with no line terminators Size 23 kB (22716 bytes) Hash c665e332a13e59885d85d7fe999589a0 d2a3f6c5143d275401ade1a13e6a600c675e6e9e 5f63295c1097235a248f97f7dab130263c4814fe576616fa1153017c24fa2460 HTTP Headers `GET /js/Form.3fd784d2583a7f2b41b1.js HTTP/1.1 Host: g.fastcdn.co User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK x-guploader-uploadid: ADPycduCmeS96gJpVHhkkSMV_8mDGa6Wv6vuwtloMVnIVVFWnJNPb4TbUsKuGHX3CL488VrtTc8EIAE01DcMneTZBrOFOg x-goog-generation: 1686082600816896 x-goog-metageneration: 1 x-goog-stored-content-encoding: gzip x-goog-stored-content-length: 22716 content-encoding: gzip x-goog-hash: crc32c=REeg1Q==, md5=BWsWXWqDmdc5ndCltc7kCg== x-goog-storage-class: MULTI_REGIONAL accept-ranges: bytes content-length: 22716 server: UploadServer date: Tue, 06 Jun 2023 20:19:09 GMT expires: Wed, 05 Jun 2024 20:19:09 GMT cache-control: public, max-age=31536000 last-modified: Tue, 06 Jun 2023 20:16:40 GMT etag: "056b165d6a8399d7399dd0a5b5cee40a" content-type: application/javascript vary: Accept-Encoding age: 327992 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	g.fastcdn.co/js/LazyImage.59626ef3f961b8927cb6.js	35.244.137.202	200 OK	1.0 kB
URL GET HTTP/2 g.fastcdn.co/js/LazyImage.59626ef3f961b8927cb6.js IP 35.244.137.202:443 ASN #15169 GOOGLE Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerGoogle Trust Services LLC Subjectg.fastcdn.co Fingerprint49:FE:F6:1C:3A:DA:D1:46:94:0A:92:4B:E3:98:0B:51:DA:9D:41:66 ValidityThu, 25 May 2023 12:00:54 GMT - Wed, 23 Aug 2023 12:53:07 GMT File type ASCII text, with very long lines (2016), with no line terminators Size 1.0 kB (1022 bytes) Hash d4815f76fa0358811ce0c53aa0e184d3 2f954efcedc4502a9d2d15532cc8bb7997a3cf8e 047794317b70504540fd8504bd67eec9a33e7e7b9558fb2f73a0a0de663a51c3 HTTP Headers `GET /js/LazyImage.59626ef3f961b8927cb6.js HTTP/1.1 Host: g.fastcdn.co User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK x-guploader-uploadid: ADPycdsNy5rSp2KxMAVA7lowbBuATBKbzKscXoh5rSRB9tuK-Y4dlC8yJMk27Xu-SZgHgxvbxzPW9GynQdmAz_bYQSc_bA x-goog-generation: 1686076901800486 x-goog-metageneration: 1 x-goog-stored-content-encoding: gzip x-goog-stored-content-length: 1022 content-encoding: gzip x-goog-hash: crc32c=ZP0ifA==, md5=sK4idfXQEaxkkXCAZh5JVg== x-goog-storage-class: MULTI_REGIONAL accept-ranges: bytes content-length: 1022 server: UploadServer date: Tue, 06 Jun 2023 19:14:12 GMT expires: Wed, 05 Jun 2024 19:14:12 GMT cache-control: public, max-age=31536000 last-modified: Tue, 06 Jun 2023 18:41:41 GMT etag: "b0ae2275f5d011ac64917080661e4956" content-type: application/javascript vary: Accept-Encoding age: 331889 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	g.fastcdn.co/js/utils.c997ba789ee31fe61b1e.js	35.244.137.202	200 OK	20 kB
URL GET HTTP/2 g.fastcdn.co/js/utils.c997ba789ee31fe61b1e.js IP 35.244.137.202:443 ASN #15169 GOOGLE Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerGoogle Trust Services LLC Subjectg.fastcdn.co Fingerprint49:FE:F6:1C:3A:DA:D1:46:94:0A:92:4B:E3:98:0B:51:DA:9D:41:66 ValidityThu, 25 May 2023 12:00:54 GMT - Wed, 23 Aug 2023 12:53:07 GMT File type Unicode text, UTF-8 text, with very long lines (56996), with no line terminators Size 20 kB (19572 bytes) Hash b7f60770ab9d188b3e2bab7c3a206bf9 fee4ac3e666b7337500f66edc910e1a8ade2d2fd d3f78cb0b847eb9b33ee21c6e92fbf4bf4d9fd9cc992963d5491149242d6d1b6 HTTP Headers `GET /js/utils.c997ba789ee31fe61b1e.js HTTP/1.1 Host: g.fastcdn.co User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK x-guploader-uploadid: ADPycdvXthR1ajGBLamI2kluy6y_CkZChOwnS2RNqN8Vr32eVH3c6PAAJ7rlJMuvxDZhYuC_-nV0Ut152mDKwnkHviJovw x-goog-generation: 1686076904044444 x-goog-metageneration: 1 x-goog-stored-content-encoding: gzip x-goog-stored-content-length: 19572 content-encoding: gzip x-goog-hash: crc32c=YL8LTw==, md5=dPgTE7ehe4pM5ZNhkI1ODw== x-goog-storage-class: MULTI_REGIONAL accept-ranges: bytes content-length: 19572 server: UploadServer date: Tue, 06 Jun 2023 19:14:11 GMT expires: Wed, 05 Jun 2024 19:14:11 GMT cache-control: public, max-age=31536000 last-modified: Tue, 06 Jun 2023 18:41:44 GMT etag: "74f81313b7a17b8a4ce59361908d4e0f" content-type: application/javascript vary: Accept-Encoding age: 331890 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	g.fastcdn.co/js/sptw.f58afe926be16f9087f6.js	35.244.137.202	200 OK	20 kB
URL GET HTTP/2 g.fastcdn.co/js/sptw.f58afe926be16f9087f6.js IP 35.244.137.202:443 ASN #15169 GOOGLE Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerGoogle Trust Services LLC Subjectg.fastcdn.co Fingerprint49:FE:F6:1C:3A:DA:D1:46:94:0A:92:4B:E3:98:0B:51:DA:9D:41:66 ValidityThu, 25 May 2023 12:00:54 GMT - Wed, 23 Aug 2023 12:53:07 GMT File type Unicode text, UTF-8 text, with very long lines (59833) Size 20 kB (20077 bytes) Hash 9cc542b3ff535a95630cef690feeb602 5b5fd7c1f4736e7e35eb0c67054251f1812ecffd 2f501a1f108450d30ba92757a996b5220f3619d86629a664bd72715676928b6f HTTP Headers `GET /js/sptw.f58afe926be16f9087f6.js HTTP/1.1 Host: g.fastcdn.co User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK x-guploader-uploadid: ADPycdvtfioV3LsFeOgYFRufiJTr-6iqw3BODektv1NszSGPR0ZIizxj2bkoUF5jJ0s7h66SGB4m9zxJr6bKLwSlLbxH9g x-goog-generation: 1686076903812681 x-goog-metageneration: 1 x-goog-stored-content-encoding: gzip x-goog-stored-content-length: 20077 content-encoding: gzip x-goog-hash: crc32c=cAighg==, md5=Wy4dX108//3CQnK8nSPuEg== x-goog-storage-class: MULTI_REGIONAL accept-ranges: bytes content-length: 20077 server: UploadServer date: Tue, 06 Jun 2023 19:14:11 GMT expires: Wed, 05 Jun 2024 19:14:11 GMT cache-control: public, max-age=31536000 last-modified: Tue, 06 Jun 2023 18:41:43 GMT etag: "5b2e1d5f5d3cfffdc24272bc9d23ee12" content-type: application/javascript vary: Accept-Encoding age: 331890 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	g.fastcdn.co/js/cm.js	35.244.137.202	200 OK	18 kB
URL GET HTTP/2 g.fastcdn.co/js/cm.js IP 35.244.137.202:443 ASN #15169 GOOGLE Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerGoogle Trust Services LLC Subjectg.fastcdn.co Fingerprint49:FE:F6:1C:3A:DA:D1:46:94:0A:92:4B:E3:98:0B:51:DA:9D:41:66 ValidityThu, 25 May 2023 12:00:54 GMT - Wed, 23 Aug 2023 12:53:07 GMT File type Unicode text, UTF-8 text, with very long lines (52118), with no line terminators Size 18 kB (17906 bytes) Hash 69201b044f9e912cc72b07e4ffbf9555 4a31f53b5a91f52b28f10a84be73d6cffce01706 dd8625bfa35604f050e4dcc7ff10c2c31d7cdf1ce7bdf4cde0d0415dcc74e2fb HTTP Headers `GET /js/cm.js HTTP/1.1 Host: g.fastcdn.co User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK x-guploader-uploadid: ADPycdsW8S-bvCneYxX7-buolDaf8qmsw2RNpUL5_iUdCQJjpK0uiOIAeACMFtnLqVIkPOmh7lR6VDfYJN9bxnsUNKmrWg x-goog-generation: 1656555137097208 x-goog-metageneration: 1 x-goog-stored-content-encoding: gzip x-goog-stored-content-length: 17906 content-encoding: gzip x-goog-hash: crc32c=ZpZBfw==, md5=jkZtmPofdGx0sbQJ0goM8w== x-goog-storage-class: MULTI_REGIONAL accept-ranges: bytes content-length: 17906 server: UploadServer date: Tue, 06 Jun 2023 19:14:12 GMT expires: Wed, 05 Jun 2024 19:14:12 GMT cache-control: public, max-age=31536000 last-modified: Thu, 30 Jun 2022 02:12:17 GMT etag: "8e466d98fa1f746c74b1b409d20a0cf3" content-type: application/javascript vary: Accept-Encoding age: 331889 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	g.fastcdn.co/js/LegacyVendors.9d4b6af660c0e1798b50.js	35.244.137.202	200 OK	31 kB
URL GET HTTP/2 g.fastcdn.co/js/LegacyVendors.9d4b6af660c0e1798b50.js IP 35.244.137.202:443 ASN #15169 GOOGLE Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerGoogle Trust Services LLC Subjectg.fastcdn.co Fingerprint49:FE:F6:1C:3A:DA:D1:46:94:0A:92:4B:E3:98:0B:51:DA:9D:41:66 ValidityThu, 25 May 2023 12:00:54 GMT - Wed, 23 Aug 2023 12:53:07 GMT File type Unicode text, UTF-8 text, with very long lines (65442) Size 31 kB (31178 bytes) Hash a47cf255cfb6395951f8206aa227cdf3 1d4bc3b520f916f28ce0888dc99f6dfe93d76f53 1f29f9fa83fe6deaed043de807534108e2e819ad149d10da35caea2b4f06fcd2 HTTP Headers `GET /js/LegacyVendors.9d4b6af660c0e1798b50.js HTTP/1.1 Host: g.fastcdn.co User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK x-guploader-uploadid: ADPycdu8rtD_FX6FrZHb-HBId2TIfvIyvViBtQej7t8sQfO0J2MHesLixZfatWRgvUkxexsEu-aBW6snFmbY7GUhrQQQOgn6d6hF x-goog-generation: 1686087881607974 x-goog-metageneration: 1 x-goog-stored-content-encoding: gzip x-goog-stored-content-length: 31178 content-encoding: gzip x-goog-hash: crc32c=LYyRnQ==, md5=ye42d4S25v6X4w/RjQkx9Q== x-goog-storage-class: MULTI_REGIONAL accept-ranges: bytes content-length: 31178 server: UploadServer date: Tue, 06 Jun 2023 22:05:52 GMT expires: Wed, 05 Jun 2024 22:05:52 GMT cache-control: public, max-age=31536000 last-modified: Tue, 06 Jun 2023 21:44:41 GMT etag: "c9ee367784b6e6fe97e30fd18d0931f5" content-type: application/javascript vary: Accept-Encoding age: 321589 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	v.fastcdn.co/u/10d1bd3b/52927376-0-image-3.png	104.18.8.227	200 OK	2.6 kB
URL GET HTTP/2 v.fastcdn.co/u/10d1bd3b/52927376-0-image-3.png IP 104.18.8.227:443 ASN #13335 CLOUDFLARENET Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerLet's Encrypt Subjectfastcdn.co Fingerprint43:F1:63:19:6C:4B:4F:B7:0A:9C:9B:7A:F6:83:19:B9:01:05:8C:3E ValidityMon, 29 May 2023 03:58:44 GMT - Sun, 27 Aug 2023 03:58:43 GMT File type RIFF (little-endian) data, Web/P image\012- data Size 2.6 kB (2604 bytes) Hash 1541a85fc58de7b02e66395aa8c6bd5e afae261ac7878e0e7a9733af7902dd8b4304823a e6e7a6c0dddc47d6f6f07b4516ac1980738c2714131fb0dfa045d5605956d213 HTTP Headers `GET /u/10d1bd3b/52927376-0-image-3.png HTTP/1.1 Host: v.fastcdn.co User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Sat, 10 Jun 2023 15:25:41 GMT content-type: image/webp content-length: 2604 cache-control: public, max-age=315360000 cf-bgj: imgq:85,h2pri cf-polished: origFmt=png, origSize=5096 content-disposition: inline; filename="52927376-0-image-3.webp" etag: "847f53b40ace5512e0a2f4efdfb10118" expires: Tue, 07 Jun 2033 15:25:41 GMT last-modified: Sat, 29 Aug 2020 09:00:31 GMT vary: Accept x-guploader-uploadid: ADPycdtsMk1M_zgkugF53RN1_UDBNZMW0Euk9MeLhd_inBlXOs6pX69JsX412psvaTDzWlSSsHxEu9u-eRmzHpUiOf4UPtBt7tEp x-goog-generation: 1598691631680831 x-goog-hash: crc32c=RfVyyQ==, md5=hH9TtArOVRLgovTv37EBGA== x-goog-meta-content-length: 0 x-goog-meta-expires: Wed, 20 Oct 2021 01:00:31 GMT x-goog-metageneration: 2 x-goog-storage-class: STANDARD x-goog-stored-content-encoding: identity x-goog-stored-content-length: 5096 cf-cache-status: HIT accept-ranges: bytes server: cloudflare cf-ray: 7d52a0dc992ab4f3-OSL X-Firefox-Spdy: h2

	v.fastcdn.co/u/10d1bd3b/60657530-0-imgpsh-fullsize-anim.png	104.18.8.227	200 OK	3.8 kB
URL GET HTTP/2 v.fastcdn.co/u/10d1bd3b/60657530-0-imgpsh-fullsize-anim.png IP 104.18.8.227:443 ASN #13335 CLOUDFLARENET Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerLet's Encrypt Subjectfastcdn.co Fingerprint43:F1:63:19:6C:4B:4F:B7:0A:9C:9B:7A:F6:83:19:B9:01:05:8C:3E ValidityMon, 29 May 2023 03:58:44 GMT - Sun, 27 Aug 2023 03:58:43 GMT File type RIFF (little-endian) data, Web/P image\012- data Size 3.8 kB (3822 bytes) Hash b13cb3e57be5d23ac66fe8b74ddfb3be 54e092b82f88ca23b2a71511b0de2658f6a2f463 13a1a72df0916716bdb632b27c74b549fac051555ee1bfacd840929ff7d61c41 HTTP Headers `GET /u/10d1bd3b/60657530-0-imgpsh-fullsize-anim.png HTTP/1.1 Host: v.fastcdn.co User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Sat, 10 Jun 2023 15:25:41 GMT content-type: image/webp content-length: 3822 cache-control: public, max-age=315360000 cf-bgj: imgq:85,h2pri cf-polished: origFmt=png, origSize=8292 content-disposition: inline; filename="60657530-0-imgpsh-fullsize-anim.webp" etag: "c52a92e160ff3794862f5a6981e67d89" expires: Tue, 07 Jun 2033 15:25:41 GMT last-modified: Thu, 20 Jan 2022 18:37:11 GMT vary: Accept x-guploader-uploadid: ADPycdsi4nuSD2EnDkbvTy84G16mxuHOfJR6xDOp37tuCibUVB1UqEveYPi4DYFuv7S_YAMJuqV1suYAQj-6JkS3Vbm1YBnoOG34 x-goog-generation: 1642703831282864 x-goog-hash: crc32c=sZfrtg==, md5=xSqS4WD/N5SGL1ppgeZ9iQ== x-goog-meta-content-length: 0 x-goog-meta-expires: Mon, 13 Mar 2023 10:37:11 GMT x-goog-metageneration: 2 x-goog-storage-class: STANDARD x-goog-stored-content-encoding: identity x-goog-stored-content-length: 8292 cf-cache-status: HIT accept-ranges: bytes server: cloudflare cf-ray: 7d52a0dc992eb4f3-OSL X-Firefox-Spdy: h2

	cdn.instapagemetrics.com/t/js/3/it.js	34.120.27.38	200 OK	19 kB
URL GET HTTP/2 cdn.instapagemetrics.com/t/js/3/it.js IP 34.120.27.38:443 ASN #15169 GOOGLE Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerGoogle Trust Services LLC Subjectcdn.instapagemetrics.com Fingerprint18:39:A1:48:DC:68:01:9A:48:F6:4A:B7:82:63:60:49:4A:E9:96:F6 ValiditySat, 27 May 2023 02:50:34 GMT - Fri, 25 Aug 2023 03:43:47 GMT File type ASCII text, with very long lines (55107) Size 19 kB (18709 bytes) Hash eee931187060719ab17a352de2424e0c 0aa427fa2d22d22e3e08c21f598cc9f2d09efa61 853d7ef6b54d838c009d01e4857b499d7ec4f71f6fced1e2e3c463fd393ccb29 HTTP Headers `GET /t/js/3/it.js HTTP/1.1 Host: cdn.instapagemetrics.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK x-guploader-uploadid: ADPycdvpCDNf6z9y-PqGScQFiTPLTxmCAfekWwNN-OOuYqQxidTWkaITpCpspQ3EIXAgDitWfTgj6uNjLSDYevp_EaJwgZkJ4_rc x-goog-generation: 1632829858360680 x-goog-metageneration: 2 x-goog-stored-content-encoding: gzip x-goog-stored-content-length: 18709 x-goog-meta-tracker-version: 3 content-encoding: gzip x-goog-hash: crc32c=9jCvxw==, md5=hNK6UKgtLEP6wZbPnOBfaA== x-goog-storage-class: STANDARD accept-ranges: bytes content-length: 18709 server: UploadServer date: Mon, 22 May 2023 20:54:56 GMT expires: Tue, 21 May 2024 20:54:56 GMT cache-control: no-transform age: 1621845 last-modified: Tue, 28 Sep 2021 11:50:58 GMT etag: "84d2ba50a82d2c43fac196cf9ce05f68" content-type: application/javascript alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	v.fastcdn.co/u/10d1bd3b/52927366-0-image-4.png	104.18.8.227	200 OK	2.5 kB
URL GET HTTP/2 v.fastcdn.co/u/10d1bd3b/52927366-0-image-4.png IP 104.18.8.227:443 ASN #13335 CLOUDFLARENET Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerLet's Encrypt Subjectfastcdn.co Fingerprint43:F1:63:19:6C:4B:4F:B7:0A:9C:9B:7A:F6:83:19:B9:01:05:8C:3E ValidityMon, 29 May 2023 03:58:44 GMT - Sun, 27 Aug 2023 03:58:43 GMT File type PNG image data, 63 x 57, 8-bit/color RGBA, non-interlaced\012- data Size 2.5 kB (2503 bytes) Hash 9be59d754a406fc80ae2cb3cb978f116 8b9c47e16ebb70141483bdea03196ea1f87ca4e4 5d7abb750c0fd307dc7195a1414478d97fd2718df52504d9c41a8b509805492a HTTP Headers `GET /u/10d1bd3b/52927366-0-image-4.png HTTP/1.1 Host: v.fastcdn.co User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Sat, 10 Jun 2023 15:25:41 GMT content-type: image/png content-length: 2503 x-guploader-uploadid: ADPycdvUabQxZpNcuz6BkyexUaWj00DwFKXTuh0awkIZepBFeQF3DUmaWBFNjiaK04zDVvqcIJqoRIlcObDbxecqgq16iJXTRNob cache-control: public, max-age=315360000 expires: Tue, 07 Jun 2033 15:25:41 GMT last-modified: Sat, 29 Aug 2020 09:00:31 GMT etag: "9be59d754a406fc80ae2cb3cb978f116" x-goog-generation: 1598691631608541 x-goog-metageneration: 2 x-goog-stored-content-encoding: identity x-goog-stored-content-length: 2503 x-goog-meta-content-length: 0 x-goog-meta-expires: Wed, 20 Oct 2021 01:00:31 GMT x-goog-hash: crc32c=YcR7jw==, md5=m+WddUpAb8gK4ss8uXjxFg== x-goog-storage-class: STANDARD cf-cache-status: MISS accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 7d52a0dc9930b4f3-OSL X-Firefox-Spdy: h2

	v.fastcdn.co/u/10d1bd3b/52927371-0-image-2.png	104.18.8.227	200 OK	5.8 kB
URL GET HTTP/2 v.fastcdn.co/u/10d1bd3b/52927371-0-image-2.png IP 104.18.8.227:443 ASN #13335 CLOUDFLARENET Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerLet's Encrypt Subjectfastcdn.co Fingerprint43:F1:63:19:6C:4B:4F:B7:0A:9C:9B:7A:F6:83:19:B9:01:05:8C:3E ValidityMon, 29 May 2023 03:58:44 GMT - Sun, 27 Aug 2023 03:58:43 GMT File type PNG image data, 57 x 54, 8-bit/color RGBA, non-interlaced\012- data Size 5.8 kB (5784 bytes) Hash d80a5301058a7d6e22e91f3e9d707852 ffbb925b689d9e2b7f4dbbb2f1cabd7337439fde bea3303f8c41cbee487cc01ac24b7e4c69ad49b6f4629b410c918f809a00e4b8 HTTP Headers `GET /u/10d1bd3b/52927371-0-image-2.png HTTP/1.1 Host: v.fastcdn.co User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Sat, 10 Jun 2023 15:25:41 GMT content-type: image/png content-length: 5784 x-guploader-uploadid: ADPycdsy4oSNbA_X6KtPfzS9wcHu4A3b7k3yP1s_CIgszQnXKiXEEcYnnhyCQhylrXzvqMYMGCoc6bCebaUR2mDQ5CvqAue5kXYD cache-control: public, max-age=315360000 expires: Tue, 07 Jun 2033 15:25:41 GMT last-modified: Sat, 29 Aug 2020 09:00:31 GMT etag: "d80a5301058a7d6e22e91f3e9d707852" x-goog-generation: 1598691631615514 x-goog-metageneration: 2 x-goog-stored-content-encoding: identity x-goog-stored-content-length: 5784 x-goog-meta-content-length: 0 x-goog-meta-expires: Wed, 20 Oct 2021 01:00:31 GMT x-goog-hash: crc32c=Gz8jfw==, md5=2ApTAQWKfW4i6R8+nXB4Ug== x-goog-storage-class: STANDARD cf-cache-status: MISS accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 7d52a0dc9932b4f3-OSL X-Firefox-Spdy: h2

	devops.tortexperts.com/js/zaplanding.js	138.197.100.36	200 OK	6.4 kB
URL GET HTTP/1.1 devops.tortexperts.com/js/zaplanding.js IP 138.197.100.36:443 ASN #14061 DIGITALOCEAN-ASN Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerLet's Encrypt Subjectdevops.tortexperts.com Fingerprint32:01:88:EE:8B:28:9C:A8:B6:9E:50:2A:B4:6C:D4:35:73:03:07:CC ValiditySat, 27 May 2023 13:52:56 GMT - Fri, 25 Aug 2023 13:52:55 GMT File type ASCII text Size 6.4 kB (6400 bytes) Hash 79907eca2ce12d49b8d7fd53b2eb4a9b b737e2b636b75add9c0dcc1c449578ff5e588fe0 9e01a1322ad12730d14c64fe45a97a38522af94522cb185ce7a9061d47a290ac HTTP Headers `GET /js/zaplanding.js HTTP/1.1 Host: devops.tortexperts.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx/1.18.0 (Ubuntu) Date: Sat, 10 Jun 2023 15:25:41 GMT Content-Type: application/javascript Content-Length: 6400 Last-Modified: Thu, 01 Jun 2023 17:46:03 GMT Connection: keep-alive ETag: "6478d95b-1900" Expires: Sun, 09 Jun 2024 15:25:41 GMT Cache-Control: max-age=31536000 Accept-Ranges: bytes`

	devops.tortexperts.com/api/js/landing/832628421495051	138.197.100.36	200 OK	681 B
URL GET HTTP/1.1 devops.tortexperts.com/api/js/landing/832628421495051 IP 138.197.100.36:443 ASN #14061 DIGITALOCEAN-ASN Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerLet's Encrypt Subjectdevops.tortexperts.com Fingerprint32:01:88:EE:8B:28:9C:A8:B6:9E:50:2A:B4:6C:D4:35:73:03:07:CC ValiditySat, 27 May 2023 13:52:56 GMT - Fri, 25 Aug 2023 13:52:55 GMT File type ASCII text Size 681 B (681 bytes) Hash bc9da58173289c211eb957736bf775c5 b612837df9827912d41e0e721dfa15916460e7a0 b5124ec9726d41ba9ac23533d8e104575d2b5d48a8d56b0b82d9b7f840a5d68d HTTP Headers `GET /api/js/landing/832628421495051 HTTP/1.1 Host: devops.tortexperts.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx/1.18.0 (Ubuntu) Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Cache-Control: no-cache, private Date: Sat, 10 Jun 2023 15:25:41 GMT Access-Control-Allow-Origin: *`

	v.fastcdn.co/a/img/builder2/select-arrow-drop-down.png	104.18.8.227	200 OK	93 B
URL GET HTTP/2 v.fastcdn.co/a/img/builder2/select-arrow-drop-down.png IP 104.18.8.227:443 ASN #13335 CLOUDFLARENET Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerLet's Encrypt Subjectfastcdn.co Fingerprint43:F1:63:19:6C:4B:4F:B7:0A:9C:9B:7A:F6:83:19:B9:01:05:8C:3E ValidityMon, 29 May 2023 03:58:44 GMT - Sun, 27 Aug 2023 03:58:43 GMT File type PNG image data, 21 x 6, 8-bit/color RGBA, non-interlaced\012- data Size 93 B (93 bytes) Hash e057389b79347ab1bd16aa87711f396b f381bd1d314620f379e506960996aad417e8a903 bd2afc4fe78e8b1727261c64a1b1faa1856978113ae5dd7b525fa5dea87d79f7 HTTP Headers `GET /a/img/builder2/select-arrow-drop-down.png HTTP/1.1 Host: v.fastcdn.co User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Sat, 10 Jun 2023 15:25:41 GMT content-type: image/png content-length: 93 access-control-allow-origin: * access-control-expose-headers: Content-Type cache-control: public, max-age=14400 cf-bgj: imgq:85,h2pri cf-polished: status=not_needed etag: "e057389b79347ab1bd16aa87711f396b" expires: Sat, 10 Jun 2023 19:25:41 GMT last-modified: Mon, 04 Jul 2016 13:52:28 GMT vary: X-Goog-Allowed-Resources, Accept-Encoding x-guploader-uploadid: ADPycdu40cHrojG66l966SdE8LK-SOHu7XG54sbEoYsZC3TZ65AhTCIJGmHfTPOase6C9CS5ip_9FbsXlrChPH1TFFQqjA x-goog-generation: 1467640348854000 x-goog-hash: crc32c=v4gmyA==, md5=4Fc4m3k0erG9FqqHcR85aw== x-goog-metageneration: 2 x-goog-storage-class: STANDARD x-goog-stored-content-encoding: identity x-goog-stored-content-length: 93 cf-cache-status: HIT age: 985 accept-ranges: bytes server: cloudflare cf-ray: 7d52a0e06808b4f3-OSL X-Firefox-Spdy: h2

	v.fastcdn.co/u/10d1bd3b/61073421-0-image-2022-02-22T20-.png	104.18.8.227	200 OK	3.2 kB
URL GET HTTP/2 v.fastcdn.co/u/10d1bd3b/61073421-0-image-2022-02-22T20-.png IP 104.18.8.227:443 ASN #13335 CLOUDFLARENET Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerLet's Encrypt Subjectfastcdn.co Fingerprint43:F1:63:19:6C:4B:4F:B7:0A:9C:9B:7A:F6:83:19:B9:01:05:8C:3E ValidityMon, 29 May 2023 03:58:44 GMT - Sun, 27 Aug 2023 03:58:43 GMT File type RIFF (little-endian) data, Web/P image\012- data Size 3.2 kB (3246 bytes) Hash 7875be0390902deeb3fa87c2602d3170 a9795775ea2b4fd78190a862c24a3d78e1280291 7463068384e622d722e07815541cc181abd14aaffe33757286809cbc929cfa35 HTTP Headers `GET /u/10d1bd3b/61073421-0-image-2022-02-22T20-.png HTTP/1.1 Host: v.fastcdn.co User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Sat, 10 Jun 2023 15:25:41 GMT content-type: image/webp content-length: 3246 cache-control: public, max-age=315360000 cf-bgj: imgq:85,h2pri cf-polished: origFmt=png, origSize=29050 content-disposition: inline; filename="61073421-0-image-2022-02-22T20-.webp" etag: "c31ac97625ea8ceed4dc7172f390b7be" expires: Tue, 07 Jun 2033 15:25:41 GMT last-modified: Thu, 24 Feb 2022 18:36:42 GMT vary: Accept x-guploader-uploadid: ADPycdv-YKi5_4JItQtHRKWSqmGuJ3YwsFTXJIP8LURCwOd-sASuleW_mHZIfUhMZVywsXUneDxno2WoAQJ-ytsZL6Rbzc457Uho x-goog-generation: 1645727802359357 x-goog-hash: crc32c=TOZ4yA==, md5=wxrJdiXqjO7U3HFy85C3vg== x-goog-meta-content-length: 0 x-goog-meta-expires: Mon, 17 Apr 2023 10:36:42 GMT x-goog-metageneration: 2 x-goog-storage-class: STANDARD x-goog-stored-content-encoding: identity x-goog-stored-content-length: 29050 cf-cache-status: HIT accept-ranges: bytes server: cloudflare cf-ray: 7d52a0e05ffcb4f3-OSL X-Firefox-Spdy: h2

	v.fastcdn.co/u/10d1bd3b/61082825-0-Group-59.png	104.18.8.227	200 OK	80 kB
URL GET HTTP/2 v.fastcdn.co/u/10d1bd3b/61082825-0-Group-59.png IP 104.18.8.227:443 ASN #13335 CLOUDFLARENET Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerLet's Encrypt Subjectfastcdn.co Fingerprint43:F1:63:19:6C:4B:4F:B7:0A:9C:9B:7A:F6:83:19:B9:01:05:8C:3E ValidityMon, 29 May 2023 03:58:44 GMT - Sun, 27 Aug 2023 03:58:43 GMT File type RIFF (little-endian) data, Web/P image\012- data Size 80 kB (80246 bytes) Hash 81003509ab59d8b2a77d6d6bb06dfd12 72853184ace19ab85c2122e1efd0b096c3e4abdd 2a40c341be8af7fa70ad70e1eb6ad05e8a4c8233c585f388f0445b06698720b6 HTTP Headers `GET /u/10d1bd3b/61082825-0-Group-59.png HTTP/1.1 Host: v.fastcdn.co User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Sat, 10 Jun 2023 15:25:41 GMT content-type: image/webp content-length: 80246 cache-control: public, max-age=315360000 cf-bgj: imgq:85,h2pri cf-polished: origFmt=png, origSize=127462 content-disposition: inline; filename="61082825-0-Group-59.webp" etag: "18302f530eee5ecb60477b443683b6b9" expires: Tue, 07 Jun 2033 15:25:41 GMT last-modified: Fri, 25 Feb 2022 18:00:17 GMT vary: Accept x-guploader-uploadid: ADPycdtNN5RGsRC8DwQIPcIDjCueQEhhHd32ZpRV_O1M_-cmxpIAp_8Q1fFViGNz5k5uEAiYAVb9j2WdYk6kxIxEuj4eAm_klhFI x-goog-generation: 1645812017511085 x-goog-hash: crc32c=lxFS9w==, md5=GDAvUw7uXstgR3tENoO2uQ== x-goog-meta-content-length: 0 x-goog-meta-expires: Tue, 18 Apr 2023 10:00:17 GMT x-goog-metageneration: 2 x-goog-storage-class: STANDARD x-goog-stored-content-encoding: identity x-goog-stored-content-length: 127462 cf-cache-status: HIT accept-ranges: bytes server: cloudflare cf-ray: 7d52a0e06803b4f3-OSL X-Firefox-Spdy: h2

	www.googletagmanager.com/gtm.js?id=GTM-MF6MD7K	142.250.74.168	200 OK	49 kB
URL GET HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-MF6MD7K IP 142.250.74.168:443 ASN #15169 GOOGLE Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerGoogle Trust Services LLC Subject.google-analytics.com Fingerprint73:BF:B0:D4:62:48:8E:EF:09:5F:00:57:95:98:82:16:BB:07:35:0C ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT File type ASCII text, with very long lines (2271) Size 49 kB (49179 bytes) Hash 701d800eca95ef617fb1e749287657d0 982d6dfe7f1c3e0835fa0c369a0a0559156e4f21 24ac0391c3724771d9492916ebbc08a80a0c40ba9736ddbb586e2984cd22e978 HTTP Headers `GET /gtm.js?id=GTM-MF6MD7K HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Sat, 10 Jun 2023 15:25:41 GMT expires: Sat, 10 Jun 2023 15:25:41 GMT cache-control: private, max-age=900 last-modified: Sat, 10 Jun 2023 15:00:00 GMT strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 49179 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	devops.tortexperts.com/js/uuid2.js	138.197.100.36	200 OK	1.5 kB
URL GET HTTP/1.1 devops.tortexperts.com/js/uuid2.js IP 138.197.100.36:443 ASN #14061 DIGITALOCEAN-ASN Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerLet's Encrypt Subjectdevops.tortexperts.com Fingerprint32:01:88:EE:8B:28:9C:A8:B6:9E:50:2A:B4:6C:D4:35:73:03:07:CC ValiditySat, 27 May 2023 13:52:56 GMT - Fri, 25 Aug 2023 13:52:55 GMT File type ASCII text Size 1.5 kB (1532 bytes) Hash 7d51e42e6f49a8960eb4cb30598a9bcc 15a597273e8b463a49d5bb7dd76711226c70a82c c83517c9af089cba90b664aa9aec659110cfed01c6a80a8d8b3052d7a6f5cc73 HTTP Headers `GET /js/uuid2.js HTTP/1.1 Host: devops.tortexperts.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx/1.18.0 (Ubuntu) Date: Sat, 10 Jun 2023 15:25:41 GMT Content-Type: application/javascript Content-Length: 1532 Last-Modified: Wed, 14 Sep 2022 13:48:22 GMT Connection: keep-alive ETag: "6321dba6-5fc" Expires: Sun, 09 Jun 2024 15:25:41 GMT Cache-Control: max-age=31536000 Accept-Ranges: bytes`

	fonts.gstatic.com/s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2	216.58.207.227	200 OK	45 kB
URL GET HTTP/2 fonts.gstatic.com/s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT File type Web Open Font Format (Version 2), TrueType, length 45300, version 1.0\012- data Size 45 kB (45300 bytes) Hash 5fe660c3a23b871807b0e1d3ee973d23 62a9dd423b30b6ee3ab3dd40d573545d579af10a e13ffa988be59cbf299d7ff68f019f902b60848203ac4990819eb7e4624ee52d HTTP Headers GET /s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.talcumlawsuitclaims.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 45300 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Sat, 10 Jun 2023 03:26:22 GMT expires: Sun, 09 Jun 2024 03:26:22 GMT cache-control: public, max-age=31536000 age: 43159 last-modified: Wed, 27 Apr 2022 16:11:08 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2	216.58.207.227	200 OK	48 kB
URL GET HTTP/2 fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT File type Web Open Font Format (Version 2), TrueType, length 48412, version 1.0\012- data Size 48 kB (48412 bytes) Hash 31a8297826cdcea344698ff952694a7f 4fa1ee4c471d1c05e9141855eec5ee09b898d594 7c7818c25a18e8a38553fcbcbc2ad0b5e964103a7d2e494f82815e3f70bf3fc5 HTTP Headers GET /s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.talcumlawsuitclaims.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 48412 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 08 Jun 2023 11:49:35 GMT expires: Fri, 07 Jun 2024 11:49:35 GMT cache-control: public, max-age=31536000 age: 185766 last-modified: Tue, 02 May 2023 15:08:53 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2	216.58.207.227	200 OK	48 kB
URL GET HTTP/2 fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT File type Web Open Font Format (Version 2), TrueType, length 48412, version 1.0\012- data Size 48 kB (48412 bytes) Hash 31a8297826cdcea344698ff952694a7f 4fa1ee4c471d1c05e9141855eec5ee09b898d594 7c7818c25a18e8a38553fcbcbc2ad0b5e964103a7d2e494f82815e3f70bf3fc5 HTTP Headers GET /s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.talcumlawsuitclaims.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 48412 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 08 Jun 2023 11:49:35 GMT expires: Fri, 07 Jun 2024 11:49:35 GMT cache-control: public, max-age=31536000 age: 185766 last-modified: Tue, 02 May 2023 15:08:53 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2	216.58.207.227	200 OK	25 kB
URL GET HTTP/2 fonts.gstatic.com/s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT File type Web Open Font Format (Version 2), TrueType, length 25372, version 1.0\012- data Size 25 kB (25372 bytes) Hash fe424f96cb627d8b835cb001af17f56e c5b4368fed99812a99036fba86d01367b5549505 35c92598a5f32c018dc630f57b183b0284c211ce9c222e5b36840a62115262f1 HTTP Headers GET /s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.talcumlawsuitclaims.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 25372 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 06 Jun 2023 20:18:46 GMT expires: Wed, 05 Jun 2024 20:18:46 GMT cache-control: public, max-age=31536000 age: 328015 last-modified: Mon, 18 Jul 2022 19:24:05 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/ptsans/v17/jizfRExUiTo99u79B_mh0O6tLQ.woff2	216.58.207.227	200 OK	47 kB
URL GET HTTP/2 fonts.gstatic.com/s/ptsans/v17/jizfRExUiTo99u79B_mh0O6tLQ.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT File type Web Open Font Format (Version 2), TrueType, length 47048, version 1.0\012- data Size 47 kB (47048 bytes) Hash 87a1556b696ae2cb1a726bd8c4584a2f 1be0f6f39e0cf316f9827f945eeeaef8294cc37b 141f0c53e457585d4ac7426eb3d757666d250ee6fbf0e9c0878128e4c627f0b1 HTTP Headers GET /s/ptsans/v17/jizfRExUiTo99u79B_mh0O6tLQ.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.talcumlawsuitclaims.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 47048 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Sat, 10 Jun 2023 03:39:41 GMT expires: Sun, 09 Jun 2024 03:39:41 GMT cache-control: public, max-age=31536000 age: 42360 last-modified: Wed, 27 Apr 2022 16:55:54 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	heatmap-events-collector.instapage.com/static/lib.js	34.71.95.65	200 OK	12 kB
URL GET HTTP/2 heatmap-events-collector.instapage.com/static/lib.js IP 34.71.95.65:443 ASN #15169 GOOGLE Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerLet's Encrypt Subjectheatmap-events-collector.instapage.com FingerprintEC:F8:58:5A:14:34:98:22:93:33:2B:46:9A:73:4E:13:C5:7A:DF:AF ValidityFri, 21 Apr 2023 10:37:42 GMT - Thu, 20 Jul 2023 10:37:41 GMT File type gzip compressed data, from Unix\012- data Size 12 kB (12356 bytes) Hash f75964092ec6c38f4d12831922269baa 1cdf3622e6bd12931f784877988dabe5ae3c3d84 45957cde7a1bf8d0e5539196833a9943ca1c7de294a562d27b5ca407b1b525e0 HTTP Headers `GET /static/lib.js HTTP/1.1 Host: heatmap-events-collector.instapage.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Sat, 10 Jun 2023 15:25:41 GMT content-type: application/javascript; charset=UTF-8 content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests x-dns-prefetch-control: off expect-ct: max-age=0 x-frame-options: sameorigin strict-transport-security: max-age=15724800; includeSubDomains x-download-options: noopen x-content-type-options: nosniff x-permitted-cross-domain-policies: none referrer-policy: strict-origin-when-cross-origin x-xss-protection: 0 vary: Accept-Encoding access-control-allow-credentials: true cache-control: public, must-revalidate, public expires: Sat, 10 Jun 2023 15:30:41 GMT accept-ranges: bytes last-modified: Sat, 10 Jun 2023 13:03:45 GMT content-encoding: gzip X-Firefox-Spdy: h2

	fonts.googleapis.com/css?family=PT+Sans:400,700,400italic,700italic&display=swap	142.250.74.106	200 OK	746 B
URL GET HTTP/2 fonts.googleapis.com/css?family=PT+Sans:400,700,400italic,700italic&display=swap IP 142.250.74.106:443 ASN #15169 GOOGLE Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint3F:94:23:08:F7:DB:8B:36:93:90:93:F4:9E:46:A6:6A:93:75:15:C0 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT File type gzip compressed data, max compression\012- data Size 746 B (746 bytes) Hash 199effc0cebececb2f82616d69732f53 870ce2016115102bcf2f13d784021eaf01321acb d97721bb435ef22459b872bc98ea8211d398a4d4e7ebc8a32146a9578147d35f HTTP Headers `GET /css?family=PT+Sans:400,700,400italic,700italic&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Sat, 10 Jun 2023 15:25:41 GMT date: Sat, 10 Jun 2023 15:25:41 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	v.fastcdn.co/u/10d1bd3b/52927216-0-icon1.png	104.18.8.227	200 OK	3.9 kB
URL GET HTTP/2 v.fastcdn.co/u/10d1bd3b/52927216-0-icon1.png IP 104.18.8.227:443 ASN #13335 CLOUDFLARENET Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerLet's Encrypt Subjectfastcdn.co Fingerprint43:F1:63:19:6C:4B:4F:B7:0A:9C:9B:7A:F6:83:19:B9:01:05:8C:3E ValidityMon, 29 May 2023 03:58:44 GMT - Sun, 27 Aug 2023 03:58:43 GMT File type PNG image data, 72 x 71, 8-bit/color RGBA, non-interlaced\012- data Size 3.9 kB (3851 bytes) Hash ba912c4640982642e68df25d40cf7635 db747821b641c666c432fe6862b96efc0c835566 c6e1627f959ddadec5c8a5eefa80d0f21d273deaa03b780cd2d513b34a5b8c4e HTTP Headers `GET /u/10d1bd3b/52927216-0-icon1.png HTTP/1.1 Host: v.fastcdn.co User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Sat, 10 Jun 2023 15:25:42 GMT content-type: image/png content-length: 3851 x-guploader-uploadid: ADPycdsOKVNbQJLLjE6slrR1yUdJwlmt2T3xhY9V4pQKFnByAjZWFT1eyU1p9oiWCM1Eug1CoM2PBrsUlOw23GeNrXq2dYkspiux cache-control: public, max-age=315360000 expires: Tue, 07 Jun 2033 15:25:42 GMT last-modified: Sat, 29 Aug 2020 08:14:16 GMT etag: "ba912c4640982642e68df25d40cf7635" x-goog-generation: 1598688856966024 x-goog-metageneration: 2 x-goog-stored-content-encoding: identity x-goog-stored-content-length: 3851 x-goog-meta-content-length: 0 x-goog-meta-expires: Wed, 20 Oct 2021 00:14:16 GMT x-goog-hash: crc32c=D4e3/w==, md5=upEsRkCYJkLmjfJdQM92NQ== x-goog-storage-class: STANDARD cf-cache-status: MISS accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 7d52a0e21ab0b4f3-OSL X-Firefox-Spdy: h2

	devops.tortexperts.com/api/show/landing?page_id=https://www.talcumlawsuitclaims.com/&adv_id=1	138.197.100.36	200 OK	394 B
URL GET HTTP/1.1 devops.tortexperts.com/api/show/landing?page_id=https://www.talcumlawsuitclaims.com/&adv_id=1 IP 138.197.100.36:443 ASN #14061 DIGITALOCEAN-ASN Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerLet's Encrypt Subjectdevops.tortexperts.com Fingerprint32:01:88:EE:8B:28:9C:A8:B6:9E:50:2A:B4:6C:D4:35:73:03:07:CC ValiditySat, 27 May 2023 13:52:56 GMT - Fri, 25 Aug 2023 13:52:55 GMT File type JSON data\012- , ASCII text, with very long lines (394), with no line terminators Size 394 B (394 bytes) Hash 389572e2f87c9ce9cd1acb28a4c5a33a 046aca89f12acda5558b15cfc8c8bddf688d4278 cad05e0de44726dbbd9fcb0dd1bad6ed5db350785e138e8f19d8f1df015ffab9 HTTP Headers GET /api/show/landing?page_id=https://www.talcumlawsuitclaims.com/&adv_id=1 HTTP/1.1 Host: devops.tortexperts.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.talcumlawsuitclaims.com/ Origin: https://www.talcumlawsuitclaims.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Server: nginx/1.18.0 (Ubuntu) Content-Type: application/json Transfer-Encoding: chunked Connection: keep-alive Cache-Control: no-cache, private Date: Sat, 10 Jun 2023 15:25:42 GMT Access-Control-Allow-Origin: *`

	v.fastcdn.co/u/10d1bd3b/61463802-0-favicon.png	104.18.8.227	200 OK	9.4 kB
URL GET HTTP/2 v.fastcdn.co/u/10d1bd3b/61463802-0-favicon.png IP 104.18.8.227:443 ASN #13335 CLOUDFLARENET Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerLet's Encrypt Subjectfastcdn.co Fingerprint43:F1:63:19:6C:4B:4F:B7:0A:9C:9B:7A:F6:83:19:B9:01:05:8C:3E ValidityMon, 29 May 2023 03:58:44 GMT - Sun, 27 Aug 2023 03:58:43 GMT File type PNG image data, 197 x 158, 8-bit/color RGBA, non-interlaced\012- data Size 9.4 kB (9395 bytes) Hash daa538030d8e26067cd327710c94cba5 f7262d489a7127c12e6d2e649ac69cd1aee2cee4 2216862c750ec45a85ea3fa0686ebdda3b9df95eaa66c933fc58e2f75021d020 HTTP Headers `GET /u/10d1bd3b/61463802-0-favicon.png HTTP/1.1 Host: v.fastcdn.co User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Sat, 10 Jun 2023 15:25:43 GMT content-type: image/png content-length: 9395 x-guploader-uploadid: ADPycdtkKnCJvx176Arl1spUGZ8zLr4PazIRvRhQhUDuGVswtBzJZ0O-t4N_tOS-Kxwg8aHojA6DTXVJBbX1oBxdfDLHZwiWi7d5 cache-control: public, max-age=315360000 expires: Tue, 07 Jun 2033 15:25:43 GMT last-modified: Thu, 14 Apr 2022 19:00:15 GMT etag: "daa538030d8e26067cd327710c94cba5" x-goog-generation: 1649962815897401 x-goog-metageneration: 2 x-goog-stored-content-encoding: identity x-goog-stored-content-length: 9395 x-goog-meta-content-length: 0 x-goog-meta-expires: Mon, 05 Jun 2023 11:00:15 GMT x-goog-hash: crc32c=qZabLQ==, md5=2qU4Aw2OJgZ80ydxDJTLpQ== x-goog-storage-class: STANDARD cf-cache-status: MISS accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 7d52a0e7babab4f3-OSL X-Firefox-Spdy: h2

	www.tf9jthtrk.com/scripts/sdk/everflow.js	34.117.111.166	200 OK	9.0 kB
URL GET HTTP/2 www.tf9jthtrk.com/scripts/sdk/everflow.js IP 34.117.111.166:443 ASN #15169 GOOGLE Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerStarfield Technologies, Inc. Subjecttf9jthtrk.com FingerprintCD:52:31:5C:02:E6:41:3B:AE:BC:AB:06:0C:34:3E:B3:04:79:58:07 ValidityThu, 06 Apr 2023 20:12:47 GMT - Sat, 06 Apr 2024 20:12:47 GMT File type gzip compressed data, from Unix\012- data Size 9.0 kB (9046 bytes) Hash feee19b4b949e9887df0c96bbb7f30e3 7b9a2fa7bcf8e96b5cbdd922097e55006ddd691d cc17f9627a4b9a2a9341b2444f8e4dbf6489ca8d8de9ae4a91aaadfafc797077 HTTP Headers `GET /scripts/sdk/everflow.js HTTP/1.1 Host: www.tf9jthtrk.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Sat, 10 Jun 2023 15:25:41 GMT content-type: text/javascript accept-ch: Sec-Ch-Ua-Platform-Version cache-control: max-age=14400 vary: Origin x-eflow-request-id: 9aeb4d45-2091-4959-904d-9399de9522bf content-encoding: gzip via: 1.1 google alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	api.neverbounce.com/v4/poe/notify?key=public_558d6d3d44cf91fec048ec9d8c3961c2&event=form.load&callback=__neverbounce_284004	54.144.101.18	200 OK	145 B
URL GET HTTP/2 api.neverbounce.com/v4/poe/notify?key=public_558d6d3d44cf91fec048ec9d8c3961c2&event=form.load&callback=__neverbounce_284004 IP 54.144.101.18:443 ASN #14618 AMAZON-AES Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerAmazon Subjectneverbounce.com Fingerprint20:F5:86:36:5E:B6:C2:13:F6:9D:D3:24:E2:91:98:A8:CB:80:F0:AE ValidityMon, 13 Feb 2023 00:00:00 GMT - Tue, 12 Mar 2024 23:59:59 GMT File type ASCII text, with no line terminators Size 145 B (145 bytes) Hash ff9d87219b62f656e5bd85c178f91ae5 9542a75cf495f9f95d9bebb01f2a934ac1234853 27d82f07db2b10d401315b8be7177538e1973e8dbce88b7b042db6ee1bad6966 HTTP Headers `GET /v4/poe/notify?key=public_558d6d3d44cf91fec048ec9d8c3961c2&event=form.load&callback=__neverbounce_284004 HTTP/1.1 Host: api.neverbounce.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Sat, 10 Jun 2023 15:25:42 GMT content-type: application/javascript server: nginx vary: Accept-Encoding cache-control: no-cache, private x-ua-compatible: IE=Edge strict-transport-security: max-age=31536000; includeSubDomains content-encoding: gzip X-Firefox-Spdy: h2`

	create.leadid.com/2.11.9/GenerateToken?msn=1&pid=f7a47d49-3c41-4e48-9d1d-1673f7c19d89&_=83347031	3.213.164.48	200 OK	1.5 kB
URL POST HTTP/2 create.leadid.com/2.11.9/GenerateToken?msn=1&pid=f7a47d49-3c41-4e48-9d1d-1673f7c19d89&_=83347031 IP 3.213.164.48:443 ASN #14618 AMAZON-AES Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerAmazon Subjectcreate.leadid.com Fingerprint95:26:B9:FB:B8:EC:5B:05:C8:59:F6:30:90:D5:6D:0A:E9:88:82:7D ValidityThu, 23 Feb 2023 00:00:00 GMT - Thu, 19 Oct 2023 23:59:59 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Size 1.5 kB (1505 bytes) Hash 8aead18370b48902b5ff9d67de4c4743 6608c124defaefd06700ec9ffd224fdc983390a7 0e5b86c167daf8f740928b9f707cd8c859fa0269c50ab615316adb58f52487f2 HTTP Headers POST /2.11.9/GenerateToken?msn=1&pid=f7a47d49-3c41-4e48-9d1d-1673f7c19d89&_=83347031 HTTP/1.1 Host: create.leadid.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-type: application/x-www-form-urlencoded Content-Length: 338 Origin: https://www.talcumlawsuitclaims.com DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Sat, 10 Jun 2023 15:25:43 GMT content-type: text/plain;charset=UTF-8 server: nginx set-cookie: rgisanonymous=false; expires=Mon, 10-Jul-2023 15:25:43 GMT; Max-Age=2592000; path=/ rguserid=ea287678-7d7e-4ec5-8bbf-6c02095d0461; expires=Mon, 10-Jul-2023 15:25:43 GMT; Max-Age=2592000; path=/ rguuid=true; expires=Mon, 10-Jul-2023 15:25:43 GMT; Max-Age=2592000; path=/ rgisanonymous=true; expires=Mon, 10-Jul-2023 15:25:43 GMT; Max-Age=2592000; path=/ cache-control: no-cache, must-revalidate expires: Sat, 26 Jul 1997 05:00:00 GMT access-control-allow-origin: * access-control-allow-headers: X-Requested-With, Content-Type access-control-max-age: 1728000 strict-transport-security: max-age=31536000; includeSubDomains; preload content-encoding: gzip X-Firefox-Spdy: h2

	ec.instapagemetrics.com/t/two	34.71.95.65	200 OK	2 B
URL POST HTTP/2 ec.instapagemetrics.com/t/two IP 34.71.95.65:443 ASN #15169 GOOGLE Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerLet's Encrypt Subjectec.instapagemetrics.com Fingerprint86:57:A5:EE:AB:2F:C3:1E:05:4E:A3:30:14:2A:A7:D6:F9:D6:09:75 ValidityThu, 04 May 2023 05:07:16 GMT - Wed, 02 Aug 2023 05:07:15 GMT File type ASCII text, with no line terminators Size 2 B (2 bytes) Hash 444bcb3a3fcf8389296c49467f27e1d6 7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb 2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df HTTP Headers POST /t/two HTTP/1.1 Host: ec.instapagemetrics.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json; charset=UTF-8 Content-Length: 2084 Origin: https://www.talcumlawsuitclaims.com DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Sat, 10 Jun 2023 15:25:43 GMT content-type: text/plain; charset=UTF-8 content-length: 2 p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA" access-control-allow-origin: https://www.talcumlawsuitclaims.com access-control-allow-credentials: true strict-transport-security: max-age=15724800; includeSubDomains referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff x-frame-options: sameorigin X-Firefox-Spdy: h2`

	api.trustedform.com/certs/2cfd409c85fdce267f50264e6bc26ee5f0348bb2/snapshot	54.209.19.170	204 No Content	0 B
URL POST HTTP/2 api.trustedform.com/certs/2cfd409c85fdce267f50264e6bc26ee5f0348bb2/snapshot IP 54.209.19.170:443 ASN #14618 AMAZON-AES Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerAmazon Subject.trustedform.com FingerprintF4:48:7E:31:35:27:13:EC:49:9C:69:FF:E9:38:DF:3E:B3:A9:C9:01 ValidityWed, 22 Feb 2023 00:00:00 GMT - Mon, 09 Oct 2023 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /certs/2cfd409c85fdce267f50264e6bc26ee5f0348bb2/snapshot HTTP/1.1 Host: api.trustedform.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 32487 Origin: https://www.talcumlawsuitclaims.com DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 204 No Content date: Sat, 10 Jun 2023 15:25:43 GMT access-control-allow-credentials: true access-control-allow-origin: * access-control-expose-headers: cache-control: max-age=0, private, must-revalidate server: Cowboy X-Firefox-Spdy: h2`

	api.trustedform.com/certs/2cfd409c85fdce267f50264e6bc26ee5f0348bb2/fingerprints	54.209.19.170	204 No Content	0 B
URL POST HTTP/2 api.trustedform.com/certs/2cfd409c85fdce267f50264e6bc26ee5f0348bb2/fingerprints IP 54.209.19.170:443 ASN #14618 AMAZON-AES Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerAmazon Subject.trustedform.com FingerprintF4:48:7E:31:35:27:13:EC:49:9C:69:FF:E9:38:DF:3E:B3:A9:C9:01 ValidityWed, 22 Feb 2023 00:00:00 GMT - Mon, 09 Oct 2023 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /certs/2cfd409c85fdce267f50264e6bc26ee5f0348bb2/fingerprints HTTP/1.1 Host: api.trustedform.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 391 Origin: https://www.talcumlawsuitclaims.com DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 204 No Content date: Sat, 10 Jun 2023 15:25:43 GMT access-control-allow-credentials: true access-control-allow-origin: * access-control-expose-headers: cache-control: max-age=0, private, must-revalidate server: Cowboy X-Firefox-Spdy: h2`

	api.trustedform.com/certs/2cfd409c85fdce267f50264e6bc26ee5f0348bb2/events	54.209.19.170	204 No Content	0 B
URL POST HTTP/2 api.trustedform.com/certs/2cfd409c85fdce267f50264e6bc26ee5f0348bb2/events IP 54.209.19.170:443 ASN #14618 AMAZON-AES Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerAmazon Subject.trustedform.com FingerprintF4:48:7E:31:35:27:13:EC:49:9C:69:FF:E9:38:DF:3E:B3:A9:C9:01 ValidityWed, 22 Feb 2023 00:00:00 GMT - Mon, 09 Oct 2023 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /certs/2cfd409c85fdce267f50264e6bc26ee5f0348bb2/events HTTP/1.1 Host: api.trustedform.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 838 Origin: https://www.talcumlawsuitclaims.com DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 204 No Content date: Sat, 10 Jun 2023 15:25:43 GMT access-control-allow-credentials: true access-control-allow-origin: * access-control-expose-headers: cache-control: max-age=0, private, must-revalidate server: Cowboy X-Firefox-Spdy: h2`

	v.fastcdn.co/u/10d1bd3b/61463802-0-favicon.png	104.18.8.227	200 OK	3.4 kB
URL GET HTTP/2 v.fastcdn.co/u/10d1bd3b/61463802-0-favicon.png IP 104.18.8.227:443 ASN #13335 CLOUDFLARENET Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerLet's Encrypt Subjectfastcdn.co Fingerprint43:F1:63:19:6C:4B:4F:B7:0A:9C:9B:7A:F6:83:19:B9:01:05:8C:3E ValidityMon, 29 May 2023 03:58:44 GMT - Sun, 27 Aug 2023 03:58:43 GMT File type RIFF (little-endian) data, Web/P image\012- data Size 3.4 kB (3420 bytes) Hash e15a94d7ca9638afc3b3f731ac5a851b 1495313041f00bff5fe24a94153fcd63321130e1 8d8d307aaff8daa4f92696cc9fb3e25d3c0b7f2e50727775c1f3076154b01bbb HTTP Headers `GET /u/10d1bd3b/61463802-0-favicon.png HTTP/1.1 Host: v.fastcdn.co User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Sat, 10 Jun 2023 15:25:43 GMT content-type: image/webp content-length: 3420 cache-control: public, max-age=315360000 cf-bgj: imgq:85,h2pri cf-polished: origFmt=png, origSize=9395 content-disposition: inline; filename="61463802-0-favicon.webp" etag: "daa538030d8e26067cd327710c94cba5" expires: Tue, 07 Jun 2033 15:25:43 GMT last-modified: Thu, 14 Apr 2022 19:00:15 GMT vary: Accept x-guploader-uploadid: ADPycdtkKnCJvx176Arl1spUGZ8zLr4PazIRvRhQhUDuGVswtBzJZ0O-t4N_tOS-Kxwg8aHojA6DTXVJBbX1oBxdfDLHZwiWi7d5 x-goog-generation: 1649962815897401 x-goog-hash: crc32c=qZabLQ==, md5=2qU4Aw2OJgZ80ydxDJTLpQ== x-goog-meta-content-length: 0 x-goog-meta-expires: Mon, 05 Jun 2023 11:00:15 GMT x-goog-metageneration: 2 x-goog-storage-class: STANDARD x-goog-stored-content-encoding: identity x-goog-stored-content-length: 9395 cf-cache-status: HIT age: 0 accept-ranges: bytes server: cloudflare cf-ray: 7d52a0ed3a5fb4f3-OSL X-Firefox-Spdy: h2

	api.trustedform.com/certs/2cfd409c85fdce267f50264e6bc26ee5f0348bb2/events	54.209.19.170	204 No Content	0 B
URL POST HTTP/2 api.trustedform.com/certs/2cfd409c85fdce267f50264e6bc26ee5f0348bb2/events IP 54.209.19.170:443 ASN #14618 AMAZON-AES Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerAmazon Subject.trustedform.com FingerprintF4:48:7E:31:35:27:13:EC:49:9C:69:FF:E9:38:DF:3E:B3:A9:C9:01 ValidityWed, 22 Feb 2023 00:00:00 GMT - Mon, 09 Oct 2023 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /certs/2cfd409c85fdce267f50264e6bc26ee5f0348bb2/events HTTP/1.1 Host: api.trustedform.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 770 Origin: https://www.talcumlawsuitclaims.com DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 204 No Content date: Sat, 10 Jun 2023 15:25:44 GMT access-control-allow-credentials: true access-control-allow-origin: * access-control-expose-headers: cache-control: max-age=0, private, must-revalidate server: Cowboy X-Firefox-Spdy: h2`

	api.trustedform.com/certs/2cfd409c85fdce267f50264e6bc26ee5f0348bb2/events	54.209.19.170	204 No Content	0 B
URL POST HTTP/2 api.trustedform.com/certs/2cfd409c85fdce267f50264e6bc26ee5f0348bb2/events IP 54.209.19.170:443 ASN #14618 AMAZON-AES Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerAmazon Subject.trustedform.com FingerprintF4:48:7E:31:35:27:13:EC:49:9C:69:FF:E9:38:DF:3E:B3:A9:C9:01 ValidityWed, 22 Feb 2023 00:00:00 GMT - Mon, 09 Oct 2023 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /certs/2cfd409c85fdce267f50264e6bc26ee5f0348bb2/events HTTP/1.1 Host: api.trustedform.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 226 Origin: https://www.talcumlawsuitclaims.com DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 204 No Content date: Sat, 10 Jun 2023 15:25:48 GMT access-control-allow-credentials: true access-control-allow-origin: * access-control-expose-headers: cache-control: max-age=0, private, must-revalidate server: Cowboy X-Firefox-Spdy: h2`

	heatmap-events-collector.instapage.com/api/raw-data	34.71.95.65	201 Created	33 B
URL POST HTTP/2 heatmap-events-collector.instapage.com/api/raw-data IP 34.71.95.65:443 ASN #15169 GOOGLE Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerLet's Encrypt Subjectheatmap-events-collector.instapage.com FingerprintEC:F8:58:5A:14:34:98:22:93:33:2B:46:9A:73:4E:13:C5:7A:DF:AF ValidityFri, 21 Apr 2023 10:37:42 GMT - Thu, 20 Jul 2023 10:37:41 GMT File type JSON data\012- , ASCII text, with no line terminators Size 33 B (33 bytes) Hash ff44c84f916d4cd0b323dce491e635ee 3861e2155fceacdba307189b4b6b8ce9ba8a007b aeae628bb5c58695aeeb38d775b0d3e58f0d3448679f5f2a1c9038cc63ae2156 HTTP Headers POST /api/raw-data HTTP/1.1 Host: heatmap-events-collector.instapage.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.talcumlawsuitclaims.com/ Content-Type: text/plain;charset=UTF-8 Content-Length: 237 Origin: https://www.talcumlawsuitclaims.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 201 Created date: Sat, 10 Jun 2023 15:25:50 GMT content-type: application/json; charset=utf-8 content-length: 33 content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests x-dns-prefetch-control: off expect-ct: max-age=0 x-frame-options: sameorigin strict-transport-security: max-age=15724800; includeSubDomains x-download-options: noopen x-content-type-options: nosniff x-permitted-cross-domain-policies: none referrer-policy: strict-origin-when-cross-origin x-xss-protection: 0 access-control-allow-origin: https://www.talcumlawsuitclaims.com vary: Origin, Accept-Encoding access-control-allow-credentials: true etag: W/"21-OGHiFV/OrNujBxibS2uM6bqKAHs" X-Firefox-Spdy: h2

	v.fastcdn.co/u/10d1bd3b/64095673-0-image-246.svg	104.18.8.227	200 OK	219 kB
URL GET HTTP/2 v.fastcdn.co/u/10d1bd3b/64095673-0-image-246.svg IP 104.18.8.227:443 ASN #13335 CLOUDFLARENET Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerLet's Encrypt Subjectfastcdn.co Fingerprint43:F1:63:19:6C:4B:4F:B7:0A:9C:9B:7A:F6:83:19:B9:01:05:8C:3E ValidityMon, 29 May 2023 03:58:44 GMT - Sun, 27 Aug 2023 03:58:43 GMT File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (65133) Size 219 kB (218678 bytes) Hash aff734fc9ce159dac9ebda56f1f8bcc6 4726715c9b4afc60ba279ebd779240cbc8c6a72d cd864e90e031d20b98074fc537f6ef13aad33d63861c30409d5653f129f632eb HTTP Headers `GET /u/10d1bd3b/64095673-0-image-246.svg HTTP/1.1 Host: v.fastcdn.co User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Sat, 10 Jun 2023 15:25:41 GMT content-type: image/svg+xml x-guploader-uploadid: ADPycdtTS_hbuJUU74xy9jNgA3courGtymHXUKkx3MHBRo5nUjRBz-3LQIt3gGEnM5nq8aLTdWLePHHIEZryhfhFWEt6mYBuz82y cache-control: public, max-age=315360000 expires: Tue, 07 Jun 2033 15:25:41 GMT last-modified: Thu, 04 May 2023 16:50:24 GMT etag: W/"b0a896a9c612a68f81bba518b6ab6437" vary: Accept-Encoding x-goog-generation: 1683219024428875 x-goog-metageneration: 2 x-goog-stored-content-encoding: gzip x-goog-stored-content-length: 165434 x-goog-meta-content-length: 0 x-goog-meta-expires: Mon, 24 Jun 2024 08:50:24 GMT x-goog-hash: crc32c=RLaxFw==, md5=sKiWqcYSpo+Bu6UYtqtkNw== x-goog-storage-class: STANDARD cf-cache-status: HIT age: 91773 server: cloudflare cf-ray: 7d52a0dc9928b4f3-OSL content-encoding: br X-Firefox-Spdy: h2

	v.fastcdn.co/u/10d1bd3b/52927261-0-icon3.png	104.18.8.227	200 OK	4.2 kB
URL GET HTTP/2 v.fastcdn.co/u/10d1bd3b/52927261-0-icon3.png IP 104.18.8.227:443 ASN #13335 CLOUDFLARENET Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerLet's Encrypt Subjectfastcdn.co Fingerprint43:F1:63:19:6C:4B:4F:B7:0A:9C:9B:7A:F6:83:19:B9:01:05:8C:3E ValidityMon, 29 May 2023 03:58:44 GMT - Sun, 27 Aug 2023 03:58:43 GMT File type PNG image data, 158 x 212, 8-bit/color RGBA, non-interlaced\012- data Size 4.2 kB (4232 bytes) Hash 39d6bf19b4fed5802c2a10b108a44e5f 1967f22682c2eeb1e0b82116573eb2ca84c4a341 3401d09e462d67a3d532b9c4b6a0c45b5eec761ac9777e195d10b22b8d4d14f3 HTTP Headers `GET /u/10d1bd3b/52927261-0-icon3.png HTTP/1.1 Host: v.fastcdn.co User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Sat, 10 Jun 2023 15:25:42 GMT content-type: image/png content-length: 4232 x-guploader-uploadid: ADPycdsHsQuEYVb1EkIzLCqzUoiinsbOnnj-c7O2tvi6kKkXR2CIa7X9HsxU6N5_xToNdsBRgrPvc7n-1zIZgRR1WEX_NQ cache-control: public, max-age=315360000 expires: Tue, 07 Jun 2033 15:25:42 GMT last-modified: Sat, 29 Aug 2020 08:29:30 GMT etag: "39d6bf19b4fed5802c2a10b108a44e5f" x-goog-generation: 1598689770779369 x-goog-metageneration: 2 x-goog-stored-content-encoding: identity x-goog-stored-content-length: 4232 x-goog-meta-content-length: 0 x-goog-meta-expires: Wed, 20 Oct 2021 00:29:30 GMT x-goog-hash: crc32c=V02pLg==, md5=Oda/GbT+1YAsKhCxCKROXw== x-goog-storage-class: STANDARD cf-cache-status: MISS accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 7d52a0e06812b4f3-OSL X-Firefox-Spdy: h2

	create.leadid.com/2.11.9/SaveDom?msn=2&pid=f7a47d49-3c41-4e48-9d1d-1673f7c19d89&token=6066EC16-1A14-46B2-0513-1CE28D282E71&_=83347032	3.213.164.48	200 OK	0 B
URL POST HTTP/2 create.leadid.com/2.11.9/SaveDom?msn=2&pid=f7a47d49-3c41-4e48-9d1d-1673f7c19d89&token=6066EC16-1A14-46B2-0513-1CE28D282E71&_=83347032 IP 3.213.164.48:443 ASN #14618 AMAZON-AES Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerAmazon Subjectcreate.leadid.com Fingerprint95:26:B9:FB:B8:EC:5B:05:C8:59:F6:30:90:D5:6D:0A:E9:88:82:7D ValidityThu, 23 Feb 2023 00:00:00 GMT - Thu, 19 Oct 2023 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /2.11.9/SaveDom?msn=2&pid=f7a47d49-3c41-4e48-9d1d-1673f7c19d89&token=6066EC16-1A14-46B2-0513-1CE28D282E71&_=83347032 HTTP/1.1 Host: create.leadid.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-type: application/x-www-form-urlencoded Content-Length: 496 Origin: https://www.talcumlawsuitclaims.com DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Sat, 10 Jun 2023 15:25:43 GMT content-type: text/plain;charset=UTF-8 server: nginx set-cookie: rgisanonymous=false; expires=Mon, 10-Jul-2023 15:25:43 GMT; Max-Age=2592000; path=/ rguserid=8814530b-75f7-492f-a5f2-d515eb488718; expires=Mon, 10-Jul-2023 15:25:43 GMT; Max-Age=2592000; path=/ rguuid=true; expires=Mon, 10-Jul-2023 15:25:43 GMT; Max-Age=2592000; path=/ rgisanonymous=true; expires=Mon, 10-Jul-2023 15:25:43 GMT; Max-Age=2592000; path=/ cache-control: no-cache, must-revalidate expires: Sat, 26 Jul 1997 05:00:00 GMT access-control-allow-origin: * access-control-allow-headers: X-Requested-With, Content-Type access-control-max-age: 1728000 strict-transport-security: max-age=31536000; includeSubDomains; preload content-encoding: gzip X-Firefox-Spdy: h2

	create.leadid.com/2.11.9/InitFormData?msn=3&pid=f7a47d49-3c41-4e48-9d1d-1673f7c19d89&token=6066EC16-1A14-46B2-0513-1CE28D282E71&_=83347033	3.213.164.48	200 OK	0 B
URL POST HTTP/2 create.leadid.com/2.11.9/InitFormData?msn=3&pid=f7a47d49-3c41-4e48-9d1d-1673f7c19d89&token=6066EC16-1A14-46B2-0513-1CE28D282E71&_=83347033 IP 3.213.164.48:443 ASN #14618 AMAZON-AES Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerAmazon Subjectcreate.leadid.com Fingerprint95:26:B9:FB:B8:EC:5B:05:C8:59:F6:30:90:D5:6D:0A:E9:88:82:7D ValidityThu, 23 Feb 2023 00:00:00 GMT - Thu, 19 Oct 2023 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /2.11.9/InitFormData?msn=3&pid=f7a47d49-3c41-4e48-9d1d-1673f7c19d89&token=6066EC16-1A14-46B2-0513-1CE28D282E71&_=83347033 HTTP/1.1 Host: create.leadid.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-type: application/x-www-form-urlencoded Content-Length: 18041 Origin: https://www.talcumlawsuitclaims.com DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Sat, 10 Jun 2023 15:25:43 GMT content-type: text/plain;charset=UTF-8 server: nginx set-cookie: rgisanonymous=false; expires=Mon, 10-Jul-2023 15:25:43 GMT; Max-Age=2592000; path=/ rguserid=0e930149-5550-4b76-b33c-3c393e5ff466; expires=Mon, 10-Jul-2023 15:25:43 GMT; Max-Age=2592000; path=/ rguuid=true; expires=Mon, 10-Jul-2023 15:25:43 GMT; Max-Age=2592000; path=/ rgisanonymous=true; expires=Mon, 10-Jul-2023 15:25:43 GMT; Max-Age=2592000; path=/ cache-control: no-cache, must-revalidate expires: Sat, 26 Jul 1997 05:00:00 GMT access-control-allow-origin: * access-control-allow-headers: X-Requested-With, Content-Type access-control-max-age: 1728000 strict-transport-security: max-age=31536000; includeSubDomains; preload content-encoding: gzip X-Firefox-Spdy: h2

	api.trustedform.com/trustedform.js?provide_referrer=false&field=xxTrustedFormCertUrl&l=16864107411370.7243385914752665	54.209.19.170	301 Moved Permanently	7.5 kB
URL GET HTTP/2 api.trustedform.com/trustedform.js?provide_referrer=false&field=xxTrustedFormCertUrl&l=16864107411370.7243385914752665 IP 54.209.19.170:443 ASN #14618 AMAZON-AES Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerAmazon Subject.trustedform.com FingerprintF4:48:7E:31:35:27:13:EC:49:9C:69:FF:E9:38:DF:3E:B3:A9:C9:01 ValidityWed, 22 Feb 2023 00:00:00 GMT - Mon, 09 Oct 2023 23:59:59 GMT File type Size 7.5 kB (7518 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /trustedform.js?provide_referrer=false&field=xxTrustedFormCertUrl&l=16864107411370.7243385914752665 HTTP/1.1 Host: api.trustedform.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 301 Moved Permanently server: awselb/2.0 date: Sat, 10 Jun 2023 15:25:42 GMT content-type: text/html content-length: 134 location: https://cdn.trustedform.com:443/bootstrap.js?provide_referrer=false&field=xxTrustedFormCertUrl&l=16864107411370.7243385914752665 X-Firefox-Spdy: h2`

	fonts.googleapis.com/css?family=Open+Sans:300italic,400italic,600italic,700italic,800italic,400,300,600,700,800&display=swap	142.250.74.106	200 OK	29 kB
URL GET HTTP/2 fonts.googleapis.com/css?family=Open+Sans:300italic,400italic,600italic,700italic,800italic,400,300,600,700,800&display=swap IP 142.250.74.106:443 ASN #15169 GOOGLE Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint3F:94:23:08:F7:DB:8B:36:93:90:93:F4:9E:46:A6:6A:93:75:15:C0 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT File type ASCII text Size 29 kB (29395 bytes) Hash 9d77f1845ee51b118b031c8a5ae8a328 e19f82399b2295217e16d485cda807de5813965f 61eeaf3752ec4a775d833ab1ffe79787a750f59cb9c2933aad9cc276a36eb5fb HTTP Headers GET /css?family=Open+Sans:300italic,400italic,600italic,700italic,800italic,400,300,600,700,800&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Sat, 10 Jun 2023 15:25:41 GMT date: Sat, 10 Jun 2023 15:25:41 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	script.anura.io/request.js?instance=1765050722&source=61&campaign=621323&additional=%7B%221%22%3A%22648495f479bd7%22%2C%222%22%3A%2210594657%22%2C%223%22%3A%22%22%2C%224%22%3A%22%22%2C%225%22%3A%22%22%2C%226%22%3A%221%22%2C%227%22%3A%22%22%7D&callback=anuraResponseHandler&138979474042	18.130.201.213	200 OK	56 kB
URL GET HTTP/2 script.anura.io/request.js?instance=1765050722&source=61&campaign=621323&additional=%7B%221%22%3A%22648495f479bd7%22%2C%222%22%3A%2210594657%22%2C%223%22%3A%22%22%2C%224%22%3A%22%22%2C%225%22%3A%22%22%2C%226%22%3A%221%22%2C%227%22%3A%22%22%7D&callback=anuraResponseHandler&138979474042 IP 18.130.201.213:443 ASN #16509 AMAZON-02 Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerAmazon Subjectscript.anura.io Fingerprint70:0F:08:84:E3:A9:22:81:FD:91:BD:1E:19:AD:41:C1:73:77:2A:53 ValidityWed, 22 Feb 2023 00:00:00 GMT - Thu, 10 Aug 2023 23:59:59 GMT File type ASCII text, with very long lines (1912) Size 56 kB (56146 bytes) Hash 3a48d1ed27362f0dbb44bddd353c8e7f a2f6fb6e68eba80d760764dfd87b9608c26bbf3b 2cb79ed64c24cbbf9e30281a0f81aad425dea22ce3189ce6dd4ac5560ef60120 HTTP Headers GET /request.js?instance=1765050722&source=61&campaign=621323&additional=%7B%221%22%3A%22648495f479bd7%22%2C%222%22%3A%2210594657%22%2C%223%22%3A%22%22%2C%224%22%3A%22%22%2C%225%22%3A%22%22%2C%226%22%3A%221%22%2C%227%22%3A%22%22%7D&callback=anuraResponseHandler&138979474042 HTTP/1.1 Host: script.anura.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Sat, 10 Jun 2023 15:25:41 GMT content-type: application/javascript; charset=utf-8 server: nginx vary: Accept-Encoding expires: Sun, 28 Dec 1980 18:57:00 EST cache-control: private, no-cache, no-store, must-revalidate, max-age=0, post-check=0, pre-check=0 pragma: no-cache x-content-type-options: nosniff content-encoding: gzip X-Firefox-Spdy: h2`

	ads.anura.io/showads.js?481119836736	54.230.111.27	200 OK	0 B
URL GET HTTP/2 ads.anura.io/showads.js?481119836736 IP 54.230.111.27:443 ASN #16509 AMAZON-02 Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerAmazon Subjectads.anura.io Fingerprint69:66:FA:26:E2:E4:89:00:9A:F7:DE:2C:F6:5A:C2:B9:58:04:5D:E6 ValidityTue, 30 May 2023 00:00:00 GMT - Thu, 27 Jun 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /showads.js?481119836736 HTTP/1.1 Host: ads.anura.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.talcumlawsuitclaims.com DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK content-type: application/javascript; charset=utf-8 date: Fri, 09 Jun 2023 20:05:27 GMT server: nginx access-control-allow-origin: * access-control-allow-methods: GET content-encoding: gzip vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: 1hQtvnCEkvyZiAzzOb4YC1F-db8N2r508rQ1aLt3w-NRwg-u7wDSJA== age: 69615 X-Firefox-Spdy: h2`

	d2m2wsoho8qq12.cloudfront.net/iframe.html?token=6066EC16-1A14-46B2-0513-1CE28D282E71&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=5DD359DE-A4DA-6505-31C2-212BECDD131B&lac=43280F24-DA2D-8B48-A2BC-8CCB47265652	54.230.245.38	200 OK	3.5 kB
URL GET HTTP/1.1 d2m2wsoho8qq12.cloudfront.net/iframe.html?token=6066EC16-1A14-46B2-0513-1CE28D282E71&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=5DD359DE-A4DA-6505-31C2-212BECDD131B&lac=43280F24-DA2D-8B48-A2BC-8CCB47265652 IP 54.230.245.38:443 ASN #16509 AMAZON-02 Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerAmazon Subject.cloudfront.net FingerprintBA:0F:CD:B3:EA:19:B2:9D:99:9B:51:2D:16:33:6B:D0:3F:31:A2:AB ValidityThu, 08 Dec 2022 00:00:00 GMT - Thu, 07 Dec 2023 23:59:59 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3675), with no line terminators Size 3.5 kB (3515 bytes) Hash f296cf3fca2786c12a670712ef7f00bc da1b0e716af4460dcf59ade38450cb62798954d1 eabbab0c6023ae05e66d758837fa85258b724f04781c69ce36225c586a0c8db7 HTTP Headers GET /iframe.html?token=6066EC16-1A14-46B2-0513-1CE28D282E71&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=5DD359DE-A4DA-6505-31C2-212BECDD131B&lac=43280F24-DA2D-8B48-A2BC-8CCB47265652 HTTP/1.1 Host: d2m2wsoho8qq12.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Content-Type: text/html Transfer-Encoding: chunked Connection: keep-alive Server: nginx Last-Modified: Tue, 18 Apr 2023 16:14:44 GMT Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Content-Encoding: gzip Date: Sat, 10 Jun 2023 05:46:42 GMT ETag: W/"643ec1f4-dbb" X-Cache: Hit from cloudfront Via: 1.1 3bff78035f818b6a3185b0f5f4586410.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: H0PszcRwJi1JLuQiP_D8SRYjK_LxplNthawloMJOSiD_3tDIZrgAug== Age: 35345

	g.fastcdn.co/js/Cradle.c9144221d5b5d6147353.js	35.244.137.202	200 OK	15 kB
URL GET HTTP/2 g.fastcdn.co/js/Cradle.c9144221d5b5d6147353.js IP 35.244.137.202:443 ASN #15169 GOOGLE Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerGoogle Trust Services LLC Subjectg.fastcdn.co Fingerprint49:FE:F6:1C:3A:DA:D1:46:94:0A:92:4B:E3:98:0B:51:DA:9D:41:66 ValidityThu, 25 May 2023 12:00:54 GMT - Wed, 23 Aug 2023 12:53:07 GMT File type ASCII text, with very long lines (14848), with no line terminators Size 15 kB (14848 bytes) Hash 22cac33bb98da5afa4e1a89ff8606bfc d3f33e896d64fa3927c07de1dbaaab3875408554 ecc3883f7b177edcd6a59dcdb4f957cba8a1df5180202fcd3f30bd33dd6f7d7b HTTP Headers `GET /js/Cradle.c9144221d5b5d6147353.js HTTP/1.1 Host: g.fastcdn.co User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK x-guploader-uploadid: ADPycdsNXsjuW1t5wenYuzirrbJh0PdVAkeMlNxI684564ppt74mgP0_5toyD7_zoaTTdlIfJ1Z2FKHev10ZWrMTEr6MYg x-goog-generation: 1686076901065862 x-goog-metageneration: 1 x-goog-stored-content-encoding: gzip x-goog-stored-content-length: 4001 content-encoding: gzip x-goog-hash: crc32c=Tt9fJA==, md5=gxMUlP0YdTfQdCoGrAeRqQ== x-goog-storage-class: MULTI_REGIONAL accept-ranges: bytes content-length: 4001 server: UploadServer date: Tue, 06 Jun 2023 19:14:11 GMT expires: Wed, 05 Jun 2024 19:14:11 GMT cache-control: public, max-age=31536000 last-modified: Tue, 06 Jun 2023 18:41:41 GMT etag: "83131494fd187537d0742a06ac0791a9" content-type: application/javascript vary: Accept-Encoding age: 331890 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	create.lidstatic.com/campaign/5dd359de-a4da-6505-31c2-212becdd131b.js?snippet_version=2&callback=jornayaCallback	172.67.41.229	200 OK	126 kB
URL GET HTTP/2 create.lidstatic.com/campaign/5dd359de-a4da-6505-31c2-212becdd131b.js?snippet_version=2&callback=jornayaCallback IP 172.67.41.229:443 ASN #13335 CLOUDFLARENET Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerCloudflare, Inc. Subjectlidstatic.com FingerprintF7:D5:3C:A9:3E:B6:D5:BF:11:CB:69:9F:0B:34:88:4F:18:79:BC:88 ValidityTue, 28 Feb 2023 00:00:00 GMT - Wed, 28 Feb 2024 23:59:59 GMT File type Size 126 kB (126350 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /campaign/5dd359de-a4da-6505-31c2-212becdd131b.js?snippet_version=2&callback=jornayaCallback HTTP/1.1 Host: create.lidstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Sat, 10 Jun 2023 15:25:43 GMT content-type: text/javascript x-amz-id-2: X0RhiNSPosRO+Jxf1NWdSFnsdC/UcVME5NJuqEhOLmoPlJmAekyt2+M12bsvIYd3Zf9ECQ+wpog= x-amz-request-id: Y63B3Z8SEPRWS1JX x-amz-replication-status: COMPLETED last-modified: Fri, 12 Nov 2021 00:51:07 GMT etag: W/"cfee926c16f1d856be0167423ae5b0fb" cache-control: max-age=1800 x-amz-version-id: DYhojOB6pTiB6DFAOqMuQqAx_sBMpHOn cf-cache-status: REVALIDATED vary: Accept-Encoding server: cloudflare cf-ray: 7d52a0e4c980b50c-OSL content-encoding: gzip X-Firefox-Spdy: h2

	script.anura.io/response.json	18.130.201.213	200 OK	52 B
URL POST HTTP/2 script.anura.io/response.json IP 18.130.201.213:443 ASN #16509 AMAZON-02 Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerAmazon Subjectscript.anura.io Fingerprint70:0F:08:84:E3:A9:22:81:FD:91:BD:1E:19:AD:41:C1:73:77:2A:53 ValidityWed, 22 Feb 2023 00:00:00 GMT - Thu, 10 Aug 2023 23:59:59 GMT File type troff or preprocessor input, ASCII text, with no line terminators Size 52 B (52 bytes) Hash 71c07cdf20944b8a65b64be3c46a7379 a2e3208af479e48e2f6c4eaf3e9b229946f1cf17 8c025efa0326985dd94162d9496e3f2c8c6de57a4d6ad990a93c99840bbc55f3 HTTP Headers POST /response.json HTTP/1.1 Host: script.anura.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-type: application/x-www-form-urlencoded Content-Length: 4861 Origin: https://www.talcumlawsuitclaims.com DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Sat, 10 Jun 2023 15:25:42 GMT content-type: application/json; charset=utf-8 server: nginx vary: Accept-Encoding access-control-allow-origin: * access-control-allow-methods: POST expires: Sun, 28 Dec 1980 18:57:00 EST cache-control: private, no-cache, no-store, must-revalidate, max-age=0, post-check=0, pre-check=0 pragma: no-cache x-content-type-options: nosniff content-encoding: gzip X-Firefox-Spdy: h2`

	api.trustedform.com/certs	54.209.19.170	201 Created	475 B
URL POST HTTP/2 api.trustedform.com/certs IP 54.209.19.170:443 ASN #14618 AMAZON-AES Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerAmazon Subject.trustedform.com FingerprintF4:48:7E:31:35:27:13:EC:49:9C:69:FF:E9:38:DF:3E:B3:A9:C9:01 ValidityWed, 22 Feb 2023 00:00:00 GMT - Mon, 09 Oct 2023 23:59:59 GMT File type troff or preprocessor input, ASCII text, with very long lines (501), with no line terminators Size 475 B (475 bytes) Hash 1aee10526c538d3a28aa9eb90fe553ee c64f13cf5696abb8ddc5045f58a697eb35dfac3a 15b3df4cac4269d1ad8b8bf935e1caf7326d8117dff5dfee8d79ba3b83add464 HTTP Headers `POST /certs HTTP/1.1 Host: api.trustedform.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 709 Origin: https://www.talcumlawsuitclaims.com DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 201 Created date: Sat, 10 Jun 2023 15:25:43 GMT content-type: application/json; charset=utf-8 content-length: 475 access-control-allow-credentials: true access-control-allow-origin: * access-control-expose-headers: cache-control: max-age=0, private, must-revalidate server: Cowboy X-Firefox-Spdy: h2`

	deviceid.trueleadid.com/iframe.html?token=6066EC16-1A14-46B2-0513-1CE28D282E71&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=5DD359DE-A4DA-6505-31C2-212BECDD131B&lac=43280F24-DA2D-8B48-A2BC-8CCB47265652	34.235.91.111	200 OK	4.2 kB
URL GET HTTP/2 deviceid.trueleadid.com/iframe.html?token=6066EC16-1A14-46B2-0513-1CE28D282E71&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=5DD359DE-A4DA-6505-31C2-212BECDD131B&lac=43280F24-DA2D-8B48-A2BC-8CCB47265652 IP 34.235.91.111:443 ASN #14618 AMAZON-AES Requested by https://d2m2wsoho8qq12.cloudfront.net/iframe.html?token=6066EC16-1A14-46B2-0513-1CE28D282E71&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=5DD359DE-A4DA-6505-31C2-212BECDD131B&lac=43280F24-DA2D-8B48-A2BC-8CCB47265652 Certificate IssuerAmazon Subjectdeviceid.trueleadid.com FingerprintD8:8B:86:53:4A:F3:E9:53:1D:C4:CD:CB:91:CD:50:50:B0:84:BA:DB ValidityFri, 24 Feb 2023 00:00:00 GMT - Sat, 06 Jan 2024 23:59:59 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4323), with no line terminators Size 4.2 kB (4169 bytes) Hash 27a57862137bf0b580930f288703c507 20114057bbb1f8a2ca6f1b6a2d81fe7f2b75c64a b0019d4447d91be93f68b8fb233b8fcccc542e3dffc16d4dc9c9f71bc9704550 HTTP Headers GET /iframe.html?token=6066EC16-1A14-46B2-0513-1CE28D282E71&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=5DD359DE-A4DA-6505-31C2-212BECDD131B&lac=43280F24-DA2D-8B48-A2BC-8CCB47265652 HTTP/1.1 Host: deviceid.trueleadid.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://d2m2wsoho8qq12.cloudfront.net/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Sat, 10 Jun 2023 15:25:44 GMT content-type: text/html server: nginx last-modified: Tue, 23 May 2023 16:17:22 GMT etag: W/"646ce712-1049" expires: Sun, 11 Jun 2023 15:25:44 GMT p3p: CP="NOI DSP COR NID CUR ADM DEV OUR BUS" cache-control: max-age=86400, public content-encoding: gzip X-Firefox-Spdy: h2`

	create.leadid.com/2.11.9/Snap?msn=4&pid=f7a47d49-3c41-4e48-9d1d-1673f7c19d89&token=6066EC16-1A14-46B2-0513-1CE28D282E71&_=83347034	3.213.164.48	200 OK	0 B
URL POST HTTP/2 create.leadid.com/2.11.9/Snap?msn=4&pid=f7a47d49-3c41-4e48-9d1d-1673f7c19d89&token=6066EC16-1A14-46B2-0513-1CE28D282E71&_=83347034 IP 3.213.164.48:443 ASN #14618 AMAZON-AES Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerAmazon Subjectcreate.leadid.com Fingerprint95:26:B9:FB:B8:EC:5B:05:C8:59:F6:30:90:D5:6D:0A:E9:88:82:7D ValidityThu, 23 Feb 2023 00:00:00 GMT - Thu, 19 Oct 2023 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /2.11.9/Snap?msn=4&pid=f7a47d49-3c41-4e48-9d1d-1673f7c19d89&token=6066EC16-1A14-46B2-0513-1CE28D282E71&_=83347034 HTTP/1.1 Host: create.leadid.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-type: application/x-www-form-urlencoded Content-Length: 493884 Origin: https://www.talcumlawsuitclaims.com DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Sat, 10 Jun 2023 15:25:49 GMT content-type: text/plain;charset=UTF-8 server: nginx set-cookie: rgisanonymous=false; expires=Mon, 10-Jul-2023 15:25:49 GMT; Max-Age=2592000; path=/ rguserid=53f9af01-6ee4-4c78-a6a6-176a5ea1775f; expires=Mon, 10-Jul-2023 15:25:49 GMT; Max-Age=2592000; path=/ rguuid=true; expires=Mon, 10-Jul-2023 15:25:49 GMT; Max-Age=2592000; path=/ rgisanonymous=true; expires=Mon, 10-Jul-2023 15:25:49 GMT; Max-Age=2592000; path=/ cache-control: no-cache, must-revalidate expires: Sat, 26 Jul 1997 05:00:00 GMT access-control-allow-origin: * access-control-allow-headers: X-Requested-With, Content-Type access-control-max-age: 1728000 strict-transport-security: max-age=31536000; includeSubDomains; preload content-encoding: gzip X-Firefox-Spdy: h2

	create.leadid.com/2.11.9/SaveDeviceId.js?lac=43280F24-DA2D-8B48-A2BC-8CCB47265652&lck=5DD359DE-A4DA-6505-31C2-212BECDD131B&methods=48&token=6066EC16-1A14-46B2-0513-1CE28D282E71&uuid=bf85c6fd9ff744da811b5d83af0eca9d	3.213.164.48	200 OK	0 B
URL GET HTTP/2 create.leadid.com/2.11.9/SaveDeviceId.js?lac=43280F24-DA2D-8B48-A2BC-8CCB47265652&lck=5DD359DE-A4DA-6505-31C2-212BECDD131B&methods=48&token=6066EC16-1A14-46B2-0513-1CE28D282E71&uuid=bf85c6fd9ff744da811b5d83af0eca9d IP 3.213.164.48:443 ASN #14618 AMAZON-AES Requested by https://deviceid.trueleadid.com/iframe.html?token=6066EC16-1A14-46B2-0513-1CE28D282E71&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=5DD359DE-A4DA-6505-31C2-212BECDD131B&lac=43280F24-DA2D-8B48-A2BC-8CCB47265652 Certificate IssuerAmazon Subjectcreate.leadid.com Fingerprint95:26:B9:FB:B8:EC:5B:05:C8:59:F6:30:90:D5:6D:0A:E9:88:82:7D ValidityThu, 23 Feb 2023 00:00:00 GMT - Thu, 19 Oct 2023 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /2.11.9/SaveDeviceId.js?lac=43280F24-DA2D-8B48-A2BC-8CCB47265652&lck=5DD359DE-A4DA-6505-31C2-212BECDD131B&methods=48&token=6066EC16-1A14-46B2-0513-1CE28D282E71&uuid=bf85c6fd9ff744da811b5d83af0eca9d HTTP/1.1 Host: create.leadid.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://deviceid.trueleadid.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Sat, 10 Jun 2023 15:25:44 GMT content-type: text/javascript;charset=UTF-8 server: nginx set-cookie: rgisanonymous=false; expires=Mon, 10-Jul-2023 15:25:44 GMT; Max-Age=2592000; path=/ rguserid=f6d48556-e085-4d5b-b353-0dcc70c22887; expires=Mon, 10-Jul-2023 15:25:44 GMT; Max-Age=2592000; path=/ rguuid=true; expires=Mon, 10-Jul-2023 15:25:44 GMT; Max-Age=2592000; path=/ rgisanonymous=true; expires=Mon, 10-Jul-2023 15:25:44 GMT; Max-Age=2592000; path=/ cache-control: no-cache, must-revalidate expires: Sat, 26 Jul 1997 05:00:00 GMT access-control-allow-origin: * access-control-allow-headers: X-Requested-With, Content-Type access-control-max-age: 1728000 strict-transport-security: max-age=31536000; includeSubDomains; preload content-encoding: gzip X-Firefox-Spdy: h2

	cdn.trustedform.com/bootstrap.js?provide_referrer=false&field=xxTrustedFormCertUrl&l=16864107411370.7243385914752665	54.230.111.91	200 OK	7.5 kB
URL GET HTTP/2 cdn.trustedform.com/bootstrap.js?provide_referrer=false&field=xxTrustedFormCertUrl&l=16864107411370.7243385914752665 IP 54.230.111.91:443 ASN #16509 AMAZON-02 Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerAmazon Subjectcdn.trustedform.com Fingerprint03:8C:42:F7:8D:D4:F5:93:A1:2D:50:88:50:23:67:7B:A1:CD:4B:99 ValidityWed, 15 Mar 2023 00:00:00 GMT - Fri, 12 Apr 2024 23:59:59 GMT File type ASCII text, with very long lines (7726), with no line terminators Size 7.5 kB (7518 bytes) Hash 9922363fd118cee80f733b7f8cf45e5c c58005d21a1da4c611549651099127ff0f2ab9f6 1c01e146dfe11b2f712393fa866f782d0ea7d52ba076fb66739de8bbcd712565 HTTP Headers `GET /bootstrap.js?provide_referrer=false&field=xxTrustedFormCertUrl&l=16864107411370.7243385914752665 HTTP/1.1 Host: cdn.trustedform.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.talcumlawsuitclaims.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK content-type: application/javascript date: Sat, 10 Jun 2023 15:25:43 GMT last-modified: Fri, 12 May 2023 16:55:50 GMT x-amz-version-id: 3_b23spJZawDo2DonqGySoPkWa3Umuag etag: W/"88ddf717f635b54023edd7480431e1d1" server: AmazonS3 content-encoding: gzip vary: Accept-Encoding x-cache: Miss from cloudfront via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: bb_p82ubfTuepIaKx7nLCombpfrIIioGlNdZ0T7O0yNgRVNYgjPviw== X-Firefox-Spdy: h2`

	script.anura.io/result.json	18.130.201.213	200 OK	41 B
URL POST HTTP/2 script.anura.io/result.json IP 18.130.201.213:443 ASN #16509 AMAZON-02 Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerAmazon Subjectscript.anura.io Fingerprint70:0F:08:84:E3:A9:22:81:FD:91:BD:1E:19:AD:41:C1:73:77:2A:53 ValidityWed, 22 Feb 2023 00:00:00 GMT - Thu, 10 Aug 2023 23:59:59 GMT File type troff or preprocessor input, ASCII text, with no line terminators Size 41 B (41 bytes) Hash 2f767f31b2150618192cf6b596a12960 0eae31ac26023373a8042db0a649e7445f607813 f4e22b830612399a72a190d9a2acd795b82d638602cc2d65eec79c08e9d4abd3 HTTP Headers POST /result.json HTTP/1.1 Host: script.anura.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-type: application/x-www-form-urlencoded Content-Length: 66 Origin: https://www.talcumlawsuitclaims.com DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Sat, 10 Jun 2023 15:25:42 GMT content-type: application/json; charset=utf-8 server: nginx vary: Accept-Encoding access-control-allow-origin: * access-control-allow-methods: GET, POST expires: Sun, 28 Dec 1980 18:57:00 EST cache-control: private, no-cache, no-store, must-revalidate, max-age=0, post-check=0, pre-check=0 pragma: no-cache x-content-type-options: nosniff content-encoding: gzip X-Firefox-Spdy: h2`

	fonts.googleapis.com/css?family=Oswald:400,300,700&display=swap	142.250.74.106	200 OK	5.3 kB
URL GET HTTP/2 fonts.googleapis.com/css?family=Oswald:400,300,700&display=swap IP 142.250.74.106:443 ASN #15169 GOOGLE Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint3F:94:23:08:F7:DB:8B:36:93:90:93:F4:9E:46:A6:6A:93:75:15:C0 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT File type ASCII text, with very long lines (5427), with no line terminators Size 5.3 kB (5292 bytes) Hash e78ab68adb3a94875a365768650abb59 8d76210631b9ef5f12b12a441a1e2f094b9e58f3 ecebfd0d73b7ca110788d14207e6e58028f28b3faa276d9562f7da7477cfbf2a HTTP Headers `GET /css?family=Oswald:400,300,700&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Sat, 10 Jun 2023 15:25:41 GMT date: Sat, 10 Jun 2023 15:25:41 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	cdn.trustedform.com/trustedform-1.8.39.js	54.230.111.91	200 OK	105 kB
URL GET HTTP/2 cdn.trustedform.com/trustedform-1.8.39.js IP 54.230.111.91:443 ASN #16509 AMAZON-02 Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerAmazon Subjectcdn.trustedform.com Fingerprint03:8C:42:F7:8D:D4:F5:93:A1:2D:50:88:50:23:67:7B:A1:CD:4B:99 ValidityWed, 15 Mar 2023 00:00:00 GMT - Fri, 12 Apr 2024 23:59:59 GMT File type ASCII text, with very long lines (65536), with no line terminators Size 105 kB (104691 bytes) Hash 9c2830f2c2e5b9cb27e0e7f151317cbe 7e0b45f1cf0f826b0aaaf792e20bdd77d27c6b3a fe63c3d6c4d4486e0a2323e205377a04c96e054f37f4d87a7b8bab0091c19c14 HTTP Headers `GET /trustedform-1.8.39.js HTTP/1.1 Host: cdn.trustedform.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript last-modified: Fri, 12 May 2023 16:55:50 GMT x-amz-version-id: OadgesbszW_FbzYEqgjtb7SPpT8rHyZy server: AmazonS3 content-encoding: gzip date: Sat, 10 Jun 2023 15:25:30 GMT etag: W/"9c2830f2c2e5b9cb27e0e7f151317cbe" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: aGdKvEU6hpnEQzQaw8wx_3oN-LjjR9WQ4tT2s15J4LmCAAxkyVT1cQ== age: 14 X-Firefox-Spdy: h2

	cdn.neverbounce.com/widget/dist/NeverBounce.js	54.230.111.89	200 OK	98 kB
URL GET HTTP/2 cdn.neverbounce.com/widget/dist/NeverBounce.js IP 54.230.111.89:443 ASN #16509 AMAZON-02 Requested by https://www.talcumlawsuitclaims.com/?efid=654c41efcd334974aaf6e1abc59d72cf&requestid=648495f479bd7&s1=621323&s2=10594657&s3=&s4=&s5=&affid=1&cr=&campaign_id=61 Certificate IssuerAmazon Subjectneverbounce.com Fingerprint20:F5:86:36:5E:B6:C2:13:F6:9D:D3:24:E2:91:98:A8:CB:80:F0:AE ValidityMon, 13 Feb 2023 00:00:00 GMT - Tue, 12 Mar 2024 23:59:59 GMT File type Size 98 kB (97984 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /widget/dist/NeverBounce.js HTTP/1.1 Host: cdn.neverbounce.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.talcumlawsuitclaims.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK content-type: application/javascript last-modified: Mon, 02 Mar 2020 18:37:33 GMT server: AmazonS3 content-encoding: gzip date: Fri, 09 Jun 2023 23:55:59 GMT etag: W/"c1e06621030dfcba15b88abbcaa546eb" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: -_GSp8t5BYFaRL1jKpUEg-DVdo7XsIr9d09sCykeav05oQTHVw4yyw== age: 55783 X-Firefox-Spdy: h2`

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (36)

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by