track.specialdatings.com/15Gss8
20.113.187.208302 Found 312 B URL HTTP/1.1 track.specialdatings.com/15Gss8
IP 20.113.187.208:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document, ASCII text, with very long lines (312), with no line terminators
Hash a6b8acc06da28e4ab6567900655c94f7
00f5dbbc5b670f17e04be9b69d94ed02720eff0a
8658f501909c080c9abf1f96ec2e48626fc52ef58a121df934412ec664323dff
Analyzer Verdict Alert fortinet Phishing
GET /15Gss8 HTTP/1.1
Host: track.specialdatings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Server: nginx/1.23.0
Date: Thu, 10 Nov 2022 04:53:22 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 312
Connection: keep-alive
X-Powered-By: Express
Set-Cookie: 15Gss8o=20221109211668056880600; domain=.track.specialdatings.com; path=/;expires=Fri, 11 Nov 2022 04:53:22 GMT; httpOnly=true;
_pc_lc_id=15Gss8; domain=.track.specialdatings.com; path=/;expires=Fri, 11 Nov 2022 04:53:22 GMT; httpOnly=true;
peerclickcid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; domain=.track.specialdatings.com; path=/;expires=Fri, 11 Nov 2022 04:53:22 GMT; httpOnly=true;
_norg=1; domain=.track.specialdatings.com; path=/;expires=Fri, 11 Nov 2022 04:53:22 GMT; httpOnly=true;
Location: https://smarturl.it/MegaMillion_Play?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
Vary: Accept
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aabe410b4bbe4d8beb0e4561d3aa158e
e1788632902ddea62cdd9e7ad6009a75ffb69788
ad535e27b201e92670770b2b868c58f7c05633ec66490a41ef4592f062834c1f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AD535E27B201E92670770B2B868C58F7C05633EC66490A41EF4592F062834C1F"
Last-Modified: Wed, 09 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3642
Expires: Thu, 10 Nov 2022 05:54:04 GMT
Date: Thu, 10 Nov 2022 04:53:22 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4c6e4047ec266b87485610e26a85bb6f
cd543757597609d7309d02652318359078a965c2
d8aff7a24f3274782b4f41d6dbd181ba817f5a562d992a3a82966481c91f8a90
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4101
Cache-Control: max-age=110762
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:53:23 GMT
Etag: "636b8168-1d7"
Expires: Fri, 11 Nov 2022 11:39:25 GMT
Last-Modified: Wed, 09 Nov 2022 10:31:04 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4c6e4047ec266b87485610e26a85bb6f
cd543757597609d7309d02652318359078a965c2
d8aff7a24f3274782b4f41d6dbd181ba817f5a562d992a3a82966481c91f8a90
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4101
Cache-Control: max-age=110762
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:53:23 GMT
Etag: "636b8168-1d7"
Expires: Fri, 11 Nov 2022 11:39:25 GMT
Last-Modified: Wed, 09 Nov 2022 10:31:04 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dc90abd8b3ea8e75a68c144d74d75788
1ce29dca1ee9ca8931397de31ffb6cf7833baaf8
807000997bcf1b7a1fa35e43908cbfa54cd1704a5a0f53c09e1ae154638f10e0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "807000997BCF1B7A1FA35E43908CBFA54CD1704A5A0F53C09E1AE154638F10E0"
Last-Modified: Tue, 08 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2444
Expires: Thu, 10 Nov 2022 05:34:07 GMT
Date: Thu, 10 Nov 2022 04:53:23 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: PoiqNfaZoHZ9XQAmgFQhUsr69qylaVJp3Xlh+5QbH8N1AIuv3pby/n+MatCwPj27xTcX8mYHAyE=
x-amz-request-id: 4C6J6WYJ88BEBBHD
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 10 Nov 2022 04:12:00 GMT
age: 2483
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:53:23 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 485adafd576f5bc18534abfe7b5d55e7
ddd39f77113cc466ac6883697303d653b7b15668
77c0018ae0af4998023dc0d42e03b42bec380349cf50a27b5fdb9e41fd8be82d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=160973
Date: Thu, 10 Nov 2022 04:53:23 GMT
Etag: "636c43ee-1d7"
Expires: Sat, 12 Nov 2022 01:36:16 GMT
Last-Modified: Thu, 10 Nov 2022 00:21:02 GMT
Server: ECS (dcb/7F5C)
X-Cache: Miss from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Z1450Zd-SyTKSCCfTm5KCWLmC15HfvRs6qhlynmXgjqQfCXQUeR9gA==
Age: 4514
smarturl.it/MegaMillion_Play?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
34.243.9.140200 OK 86 kB URL HTTP/2 smarturl.it/MegaMillion_Play?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
IP 34.243.9.140:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (53862), with CRLF, LF line terminators
Hash 5d42c3ccdaf71230d3b9b04f9dd98d6d
d59b3ab6cfd58c872807dfc0a70d4ae8803ce7af
705bad932a93db56e1bd59f22f565eee7edaa2e85acf300cd7ef4d332e6a96d5
GET /MegaMillion_Play?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109 HTTP/1.1
Host: smarturl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Thu, 10 Nov 2022 04:53:23 GMT
content-type: text/html; charset=UTF-8
server: nginx
set-cookie: LF_session_64d74686fed897f793d761036c88ff6a=1; expires=Thu, 10-Nov-2022 05:03:23 GMT; Max-Age=600; path=/; domain=smarturl.it; secure; HttpOnly
x-redirector-version: redirector-v3
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c59d06092401e375df491b06ee8e6dbc
2e27b8ff7c08a5349e27969bc2a08e5e19d0c1da
23ee4ab633fcf67dc5d4d1931450e365cec8d436ef1f9ba5f46b6bab974724c4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6020
Cache-Control: max-age=107626
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:53:23 GMT
Etag: "636b6da9-1d7"
Expires: Fri, 11 Nov 2022 10:47:09 GMT
Last-Modified: Wed, 09 Nov 2022 09:06:49 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 3b750f755a8bc2e59919b16f39a00be1
68739db5828ca6b3a31279c8b83518425a00cd85
d4514681913b8b848a285485bafe4d989d509d8d081206bdcc9f58708d89c7cb
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=137961
Date: Thu, 10 Nov 2022 04:53:23 GMT
Etag: "636bfbac-1d7"
Expires: Fri, 11 Nov 2022 19:12:44 GMT
Last-Modified: Wed, 09 Nov 2022 19:12:44 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: yGSTddl7YTekAnyfF22c3unTtDZqX3SKnoLuEn8gfhnaBPVSS37gbA==
push.services.mozilla.com/
52.39.57.61101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.39.57.61:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: SIlx5CJUCkwO6sS2d6wkvw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: wsPwxOI5DzQr+/K+nDeM++y6u9o=
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 9e56504e53c89b1fda5d074c0ce087ae
e45e3c20b6d15be46b9bf28e146a0ed91af67362
d7ece27cad6435bcf29780c58821f5e0602b728cc989d20b4039b0c554c97d3e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 04:53:24 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 09 Nov 2022 20:29:08 GMT
Expires: Wed, 16 Nov 2022 20:29:07 GMT
Etag: "e45e3c20b6d15be46b9bf28e146a0ed91af67362"
Cache-Control: max-age=573942,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 767c2f2bcc58b506-OSL
lnk.to/~/tr/event/
34.241.203.189200 OK 343 B IP 34.241.203.189:0
File type JSON data\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 25d0add19797f18900ff9e30b9be82d7
a294c0bcb0d6e3f5fb55ae8ef3da4feb22766d6e
919992155c5991911a2d83899c97214eb0749314b382f860f574ed9495a76309
POST /~/tr/event/ HTTP/1.1
Host: lnk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 1515
Origin: https://lnk.to
Connection: keep-alive
Referer: https://lnk.to/TLUSMM?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
Cookie: LF_session_f2217dcb022a65cbb4c210b464a192b1=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 10 Nov 2022 04:53:24 GMT
content-type: application/json; charset=UTF-8
server: nginx
x-redirector-version: redirector-v3
X-Firefox-Spdy: h2
www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
95.142.30.161200 OK 33 kB URL HTTP/1.1 www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
IP 95.142.30.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (20017), with CRLF, LF line terminators
Hash d46ea3deb08b36e6bd21c36ab504364e
414123bd21234430be037ab362bace4867a45814
f1eb2315cd737d797cf2302d9f0f0e4d5ea2d9259765937307658ecb1ea494c0
GET /lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lnk.to/
Connection: keep-alive
Cookie: lng=1; number_of_redirects=0; urls_tracker=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, no-store, no-cache
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Expires: Thu, 10 Nov 2022 04:52:24 GMT
Vary: Accept-Encoding
Server:
X-Frame-Options: SAMEORIGIN
X-AspNet-Version: 4.0.30319
Set-Cookie: lng=1; path=/; secure
number_of_redirects=0; path=/; secure
urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; path=/; secure
ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; path=/; secure
ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; path=/; secure; HttpOnly; SameSite=None
Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; expires=Sat, 10-Dec-2022 04:53:24 GMT; path=/; secure
PlayRequestLandingPage=1; expires=Sat, 10-Dec-2022 04:53:24 GMT; path=/; secure
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:24 GMT
Content-Length: 33438
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4599ea4ab89bca0461dfc4e86cf90610
d513a3fca97e06dbc1a6cdd02fbdd3c7253c865a
6056ef181a66539dd449318a89c133c3711e3244394126a66b8ebd29cff4692b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6056EF181A66539DD449318A89C133C3711E3244394126A66B8EBD29CFF4692B"
Last-Modified: Tue, 08 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8653
Expires: Thu, 10 Nov 2022 07:17:38 GMT
Date: Thu, 10 Nov 2022 04:53:25 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe468f92f-2486-4c80-ab37-4225f9f983cc.webp
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe468f92f-2486-4c80-ab37-4225f9f983cc.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5fc04eddc597d6b10db5d59c53f20aec
dddc0da13526d24aaea990cc1d68d9212612da43
a7e2d1fd141c4383de3411be95b8875c9d969d5f001020793a2b4d939aaa780b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe468f92f-2486-4c80-ab37-4225f9f983cc.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12268
x-amzn-requestid: cd9ea4f7-9a75-47b4-a0ad-817c821a592e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWlpZHbBIAMFfUQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1ca2-69a98f453929cc817bead2c7;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:33:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Xq1vIovXXR0pPaaHjKWeLcZszoEkISrYvqKvshtQ9dFTf6CUwxmIWA==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 22:16:00 GMT
etag: "dddc0da13526d24aaea990cc1d68d9212612da43"
content-type: image/jpeg
age: 23845
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1631e1f0-6fa1-464b-a40b-00a9866b7b25.webp
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1631e1f0-6fa1-464b-a40b-00a9866b7b25.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7edb51fa0fbe8bf317da2d9091b9e21b
02a9b9bec9d4392bbbabb6cabb129c1fb12d01f6
80c9dd829626ec07aa750aa3154eaf27ef79de25d3181e020a13bc9f8e9d8676
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1631e1f0-6fa1-464b-a40b-00a9866b7b25.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 5314
x-amzn-requestid: ad6e7919-c033-4361-8e3d-0badbb9f6fc7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWnb0GTrIAMF4xw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1f7e-0524b86652bbacde023deb2a;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:45:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bau3xXgpMJavWBFqC_X7hBaA4UZHRKrwlFW_uyimScF0nqfzFRc-gg==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 21:56:35 GMT
age: 25010
etag: "02a9b9bec9d4392bbbabb6cabb129c1fb12d01f6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F926c35ea-dd9c-4fe5-b907-38d078956395.jpeg
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F926c35ea-dd9c-4fe5-b907-38d078956395.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dfc306260ce6b4d62c619ce08b47b95a
89a46fdf3787da4bb8ff621078971b2a7f065f9c
cbf17e18ef94ead764379964b4bca0f8c1779cd526d28a1d8190d6a0dd647ae2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F926c35ea-dd9c-4fe5-b907-38d078956395.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4873
x-amzn-requestid: d71cb1a2-e8e3-4adb-a642-ce21ae8579bc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWmCIHR6IAMFq5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1d40-322737b620672fa66c264414;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:36:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: jvqQMn902Aa40eCqqKNvDtnOgevnZuc6K_2J74oS6nv2mLP4-8P69Q==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 22:11:23 GMT
age: 24122
etag: "89a46fdf3787da4bb8ff621078971b2a7f065f9c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b66f592-618a-4463-834d-ff9bbe8866ae.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b66f592-618a-4463-834d-ff9bbe8866ae.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 848af62ec10d0c297922f8600b6ad12d
4eadbf5f0dade92dcc6d68c8ebb70898aadb9a7d
a3b4eb6768259876819d7e6c7ac9e21c603d54f60bf70ed077cb820711e2ae74
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b66f592-618a-4463-834d-ff9bbe8866ae.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11316
x-amzn-requestid: 8456b25a-b87f-490d-86b3-fb217afea082
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWlniESaIAMF3Qg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1c96-30ed3b0972418bae4700edc8;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:33:10 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: paNICiysr9pIOxtqOqjnIOValYbM8InQZ9SmEOUIJirFQd03IN6eRw==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 21:43:10 GMT
age: 25815
etag: "4eadbf5f0dade92dcc6d68c8ebb70898aadb9a7d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 2b6e814cf24d6076a53097eacb138a7f
7e3b9b5d44699f81209a7ea0182640f5596804a5
218be263224d3d1a01ba126d0a7311b972bd88744ec0919b5e471077abe68e03
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:53:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.golotter.com/css.axd?d=%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fgeneral.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fcontent.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2felements.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fflags.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2ffooter.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fframework.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fheader.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fhint.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2ficons.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fmydetails.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fmyscreens.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fnotsupportedbrowser.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fplayoptions.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2frightbarelements.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fui.jqtheme.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fvalidation.css&v=20221109141249
95.142.30.161200 OK 209 kB URL HTTP/1.1 www.golotter.com/css.axd?d=%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fgeneral.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fcontent.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2felements.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fflags.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2ffooter.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fframework.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fheader.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fhint.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2ficons.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fmydetails.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fmyscreens.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fnotsupportedbrowser.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fplayoptions.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2frightbarelements.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fui.jqtheme.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fvalidation.css&v=20221109141249
IP 95.142.30.161:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 209 kB (208593 bytes)
Hash 3008b87e2a5addc5fb44449b675e9314
30a61b65a738d455548c55f2dc3ce733c4ef7565
e6014a96248d37cdded85aacba0aba213438cb29284e17e3091dcc4f4add0860
GET /css.axd?d=%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fgeneral.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fcontent.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2felements.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fflags.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2ffooter.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fframework.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fheader.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fhint.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2ficons.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fmydetails.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fmyscreens.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fnotsupportedbrowser.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fplayoptions.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2frightbarelements.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fui.jqtheme.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fvalidation.css&v=20221109141249 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: text/css; charset=UTF-8
Content-Encoding: gzip
Expires: Thu, 09 Nov 2023 13:35:23 GMT
Last-Modified: Wed, 09 Nov 2022 13:35:23 GMT
Vary: Accept-Encoding,Accept-Encoding
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:24 GMT
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 83b99092f19a38763c0b6ffc5e05e5aa
4cacf0a4adc46e28bc867d666a3fb45738dd1501
168478f1e03d83548fbfeed6dfad20ef23cb5a1dbf18f7312e5cf6dd290e9339
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:53:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4599ea4ab89bca0461dfc4e86cf90610
d513a3fca97e06dbc1a6cdd02fbdd3c7253c865a
6056ef181a66539dd449318a89c133c3711e3244394126a66b8ebd29cff4692b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6056EF181A66539DD449318A89C133C3711E3244394126A66B8EBD29CFF4692B"
Last-Modified: Tue, 08 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8653
Expires: Thu, 10 Nov 2022 07:17:38 GMT
Date: Thu, 10 Nov 2022 04:53:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4599ea4ab89bca0461dfc4e86cf90610
d513a3fca97e06dbc1a6cdd02fbdd3c7253c865a
6056ef181a66539dd449318a89c133c3711e3244394126a66b8ebd29cff4692b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6056EF181A66539DD449318A89C133C3711E3244394126A66B8EBD29CFF4692B"
Last-Modified: Tue, 08 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8653
Expires: Thu, 10 Nov 2022 07:17:38 GMT
Date: Thu, 10 Nov 2022 04:53:25 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74db090f-5da5-464b-91b1-7fac90d3e5eb.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74db090f-5da5-464b-91b1-7fac90d3e5eb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d68ac59950c3276cd8f92b777a004df1
94c0ee5c14e8e8cdf95883582ba8084cc5867f93
b02d6d61c1fae8260d1fc30c0a78ebbc3482a3aa0acafb58d8269942ff8e732b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74db090f-5da5-464b-91b1-7fac90d3e5eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7987
x-amzn-requestid: 6a465dcd-6a4e-49fb-9fa9-169678d39b5d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWlo7HBFIAMFSQw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1c9f-4ffe8f2534aeaef73329a8cd;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:33:19 GMT
x-amz-cf-pop: SEA73-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: gbK3hyzE9RBuLiIQHUrouV-Kqe6r2cTMLYauv9W0ych9irxQexKWAQ==
via: 1.1 637ef0a7bc474e9a314fa064b65e8082.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 21:53:35 GMT
age: 25190
etag: "94c0ee5c14e8e8cdf95883582ba8084cc5867f93"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ff77ae1-0bc8-4557-a572-f76f4061cd8a.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ff77ae1-0bc8-4557-a572-f76f4061cd8a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7fa2648bda72248fd56cf98d3b2210b7
d10647bb2b9705edbbb21ddd7092404fff8b1491
a89679ead6f90b21f7d020911ca809686ea17d8c15e62e645462a5ee675a5c2b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ff77ae1-0bc8-4557-a572-f76f4061cd8a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9082
x-amzn-requestid: f5e67e88-d5ef-4f68-86f9-f59f85eeb751
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bOAwmFdrIAMFuRg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6368ae6a-38bc67d714f60c1f5e0f007c;Sampled=0
x-amzn-remapped-date: Mon, 07 Nov 2022 07:06:18 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: hLaLpJKOvpvEw974yp7tKSP6ynnzRbAIP0hyH03CJTHT4MikDu9QRg==
via: 1.1 f4ae8c7714a9bd89828bad25fc96be24.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 09:32:50 GMT
age: 69635
etag: "d10647bb2b9705edbbb21ddd7092404fff8b1491"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.golotter.com/css.axd?d=%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fregistrationfull.css&v=20221109141249
95.142.30.161200 OK 9.9 kB URL HTTP/1.1 www.golotter.com/css.axd?d=%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fregistrationfull.css&v=20221109141249
IP 95.142.30.161:0
File type ASCII text, with very long lines (46982), with CRLF line terminators
Hash 50272c969b1737ca683a38ddb9cc17db
42bb4ab47b58616df04aea50d74f5e71d2cd5220
2e0192b0dfda793815f9b8ae96e51e78f8b14dcad87324598803d570b3a727f7
GET /css.axd?d=%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fregistrationfull.css&v=20221109141249 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Content-Type: text/css; charset=UTF-8
Content-Encoding: gzip
Expires: Thu, 09 Nov 2023 13:35:24 GMT
Last-Modified: Wed, 09 Nov 2022 13:35:24 GMT
Vary: Accept-Encoding,Accept-Encoding
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:24 GMT
Content-Length: 9886
www.golotter.com/Scripts/jslib.axd?d=%24s%24angular.min.js%2c%24s%24angular-animate.min.js%2c%24s%24angular-chosen.min.js&v=20221109141249
95.142.30.161200 OK 55 kB URL HTTP/1.1 www.golotter.com/Scripts/jslib.axd?d=%24s%24angular.min.js%2c%24s%24angular-animate.min.js%2c%24s%24angular-chosen.min.js&v=20221109141249
IP 95.142.30.161:0
File type ASCII text, with very long lines (577), with CRLF line terminators
Hash a7937470069e0201276718bd1f2c5cda
fdd510b770190bc43062bee17e3fbc62e3b1fe32
ba0efefe851d516d90fd8f259e5958928a490645f1a7e2d10fb16317a3777d77
GET /Scripts/jslib.axd?d=%24s%24angular.min.js%2c%24s%24angular-animate.min.js%2c%24s%24angular-chosen.min.js&v=20221109141249 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Content-Type: text/javascript; charset=UTF-8
Content-Encoding: gzip
Expires: Thu, 09 Nov 2023 13:35:30 GMT
Last-Modified: Wed, 09 Nov 2022 13:35:30 GMT
Vary: Accept-Encoding,Accept-Encoding
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:24 GMT
Content-Length: 55086
www.golotter.com/css.axd?d=%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fsigninsignup.css&v=20221109141249
95.142.30.161200 OK 14 kB URL HTTP/1.1 www.golotter.com/css.axd?d=%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fsigninsignup.css&v=20221109141249
IP 95.142.30.161:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 6f3b3a4ff13081f2cfce814696a9169f
4291ae0c2d74ef2e5d665ff72d3bbde25ee3a492
2adde01392f5d912f32cbde6592d2d18fd159e6f5bc33a4dd359d4d5a8156eb2
GET /css.axd?d=%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fsigninsignup.css&v=20221109141249 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Content-Type: text/css; charset=UTF-8
Content-Encoding: gzip
Expires: Thu, 09 Nov 2023 13:35:24 GMT
Last-Modified: Wed, 09 Nov 2022 13:35:24 GMT
Vary: Accept-Encoding,Accept-Encoding
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:24 GMT
Content-Length: 14201
www.googletagmanager.com/gtag/js?id=AW-10892566208
142.250.74.168200 OK 67 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=AW-10892566208
IP 142.250.74.168:0
File type ASCII text, with very long lines (2919)
Hash 2fa26e2646fe859b77485cba32286e71
c2a7e8153209281c76cbc947eb789adc30deeadc
1ba6f315df91e07f471e955208862f32b1f665799182973489ebc525d7c4eb33
GET /gtag/js?id=AW-10892566208 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 10 Nov 2022 04:53:25 GMT
expires: Thu, 10 Nov 2022 04:53:25 GMT
cache-control: private, max-age=900
last-modified: Thu, 10 Nov 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 66930
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.golotter.com/jslib.axd?ngm=$ng-app$/app.config.js&v=20221109141249
95.142.30.161200 OK 495 B URL HTTP/1.1 www.golotter.com/jslib.axd?ngm=$ng-app$/app.config.js&v=20221109141249
IP 95.142.30.161:0
File type ASCII text, with very long lines (831), with CRLF line terminators
Hash ee022d80671041c7a10a696e0866f1d6
a54b335f0b22e0e016865002d790cabb86937d8f
31c46b8fb8eae68e62080c76d5cd3dd113c130773b289eeb9cc1c28fa3ea76e8
GET /jslib.axd?ngm=$ng-app$/app.config.js&v=20221109141249 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Content-Type: text/javascript; charset=UTF-8
Content-Encoding: gzip
Expires: Thu, 09 Nov 2023 13:35:25 GMT
Last-Modified: Wed, 09 Nov 2022 13:35:25 GMT
Vary: Accept-Encoding,Accept-Encoding
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:24 GMT
Content-Length: 495
www.golotter.com/Scripts/jslib.axd?v=20221109141249&d=%24s%24common.js%2c%24r%24smallspritebutton%2f%24s%24smallspritebutton.js%2c%24s1%24drawticker.js%2c%24s1%24megamenu.js%2c%24s1%24messagesalertmenuitemcontrol.js%2c%24s1%24signinsignupcontrol.js%2c%24s%24jquery.countdown.min.js%2c%24s%24jquery.json-2.3.min.js%2c%24s%24jquery.vticker.1.4.js%2c%24s%24scroller%2fjquery.li-scroller.1.0.js%2c%24s%24slick-carousel.min.js%2c%24s%24jquery.newsitemellipsis.js%2c%24s%24jquery.tools.min.js%2c%24s%24jquery.simpletip-1.3.1.js%2c%24s%24jquery.placeholder.js%2c%24s%24chosen.min.js
95.142.30.161200 OK 48 kB URL HTTP/1.1 www.golotter.com/Scripts/jslib.axd?v=20221109141249&d=%24s%24common.js%2c%24r%24smallspritebutton%2f%24s%24smallspritebutton.js%2c%24s1%24drawticker.js%2c%24s1%24megamenu.js%2c%24s1%24messagesalertmenuitemcontrol.js%2c%24s1%24signinsignupcontrol.js%2c%24s%24jquery.countdown.min.js%2c%24s%24jquery.json-2.3.min.js%2c%24s%24jquery.vticker.1.4.js%2c%24s%24scroller%2fjquery.li-scroller.1.0.js%2c%24s%24slick-carousel.min.js%2c%24s%24jquery.newsitemellipsis.js%2c%24s%24jquery.tools.min.js%2c%24s%24jquery.simpletip-1.3.1.js%2c%24s%24jquery.placeholder.js%2c%24s%24chosen.min.js
IP 95.142.30.161:0
File type ASCII text, with very long lines (12242), with CRLF, LF line terminators
Hash ee72670fde3320308c1e5fda9cc51bdf
5dd08bb58f0401d82a423a56a69b7d8e936b3948
7cd9fa1620e5ea73376cae588c47b4708e8be9ba8c06417161a85fe4ad905907
GET /Scripts/jslib.axd?v=20221109141249&d=%24s%24common.js%2c%24r%24smallspritebutton%2f%24s%24smallspritebutton.js%2c%24s1%24drawticker.js%2c%24s1%24megamenu.js%2c%24s1%24messagesalertmenuitemcontrol.js%2c%24s1%24signinsignupcontrol.js%2c%24s%24jquery.countdown.min.js%2c%24s%24jquery.json-2.3.min.js%2c%24s%24jquery.vticker.1.4.js%2c%24s%24scroller%2fjquery.li-scroller.1.0.js%2c%24s%24slick-carousel.min.js%2c%24s%24jquery.newsitemellipsis.js%2c%24s%24jquery.tools.min.js%2c%24s%24jquery.simpletip-1.3.1.js%2c%24s%24jquery.placeholder.js%2c%24s%24chosen.min.js HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Content-Type: text/javascript; charset=UTF-8
Content-Encoding: gzip
Expires: Thu, 09 Nov 2023 13:35:29 GMT
Last-Modified: Wed, 09 Nov 2022 13:35:29 GMT
Vary: Accept-Encoding,Accept-Encoding
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:24 GMT
Content-Length: 47623
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 2b6e814cf24d6076a53097eacb138a7f
7e3b9b5d44699f81209a7ea0182640f5596804a5
218be263224d3d1a01ba126d0a7311b972bd88744ec0919b5e471077abe68e03
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:53:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.golotter.com/Scripts/jslib.axd?v=20221109141249&d=%24s%24jquery-1.7.1.min.js%2c%24s6%24namespace.js%2c%24s6%24class.js%2c%24s6%24core.js%2c%24s6%24core.math.js%2c%24s6%24core.validations.js%2c%24s6%24core.utils.url.js%2c%24s%24_app%2ftl.js%2c%24s4%24tlglobals.js%2c%24s%24_app%2fservices%2fbaseservice.js%2c%24s%24_app%2fservices%2ffontstylecalculatorservice.js%2c%24s%24_app%2fservices%2fuserloginstatusservice.js%2c%24s%24_app%2fservices%2ffeaturetoggleservice.js%2c%24s4%24siteelements.js%2c%24s%24jstorage%2fjstorage.js%2c%24s3%24formsnormalizer.js%2c%24s%24big.min.js%2c%24s%24mailcheck.min.js%2c%24s%24localforage.js%2c%24s3%24singleframeandpopupcontroller.js
95.142.30.161200 OK 81 kB URL HTTP/1.1 www.golotter.com/Scripts/jslib.axd?v=20221109141249&d=%24s%24jquery-1.7.1.min.js%2c%24s6%24namespace.js%2c%24s6%24class.js%2c%24s6%24core.js%2c%24s6%24core.math.js%2c%24s6%24core.validations.js%2c%24s6%24core.utils.url.js%2c%24s%24_app%2ftl.js%2c%24s4%24tlglobals.js%2c%24s%24_app%2fservices%2fbaseservice.js%2c%24s%24_app%2fservices%2ffontstylecalculatorservice.js%2c%24s%24_app%2fservices%2fuserloginstatusservice.js%2c%24s%24_app%2fservices%2ffeaturetoggleservice.js%2c%24s4%24siteelements.js%2c%24s%24jstorage%2fjstorage.js%2c%24s3%24formsnormalizer.js%2c%24s%24big.min.js%2c%24s%24mailcheck.min.js%2c%24s%24localforage.js%2c%24s3%24singleframeandpopupcontroller.js
IP 95.142.30.161:0
File type HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32769), with CRLF line terminators
Hash eed894a984aed4cd54802ee925fb3e44
92122a3fc299d1d96b6b4b35ae9491a796c09dc8
f14de81033dade5188d005be60b7f5945c8823721bcad31393e31586553d9e60
GET /Scripts/jslib.axd?v=20221109141249&d=%24s%24jquery-1.7.1.min.js%2c%24s6%24namespace.js%2c%24s6%24class.js%2c%24s6%24core.js%2c%24s6%24core.math.js%2c%24s6%24core.validations.js%2c%24s6%24core.utils.url.js%2c%24s%24_app%2ftl.js%2c%24s4%24tlglobals.js%2c%24s%24_app%2fservices%2fbaseservice.js%2c%24s%24_app%2fservices%2ffontstylecalculatorservice.js%2c%24s%24_app%2fservices%2fuserloginstatusservice.js%2c%24s%24_app%2fservices%2ffeaturetoggleservice.js%2c%24s4%24siteelements.js%2c%24s%24jstorage%2fjstorage.js%2c%24s3%24formsnormalizer.js%2c%24s%24big.min.js%2c%24s%24mailcheck.min.js%2c%24s%24localforage.js%2c%24s3%24singleframeandpopupcontroller.js HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: text/javascript; charset=UTF-8
Content-Encoding: gzip
Expires: Thu, 09 Nov 2023 13:35:30 GMT
Last-Modified: Wed, 09 Nov 2022 13:35:30 GMT
Vary: Accept-Encoding,Accept-Encoding
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:24 GMT
www.golotter.com//objects/dm.tlo?id=3168&v=202211090958
95.142.30.161200 OK 18 kB URL HTTP/1.1 www.golotter.com//objects/dm.tlo?id=3168&v=202211090958
IP 95.142.30.161:0
File type PNG image data, 448 x 440, 8-bit/color RGBA, non-interlaced\012- data
Hash 9ffe6590bfd2f7112f8c43089a3ebfb9
b871e2f0385abc9177a4fa9daa76817ba0c356ac
334b5c4fd0bdaba8175f929912a0ff00614b06b96b8ae81fe7e7e3263b843031
GET //objects/dm.tlo?id=3168&v=202211090958 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: image/png
Expires: Fri, 10 Nov 2023 04:53:25 GMT
Last-Modified: Thu, 10 Nov 2022 04:53:25 GMT
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:24 GMT
www.golotter.com//objects/dm.tlo?id=3172&v=202211090958
95.142.30.161200 OK 19 kB URL HTTP/1.1 www.golotter.com//objects/dm.tlo?id=3172&v=202211090958
IP 95.142.30.161:0
File type PNG image data, 448 x 440, 8-bit/color RGBA, non-interlaced\012- data
Hash d7e09cb7f00b2cc7a206907eacf7d871
3fc52c9821c9775551cd647e195be3b1efaa565d
a05ea761a8a88a2e0e9bbbb2ec70630e06c5987d299e16549a115456c94c916e
GET //objects/dm.tlo?id=3172&v=202211090958 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: image/png
Expires: Fri, 10 Nov 2023 04:53:25 GMT
Last-Modified: Thu, 10 Nov 2022 04:53:25 GMT
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:24 GMT
www.golotter.com//objects/dm.tlo?id=3177&v=202211090958
95.142.30.161200 OK 36 kB URL HTTP/1.1 www.golotter.com//objects/dm.tlo?id=3177&v=202211090958
IP 95.142.30.161:0
File type PNG image data, 448 x 440, 8-bit/color RGBA, non-interlaced\012- data
Hash c973b92e3b89b1a6647bee1cf5cde71d
4442390756d534e5e9528a02f39f73e1febbec6a
b5157b9c9f318a86450769678f92c71fdaae4a6eb5dd63de557634d91adc3ca4
GET //objects/dm.tlo?id=3177&v=202211090958 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: image/png
Expires: Fri, 10 Nov 2023 04:53:25 GMT
Last-Modified: Thu, 10 Nov 2022 04:53:25 GMT
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:24 GMT
www.golotter.com//objects/dm.tlo?id=3189&v=202211090958
95.142.30.161200 OK 40 kB URL HTTP/1.1 www.golotter.com//objects/dm.tlo?id=3189&v=202211090958
IP 95.142.30.161:0
File type PNG image data, 448 x 440, 8-bit/color RGBA, non-interlaced\012- data
Hash 04656c51c7de359d37fb5d715ea53aba
d29d5cd65938f21a37bd3e9dda3e3536b6c0cbdb
ad19d5e1cafaca9c7e0b81cd11d85add178d0b2a9e9c6f210afb170bab08bb32
GET //objects/dm.tlo?id=3189&v=202211090958 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: image/png
Expires: Fri, 10 Nov 2023 04:53:25 GMT
Last-Modified: Thu, 10 Nov 2022 04:53:25 GMT
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:24 GMT
www.golotter.com//objects/dm.tlo?id=3183&v=202211090958
95.142.30.161200 OK 24 kB URL HTTP/1.1 www.golotter.com//objects/dm.tlo?id=3183&v=202211090958
IP 95.142.30.161:0
File type PNG image data, 448 x 440, 8-bit/color RGBA, non-interlaced\012- data
Hash 006e0eb70f7c9dca50257483b2c40497
3142b6bac91da732befd35bc106b7b06b078de9c
bcc391cb91c90d9c7ff35b30fd7e95930636acb1b523ed3a27053af072d295a2
GET //objects/dm.tlo?id=3183&v=202211090958 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: image/png
Expires: Fri, 10 Nov 2023 04:53:25 GMT
Last-Modified: Thu, 10 Nov 2022 04:53:25 GMT
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:24 GMT
www.golotter.com//objects/dm.tlo?id=3193&v=202211090958
95.142.30.161200 OK 18 kB URL HTTP/1.1 www.golotter.com//objects/dm.tlo?id=3193&v=202211090958
IP 95.142.30.161:0
File type PNG image data, 448 x 440, 8-bit/color RGBA, non-interlaced\012- data
Hash 6dd455bbd0b42b00b9c49622760cc6a5
2ef7415ef94e0867827d5b03a06b91ff598760fe
c2986128dad5b8dd3ed2f0f7846b931befded3fed53aba4c09e06a479a2ba836
GET //objects/dm.tlo?id=3193&v=202211090958 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: image/png
Expires: Fri, 10 Nov 2023 04:53:25 GMT
Last-Modified: Thu, 10 Nov 2022 04:53:25 GMT
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:24 GMT
www.golotter.com//images/Common/placeholder.svg?v=202211090958
95.142.30.161200 OK 306 B URL HTTP/1.1 www.golotter.com//images/Common/placeholder.svg?v=202211090958
IP 95.142.30.161:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (306), with no line terminators
Hash d7e3848208b8a53d5caa272c1e2116b7
5740aa3f2d1dd318c1a4c12ae4d1bfcc97e639b7
56ce9a9f71a8465359a676d95189390683de779bdc085f4fa9d48ec0651d9a5f
GET //images/Common/placeholder.svg?v=202211090958 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Last-Modified: Wed, 09 Nov 2022 13:35:29 GMT
Accept-Ranges: bytes
ETag: "bb7032240f4d81:0"
Server:
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:24 GMT
Content-Length: 306
www.golotter.com//objects/dm.tlo?id=3171&v=202211090958
95.142.30.161200 OK 29 kB URL HTTP/1.1 www.golotter.com//objects/dm.tlo?id=3171&v=202211090958
IP 95.142.30.161:0
File type PNG image data, 448 x 440, 8-bit/color RGBA, non-interlaced\012- data
Hash 8ad73f349142f3d9dae8a18215aaa963
705bc84c5033c098036f7ac73ba4dbae6a6180d1
0cd622e0499b80d3e7b4c38b682b7f7387da1b3f9e33c61dff0b532c0624cf3a
GET //objects/dm.tlo?id=3171&v=202211090958 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: image/png
Expires: Fri, 10 Nov 2023 04:53:25 GMT
Last-Modified: Thu, 10 Nov 2022 04:53:25 GMT
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:24 GMT
www.golotter.com//objects/dm.tlo?id=3173&v=202211090958
95.142.30.161200 OK 36 kB URL HTTP/1.1 www.golotter.com//objects/dm.tlo?id=3173&v=202211090958
IP 95.142.30.161:0
File type PNG image data, 448 x 440, 8-bit/color RGBA, non-interlaced\012- data
Hash 940a26c95a836f1217414644c444eb55
7b3c7d207e7e54efbf762633d6006fed69d0d12d
efa8af2c9a590256d95cb176176d7ee9e3ac49b24bb85c4a353b2658b6a15ec6
GET //objects/dm.tlo?id=3173&v=202211090958 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: image/png
Expires: Fri, 10 Nov 2023 04:53:25 GMT
Last-Modified: Thu, 10 Nov 2022 04:53:25 GMT
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:24 GMT
www.golotter.com/App_Themes/Default/images/General/loader_red.gif?v=202211090957
95.142.30.161200 OK 2.9 kB URL HTTP/1.1 www.golotter.com/App_Themes/Default/images/General/loader_red.gif?v=202211090957
IP 95.142.30.161:0
File type GIF image data, version 89a, 30 x 30\012- data
Hash 878de0a7a503cc9e144239193ff79a1b
8362d1d56fc2ec1ca4fd71a39472990721872897
399c04c19924a81bac7384f3a45287556814761560970a514d36fe4271778203
GET /App_Themes/Default/images/General/loader_red.gif?v=202211090957 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/css.axd?d=%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fgeneral.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fcontent.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2felements.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fflags.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2ffooter.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fframework.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fheader.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fhint.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2ficons.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fmydetails.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fmyscreens.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fnotsupportedbrowser.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fplayoptions.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2frightbarelements.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fui.jqtheme.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fvalidation.css&v=20221109141249
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Wed, 09 Nov 2022 13:35:22 GMT
Accept-Ranges: bytes
ETag: "ff17ed1d40f4d81:0"
Server:
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:24 GMT
Content-Length: 2886
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 6bbfc6315b9228fd41cc16d1b2f54feb
2f2ca82eb3ca303268b03f7aa80af90f9380e8e2
9a593b197ba164b8fc74cfe6feccd57e05233a642d1dd8065c6723cee2c15701
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:53:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 6bbfc6315b9228fd41cc16d1b2f54feb
2f2ca82eb3ca303268b03f7aa80af90f9380e8e2
9a593b197ba164b8fc74cfe6feccd57e05233a642d1dd8065c6723cee2c15701
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:53:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/notosans/v27/o-0IIpQlx3QUlC5A4PNr5TRA.woff2
216.58.207.195200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/notosans/v27/o-0IIpQlx3QUlC5A4PNr5TRA.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 12860, version 1.0\012- data
Hash ab21c24efd75543e16e34807ebc6cdec
eb2562f9729079333fbcbbe94868695669dd3301
88f00438d26021a325247c4427898f7c778a22976df9f1a9d9876429778bf265
GET /s/notosans/v27/o-0IIpQlx3QUlC5A4PNr5TRA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 07 Nov 2022 21:03:13 GMT
expires: Tue, 07 Nov 2023 21:03:13 GMT
cache-control: public, max-age=31536000
age: 201012
last-modified: Mon, 09 May 2022 18:27:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/notosans/v27/o-0NIpQlx3QUlC5A4PNjXhFVZNyB.woff2
216.58.207.195200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/notosans/v27/o-0NIpQlx3QUlC5A4PNjXhFVZNyB.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 12684, version 1.0\012- data
Hash 0c235386bcf6af06f67e6c89fd19e434
10720574d4609322023984a761f32f9518c07bc4
c1c30918a861cb6a985ab55d54ad7e861682354197f164cb3b7194f20eed67ac
GET /s/notosans/v27/o-0NIpQlx3QUlC5A4PNjXhFVZNyB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12684
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 03 Nov 2022 21:23:34 GMT
expires: Fri, 03 Nov 2023 21:23:34 GMT
cache-control: public, max-age=31536000
age: 545391
last-modified: Mon, 09 May 2022 18:28:04 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.golotter.com/Scripts/jslib.axd?ngm=auth%2cformsshared%2cfullregistration%2cuserdetails%2cpaymentmethods%2cshared%2cxsscontent%2cliveperson%2cgamblingaml%2cgamblinglicense%2cgamblingprotectionoffunds%2cgamblingtimelimit%2cregulation%2cregulationageverification%2cregulationlocation%2cregulationuser%2ctermsandconditions%2cfrozenuser%2csubsitepolicypermissions%2cconsent%2cuser%2clocationidentification%2cscratchcardshared%2cfootercontent%2cheader%2cautologout%2cfinance%2csecurity%2cdesktopheader%2ccontentdirectives%2cticketline%2cplayshared%2cplayrequest%2csyndication%2cbundleitemcards%2cupsalecampaign%2cpushnotification%2capp.js&v=20221109141249
95.142.30.161200 OK 468 kB URL HTTP/1.1 www.golotter.com/Scripts/jslib.axd?ngm=auth%2cformsshared%2cfullregistration%2cuserdetails%2cpaymentmethods%2cshared%2cxsscontent%2cliveperson%2cgamblingaml%2cgamblinglicense%2cgamblingprotectionoffunds%2cgamblingtimelimit%2cregulation%2cregulationageverification%2cregulationlocation%2cregulationuser%2ctermsandconditions%2cfrozenuser%2csubsitepolicypermissions%2cconsent%2cuser%2clocationidentification%2cscratchcardshared%2cfootercontent%2cheader%2cautologout%2cfinance%2csecurity%2cdesktopheader%2ccontentdirectives%2cticketline%2cplayshared%2cplayrequest%2csyndication%2cbundleitemcards%2cupsalecampaign%2cpushnotification%2capp.js&v=20221109141249
IP 95.142.30.161:0
File type ASCII text, with very long lines (5813), with CRLF, LF line terminators
Size 468 kB (467522 bytes)
Hash 2e31d66b40febaa8dbb7b41eea099666
250e1fb461edb7b69eb751221ae556a5b98f8cea
e756f546e818a7d09905b17b6ffbac73e7cae843b937de50565ce79108690d1c
GET /Scripts/jslib.axd?ngm=auth%2cformsshared%2cfullregistration%2cuserdetails%2cpaymentmethods%2cshared%2cxsscontent%2cliveperson%2cgamblingaml%2cgamblinglicense%2cgamblingprotectionoffunds%2cgamblingtimelimit%2cregulation%2cregulationageverification%2cregulationlocation%2cregulationuser%2ctermsandconditions%2cfrozenuser%2csubsitepolicypermissions%2cconsent%2cuser%2clocationidentification%2cscratchcardshared%2cfootercontent%2cheader%2cautologout%2cfinance%2csecurity%2cdesktopheader%2ccontentdirectives%2cticketline%2cplayshared%2cplayrequest%2csyndication%2cbundleitemcards%2cupsalecampaign%2cpushnotification%2capp.js&v=20221109141249 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: text/javascript; charset=UTF-8
Content-Encoding: gzip
Expires: Thu, 09 Nov 2023 13:35:25 GMT
Last-Modified: Wed, 09 Nov 2022 13:35:25 GMT
Vary: Accept-Encoding,Accept-Encoding
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:24 GMT
tl-log.com/api/v1/logging/configuration
107.154.132.27200 OK 0 B URL HTTP/2 tl-log.com/api/v1/logging/configuration
IP 107.154.132.27:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v1/logging/configuration HTTP/1.1
Host: tl-log.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.golotter.com/
Origin: https://www.golotter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache
pragma: no-cache
expires: -1
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-allow-headers: content-type
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba1
strict-transport-security: max-age=16070400
date: Thu, 10 Nov 2022 04:53:25 GMT
content-length: 0
set-cookie: visid_incap_1921636=6b+ninAMTmmhJn6+A70UccSDbGMAAAAAQUIPAAAAAAAAksFHBN9/1/5LxE4exoRF; expires=Thu, 09 Nov 2023 22:25:16 GMT; HttpOnly; path=/; Domain=.tl-log.com; Secure; SameSite=None
incap_ses_631_1921636=2af9bdPcgTTvryBWBcTBCMWDbGMAAAAAzH2gO3NPY9xXGIkrBZ/upA==; path=/; Domain=.tl-log.com; Secure; SameSite=None
x-cdn: Imperva
x-iinfo: 4-4325014-4325016 NNNN CT(26 79 0) RT(1668056004793 16) q(0 0 1 1) r(1 1) U6
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Noto+Sans:wght@400;700&display=swap
142.250.74.10200 OK 3.0 kB URL HTTP/2 fonts.googleapis.com/css2?family=Noto+Sans:wght@400;700&display=swap
IP 142.250.74.10:0
Hash 03a5896b53f06dbffb5a9f789a1800a5
dfecefcce13b94a411651fc2df51b0d655f097a8
45f4e6ae2a086aae788020f6e7d90b59f0192cd3899a11b586177b8f6b9e87ce
GET /css2?family=Noto+Sans:wght@400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 10 Nov 2022 04:53:25 GMT
date: Thu, 10 Nov 2022 04:53:25 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.golotter.com/objects/dm.tlo?id=30612
95.142.30.161200 OK 54 kB URL HTTP/1.1 www.golotter.com/objects/dm.tlo?id=30612
IP 95.142.30.161:0
File type PNG image data, 1024 x 1024, 8-bit/color RGB, non-interlaced\012- data
Hash ab972717befc9c77bf832a64ab729204
f430ab3a5572f7bd5a31365b4243e607c1ccf5d7
95d4fdd905859702f03f088df4d3749e003468762e42937bd6e5c94383d69f91
GET /objects/dm.tlo?id=30612 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.2034822369.1668056002; _ga_PG6WJ6GTXC=GS1.1.1668056002.1.0.1668056002.0.0.0; _ga=GA1.1.718643394.1668056002
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: image/png
Expires: Fri, 10 Nov 2023 04:53:25 GMT
Last-Modified: Thu, 10 Nov 2022 04:53:25 GMT
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:25 GMT
s.yimg.com/wi/ytc.js
188.125.94.206200 OK 5.9 kB IP 188.125.94.206:0
File type ASCII text, with very long lines (16553), with no line terminators
Hash 2f6a1b8a4843f74a5ba54c055fcb3850
919a5f9166f3f9c73803cebd312ad016570a30d8
1b6439153633e4e2dc23c743e14218931c1b4912bc7a3ad64bfee1d2d6982f50
GET /wi/ytc.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: sVtpcqzhYlK9ZhTqxrkN3u9Cc6pdtijtGM7GkwbddmCrSncR5aCgj85eeU45d1H9v0AaKgV5wOM=
x-amz-request-id: D2BRP69NWEK56CBE
date: Thu, 10 Nov 2022 04:14:23 GMT
last-modified: Tue, 14 Jun 2022 12:21:31 GMT
x-amz-expiration: expiry-date="Thu, 20 Jul 2023 00:00:00 GMT", rule-id="oath-standard-lifecycle"
etag: "6a624022b5d271dcefb070b0b6670abc-df"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=3600
x-amz-version-id: .QD3nDfK79S8_ikLSJXTL23Tdis9tg0C
accept-ranges: bytes
content-type: application/javascript
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
content-encoding: gzip
age: 2343
content-length: 5929
strict-transport-security: max-age=15552000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
cdn.taboola.com/libtrc/unip/1298910/tfa.js
151.101.85.44200 OK 18 kB URL HTTP/2 cdn.taboola.com/libtrc/unip/1298910/tfa.js
IP 151.101.85.44:0
File type ASCII text, with very long lines (58526)
Hash 766bdaf7eb3b3e9ec205ba12558151a2
5ae6d0a8f25f8f4ea0f01f60d2d1831b1601705b
58ee0294a2849683a16a27d9f5541cc3043c374fbf5da1694271fed90053e070
GET /libtrc/unip/1298910/tfa.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: sUordfFyU1aYnMFMWZ7K4jk0IDhZHOqI8iNFSGdntWhgrq8zvMjSUV8PT5WtFBatVTeq5lhFUao=
x-amz-request-id: H2Y6P535D6GM9G66
x-amz-replication-status: PENDING
last-modified: Sun, 06 Nov 2022 11:13:32 GMT
etag: "77744c4e88b90bd8f22862b17a125d6e"
x-amz-version-id: cBwrtq2_juHna1cPThj_1xX2nyUEiDrA
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Thu, 10 Nov 2022 04:53:25 GMT
via: 1.1 varnish
age: 157
x-served-by: cache-bma1626-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1668056006.963154,VS0,VE1
cache-control: private,max-age=14401
vary: Accept-Encoding
abp: 2
content-length: 17957
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 58ad273c5ead6b1184f0bae78c306a52
a044ddd19e4523d2ddb42bfd4343aa1a0d3c4bce
71b62e94dda1d7d3c0ba08ca34c487e819b424b2da7f7cb3ec2120fb5b049b20
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:53:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 58ad273c5ead6b1184f0bae78c306a52
a044ddd19e4523d2ddb42bfd4343aa1a0d3c4bce
71b62e94dda1d7d3c0ba08ca34c487e819b424b2da7f7cb3ec2120fb5b049b20
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:53:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.golotter.com/clientapps/templates.html?ngm=Auth,Shared,FullRegistration,UserDetails,PaymentMethods,Consent,RegulationAgeVerification,Security,FormsShared,GamblingAML,GamblingLicense,GamblingProtectionOfFunds,GamblingTimeLimit,Regulation,RegulationLocation,RegulationUser,TermsAndConditions,FrozenUser,SubSitePolicyPermissions,User,LocationIdentification,ScratchCardShared,FooterContent,Header,AutoLogout,Finance,DesktopHeader,TicketLine,PlayShared,PlayRequest,Syndication,BundleItemCards,UpsaleCampaign&v=20221109141249
95.142.30.161200 OK 100 kB URL HTTP/1.1 www.golotter.com/clientapps/templates.html?ngm=Auth,Shared,FullRegistration,UserDetails,PaymentMethods,Consent,RegulationAgeVerification,Security,FormsShared,GamblingAML,GamblingLicense,GamblingProtectionOfFunds,GamblingTimeLimit,Regulation,RegulationLocation,RegulationUser,TermsAndConditions,FrozenUser,SubSitePolicyPermissions,User,LocationIdentification,ScratchCardShared,FooterContent,Header,AutoLogout,Finance,DesktopHeader,TicketLine,PlayShared,PlayRequest,Syndication,BundleItemCards,UpsaleCampaign&v=20221109141249
IP 95.142.30.161:0
File type exported SGML document, ASCII text, with very long lines (408), with CRLF line terminators
Size 100 kB (100241 bytes)
Hash 417170061f1e13f698f5227c4d57a19b
608fbfecbb159a30287a421289dcb7e3da1ab932
dd706b4c879570d747ea39ed8078fe7561c5211e0080743b83008baf3fbb9d6a
GET /clientapps/templates.html?ngm=Auth,Shared,FullRegistration,UserDetails,PaymentMethods,Consent,RegulationAgeVerification,Security,FormsShared,GamblingAML,GamblingLicense,GamblingProtectionOfFunds,GamblingTimeLimit,Regulation,RegulationLocation,RegulationUser,TermsAndConditions,FrozenUser,SubSitePolicyPermissions,User,LocationIdentification,ScratchCardShared,FooterContent,Header,AutoLogout,Finance,DesktopHeader,TicketLine,PlayShared,PlayRequest,Syndication,BundleItemCards,UpsaleCampaign&v=20221109141249 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.2034822369.1668056002; _ga_PG6WJ6GTXC=GS1.1.1668056002.1.0.1668056002.0.0.0; _ga=GA1.1.718643394.1668056002
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Expires: Thu, 09 Nov 2023 13:35:25 GMT
Last-Modified: Wed, 09 Nov 2022 13:35:25 GMT
Vary: Accept-Encoding,Accept-Encoding
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:25 GMT
www.golotter.com/css.axd?d=clientapps%5ccss%5cthemes%5cbluewithwhite%5cplay.css&v=20221109141249
95.142.30.161200 OK 1.0 kB URL HTTP/1.1 www.golotter.com/css.axd?d=clientapps%5ccss%5cthemes%5cbluewithwhite%5cplay.css&v=20221109141249
IP 95.142.30.161:0
Hash 21b0b7e5c59e9d11cbac9ca35d282e38
36a661f76fd399066bd7ada4543906b54ecc1adc
b0491215fb844afd2b57cb9065f3757873cccea2eeba93b1a1b96809b3bf781d
GET /css.axd?d=clientapps%5ccss%5cthemes%5cbluewithwhite%5cplay.css&v=20221109141249 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Content-Type: text/css; charset=UTF-8
Content-Encoding: gzip
Expires: Thu, 09 Nov 2023 13:35:24 GMT
Last-Modified: Wed, 09 Nov 2022 13:35:24 GMT
Vary: Accept-Encoding,Accept-Encoding
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:24 GMT
Content-Length: 27615
googleads.g.doubleclick.net/pagead/viewthroughconversion/10892566208/?random=1668056001925&cv=11&fst=1668056001925&bg=ffffff&guid=ON&async=1>m=2oab70&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109&ref=https%3A%2F%2Flnk.to%2F&tiba=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&auid=2034822369.1668056002&data=event%3Dgtag.config&rfmt=3&fmt=4
142.250.74.66200 OK 1.0 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/10892566208/?random=1668056001925&cv=11&fst=1668056001925&bg=ffffff&guid=ON&async=1>m=2oab70&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109&ref=https%3A%2F%2Flnk.to%2F&tiba=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&auid=2034822369.1668056002&data=event%3Dgtag.config&rfmt=3&fmt=4
IP 142.250.74.66:0
File type ASCII text, with very long lines (2305), with no line terminators
Hash fefda2fd3cf160a458267ee754a0a9c4
b7b80a8fd20f7ef4ba9d646ba0aa80ae36a8408f
7f3be4a126c135e9e3244222f65e06c65a55077ec41d65b774d74fbb4cd44dfe
GET /pagead/viewthroughconversion/10892566208/?random=1668056001925&cv=11&fst=1668056001925&bg=ffffff&guid=ON&async=1>m=2oab70&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109&ref=https%3A%2F%2Flnk.to%2F&tiba=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&auid=2034822369.1668056002&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 10 Nov 2022 04:53:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1017
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 10-Nov-2022 05:08:26 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 7f8e0fc0c21e58c8861535dbc3798992
c58668c0fd5fc1a981917025580f1064eb2c3744
27dc5ed4893e7e608cd11c09bf2d82e80119a994354a80dd8de4644c3333665e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 04:53:26 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 09 Nov 2022 03:43:27 GMT
Expires: Wed, 16 Nov 2022 03:43:26 GMT
Etag: "c58668c0fd5fc1a981917025580f1064eb2c3744"
Cache-Control: max-age=513599,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 767c2f3599a6b506-OSL
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 58ad273c5ead6b1184f0bae78c306a52
a044ddd19e4523d2ddb42bfd4343aa1a0d3c4bce
71b62e94dda1d7d3c0ba08ca34c487e819b424b2da7f7cb3ec2120fb5b049b20
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:53:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lptag.liveperson.net/tag/tag.js?site=50625536
178.249.101.23200 OK 7.6 kB URL HTTP/2 lptag.liveperson.net/tag/tag.js?site=50625536
IP 178.249.101.23:0
File type ASCII text, with very long lines (21652), with no line terminators
Hash 6b675640425ec8551a433e26a377d954
7234f02cce1ccb2a4facf2b34b9185cfcf27299d
8c9716f14d2e964be7c93d3d8c28819cb35c529fce6206a79061cda509e05bfd
GET /tag/tag.js?site=50625536 HTTP/1.1
Host: lptag.liveperson.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 10 Nov 2022 04:53:26 GMT
content-type: application/javascript
content-length: 7567
last-modified: Thu, 03 Sep 2020 08:27:49 GMT
etag: "5f50a905-1d8f"
content-encoding: gzip
server: ws
strict-transport-security: max-age=300; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
cache-control: public, max-age=630
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.golotter.com/__ajax/__play.asmx/getplaymodel
95.142.30.161200 OK 83 kB URL HTTP/1.1 www.golotter.com/__ajax/__play.asmx/getplaymodel
IP 95.142.30.161:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65509), with no line terminators
Hash f536e462370c8a3cdba4742439c39804
ca3cc7b5fb6844f4d516f541df270821fd4a3a1a
ec80cf73fc6c9deee12e9c30d4b67ec4c249c117df67a53d79083de9467f882c
POST /__ajax/__play.asmx/getplaymodel HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 63
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.2034822369.1668056002; _ga_PG6WJ6GTXC=GS1.1.1668056002.1.0.1668056002.0.0.0; _ga=GA1.1.718643394.1668056002
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: private, max-age=0
Content-Type: application/json; charset=utf-8
Server:
X-Robots-Tag: noindex, nofollow
X-AspNet-Version: 4.0.30319
Set-Cookie: PlayRequestLandingPage=1; expires=Sat, 10-Dec-2022 04:53:25 GMT; path=/; secure
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:25 GMT
Content-Length: 83411
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 2817ce33ca8b3667491f155a141abfa7
c39855bf058d975083bd145b944a438b47307a36
33bb12b05df7cb1e19ba5647d57b5cc5f0a79095a2ca40a04e5fe076b7e33422
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:53:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 952f908d8283855a70460d2f6bbcaf22
be97447f1f50f0ad67d15aa07425979da1a12694
6337d6ace429d0bc53cfebab8592c92c449ae969d92545d87f432321b4b494c3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:53:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 2817ce33ca8b3667491f155a141abfa7
c39855bf058d975083bd145b944a438b47307a36
33bb12b05df7cb1e19ba5647d57b5cc5f0a79095a2ca40a04e5fe076b7e33422
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:53:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 952f908d8283855a70460d2f6bbcaf22
be97447f1f50f0ad67d15aa07425979da1a12694
6337d6ace429d0bc53cfebab8592c92c449ae969d92545d87f432321b4b494c3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:53:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-user-list/10892566208/?random=1668056001935&cv=11&fst=1668052800000&bg=ffffff&guid=ON&async=1>m=2oab70&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109&ref=https%3A%2F%2Flnk.to%2F&tiba=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=4085946689&rmt_tld=1&ipr=y
142.250.74.35200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/10892566208/?random=1668056001935&cv=11&fst=1668052800000&bg=ffffff&guid=ON&async=1>m=2oab70&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109&ref=https%3A%2F%2Flnk.to%2F&tiba=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=4085946689&rmt_tld=1&ipr=y
IP 142.250.74.35:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/10892566208/?random=1668056001935&cv=11&fst=1668052800000&bg=ffffff&guid=ON&async=1>m=2oab70&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109&ref=https%3A%2F%2Flnk.to%2F&tiba=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=4085946689&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 10 Nov 2022 04:53:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/10892566208/?random=1668056001935&cv=11&fst=1668052800000&bg=ffffff&guid=ON&async=1>m=2oab70&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109&ref=https%3A%2F%2Flnk.to%2F&tiba=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=4085946689&rmt_tld=0&ipr=y
142.250.74.132200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/10892566208/?random=1668056001935&cv=11&fst=1668052800000&bg=ffffff&guid=ON&async=1>m=2oab70&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109&ref=https%3A%2F%2Flnk.to%2F&tiba=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=4085946689&rmt_tld=0&ipr=y
IP 142.250.74.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/10892566208/?random=1668056001935&cv=11&fst=1668052800000&bg=ffffff&guid=ON&async=1>m=2oab70&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109&ref=https%3A%2F%2Flnk.to%2F&tiba=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=4085946689&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 10 Nov 2022 04:53:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/10892566208/?random=1668056001925&cv=11&fst=1668052800000&bg=ffffff&guid=ON&async=1>m=2oab70&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109&ref=https%3A%2F%2Flnk.to%2F&tiba=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2321211296&rmt_tld=0&ipr=y
142.250.74.132200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/10892566208/?random=1668056001925&cv=11&fst=1668052800000&bg=ffffff&guid=ON&async=1>m=2oab70&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109&ref=https%3A%2F%2Flnk.to%2F&tiba=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2321211296&rmt_tld=0&ipr=y
IP 142.250.74.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/10892566208/?random=1668056001925&cv=11&fst=1668052800000&bg=ffffff&guid=ON&async=1>m=2oab70&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109&ref=https%3A%2F%2Flnk.to%2F&tiba=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2321211296&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 10 Nov 2022 04:53:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/10892566208/?random=1668056001925&cv=11&fst=1668052800000&bg=ffffff&guid=ON&async=1>m=2oab70&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109&ref=https%3A%2F%2Flnk.to%2F&tiba=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2321211296&rmt_tld=1&ipr=y
142.250.74.35200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/10892566208/?random=1668056001925&cv=11&fst=1668052800000&bg=ffffff&guid=ON&async=1>m=2oab70&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109&ref=https%3A%2F%2Flnk.to%2F&tiba=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2321211296&rmt_tld=1&ipr=y
IP 142.250.74.35:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/10892566208/?random=1668056001925&cv=11&fst=1668052800000&bg=ffffff&guid=ON&async=1>m=2oab70&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109&ref=https%3A%2F%2Flnk.to%2F&tiba=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2321211296&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 10 Nov 2022 04:53:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 2817ce33ca8b3667491f155a141abfa7
c39855bf058d975083bd145b944a438b47307a36
33bb12b05df7cb1e19ba5647d57b5cc5f0a79095a2ca40a04e5fe076b7e33422
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:53:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash da6ea2384d89dcf08521ba15aaa8c085
141a73f1f12700389cecb3548d37c2d5286e7a95
db36322a9271b8e877ba3b1b59c0b8783eb5e9ac8cddd9ecce4180904e7a1088
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:53:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.thelotter-affiliates.com/scripts/trackjs.js
95.142.30.138200 OK 7.3 kB URL HTTP/1.1 www.thelotter-affiliates.com/scripts/trackjs.js
IP 95.142.30.138:0
File type C source, ASCII text, with very long lines (1900)
Hash e145770558ea1ad75be43910e5c6d050
5029211c0791a81b4710f963011808b4bb22f338
fb4d8ec47a0ff7d2279c7615dc77054423700060dd9aa301549171154fb3dd75
GET /scripts/trackjs.js HTTP/1.1
Host: www.thelotter-affiliates.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Wed, 20 Feb 2019 12:46:38 GMT
Accept-Ranges: bytes
ETag: "08bd7511ac9d41:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Server-Name: Shield2
Date: Thu, 10 Nov 2022 04:53:25 GMT
Content-Length: 7279
amplify.outbrain.com/cp/obtp.js
23.38.201.81200 OK 3.4 kB URL HTTP/1.1 amplify.outbrain.com/cp/obtp.js
IP 23.38.201.81:0
File type ASCII text, with very long lines (8312), with no line terminators
Hash cd71169d7397d75e3e1bc3b8ad3fe431
e9dd98c561a00921c7a32cea2c5234a8990df891
c285c6997498fec2ea7834dd9685b71fdd473ebef3cf0a8eea8ebfb75cdc10f3
GET /cp/obtp.js HTTP/1.1
Host: amplify.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "70c644fdff25f00146c40d313b23ec29:1668004178.345197"
Last-Modified: Wed, 09 Nov 2022 14:27:40 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1200
Expires: Thu, 10 Nov 2022 05:13:26 GMT
Date: Thu, 10 Nov 2022 04:53:26 GMT
Content-Length: 3351
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c282fb89bdded9707f257751f23fc185
bfe872622a162e0afa35c9cd45742fba2fb15b13
3e66dbf4d736534ca78c1e386311a188e985a015e284a5659213b3b528e7cbc5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4994
Cache-Control: max-age=128184
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:53:26 GMT
Etag: "636bc1fc-1d7"
Expires: Fri, 11 Nov 2022 16:29:50 GMT
Last-Modified: Wed, 09 Nov 2022 15:06:36 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Thu, 10 Nov 2022 04:41:09 GMT
expires: Thu, 10 Nov 2022 06:41:09 GMT
cache-control: public, max-age=7200
age: 737
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash 0ac10debd3a9ea8147a26d045bb93e6e
ff45f3442508e8695f2303701682ebdb6e016464
5dee7b453b2c72c07ff1d62432493a044507835a8031ea62edf2fa7cc26219b9
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: D+ynri2DbzERB/K00RBLn4z0uAF1qKZR/E8RdpVLL+9s/RyFI+01Itsc4rcxc/jRuXPl/RklMXoN38+GRO80mg==
content-length: 27337
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 04:53:26 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
bat.bing.com/bat.js
13.107.21.200200 OK 11 kB IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (38826), with no line terminators
Hash 293ae3e0fc8b0d5c143fdf9d8490228d
3976c659b908e70818a3a1ac71860b497fe2d1a9
04a840d967ae836e14179bde574cabf14a1fc871182ca0f8193e7a0b06c727ab
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11367
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 28 Jul 2022 17:32:37 GMT
accept-ranges: bytes
etag: "80a8697a8a2d81:0"
vary: Accept-Encoding
set-cookie: MUID=252CF5D4AA3D69F93DC2E78CABC86833; domain=.bing.com; expires=Tue, 05-Dec-2023 04:53:26 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: A3C87C5FFAD44E6FA3D1B9E7F305E770 Ref B: OSL30EDGE0519 Ref C: 2022-11-10T04:53:26Z
date: Thu, 10 Nov 2022 04:53:26 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c282fb89bdded9707f257751f23fc185
bfe872622a162e0afa35c9cd45742fba2fb15b13
3e66dbf4d736534ca78c1e386311a188e985a015e284a5659213b3b528e7cbc5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4994
Cache-Control: max-age=128184
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:53:26 GMT
Etag: "636bc1fc-1d7"
Expires: Fri, 11 Nov 2022 16:29:50 GMT
Last-Modified: Wed, 09 Nov 2022 15:06:36 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
www.thelotter-affiliates.com/scripts/track.php?accountId=default1&url=S_www.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F&referrer=S_lnk.to%2F&getParams=%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109&anchor=&isInIframe=false&cookies=
95.142.30.138200 OK 203 B URL HTTP/1.1 www.thelotter-affiliates.com/scripts/track.php?accountId=default1&url=S_www.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F&referrer=S_lnk.to%2F&getParams=%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109&anchor=&isInIframe=false&cookies=
IP 95.142.30.138:0
Hash 224e46326c2212c86e090975a2d5e593
94b64503c21b6fbedeb3aee7041ba244ffc4a1d0
2b83a1e892b7b7a6b8b77a1a92141126f57cc3af0ced8ca6c663c7b077fcb8c1
GET /scripts/track.php?accountId=default1&url=S_www.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F&referrer=S_lnk.to%2F&getParams=%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109&anchor=&isInIframe=false&cookies= HTTP/1.1
Host: www.thelotter-affiliates.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, max-age=0
Content-Type: application/x-javascript
Content-Encoding: gzip
Expires: Sat, 26 Jul 1997 05:00:00 GMT
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
P3P: CP="NOI NID ADMa DEVa PSAa OUR BUS ONL UNI COM STA OTC"
Set-Cookie: PAPAffiliateId=11395; expires=Thu, 10-Nov-2022 04:58:26 GMT; Max-Age=300; path=/; domain=.thelotter-affiliates.com
PAPVisitorId=f35712f39cc38bc8f6004848573e18Zl; expires=Fri, 10-Nov-2023 04:53:26 GMT; Max-Age=31536000; path=/; domain=.thelotter-affiliates.com
X-Powered-By: PHP/5.5.38, ASP.NET
Server-Name: Shield2
Date: Thu, 10 Nov 2022 04:53:25 GMT
Content-Length: 203
region1.google-analytics.com/g/collect?v=2&tid=G-PG6WJ6GTXC>m=2oeb70&_p=215466448&cid=718643394.1668056002&ul=en-us&sr=1280x1024&_s=1&sid=1668056002&sct=1&seg=0&dl=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109&dr=https%3A%2F%2Flnk.to%2F&dt=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-PG6WJ6GTXC>m=2oeb70&_p=215466448&cid=718643394.1668056002&ul=en-us&sr=1280x1024&_s=1&sid=1668056002&sct=1&seg=0&dl=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109&dr=https%3A%2F%2Flnk.to%2F&dt=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-PG6WJ6GTXC>m=2oeb70&_p=215466448&cid=718643394.1668056002&ul=en-us&sr=1280x1024&_s=1&sid=1668056002&sct=1&seg=0&dl=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109&dr=https%3A%2F%2Flnk.to%2F&dt=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.golotter.com
date: Thu, 10 Nov 2022 04:53:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
s.yimg.com/wi/config/10131727.json
188.125.94.206200 OK 22 B URL HTTP/2 s.yimg.com/wi/config/10131727.json
IP 188.125.94.206:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 14293ad9ad0ffaf9f7a3acf1b0793b66
718dea6b65b9516e5e33fac53451056397deb255
73a1b438b0221511fb3dde18e019f5ab045811b2248d25d424e40980c683a9dc
GET /wi/config/10131727.json HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
x-amz-request-id: J7Q9Q2M18SRR097F
x-amz-id-2: 0meHz2be0CVRJqwVwfMN1Crb54HKvLICrDEgMDTnqEWvOsWa/jUyQ9lf3jGauXv0aJwCKSeL2Uo=
content-type: application/json
date: Thu, 10 Nov 2022 04:53:25 GMT
server: ATS
referrer-policy: no-referrer-when-downgrade
cache-control: public,max-age=3600
content-encoding: gzip
content-length: 22
age: 1
strict-transport-security: max-age=15552000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=25071092&Ver=2&mid=a4beffb3-be69-48ba-81f7-0405fa36f993&sid=9ab91dd060b311eda6ac37eda4cfd3e2&vid=9ab93ed060b311ed90bc4b5d568fb900&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&p=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109&r=https%3A%2F%2Flnk.to%2F<=1969&evt=pageLoad&sv=1&rn=232415
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=25071092&Ver=2&mid=a4beffb3-be69-48ba-81f7-0405fa36f993&sid=9ab91dd060b311eda6ac37eda4cfd3e2&vid=9ab93ed060b311ed90bc4b5d568fb900&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&p=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109&r=https%3A%2F%2Flnk.to%2F<=1969&evt=pageLoad&sv=1&rn=232415
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=25071092&Ver=2&mid=a4beffb3-be69-48ba-81f7-0405fa36f993&sid=9ab91dd060b311eda6ac37eda4cfd3e2&vid=9ab93ed060b311ed90bc4b5d568fb900&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&p=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109&r=https%3A%2F%2Flnk.to%2F<=1969&evt=pageLoad&sv=1&rn=232415 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=35CC89074E9868123C219B5F4F6D695A; domain=.bing.com; expires=Tue, 05-Dec-2023 04:53:26 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: F68086D097F24C4C8F591D3815C318B1 Ref B: OSL30EDGE0519 Ref C: 2022-11-10T04:53:26Z
date: Thu, 10 Nov 2022 04:53:26 GMT
X-Firefox-Spdy: h2
bat.bing.com/p/action/25071092.js
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/25071092.js
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/25071092.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=325F5859CCB7689F38C84A01CD426951; domain=.bing.com; expires=Tue, 05-Dec-2023 04:53:26 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 11153C3E65EA4C3FB3AE9C0371BC4E0B Ref B: OSL30EDGE0519 Ref C: 2022-11-10T04:53:26Z
date: Thu, 10 Nov 2022 04:53:26 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 7c89768eee117880b59f8644d2138e52
49a829a38293c8f1eb86dbbccc82017f1d5d86bb
c512960cca090441f3c7e9ffea25448965eb4068d1506b8afa6d391b3c3a07be
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:53:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-6907977-25&cid=718643394.1668056002&jid=590690751&gjid=1245986510&_gid=1918921077.1668056003&_u=IADAAEAAAAAAACAAI~&z=114735197
64.233.165.155200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-6907977-25&cid=718643394.1668056002&jid=590690751&gjid=1245986510&_gid=1918921077.1668056003&_u=IADAAEAAAAAAACAAI~&z=114735197
IP 64.233.165.155:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-6907977-25&cid=718643394.1668056002&jid=590690751&gjid=1245986510&_gid=1918921077.1668056003&_u=IADAAEAAAAAAACAAI~&z=114735197 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.golotter.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 10 Nov 2022 04:53:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 7c89768eee117880b59f8644d2138e52
49a829a38293c8f1eb86dbbccc82017f1d5d86bb
c512960cca090441f3c7e9ffea25448965eb4068d1506b8afa6d391b3c3a07be
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:53:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.facebook.com/tr/?id=817677268405846&ev=PageView&dl=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109&rl=https%3A%2F%2Flnk.to%2F&if=false&ts=1668056003194&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1668056003193.66568704&it=1668056002965&coo=false&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=817677268405846&ev=PageView&dl=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109&rl=https%3A%2F%2Flnk.to%2F&if=false&ts=1668056003194&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1668056003193.66568704&it=1668056002965&coo=false&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=817677268405846&ev=PageView&dl=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109&rl=https%3A%2F%2Flnk.to%2F&if=false&ts=1668056003194&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1668056003193.66568704&it=1668056002965&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 10 Nov 2022 04:53:26 GMT
X-Firefox-Spdy: h2
sp.analytics.yahoo.com/sp.pl?a=10000&d=Thu%2C%2010%20Nov%202022%2004%3A53%3A23%20GMT&n=0&b=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&.yp=10131727&f=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109&e=https%3A%2F%2Flnk.to%2F&enc=UTF-8&yv=1.13.0&tagmgr=gtm
212.82.100.181200 OK 43 B URL HTTP/2 sp.analytics.yahoo.com/sp.pl?a=10000&d=Thu%2C%2010%20Nov%202022%2004%3A53%3A23%20GMT&n=0&b=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&.yp=10131727&f=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109&e=https%3A%2F%2Flnk.to%2F&enc=UTF-8&yv=1.13.0&tagmgr=gtm
IP 212.82.100.181:0
ASN #34010 Yahoo! UK Services Limited
File type GIF image data, version 89a, 1 x 1\012- data
Hash bff56ce49dd485d195fdfa0a02342568
74fb4071deab7d3ab083562067b735df32c43397
0e4b1e428a2198ef747010c094101c257b568a97cdcc0f31ed5e9868cc835b39
GET /sp.pl?a=10000&d=Thu%2C%2010%20Nov%202022%2004%3A53%3A23%20GMT&n=0&b=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&.yp=10131727&f=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109&e=https%3A%2F%2Flnk.to%2F&enc=UTF-8&yv=1.13.0&tagmgr=gtm HTTP/1.1
Host: sp.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 10 Nov 2022 04:53:26 GMT
expires: Thu, 10 Nov 2022 04:53:26 GMT
pragma: no-cache
cache-control: no-cache, private, must-revalidate
content-type: image/gif
accept-ranges: bytes
content-length: 43
server: ATS
age: 0
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-frame-options: DENY
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: sandbox; default-src 'self'; script-src 'none'; object-src 'none'; report-uri http://csp.yahoo.com/beacon/csp?src=generic
set-cookie: A3=d=AQABBMaDbGMCEHCsbl2fmXPqvOShJcYhpUgFEgEBAQHVbWN2YwAAAAAA_eMAAA&S=AQAAAkJ7fNcPx8oHOdgHRM6Dj0Y; Expires=Fri, 10 Nov 2023 10:53:26 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
tr.outbrain.com/unifiedPixel?marketerId=001fb03cf3fe3fdff9b757afa645f85cd8,007e46ed0106616ee0ee926fbc10cbc7ee,0061e3ebfce8d46e7e32807000c43eb5f7,0030476f23402842607ee4df055f1cd5de,0020a94d4db070222beff9251752190e90&obApiVersion=1.1&obtpVersion=1.11.5&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109&optOut=false&bust=09480058268308132&referrer=https%3A%2F%2Flnk.to%2F
70.42.32.159200 OK 60 B URL HTTP/1.1 tr.outbrain.com/unifiedPixel?marketerId=001fb03cf3fe3fdff9b757afa645f85cd8,007e46ed0106616ee0ee926fbc10cbc7ee,0061e3ebfce8d46e7e32807000c43eb5f7,0030476f23402842607ee4df055f1cd5de,0020a94d4db070222beff9251752190e90&obApiVersion=1.1&obtpVersion=1.11.5&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109&optOut=false&bust=09480058268308132&referrer=https%3A%2F%2Flnk.to%2F
IP 70.42.32.159:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash fb0fc5c090282e372b8bf8ff13ae3ee2
2de3834253ece606ce4d2a6f10a59654b6fa378b
90a8ffa59ad6227daafa10083d4cff2e9b295c9c82135b5f5cedd65b2e7c8ceb
GET /unifiedPixel?marketerId=001fb03cf3fe3fdff9b757afa645f85cd8,007e46ed0106616ee0ee926fbc10cbc7ee,0061e3ebfce8d46e7e32807000c43eb5f7,0030476f23402842607ee4df055f1cd5de,0020a94d4db070222beff9251752190e90&obApiVersion=1.1&obtpVersion=1.11.5&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109&optOut=false&bust=09480058268308132&referrer=https%3A%2F%2Flnk.to%2F HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 04:53:27 GMT
Content-Type: image/gif;
Content-Length: 60
Cache-Control: no-cache
X-TraceId: 200f74ce068d17ca99f6dff882d73b76
content-encoding: gzip
tr.outbrain.com/cachedClickId?marketerId=001fb03cf3fe3fdff9b757afa645f85cd8,007e46ed0106616ee0ee926fbc10cbc7ee,0061e3ebfce8d46e7e32807000c43eb5f7,0030476f23402842607ee4df055f1cd5de,0020a94d4db070222beff9251752190e90
70.42.32.159200 OK 56 B URL HTTP/1.1 tr.outbrain.com/cachedClickId?marketerId=001fb03cf3fe3fdff9b757afa645f85cd8,007e46ed0106616ee0ee926fbc10cbc7ee,0061e3ebfce8d46e7e32807000c43eb5f7,0030476f23402842607ee4df055f1cd5de,0020a94d4db070222beff9251752190e90
IP 70.42.32.159:0
File type ASCII text, with no line terminators
Hash 77fbe8ab311fa20557d95906363035ed
5806df80f09a37e070d5f37c49f19797c2763fd0
4fa9f4ca5bfa56b9f8467324e3654f4a717dcd40b70c05b538092d8a101b0599
GET /cachedClickId?marketerId=001fb03cf3fe3fdff9b757afa645f85cd8,007e46ed0106616ee0ee926fbc10cbc7ee,0061e3ebfce8d46e7e32807000c43eb5f7,0030476f23402842607ee4df055f1cd5de,0020a94d4db070222beff9251752190e90 HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 04:53:27 GMT
Content-Type: application/javascript
Content-Length: 56
X-TraceId: aee24365b4c58b9eb83f4a6b0864d62f
content-encoding: gzip
www.golotter.com/__ajax/__upsalecampaigns.asmx/getexitintentoffer
95.142.30.161200 OK 134 B URL HTTP/1.1 www.golotter.com/__ajax/__upsalecampaigns.asmx/getexitintentoffer
IP 95.142.30.161:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 770c1a11bfbebfbed8d8b85119c2fd0a
f9aae5604fc42e8bea241c526b8726a21c08973d
0d1c6b08da4a7a15f380b8a2e1052829cd2726fbcb4e09193966f1dfe7bed251
POST /__ajax/__upsalecampaigns.asmx/getexitintentoffer HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 2
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.2034822369.1668056002; _ga_PG6WJ6GTXC=GS1.1.1668056002.1.0.1668056002.0.0.0; _ga=GA1.2.718643394.1668056002; PAPVisitorId=f35712f39cc38bc8f6004848573e18Zl; _gid=GA1.2.1918921077.1668056003; _gat=1; _uetsid=9ab91dd060b311eda6ac37eda4cfd3e2; _uetvid=9ab93ed060b311ed90bc4b5d568fb900; _fbp=fb.1.1668056003193.66568704; outbrain_cid_fetch=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: private, max-age=0
Content-Type: application/json; charset=utf-8
Server:
X-Robots-Tag: noindex, nofollow
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:26 GMT
Content-Length: 134
www.golotter.com/App_Themes/Default/images/Footer/desktop-background-footer.png?v=202211090957
95.142.30.161200 OK 29 kB URL HTTP/1.1 www.golotter.com/App_Themes/Default/images/Footer/desktop-background-footer.png?v=202211090957
IP 95.142.30.161:0
File type PNG image data, 1249 x 787, 4-bit colormap, non-interlaced\012- data
Hash 1026eb88f4f552044be5193754671a89
2f2c7a3526f9c73544c69b61fc0dbd4d4d8e3428
3aa8ebe05cb7fa90a050bffae4bb5471f413ca68b0d330bc9e89223bf4f55dfa
GET /App_Themes/Default/images/Footer/desktop-background-footer.png?v=202211090957 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/css.axd?d=%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fgeneral.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fcontent.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2felements.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fflags.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2ffooter.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fframework.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fheader.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fhint.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2ficons.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fmydetails.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fmyscreens.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fnotsupportedbrowser.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fplayoptions.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2frightbarelements.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fui.jqtheme.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fvalidation.css&v=20221109141249
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.2034822369.1668056002; _ga_PG6WJ6GTXC=GS1.1.1668056002.1.0.1668056002.0.0.0; _ga=GA1.2.718643394.1668056002; PAPVisitorId=f35712f39cc38bc8f6004848573e18Zl; _gid=GA1.2.1918921077.1668056003; _gat=1; _uetsid=9ab91dd060b311eda6ac37eda4cfd3e2; _uetvid=9ab93ed060b311ed90bc4b5d568fb900; _fbp=fb.1.1668056003193.66568704; outbrain_cid_fetch=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 09 Nov 2022 13:35:22 GMT
Accept-Ranges: bytes
ETag: "5e54e81d40f4d81:0"
Server:
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:26 GMT
Content-Length: 29012
www.golotter.com/ClientApps/Modules/FooterContent/Partials/Licenses/aikmina.html?v=20221109141249
95.142.30.161200 OK 906 B URL HTTP/1.1 www.golotter.com/ClientApps/Modules/FooterContent/Partials/Licenses/aikmina.html?v=20221109141249
IP 95.142.30.161:0
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash d66b308ac3976a3add50df97df79c60f
8fbc11ca9324360d1d6ae2caf8c00b5b4c01c8c9
1eda2694ff8a3d978bbfeadce42f88f070386568783bb26f2e8929840fcac460
GET /ClientApps/Modules/FooterContent/Partials/Licenses/aikmina.html?v=20221109141249 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.2034822369.1668056002; _ga_PG6WJ6GTXC=GS1.1.1668056002.1.0.1668056002.0.0.0; _ga=GA1.2.718643394.1668056002; PAPVisitorId=f35712f39cc38bc8f6004848573e18Zl; _gid=GA1.2.1918921077.1668056003; _gat=1; _uetsid=9ab91dd060b311eda6ac37eda4cfd3e2; _uetvid=9ab93ed060b311ed90bc4b5d568fb900; _fbp=fb.1.1668056003193.66568704; outbrain_cid_fetch=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: text/html
Content-Encoding: gzip
Last-Modified: Wed, 09 Nov 2022 13:35:25 GMT
Accept-Ranges: bytes
ETag: "4b2e71f40f4d81:0"
Vary: Accept-Encoding
Server:
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:26 GMT
Content-Length: 906
www.golotter.com/__ajax/__validations.asmx/getvalidationtranslations
95.142.30.161200 OK 3.9 kB URL HTTP/1.1 www.golotter.com/__ajax/__validations.asmx/getvalidationtranslations
IP 95.142.30.161:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (3924), with no line terminators
Hash 3f559905115a45a6460b4c3fa7bf3b14
e0386e9cb33a3b4365351f0c5a1b588fe88871af
2bf1cfa7cc309ad80b1acee1bfaf09b4d16398f73be39eec129490a5a90cd21e
POST /__ajax/__validations.asmx/getvalidationtranslations HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 2
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.2034822369.1668056002; _ga_PG6WJ6GTXC=GS1.1.1668056002.1.0.1668056002.0.0.0; _ga=GA1.2.718643394.1668056002; PAPVisitorId=f35712f39cc38bc8f6004848573e18Zl; _gid=GA1.2.1918921077.1668056003; _gat=1; _uetsid=9ab91dd060b311eda6ac37eda4cfd3e2; _uetvid=9ab93ed060b311ed90bc4b5d568fb900; _fbp=fb.1.1668056003193.66568704; outbrain_cid_fetch=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: private, max-age=0
Content-Type: application/json; charset=utf-8
Server:
X-Robots-Tag: noindex, nofollow
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:26 GMT
Content-Length: 3929
www.golotter.com/api/subsite/is-betting-on
95.142.30.161200 OK 125 B URL HTTP/1.1 www.golotter.com/api/subsite/is-betting-on
IP 95.142.30.161:0
File type JSON data\012- , ASCII text, with no line terminators
Hash ef2e8d9507fec068867fdf35ff8f2e97
6b5e1229269c642322750f63f5b78d53094c3a03
a09f52ca257c838908f314f38e983ef3421cbcc7c35c4a3e36e358622d3bd759
GET /api/subsite/is-betting-on HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.2034822369.1668056002; _ga_PG6WJ6GTXC=GS1.1.1668056002.1.0.1668056002.0.0.0; _ga=GA1.2.718643394.1668056002; PAPVisitorId=f35712f39cc38bc8f6004848573e18Zl; _gid=GA1.2.1918921077.1668056003; _gat=1; _uetsid=9ab91dd060b311eda6ac37eda4cfd3e2; _uetvid=9ab93ed060b311ed90bc4b5d568fb900; _fbp=fb.1.1668056003193.66568704; outbrain_cid_fetch=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: no-cache
Pragma: no-cache
Content-Type: application/json; charset=utf-8
Expires: -1
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:26 GMT
Content-Length: 125
www.golotter.com/api/policypermissions
95.142.30.161200 OK 5.7 kB URL HTTP/1.1 www.golotter.com/api/policypermissions
IP 95.142.30.161:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (5712), with no line terminators
Hash f31ff4bb608c98f649ded243df805620
3b7b9fa96b7e9d60e9030b0321e148bb0ead43fb
a84c9b610ba585a0c9e2fa294fe2621fca165af7b079bf87fbee79601dc380c4
GET /api/policypermissions HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.2034822369.1668056002; _ga_PG6WJ6GTXC=GS1.1.1668056002.1.0.1668056002.0.0.0; _ga=GA1.2.718643394.1668056002; PAPVisitorId=f35712f39cc38bc8f6004848573e18Zl; _gid=GA1.2.1918921077.1668056003; _gat=1; _uetsid=9ab91dd060b311eda6ac37eda4cfd3e2; _uetvid=9ab93ed060b311ed90bc4b5d568fb900; _fbp=fb.1.1668056003193.66568704; outbrain_cid_fetch=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: no-cache
Pragma: no-cache
Content-Type: application/json; charset=utf-8
Expires: -1
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:26 GMT
Content-Length: 5720
www.golotter.com/App_Themes/Default/images/General/loader_red.gif?v=202211090958
95.142.30.161200 OK 2.9 kB URL HTTP/1.1 www.golotter.com/App_Themes/Default/images/General/loader_red.gif?v=202211090958
IP 95.142.30.161:0
File type GIF image data, version 89a, 30 x 30\012- data
Hash 878de0a7a503cc9e144239193ff79a1b
8362d1d56fc2ec1ca4fd71a39472990721872897
399c04c19924a81bac7384f3a45287556814761560970a514d36fe4271778203
GET /App_Themes/Default/images/General/loader_red.gif?v=202211090958 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.2034822369.1668056002; _ga_PG6WJ6GTXC=GS1.1.1668056002.1.0.1668056002.0.0.0; _ga=GA1.2.718643394.1668056002; PAPVisitorId=f35712f39cc38bc8f6004848573e18Zl; _gid=GA1.2.1918921077.1668056003; _gat=1; _uetsid=9ab91dd060b311eda6ac37eda4cfd3e2; _uetvid=9ab93ed060b311ed90bc4b5d568fb900; _fbp=fb.1.1668056003193.66568704; outbrain_cid_fetch=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Wed, 09 Nov 2022 13:35:22 GMT
Accept-Ranges: bytes
ETag: "ff17ed1d40f4d81:0"
Server:
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:26 GMT
Content-Length: 2886
www.golotter.com/objects/dm.tlo?id=29476&v=202211090958
95.142.30.161200 OK 9.2 kB URL HTTP/1.1 www.golotter.com/objects/dm.tlo?id=29476&v=202211090958
IP 95.142.30.161:0
File type PNG image data, 191 x 117, 8-bit/color RGBA, non-interlaced\012- data
Hash c332c137bc916340225305271cbbf994
872450427482e1891ef42e2acb237c93ea6e820d
2b374c3cf64f89319bba7aee2a6112f699a70a799ddc51a4a2aef5d4f53d1107
GET /objects/dm.tlo?id=29476&v=202211090958 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.2034822369.1668056002; _ga_PG6WJ6GTXC=GS1.1.1668056002.1.0.1668056002.0.0.0; _ga=GA1.2.718643394.1668056002; PAPVisitorId=f35712f39cc38bc8f6004848573e18Zl; _gid=GA1.2.1918921077.1668056003; _gat=1; _uetsid=9ab91dd060b311eda6ac37eda4cfd3e2; _uetvid=9ab93ed060b311ed90bc4b5d568fb900; _fbp=fb.1.1668056003193.66568704; outbrain_cid_fetch=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: image/png
Expires: Fri, 10 Nov 2023 04:53:27 GMT
Last-Modified: Thu, 10 Nov 2022 04:53:27 GMT
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:26 GMT
www.golotter.com/ClientApps/css/themes/BlueWithWhite/Images/user-icon-svg.svg?v=202211090957
95.142.30.161200 OK 402 B URL HTTP/1.1 www.golotter.com/ClientApps/css/themes/BlueWithWhite/Images/user-icon-svg.svg?v=202211090957
IP 95.142.30.161:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (307), with CRLF line terminators
Hash 080dc36e33a9362284fdac748553806a
002b20593ec3d52aa2349a8e592129210bcc8b73
4c63b42179dcc4e6519c49acc18217fde662869d787c50167b93e267071773b4
GET /ClientApps/css/themes/BlueWithWhite/Images/user-icon-svg.svg?v=202211090957 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/css.axd?d=%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fgeneral.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fcontent.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2felements.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fflags.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2ffooter.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fframework.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fheader.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fhint.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2ficons.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fmydetails.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fmyscreens.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fnotsupportedbrowser.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fplayoptions.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2frightbarelements.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fui.jqtheme.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fvalidation.css&v=20221109141249
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.2034822369.1668056002; _ga_PG6WJ6GTXC=GS1.1.1668056002.1.0.1668056002.0.0.0; _ga=GA1.2.718643394.1668056002; PAPVisitorId=f35712f39cc38bc8f6004848573e18Zl; _gid=GA1.2.1918921077.1668056003; _gat=1; _uetsid=9ab91dd060b311eda6ac37eda4cfd3e2; _uetvid=9ab93ed060b311ed90bc4b5d568fb900; _fbp=fb.1.1668056003193.66568704; outbrain_cid_fetch=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Last-Modified: Wed, 09 Nov 2022 13:35:24 GMT
Accept-Ranges: bytes
ETag: "f9ffe61e40f4d81:0"
Server:
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:26 GMT
Content-Length: 402
www.golotter.com/App_Themes/Default/images/JoinTheFunElement/safe-illustration-v2.png?v=202211090957
95.142.30.161200 OK 15 kB URL HTTP/1.1 www.golotter.com/App_Themes/Default/images/JoinTheFunElement/safe-illustration-v2.png?v=202211090957
IP 95.142.30.161:0
File type PNG image data, 200 x 160, 8-bit/color RGBA, non-interlaced\012- data
Hash d080fac963d0659526aa8c2a83d51329
7d1517b47ed7a5ae4228c591c029d3e88a2c31cb
33eda7cbd62cbf01601df93415a90984efd9191def06438c9aff8f8b9c36a92c
GET /App_Themes/Default/images/JoinTheFunElement/safe-illustration-v2.png?v=202211090957 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/css.axd?d=clientapps%5ccss%5cthemes%5cbluewithwhite%5cplay.css&v=20221109141249
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.2034822369.1668056002; _ga_PG6WJ6GTXC=GS1.1.1668056002.1.0.1668056002.0.0.0; _ga=GA1.2.718643394.1668056002; PAPVisitorId=f35712f39cc38bc8f6004848573e18Zl; _gid=GA1.2.1918921077.1668056003; _gat=1; _uetsid=9ab91dd060b311eda6ac37eda4cfd3e2; _uetvid=9ab93ed060b311ed90bc4b5d568fb900; _fbp=fb.1.1668056003193.66568704; outbrain_cid_fetch=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 09 Nov 2022 13:35:22 GMT
Accept-Ranges: bytes
ETag: "e2d231e40f4d81:0"
Server:
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:26 GMT
Content-Length: 14592
www.golotter.com/App_Themes/Default/images/JoinTheFunElement/commission-illustration-v2.png?v=202211090957
95.142.30.161200 OK 16 kB URL HTTP/1.1 www.golotter.com/App_Themes/Default/images/JoinTheFunElement/commission-illustration-v2.png?v=202211090957
IP 95.142.30.161:0
File type PNG image data, 200 x 160, 8-bit/color RGBA, non-interlaced\012- data
Hash 18bcc3a2ae4f4e6f7a17aa4b14efd1e0
d7bcd959111b6e7531f9db5e635abd688491d3c6
889248d78bb45ae62ac51f3a2f46357f21179261e759ff045a27621afee6dd11
GET /App_Themes/Default/images/JoinTheFunElement/commission-illustration-v2.png?v=202211090957 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/css.axd?d=clientapps%5ccss%5cthemes%5cbluewithwhite%5cplay.css&v=20221109141249
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.2034822369.1668056002; _ga_PG6WJ6GTXC=GS1.1.1668056002.1.0.1668056002.0.0.0; _ga=GA1.2.718643394.1668056002; PAPVisitorId=f35712f39cc38bc8f6004848573e18Zl; _gid=GA1.2.1918921077.1668056003; _gat=1; _uetsid=9ab91dd060b311eda6ac37eda4cfd3e2; _uetvid=9ab93ed060b311ed90bc4b5d568fb900; _fbp=fb.1.1668056003193.66568704; outbrain_cid_fetch=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 09 Nov 2022 13:35:22 GMT
Accept-Ranges: bytes
ETag: "369a21e40f4d81:0"
Server:
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:26 GMT
Content-Length: 16270
www.golotter.com/App_Themes/Default/images/JoinTheFunElement/tickets-illustration-v2.png?v=202211090957
95.142.30.161200 OK 11 kB URL HTTP/1.1 www.golotter.com/App_Themes/Default/images/JoinTheFunElement/tickets-illustration-v2.png?v=202211090957
IP 95.142.30.161:0
File type PNG image data, 200 x 160, 8-bit/color RGBA, non-interlaced\012- data
Hash cfbd261e678bbbdba7112f099560c48f
b54adba689390b5c60a814852a583ecf128e684e
718fef23bc069308200048b82e2d9c335b087d07533329c0b4fe9f9ee600ea9e
GET /App_Themes/Default/images/JoinTheFunElement/tickets-illustration-v2.png?v=202211090957 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/css.axd?d=clientapps%5ccss%5cthemes%5cbluewithwhite%5cplay.css&v=20221109141249
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.2034822369.1668056002; _ga_PG6WJ6GTXC=GS1.1.1668056002.1.0.1668056002.0.0.0; _ga=GA1.2.718643394.1668056002; PAPVisitorId=f35712f39cc38bc8f6004848573e18Zl; _gid=GA1.2.1918921077.1668056003; _gat=1; _uetsid=9ab91dd060b311eda6ac37eda4cfd3e2; _uetvid=9ab93ed060b311ed90bc4b5d568fb900; _fbp=fb.1.1668056003193.66568704; outbrain_cid_fetch=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 09 Nov 2022 13:35:22 GMT
Accept-Ranges: bytes
ETag: "464841e40f4d81:0"
Server:
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:26 GMT
Content-Length: 10637
www.golotter.com/ClientApps/css/themes/BlueWithWhite/Images/globe-icon-svg.svg?v=202211090957
95.142.30.161200 OK 1.3 kB URL HTTP/1.1 www.golotter.com/ClientApps/css/themes/BlueWithWhite/Images/globe-icon-svg.svg?v=202211090957
IP 95.142.30.161:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1253), with CRLF line terminators
Hash 88dbc33822672bb91034583ac36b2585
b95a523154f739921020785fbeb44a705ced55d3
d2db8e2f675af962e9393aaf0493f5034cc8c95d6eb63af734329568d1b9fc27
GET /ClientApps/css/themes/BlueWithWhite/Images/globe-icon-svg.svg?v=202211090957 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/css.axd?d=%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fgeneral.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fcontent.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2felements.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fflags.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2ffooter.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fframework.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fheader.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fhint.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2ficons.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fmydetails.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fmyscreens.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fnotsupportedbrowser.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fplayoptions.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2frightbarelements.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fui.jqtheme.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fvalidation.css&v=20221109141249
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.2034822369.1668056002; _ga_PG6WJ6GTXC=GS1.1.1668056002.1.0.1668056002.0.0.0; _ga=GA1.2.718643394.1668056002; PAPVisitorId=f35712f39cc38bc8f6004848573e18Zl; _gid=GA1.2.1918921077.1668056003; _gat=1; _uetsid=9ab91dd060b311eda6ac37eda4cfd3e2; _uetvid=9ab93ed060b311ed90bc4b5d568fb900; _fbp=fb.1.1668056003193.66568704; outbrain_cid_fetch=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Last-Modified: Wed, 09 Nov 2022 13:35:24 GMT
Accept-Ranges: bytes
ETag: "143ada1e40f4d81:0"
Server:
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:26 GMT
Content-Length: 1348
www.golotter.com/objects/dm.tlo?id=29430&v=202211090958
95.142.30.161200 OK 54 kB URL HTTP/1.1 www.golotter.com/objects/dm.tlo?id=29430&v=202211090958
IP 95.142.30.161:0
File type PNG image data, 240 x 240, 8-bit/color RGBA, non-interlaced\012- data
Hash 9a0cc37e36614a09c21b7b05a80e9b28
eb8df560443b8be1164536cbefb2c5fcf5f928b5
cf7ff82c90200595b888a505f501d852c1df9ad602397d2dd0998472ef1fb3ff
GET /objects/dm.tlo?id=29430&v=202211090958 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.2034822369.1668056002; _ga_PG6WJ6GTXC=GS1.1.1668056002.1.0.1668056002.0.0.0; _ga=GA1.2.718643394.1668056002; PAPVisitorId=f35712f39cc38bc8f6004848573e18Zl; _gid=GA1.2.1918921077.1668056003; _gat=1; _uetsid=9ab91dd060b311eda6ac37eda4cfd3e2; _uetvid=9ab93ed060b311ed90bc4b5d568fb900; _fbp=fb.1.1668056003193.66568704; outbrain_cid_fetch=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: image/png
Expires: Fri, 10 Nov 2023 04:53:27 GMT
Last-Modified: Thu, 10 Nov 2022 04:53:27 GMT
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:26 GMT
www.golotter.com/ClientApps/css/themes/BlueWithWhite/Images/confettiRegular@3x.png?v=202211090957
95.142.30.161200 OK 6.7 kB URL HTTP/1.1 www.golotter.com/ClientApps/css/themes/BlueWithWhite/Images/confettiRegular@3x.png?v=202211090957
IP 95.142.30.161:0
File type PNG image data, 900 x 465, 8-bit colormap, non-interlaced\012- data
Hash 94798089295b8da9a3ca1de198b7621f
21b748b3b5f64b1bf7ce10a031d74aaf45c971c6
f842c41daa27bc48e6becbdd0aad66929a64db6d82df45326223713161609d0d
GET /ClientApps/css/themes/BlueWithWhite/Images/confettiRegular@3x.png?v=202211090957 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/css.axd?d=%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fgeneral.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fcontent.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2felements.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fflags.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2ffooter.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fframework.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fheader.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fhint.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2ficons.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fmydetails.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fmyscreens.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fnotsupportedbrowser.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fplayoptions.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2frightbarelements.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fui.jqtheme.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fvalidation.css&v=20221109141249
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.2034822369.1668056002; _ga_PG6WJ6GTXC=GS1.1.1668056002.1.0.1668056002.0.0.0; _ga=GA1.2.718643394.1668056002; PAPVisitorId=f35712f39cc38bc8f6004848573e18Zl; _gid=GA1.2.1918921077.1668056003; _gat=1; _uetsid=9ab91dd060b311eda6ac37eda4cfd3e2; _uetvid=9ab93ed060b311ed90bc4b5d568fb900; _fbp=fb.1.1668056003193.66568704; outbrain_cid_fetch=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 09 Nov 2022 13:35:23 GMT
Accept-Ranges: bytes
ETag: "413d31e40f4d81:0"
Server:
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:26 GMT
Content-Length: 6667
www.golotter.com/__ajax/__authentication.asmx/getauthenticationmodelsignin?siteref=44
95.142.30.161200 OK 14 kB URL HTTP/1.1 www.golotter.com/__ajax/__authentication.asmx/getauthenticationmodelsignin?siteref=44
IP 95.142.30.161:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (13672), with no line terminators
Hash bd61e3535fa4c44a98f0bdd01759f7cd
380e3c9120f63c8a18563230cd16a020d96c5ad3
5305a41e445cc2689fe308984678a96091322094671619ad33a123b39c4f2bc9
POST /__ajax/__authentication.asmx/getauthenticationmodelsignin?siteref=44 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 2
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.2034822369.1668056002; _ga_PG6WJ6GTXC=GS1.1.1668056002.1.0.1668056002.0.0.0; _ga=GA1.2.718643394.1668056002; PAPVisitorId=f35712f39cc38bc8f6004848573e18Zl; _gid=GA1.2.1918921077.1668056003; _gat=1; _uetsid=9ab91dd060b311eda6ac37eda4cfd3e2; _uetvid=9ab93ed060b311ed90bc4b5d568fb900; _fbp=fb.1.1668056003193.66568704; outbrain_cid_fetch=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: private, max-age=0
Content-Type: application/json; charset=utf-8
Server:
X-Robots-Tag: noindex, nofollow
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:27 GMT
Content-Length: 13701
cdn.walkme.com/users/ca43a4c1d28e4fb09cf953b9348f73d5/settings.txt
104.110.3.98200 OK 842 B URL HTTP/2 cdn.walkme.com/users/ca43a4c1d28e4fb09cf953b9348f73d5/settings.txt
IP 104.110.3.98:0
File type ASCII text, with very long lines (2622), with no line terminators
Hash 1b26af8186993a8c44155648b97429f8
dc72918350df414ff0c5a24c91a355c0d69a0052
c534f957238ee539cbac4fd25fdff09d48894a6da58e3f9b378eda933a7e7ebf
GET /users/ca43a4c1d28e4fb09cf953b9348f73d5/settings.txt HTTP/1.1
Host: cdn.walkme.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 4Qb1XDHHpURMcvTc7z7rZ7G1slzSoh6IoBwMyppY0qAcwr+fkUOt52/lb31SPhgm9KAZRlzX6Wg=
x-amz-request-id: FMCM3RNESJ5VAQ9H
x-amz-replication-status: COMPLETED
last-modified: Tue, 13 Sep 2022 06:09:41 GMT
etag: "1ffed9739725f7a20601d658fa728fbf"
x-amz-server-side-encryption: AES256
x-amz-version-id: M30KA0c9UD1akvvgHltucvG7YcAk1YNJ
accept-ranges: bytes
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=900
date: Thu, 10 Nov 2022 04:53:28 GMT
content-length: 842
access-control-allow-private-network: true
timing-allow-origin: *
access-control-allow-origin: *
content-security-policy: upgrade-insecure-requests;
referrer-policy: no-referrer-when-downgrade
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000;includeSubdomains
X-Firefox-Spdy: h2
cdn.walkme.com/player/resources/wmjQuery33121.js
104.110.3.98200 OK 30 kB URL HTTP/2 cdn.walkme.com/player/resources/wmjQuery33121.js
IP 104.110.3.98:0
File type ASCII text, with very long lines (65446)
Hash b00eee8317d72ce865b995c31f1f95ff
da653f6c7081b4d11972d75b40843293960cdd2a
f2d6e90ff34241b2cdcd9d0ff51191a2bc99666dc6e3000de8de460e9057ed05
GET /player/resources/wmjQuery33121.js HTTP/1.1
Host: cdn.walkme.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: bIJXQqxz4tIe4glG7WcDkbMk4JNdbMzwKt7HIuawNDlddo6HA7jK6PrQirQxVZ07I7Q55IbRsJI=
x-amz-request-id: QGHYXH67B291MD4Q
x-amz-replication-status: COMPLETED
last-modified: Tue, 03 May 2022 06:44:33 GMT
etag: "b00eee8317d72ce865b995c31f1f95ff"
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: dpj4bAlfG6UlhFPdf_TGly9sgsSAJ5Ge
accept-ranges: bytes
content-type: application/javascript
content-length: 30035
vary: Accept-Encoding
cache-control: max-age=16705414
date: Thu, 10 Nov 2022 04:53:28 GMT
access-control-allow-private-network: true
timing-allow-origin: *
access-control-allow-origin: *
content-security-policy: upgrade-insecure-requests;
referrer-policy: no-referrer-when-downgrade
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000;includeSubdomains
X-Firefox-Spdy: h2
www.tlg-api.com/api/v1/content/string-section?applicationRef=1&subSiteRef=44&languageRef=1§ionName=Footer%20License%20Description
107.154.132.27200 OK 3.1 kB URL HTTP/2 www.tlg-api.com/api/v1/content/string-section?applicationRef=1&subSiteRef=44&languageRef=1§ionName=Footer%20License%20Description
IP 107.154.132.27:0
Hash 8a99b4fea865d1719698285751a2a41e
0575ca521b06332b7650a3f445b29b11af4b0c4e
aa0a9f06f756fcd18b7e7cc4c1142e867b42b3aba838b93dd96ff9891e8432c7
GET /api/v1/content/string-section?applicationRef=1&subSiteRef=44&languageRef=1§ionName=Footer%20License%20Description HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=60
content-type: application/json; charset=utf-8
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-expose-headers: server-name
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba2
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Thu, 10 Nov 2022 04:53:27 GMT
set-cookie: visid_incap_1626863=0k1VtvegTaee8/VWVjLKQ8aDbGMAAAAAQUIPAAAAAADM9b5xtHTsythiV3QtLvjK; expires=Thu, 09 Nov 2023 22:25:16 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_631_1626863=apv9U/H1rQchsCBWBcTBCMiDbGMAAAAAOJCnHLtwUI8a5iUhDq2IPw==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 4-4325047-4323226 2NYN RT(1668056006842 451) q(0 0 0 0) r(1 1)
X-Firefox-Spdy: h2
www.tlg-api.com/api/v2/content/dictionary-items
107.154.132.27200 OK 0 B URL HTTP/2 www.tlg-api.com/api/v2/content/dictionary-items
IP 107.154.132.27:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v2/content/dictionary-items HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.golotter.com/
Origin: https://www.golotter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
pragma: no-cache
expires: -1
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-allow-headers: content-type
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba1
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Thu, 10 Nov 2022 04:53:27 GMT
content-length: 0
set-cookie: visid_incap_1626863=0k1VtvegTaee8/VWVjLKQ8aDbGMAAAAAQUIPAAAAAADM9b5xtHTsythiV3QtLvjK; expires=Thu, 09 Nov 2023 22:25:16 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_631_1626863=RSKyJtPgc2UhsCBWBcTBCMiDbGMAAAAAu/1XRsUs9F1iFeYT7AAjxg==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
x-iinfo: 4-4325047-4325056 PNNN RT(1668056006842 496) q(0 0 0 0) r(1 1) U6
X-Firefox-Spdy: h2
www.tlg-api.com/api/v1/feature-toggle/is-feature-enabled/featureName/theLotterSite-RandomNumberCryptoUse/subfeature/
107.154.132.27200 OK 96 B URL HTTP/2 www.tlg-api.com/api/v1/feature-toggle/is-feature-enabled/featureName/theLotterSite-RandomNumberCryptoUse/subfeature/
IP 107.154.132.27:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 24e6e6e07ce85521bfdd79de70168c79
5f6c8d0fa33de7c0aacd93b99ab24a1eb45827ab
e13b9a4959c15240b0efe208e31307906153f0a7baa0f33e4125dc8101b0e034
GET /api/v1/feature-toggle/is-feature-enabled/featureName/theLotterSite-RandomNumberCryptoUse/subfeature/ HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
pragma: no-cache
content-type: application/json; charset=utf-8
expires: -1
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-expose-headers: server-name
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba3
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Thu, 10 Nov 2022 04:53:27 GMT
set-cookie: visid_incap_1626863=0k1VtvegTaee8/VWVjLKQ8aDbGMAAAAAQUIPAAAAAADM9b5xtHTsythiV3QtLvjK; expires=Thu, 09 Nov 2023 22:25:16 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_631_1626863=/pyhaJnNi1QhsCBWBcTBCMiDbGMAAAAAsnhA6TeAbcEBTKLYbYVCMg==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 4-4325047-4325049 PNYN RT(1668056006842 454) q(0 0 0 0) r(1 1) U2
X-Firefox-Spdy: h2
www.tlg-api.com/api/v1/content/footer/subsite/44/language/1?isMobile=false&url=https://www.golotter.com/
107.154.132.27200 OK 5.6 kB URL HTTP/2 www.tlg-api.com/api/v1/content/footer/subsite/44/language/1?isMobile=false&url=https://www.golotter.com/
IP 107.154.132.27:0
Hash 4e2dd5e958c3e278dc0773ed54069375
627ae81b4d84ed7991a7444f95861c66606e7359
3ff54de7e04379c4ef7f80bfc11d67d96494e83c866ffaabe668d79a4b897a19
GET /api/v1/content/footer/subsite/44/language/1?isMobile=false&url=https://www.golotter.com/ HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=300
content-type: application/json; charset=utf-8
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-expose-headers: server-name
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba1
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Thu, 10 Nov 2022 04:53:27 GMT
set-cookie: visid_incap_1626863=0k1VtvegTaee8/VWVjLKQ8aDbGMAAAAAQUIPAAAAAADM9b5xtHTsythiV3QtLvjK; expires=Thu, 09 Nov 2023 22:25:16 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_631_1626863=PzRDFvN2tSYhsCBWBcTBCMiDbGMAAAAAszlAndwJqBGsOISV7sX5Tg==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 4-4325047-4323910 2NYN RT(1668056006842 461) q(0 0 0 1) r(0 0)
X-Firefox-Spdy: h2
www.tlg-api.com/api/v1/configuration/services/TheLotter.Regulation.Location.Service/keys/ClientCacheLocationByIP,ClientCacheLocationByCoordinates
107.154.132.27200 OK 2.2 kB URL HTTP/2 www.tlg-api.com/api/v1/configuration/services/TheLotter.Regulation.Location.Service/keys/ClientCacheLocationByIP,ClientCacheLocationByCoordinates
IP 107.154.132.27:0
Hash b4bb8cef92fda5f61cc15459b263363e
b3d735de5007b8961975b8aec1b1397b83f43993
5d46f2dfe942efb589a4fe5edfa08db3b4a96f54f82d4400e3a14869d460cd66
GET /api/v1/configuration/services/TheLotter.Regulation.Location.Service/keys/ClientCacheLocationByIP,ClientCacheLocationByCoordinates HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=60
content-type: application/json; charset=utf-8
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-expose-headers: server-name
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba1
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Thu, 10 Nov 2022 04:53:27 GMT
set-cookie: visid_incap_1626863=0k1VtvegTaee8/VWVjLKQ8aDbGMAAAAAQUIPAAAAAADM9b5xtHTsythiV3QtLvjK; expires=Thu, 09 Nov 2023 22:25:16 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_631_1626863=4ytiD1navFEhsCBWBcTBCMiDbGMAAAAA85e6wMCnLIvj7bx0Ylilkg==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 4-4325047-4323910 2NYN RT(1668056006842 456) q(0 0 0 1) r(1 1)
X-Firefox-Spdy: h2
www.golotter.com/objects/dm.tlo?id=28772&v=202211090958
95.142.30.161200 OK 13 kB URL HTTP/1.1 www.golotter.com/objects/dm.tlo?id=28772&v=202211090958
IP 95.142.30.161:0
File type PNG image data, 288 x 96, 8-bit/color RGBA, non-interlaced\012- data
Hash a515e1fb217f9ffe297c88b347c6c7dd
0a4a014a7c2e605009b0b40e9ab23d6b239fac31
f3ab8fddc9aa0129a6bf2f2a4530a64811cf522a09ca4da2f17f63ef03ac5dc1
GET /objects/dm.tlo?id=28772&v=202211090958 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.2034822369.1668056002; _ga_PG6WJ6GTXC=GS1.1.1668056002.1.0.1668056002.0.0.0; _ga=GA1.2.718643394.1668056002; PAPVisitorId=f35712f39cc38bc8f6004848573e18Zl; _gid=GA1.2.1918921077.1668056003; _gat=1; _uetsid=9ab91dd060b311eda6ac37eda4cfd3e2; _uetvid=9ab93ed060b311ed90bc4b5d568fb900; _fbp=fb.1.1668056003193.66568704; outbrain_cid_fetch=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: image/png
Expires: Fri, 10 Nov 2023 04:53:27 GMT
Last-Modified: Thu, 10 Nov 2022 04:53:27 GMT
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:27 GMT
www.golotter.com/objects/dm.tlo?id=28745&v=202211090958
95.142.30.161200 OK 8.3 kB URL HTTP/1.1 www.golotter.com/objects/dm.tlo?id=28745&v=202211090958
IP 95.142.30.161:0
File type PNG image data, 288 x 96, 8-bit/color RGBA, non-interlaced\012- data
Hash bb3cc8b6b680899ccc85955191f5b5de
15ff10403d48170e1ea1ca5322915530296799f0
a5364dd7458d1da589f33467dae5f44cc7edb0b51955ef467c9f635729d767bd
GET /objects/dm.tlo?id=28745&v=202211090958 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.2034822369.1668056002; _ga_PG6WJ6GTXC=GS1.1.1668056002.1.0.1668056002.0.0.0; _ga=GA1.2.718643394.1668056002; PAPVisitorId=f35712f39cc38bc8f6004848573e18Zl; _gid=GA1.2.1918921077.1668056003; _gat=1; _uetsid=9ab91dd060b311eda6ac37eda4cfd3e2; _uetvid=9ab93ed060b311ed90bc4b5d568fb900; _fbp=fb.1.1668056003193.66568704; outbrain_cid_fetch=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: image/png
Expires: Fri, 10 Nov 2023 04:53:27 GMT
Last-Modified: Thu, 10 Nov 2022 04:53:27 GMT
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:27 GMT
lptag.liveperson.net/lptag/api/account/50625536/configuration/applications/taglets/.jsonp?v=2.0&df=0&s=en-GB&b=3
178.249.101.23200 OK 115 kB URL HTTP/2 lptag.liveperson.net/lptag/api/account/50625536/configuration/applications/taglets/.jsonp?v=2.0&df=0&s=en-GB&b=3
IP 178.249.101.23:0
Size 115 kB (115278 bytes)
Hash 1bebb7358bdd86618e58b00fc15bbb42
1b23a2a7b15fa29b2a1d1dad83d3cf64f16aa5f4
43c139451e69817dc7738eb1cd648389cc11486477edc93d87812d8cf9fe1385
GET /lptag/api/account/50625536/configuration/applications/taglets/.jsonp?v=2.0&df=0&s=en-GB&b=3 HTTP/1.1
Host: lptag.liveperson.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 10 Nov 2022 04:53:27 GMT
content-type: application/x-javascript
cache-control: public, max-age=630
server: ws
strict-transport-security: max-age=300; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: MISS
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.walkme.com/users/ca43a4c1d28e4fb09cf953b9348f73d5/scripts/prelib-plugin-c93f05bf-5111-3b42-9cee-fff72d190dbd.js
104.110.3.98200 OK 82 kB URL HTTP/2 cdn.walkme.com/users/ca43a4c1d28e4fb09cf953b9348f73d5/scripts/prelib-plugin-c93f05bf-5111-3b42-9cee-fff72d190dbd.js
IP 104.110.3.98:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (31823)
Hash fe4000db350f50d6a0e1636daf9ad890
ef261f9a4442c71ad8803d023d473408a561b79a
496880617acfa9a14dca767aa252fbf9a923291355889b64a210397b280bbad5
GET /users/ca43a4c1d28e4fb09cf953b9348f73d5/scripts/prelib-plugin-c93f05bf-5111-3b42-9cee-fff72d190dbd.js HTTP/1.1
Host: cdn.walkme.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: gkOswpCu4MO9WEGm6244WeKlNZVrDm9+BntPDylEwQlyox5AwRXFEBzi26asG2ll6GCnrIcMH1Y=
x-amz-request-id: 8AZVWEB6S3A90T0K
x-amz-replication-status: COMPLETED
last-modified: Thu, 09 Jun 2022 08:23:38 GMT
etag: "fe4000db350f50d6a0e1636daf9ad890"
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: JluAApG0RMnoXVfQh02NytSuJkxyJrj1
accept-ranges: bytes
content-type: application/x-javascript
content-length: 82472
vary: Accept-Encoding
cache-control: max-age=18501397
date: Thu, 10 Nov 2022 04:53:28 GMT
access-control-allow-private-network: true
timing-allow-origin: *
access-control-allow-origin: *
content-security-policy: upgrade-insecure-requests;
referrer-policy: no-referrer-when-downgrade
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000;includeSubdomains
X-Firefox-Spdy: h2
www.tlg-api.com/api/v1/content/string-sections/multiple
107.154.132.27200 OK 0 B URL HTTP/2 www.tlg-api.com/api/v1/content/string-sections/multiple
IP 107.154.132.27:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v1/content/string-sections/multiple HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.golotter.com/
Origin: https://www.golotter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
pragma: no-cache
expires: -1
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-allow-headers: content-type
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba1
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Thu, 10 Nov 2022 04:53:27 GMT
content-length: 0
set-cookie: visid_incap_1626863=0k1VtvegTaee8/VWVjLKQ8aDbGMAAAAAQUIPAAAAAADM9b5xtHTsythiV3QtLvjK; expires=Thu, 09 Nov 2023 22:25:16 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_631_1626863=l78DSeD/LgkhsCBWBcTBCMiDbGMAAAAA174PUShont0uVPR9+serqw==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
x-iinfo: 4-4325047-4325076 NNNN CT(27 26 0) RT(1668056006842 473) q(0 0 1 0) r(1 1) U6
X-Firefox-Spdy: h2
www.tlg-api.com/api/v1/content/header
107.154.132.27200 OK 0 B URL HTTP/2 www.tlg-api.com/api/v1/content/header
IP 107.154.132.27:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v1/content/header HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.golotter.com/
Origin: https://www.golotter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
pragma: no-cache
expires: -1
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-allow-headers: content-type
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba2
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Thu, 10 Nov 2022 04:53:27 GMT
content-length: 0
set-cookie: visid_incap_1626863=0k1VtvegTaee8/VWVjLKQ8aDbGMAAAAAQUIPAAAAAADM9b5xtHTsythiV3QtLvjK; expires=Thu, 09 Nov 2023 22:25:16 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_631_1626863=R9abcRRMVkghsCBWBcTBCMiDbGMAAAAA+1we7iw3V743nShFC8/BUA==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
x-iinfo: 4-4325047-4325074 NNNN CT(25 27 0) RT(1668056006842 467) q(0 0 1 0) r(1 1) U6
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 1c931d4d23f9d6b83f3348f51f5194c7
268301f0694b3dac30bcb360b4af97eb2efadd06
dbeb068aec178fa13e25c8468b91d1bab663839b12922ea16257024ca73cc2ed
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 04:53:28 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 08 Nov 2022 04:31:54 GMT
Expires: Tue, 15 Nov 2022 04:31:53 GMT
Etag: "268301f0694b3dac30bcb360b4af97eb2efadd06"
Cache-Control: max-age=430104,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 767c2f4368b2b506-OSL
www.tlg-api.com/api/v1/content/string-sections/multiple
107.154.132.27200 OK 0 B URL HTTP/2 www.tlg-api.com/api/v1/content/string-sections/multiple
IP 107.154.132.27:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v1/content/string-sections/multiple HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.golotter.com/
Origin: https://www.golotter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
pragma: no-cache
expires: -1
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-allow-headers: content-type
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba1
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Thu, 10 Nov 2022 04:53:27 GMT
content-length: 0
set-cookie: visid_incap_1626863=0k1VtvegTaee8/VWVjLKQ8aDbGMAAAAAQUIPAAAAAADM9b5xtHTsythiV3QtLvjK; expires=Thu, 09 Nov 2023 22:25:16 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_631_1626863=DxclfcwbNyghsCBWBcTBCMiDbGMAAAAA73/eFI9JA7LYdkKHq6828g==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
x-iinfo: 4-4325047-4325075 NNNN CT(25 26 0) RT(1668056006842 470) q(0 0 1 0) r(1 1) U6
X-Firefox-Spdy: h2
www.golotter.com/objects/dm.tlo?id=29241&v=202211090958
95.142.30.161200 OK 7.5 kB URL HTTP/1.1 www.golotter.com/objects/dm.tlo?id=29241&v=202211090958
IP 95.142.30.161:0
File type PNG image data, 274 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 228bec1ca2626d5c510b90a4b5868afe
c6e43d1b3e3e502a8172f17a678b9375af514fcb
1008b7fbe2b7a3cfb4f1366ef343634842e67465fbfa400ebba3f04285cc72f8
GET /objects/dm.tlo?id=29241&v=202211090958 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.2034822369.1668056002; _ga_PG6WJ6GTXC=GS1.1.1668056002.1.0.1668056002.0.0.0; _ga=GA1.2.718643394.1668056002; PAPVisitorId=f35712f39cc38bc8f6004848573e18Zl; _gid=GA1.2.1918921077.1668056003; _gat=1; _uetsid=9ab91dd060b311eda6ac37eda4cfd3e2; _uetvid=9ab93ed060b311ed90bc4b5d568fb900; _fbp=fb.1.1668056003193.66568704; outbrain_cid_fetch=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: image/png
Expires: Fri, 10 Nov 2023 04:53:28 GMT
Last-Modified: Thu, 10 Nov 2022 04:53:28 GMT
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:27 GMT
www.golotter.com/objects/dm.tlo?id=29242&v=202211090958
95.142.30.161200 OK 7.9 kB URL HTTP/1.1 www.golotter.com/objects/dm.tlo?id=29242&v=202211090958
IP 95.142.30.161:0
File type PNG image data, 240 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 2c17b510942a015e5964589847f1975e
b5b76ca1735522fe60cdf5b358950bf8c2afc871
1b918d3fd9de13b8d661f48902e45648d798ba03340a06161034eff86cb17fb5
GET /objects/dm.tlo?id=29242&v=202211090958 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.2034822369.1668056002; _ga_PG6WJ6GTXC=GS1.1.1668056002.1.0.1668056002.0.0.0; _ga=GA1.2.718643394.1668056002; PAPVisitorId=f35712f39cc38bc8f6004848573e18Zl; _gid=GA1.2.1918921077.1668056003; _gat=1; _uetsid=9ab91dd060b311eda6ac37eda4cfd3e2; _uetvid=9ab93ed060b311ed90bc4b5d568fb900; _fbp=fb.1.1668056003193.66568704; outbrain_cid_fetch=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: image/png
Expires: Fri, 10 Nov 2023 04:53:28 GMT
Last-Modified: Thu, 10 Nov 2022 04:53:28 GMT
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:27 GMT
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 1c931d4d23f9d6b83f3348f51f5194c7
268301f0694b3dac30bcb360b4af97eb2efadd06
dbeb068aec178fa13e25c8468b91d1bab663839b12922ea16257024ca73cc2ed
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 04:53:28 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 08 Nov 2022 04:31:54 GMT
Expires: Tue, 15 Nov 2022 04:31:53 GMT
Etag: "268301f0694b3dac30bcb360b4af97eb2efadd06"
Cache-Control: max-age=430104,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 767c2f43b91c1c02-OSL
www.tlg-api.com/api/v1/content/string-sections/multiple
107.154.132.27200 OK 530 B URL HTTP/2 www.tlg-api.com/api/v1/content/string-sections/multiple
IP 107.154.132.27:0
Hash 906e72acc04c5ad9063c26fd305b33e4
5dc7bc9357e24948adecc565793679cbfc766730
b2f8a3628fd45a0dbd2a8a50178555b0f171a09d75fe36e0cb533e6bb7a7b99d
POST /api/v1/content/string-sections/multiple HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 106
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=60
content-type: application/json; charset=utf-8
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-expose-headers: server-name
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba1
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Thu, 10 Nov 2022 04:53:27 GMT
set-cookie: visid_incap_1626863=0k1VtvegTaee8/VWVjLKQ8aDbGMAAAAAQUIPAAAAAADM9b5xtHTsythiV3QtLvjK; expires=Thu, 09 Nov 2023 22:25:16 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_631_1626863=tfQFQy+rIGghsCBWBcTBCMiDbGMAAAAAG/+qqVU4GUEreQovnJpOkg==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 4-4325047-4325076 PNYN RT(1668056006842 636) q(0 0 0 0) r(1 1) U6
X-Firefox-Spdy: h2
www.tlg-api.com/api/v2/content/dictionary-items
107.154.132.27200 OK 3.5 kB URL HTTP/2 www.tlg-api.com/api/v2/content/dictionary-items
IP 107.154.132.27:0
Hash 012455cc02531387f0fa9432ecc06e47
c0fc8b2a2e24481aa6e52b304c93f5443c934844
b7faf8bdb8bcc0c7ea4e2834fc6a0d99ab1ef68b685a4835fc68cac27368340a
POST /api/v2/content/dictionary-items HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 58
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=60
content-type: application/json; charset=utf-8
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-expose-headers: server-name
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba1
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Thu, 10 Nov 2022 04:53:27 GMT
set-cookie: visid_incap_1626863=0k1VtvegTaee8/VWVjLKQ8aDbGMAAAAAQUIPAAAAAADM9b5xtHTsythiV3QtLvjK; expires=Thu, 09 Nov 2023 22:25:16 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_631_1626863=J8jhXPJ1wiAhsCBWBcTBCMiDbGMAAAAA099I/JOAuV05m9dd8hr0Ag==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 4-4325047-4325056 PNYN RT(1668056006842 588) q(0 0 0 0) r(0 1) U6
X-Firefox-Spdy: h2
www.tlg-api.com/api/v2/content/dictionary-items
107.154.132.27200 OK 134 kB URL HTTP/2 www.tlg-api.com/api/v2/content/dictionary-items
IP 107.154.132.27:0
Size 134 kB (133609 bytes)
Hash d20594ecf30e04a2d0abdcaab29ae221
8b84c2a772a7f4b0e73a115902c131b912e69d65
1f2c082d292b93caa03460c2d6a4928500af4dad94c10a916a1817b6f569eac5
POST /api/v2/content/dictionary-items HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 56
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=60
content-type: application/json; charset=utf-8
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-expose-headers: server-name
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba3
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Thu, 10 Nov 2022 04:53:27 GMT
set-cookie: visid_incap_1626863=0k1VtvegTaee8/VWVjLKQ8aDbGMAAAAAQUIPAAAAAADM9b5xtHTsythiV3QtLvjK; expires=Thu, 09 Nov 2023 22:25:16 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_631_1626863=oSC/Kl9JeHMhsCBWBcTBCMiDbGMAAAAAOoVSn9Q5vlbnWnYxZSz3KQ==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 4-4325047-4325049 PNYN RT(1668056006842 601) q(0 0 0 0) r(0 1) U6
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 1c931d4d23f9d6b83f3348f51f5194c7
268301f0694b3dac30bcb360b4af97eb2efadd06
dbeb068aec178fa13e25c8468b91d1bab663839b12922ea16257024ca73cc2ed
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 04:53:28 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 08 Nov 2022 04:31:54 GMT
Expires: Tue, 15 Nov 2022 04:31:53 GMT
Etag: "268301f0694b3dac30bcb360b4af97eb2efadd06"
Cache-Control: max-age=430104,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 767c2f43bd29b523-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 1c931d4d23f9d6b83f3348f51f5194c7
268301f0694b3dac30bcb360b4af97eb2efadd06
dbeb068aec178fa13e25c8468b91d1bab663839b12922ea16257024ca73cc2ed
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 04:53:28 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 08 Nov 2022 04:31:54 GMT
Expires: Tue, 15 Nov 2022 04:31:53 GMT
Etag: "268301f0694b3dac30bcb360b4af97eb2efadd06"
Cache-Control: max-age=430104,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 767c2f43b8d4b506-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 1c931d4d23f9d6b83f3348f51f5194c7
268301f0694b3dac30bcb360b4af97eb2efadd06
dbeb068aec178fa13e25c8468b91d1bab663839b12922ea16257024ca73cc2ed
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 04:53:28 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 08 Nov 2022 04:31:54 GMT
Expires: Tue, 15 Nov 2022 04:31:53 GMT
Etag: "268301f0694b3dac30bcb360b4af97eb2efadd06"
Cache-Control: max-age=430104,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 767c2f43bbf1fabc-OSL
www.golotter.com/objects/dm.tlo?id=27171&v=202211090958
95.142.30.161200 OK 4.4 kB URL HTTP/1.1 www.golotter.com/objects/dm.tlo?id=27171&v=202211090958
IP 95.142.30.161:0
File type PNG image data, 170 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash dee75c78682bac04d6d244f1c431d2cb
b320d2e393367b426b4d0c4f8d8911117b7e4de1
66ed3d6d6303eefb365cceb58dd88a1835672f0e763f5020e88d7ba95ce5b519
GET /objects/dm.tlo?id=27171&v=202211090958 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.2034822369.1668056002; _ga_PG6WJ6GTXC=GS1.1.1668056002.1.0.1668056002.0.0.0; _ga=GA1.2.718643394.1668056002; PAPVisitorId=f35712f39cc38bc8f6004848573e18Zl; _gid=GA1.2.1918921077.1668056003; _gat=1; _uetsid=9ab91dd060b311eda6ac37eda4cfd3e2; _uetvid=9ab93ed060b311ed90bc4b5d568fb900; _fbp=fb.1.1668056003193.66568704; outbrain_cid_fetch=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: image/png
Expires: Fri, 10 Nov 2023 04:53:28 GMT
Last-Modified: Thu, 10 Nov 2022 04:53:28 GMT
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:27 GMT
www.golotter.com/objects/dm.tlo?id=6428&v=202211090958
95.142.30.161200 OK 2.5 kB URL HTTP/1.1 www.golotter.com/objects/dm.tlo?id=6428&v=202211090958
IP 95.142.30.161:0
File type PNG image data, 200 x 195, 4-bit colormap, non-interlaced\012- data
Hash b06514d95d8b863b35860a9b9b998228
404223d4660630492d00c3092e9428497fe0cb4a
2557085d58a0762dc154add77aff7a0fca99ef2352c9fab1084b0be29feab5a3
GET /objects/dm.tlo?id=6428&v=202211090958 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.2034822369.1668056002; _ga_PG6WJ6GTXC=GS1.1.1668056002.1.0.1668056002.0.0.0; _ga=GA1.2.718643394.1668056002; PAPVisitorId=f35712f39cc38bc8f6004848573e18Zl; _gid=GA1.2.1918921077.1668056003; _gat=1; _uetsid=9ab91dd060b311eda6ac37eda4cfd3e2; _uetvid=9ab93ed060b311ed90bc4b5d568fb900; _fbp=fb.1.1668056003193.66568704; outbrain_cid_fetch=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: image/png
Expires: Fri, 10 Nov 2023 04:53:28 GMT
Last-Modified: Thu, 10 Nov 2022 04:53:28 GMT
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:27 GMT
www.golotter.com/objects/dm.tlo?id=30072&v=202211090958
95.142.30.161200 OK 15 kB URL HTTP/1.1 www.golotter.com/objects/dm.tlo?id=30072&v=202211090958
IP 95.142.30.161:0
File type PNG image data, 288 x 144, 8-bit/color RGBA, non-interlaced\012- data
Hash 13e1ccbd36b88ce2fb2a721cfbdf6a14
cbe7bcdc5e6084a52872753f4709b6fcfea03c6f
619fa56b4ff5ad38aab55ad93a42c61317d0b167aef331f7c55a8a1be93bf722
GET /objects/dm.tlo?id=30072&v=202211090958 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109; ViewMobileV2={"DeviceName":"Chrome - Windows","DeviceType":"Windows Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=qvy21z23yaooeszooytgcmyq; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3de36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.2034822369.1668056002; _ga_PG6WJ6GTXC=GS1.1.1668056002.1.0.1668056002.0.0.0; _ga=GA1.2.718643394.1668056002; PAPVisitorId=f35712f39cc38bc8f6004848573e18Zl; _gid=GA1.2.1918921077.1668056003; _gat=1; _uetsid=9ab91dd060b311eda6ac37eda4cfd3e2; _uetvid=9ab93ed060b311ed90bc4b5d568fb900; _fbp=fb.1.1668056003193.66568704; outbrain_cid_fetch=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: image/png
Expires: Fri, 10 Nov 2023 04:53:28 GMT
Last-Modified: Thu, 10 Nov 2022 04:53:28 GMT
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Thu, 10 Nov 2022 04:53:27 GMT
www.tlg-api.com/api/v1/users/auth/automatic-logout/configuration
107.154.132.27200 OK 1.7 kB URL HTTP/2 www.tlg-api.com/api/v1/users/auth/automatic-logout/configuration
IP 107.154.132.27:0
Hash a909ddf62de300b635198602335ca366
dfe76fc414bfe815dd6df04deccb0786d2efb194
67cd6c60ba6df0805bbab29b6334160ced2e4165cd9dafc19d183f8fa54b0fde
GET /api/v1/users/auth/automatic-logout/configuration HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
pragma: no-cache
content-type: application/json; charset=utf-8
expires: -1
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-expose-headers: server-name
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba1
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Thu, 10 Nov 2022 04:53:27 GMT
set-cookie: visid_incap_1626863=0k1VtvegTaee8/VWVjLKQ8aDbGMAAAAAQUIPAAAAAADM9b5xtHTsythiV3QtLvjK; expires=Thu, 09 Nov 2023 22:25:16 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_631_1626863=4YTzJzu7HjshsCBWBcTBCMiDbGMAAAAATEdN2oV8HbHE7Wyhc4+bYQ==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 4-4325047-4325056 NNYN CT(25 27 0) RT(1668056006842 454) q(0 0 1 1) r(1 1) U2
X-Firefox-Spdy: h2
cdn.walkme.com/player/lib/walkme_lib_20220911-083920-f3c74cea-ae38d8e5.js
104.110.3.98200 OK 464 kB URL HTTP/2 cdn.walkme.com/player/lib/walkme_lib_20220911-083920-f3c74cea-ae38d8e5.js
IP 104.110.3.98:0
File type ASCII text, with very long lines (65395)
Size 464 kB (464071 bytes)
Hash db700cf4b32cac2f6b175a7e2473c752
c75b20a051c4d5791a4525baf438bf9f3691ace2
c8ef858f2987130c40cd17b969ba1a4d59b2aacadc2cba40da36e8924f4dd90e
GET /player/lib/walkme_lib_20220911-083920-f3c74cea-ae38d8e5.js HTTP/1.1
Host: cdn.walkme.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: EsRSIIJSE0UPL1NUc4Ndca8KEc4iH/y1r0WbaZQTX+1ux7v9pncwh3zTu5sO4xVEWSTRR9M1Q6NUjeHGI4+iLg==
x-amz-request-id: RQ2PNYYTMV549SGD
x-amz-replication-status: COMPLETED
last-modified: Sun, 11 Sep 2022 08:57:27 GMT
etag: "db700cf4b32cac2f6b175a7e2473c752"
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: ql1ZOxucUapuoxXrnf7PKihrwXRtYLyE
accept-ranges: bytes
content-type: application/javascript
content-length: 464071
vary: Accept-Encoding
cache-control: max-age=26410680
date: Thu, 10 Nov 2022 04:53:28 GMT
access-control-allow-private-network: true
timing-allow-origin: *
access-control-allow-origin: *
content-security-policy: upgrade-insecure-requests;
referrer-policy: no-referrer-when-downgrade
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000;includeSubdomains
X-Firefox-Spdy: h2
trc-events.taboola.com/1298910/log/3/unip?en=pre_d_eng_tb&tos=2016&scd=20&ssd=1&est=1668056002324&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1668056004341&vi=1668056002321&ri=935b03c2f13b6b57d5254c55f2cfaab8&ref=https%3A%2F%2Flnk.to%2F&cv=20221106-3-RELEASE&item-url=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109&ler=other
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/1298910/log/3/unip?en=pre_d_eng_tb&tos=2016&scd=20&ssd=1&est=1668056002324&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1668056004341&vi=1668056002321&ri=935b03c2f13b6b57d5254c55f2cfaab8&ref=https%3A%2F%2Flnk.to%2F&cv=20221106-3-RELEASE&item-url=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109&ler=other
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1298910/log/3/unip?en=pre_d_eng_tb&tos=2016&scd=20&ssd=1&est=1668056002324&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1668056004341&vi=1668056002321&ri=935b03c2f13b6b57d5254c55f2cfaab8&ref=https%3A%2F%2Flnk.to%2F&cv=20221106-3-RELEASE&item-url=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109&ler=other HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Thu, 10 Nov 2022 04:53:28 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://www.golotter.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
cdn.walkme.com/users/ca43a4c1d28e4fb09cf953b9348f73d5/walkme_config_16b6ab612e59460cab2ed91800466ee1.js
104.110.3.98200 OK 1.7 kB URL HTTP/2 cdn.walkme.com/users/ca43a4c1d28e4fb09cf953b9348f73d5/walkme_config_16b6ab612e59460cab2ed91800466ee1.js
IP 104.110.3.98:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (3847), with no line terminators
Hash 27094f25677c5d52ee31c4bf6f1800e8
3eb6683727cfc70cc0e8f216f580c98f45e3302c
3607f38571343e61d620be215f2ff07f92dda9b3655ce53fcd2c8bc3c9fdbe46
GET /users/ca43a4c1d28e4fb09cf953b9348f73d5/walkme_config_16b6ab612e59460cab2ed91800466ee1.js HTTP/1.1
Host: cdn.walkme.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: UkMrZbf7fJCeVdrajPHZbnRZUjIW9S4xU3R4V6qaUwVNm+bYv3tlFvlW+nIG8gwogIXC8tfrj5s=
x-amz-request-id: 4RPW1SNGHXZKBQGV
x-amz-replication-status: COMPLETED
last-modified: Wed, 13 Jul 2022 06:11:33 GMT
etag: "d7c0919ecb6ec3ef1d545377b33dcfe6"
x-amz-server-side-encryption: AES256
x-amz-version-id: qpysQDI97KnR.kcXuICfW6cFOY67e3SV
accept-ranges: bytes
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=21172747
date: Thu, 10 Nov 2022 04:53:29 GMT
content-length: 1682
access-control-allow-private-network: true
timing-allow-origin: *
access-control-allow-origin: *
content-security-policy: upgrade-insecure-requests;
referrer-policy: no-referrer-when-downgrade
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000;includeSubdomains
X-Firefox-Spdy: h2
cdn.walkme.com/player/lib/20220911-083920-f3c74cea-ae38d8e5/8.5c169afc.walkme_lib.js
104.110.3.98200 OK 3.2 kB URL HTTP/2 cdn.walkme.com/player/lib/20220911-083920-f3c74cea-ae38d8e5/8.5c169afc.walkme_lib.js
IP 104.110.3.98:0
File type ASCII text, with very long lines (9122), with no line terminators
Hash 274fec4705c83d98a443e0e8976210b8
f0fd5ca2f469ba0d63fe6a81a590ccd8bd37f08c
110295647fb96ff5386f6f7653078f0ec833d89c992607e70259a174a8dc0044
GET /player/lib/20220911-083920-f3c74cea-ae38d8e5/8.5c169afc.walkme_lib.js HTTP/1.1
Host: cdn.walkme.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: QSzeQYWyBobHkgf6zNb0r53Y4XTj17ftLs28+zlQx1bhClSIR2MV4kPg8mGpRkGBXfudgUlgdMQ=
x-amz-request-id: DHF4VHKTBFARV6W3
x-amz-replication-status: COMPLETED
last-modified: Sun, 11 Sep 2022 08:57:18 GMT
etag: "274fec4705c83d98a443e0e8976210b8"
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: kyc2r_2y3UQWBGfKaKfMai.Eg027fSJo
accept-ranges: bytes
content-type: application/javascript
content-length: 3219
vary: Accept-Encoding
cache-control: max-age=26463346
date: Thu, 10 Nov 2022 04:53:29 GMT
access-control-allow-private-network: true
timing-allow-origin: *
access-control-allow-origin: *
content-security-policy: upgrade-insecure-requests;
referrer-policy: no-referrer-when-downgrade
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000;includeSubdomains
X-Firefox-Spdy: h2
cdn.walkme.com/users/ca43a4c1d28e4fb09cf953b9348f73d5/custom_css_ee79fcb2717f479a8ae046dd42b7464f.css
104.110.3.98200 OK 6.1 kB URL HTTP/2 cdn.walkme.com/users/ca43a4c1d28e4fb09cf953b9348f73d5/custom_css_ee79fcb2717f479a8ae046dd42b7464f.css
IP 104.110.3.98:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (65533), with no line terminators
Hash 4660e891089a7dfb65bd3168c4c517ce
08be83e70987546d83a9a26f7ccea9bef238e887
2f5e79fb3ab76fb8f8241b5fb8497eebda0bf0eaf95f66e5deeed3493c58988e
GET /users/ca43a4c1d28e4fb09cf953b9348f73d5/custom_css_ee79fcb2717f479a8ae046dd42b7464f.css HTTP/1.1
Host: cdn.walkme.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: fmUr8HZQXELNqpB3bgrzf0URmjXFtYBLjUt6Vyuj7ECjOvUlMKYjLOf0wmPVO8bIUalSZ5qtRKY=
x-amz-request-id: 18HAQH184ASQ4TXF
x-amz-replication-status: COMPLETED
last-modified: Tue, 13 Sep 2022 06:09:39 GMT
etag: "4660e891089a7dfb65bd3168c4c517ce"
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: .MrhBql4BfJlOwarCk2.lCDiYBGR4ZKi
accept-ranges: bytes
content-type: text/css
content-length: 6062
vary: Accept-Encoding
cache-control: max-age=26635611
date: Thu, 10 Nov 2022 04:53:29 GMT
access-control-allow-private-network: true
timing-allow-origin: *
access-control-allow-origin: *
content-security-policy: upgrade-insecure-requests;
referrer-policy: no-referrer-when-downgrade
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000;includeSubdomains
X-Firefox-Spdy: h2
cdn.walkme.com/users/ca43a4c1d28e4fb09cf953b9348f73d5/data_ee79fcb2717f479a8ae046dd42b7464f_en-GB.json
104.110.3.98200 OK 120 kB URL HTTP/2 cdn.walkme.com/users/ca43a4c1d28e4fb09cf953b9348f73d5/data_ee79fcb2717f479a8ae046dd42b7464f_en-GB.json
IP 104.110.3.98:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 120 kB (119872 bytes)
Hash 81f290db518639dc3a88f5dc1d5139bb
d3295c41a8ba40cece917cce52691371900c1c9e
24c6c1f0cb5b4a0387fcefab4d579b32a0fa28a051cfa8c95875fcbcbb4225db
GET /users/ca43a4c1d28e4fb09cf953b9348f73d5/data_ee79fcb2717f479a8ae046dd42b7464f_en-GB.json HTTP/1.1
Host: cdn.walkme.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.golotter.com/
Origin: https://www.golotter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: ODvgB6I6A3R/FHXsJGlwiRIEJm7keHleirmtl9CcciZXvOaYYlHIJlhTf3THshpKLhee4q7d20Y=
x-amz-request-id: 0GNPRZV87GJTVK6F
x-amz-replication-status: COMPLETED
last-modified: Tue, 13 Sep 2022 06:09:39 GMT
etag: "81f290db518639dc3a88f5dc1d5139bb"
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: g5svK8rmZYuHCmkOb9C4PThw85soGOjb
accept-ranges: bytes
content-type: application/json
content-length: 119872
vary: Accept-Encoding
cache-control: max-age=26579477
date: Thu, 10 Nov 2022 04:53:29 GMT
access-control-allow-private-network: true
timing-allow-origin: *
access-control-allow-origin: *
content-security-policy: upgrade-insecure-requests;
referrer-policy: no-referrer-when-downgrade
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000;includeSubdomains
X-Firefox-Spdy: h2
cdn.walkme.com/player/lib/20220911-083920-f3c74cea-ae38d8e5/27.6072b6f8.walkme_lib.js
104.110.3.98200 OK 24 kB URL HTTP/2 cdn.walkme.com/player/lib/20220911-083920-f3c74cea-ae38d8e5/27.6072b6f8.walkme_lib.js
IP 104.110.3.98:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 56e649e0386d6bb1051e65a303f47002
978599cedce7fa1d918c4e9f119e813a3cbc1c60
3f8299a7df89e27c33c88cee1a185da87549392fc35e762e0f30846091acd307
GET /player/lib/20220911-083920-f3c74cea-ae38d8e5/27.6072b6f8.walkme_lib.js HTTP/1.1
Host: cdn.walkme.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: AscWax0VbqugbnmrVfAoGCJ7gnkUK/vuyjtYIL2Y5R+cBSTd+PqN45xGXCqzbrKp51AWwIe3Qcw=
x-amz-request-id: QFGM7K8D54NBWR3P
x-amz-replication-status: COMPLETED
last-modified: Sun, 11 Sep 2022 08:57:18 GMT
etag: "56e649e0386d6bb1051e65a303f47002"
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: n_lB4NIjf_ZD7I4VoDynL3ALGen1BcBB
accept-ranges: bytes
content-type: application/javascript
content-length: 23672
vary: Accept-Encoding
cache-control: max-age=26410763
date: Thu, 10 Nov 2022 04:53:29 GMT
access-control-allow-private-network: true
timing-allow-origin: *
access-control-allow-origin: *
content-security-policy: upgrade-insecure-requests;
referrer-policy: no-referrer-when-downgrade
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000;includeSubdomains
X-Firefox-Spdy: h2
cdn.walkme.com/player/lib/20220911-083920-f3c74cea-ae38d8e5/23.9f008391.walkme_lib.js
104.110.3.98200 OK 8.7 kB URL HTTP/2 cdn.walkme.com/player/lib/20220911-083920-f3c74cea-ae38d8e5/23.9f008391.walkme_lib.js
IP 104.110.3.98:0
File type ASCII text, with very long lines (24581), with no line terminators
Hash 732d00bcecb7f192eeccf30bcd871ea6
9df21a16a1f63c4f12fe45eb431f2c0da139f898
101027eb4bb4850ff2f948a3c450252e8c30c90dcd8c3ab47703c9b4175e2562
GET /player/lib/20220911-083920-f3c74cea-ae38d8e5/23.9f008391.walkme_lib.js HTTP/1.1
Host: cdn.walkme.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 23Uj0iX3Ahtfx5nyF53SJ+iUUPF9a6xBWtDlEzoN0RODq7aOMIMMY5RLhRbd0LYYNs5Eac0qoKk=
x-amz-request-id: QFGG4ZSA9WKMGG1N
x-amz-replication-status: COMPLETED
last-modified: Sun, 11 Sep 2022 08:57:18 GMT
etag: "732d00bcecb7f192eeccf30bcd871ea6"
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: pJsBJn9o14NHih4ioAqNibG7np2.ArDR
accept-ranges: bytes
content-type: application/javascript
content-length: 8723
vary: Accept-Encoding
cache-control: max-age=26410685
date: Thu, 10 Nov 2022 04:53:29 GMT
access-control-allow-private-network: true
timing-allow-origin: *
access-control-allow-origin: *
content-security-policy: upgrade-insecure-requests;
referrer-policy: no-referrer-when-downgrade
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000;includeSubdomains
X-Firefox-Spdy: h2
lpcdn.lpsnmedia.net/le_secure_storage/3.19.0.0-release_5079/storage.secure.min.html?loc=https%3A%2F%2Fwww.golotter.com&site=50625536&env=prod
178.249.97.98200 OK 16 kB URL HTTP/2 lpcdn.lpsnmedia.net/le_secure_storage/3.19.0.0-release_5079/storage.secure.min.html?loc=https%3A%2F%2Fwww.golotter.com&site=50625536&env=prod
IP 178.249.97.98:0
Hash 2cad37de089cd465993648ee60fbf333
eebed8ebaf70ee895dd91ff1793eaed7e35ca2a0
f24abc97900ffd34eebfad9d9572164af9783cdef02cc62429097610b71cb59a
GET /le_secure_storage/3.19.0.0-release_5079/storage.secure.min.html?loc=https%3A%2F%2Fwww.golotter.com&site=50625536&env=prod HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 10 Nov 2022 04:53:29 GMT
content-type: text/html
last-modified: Thu, 03 Nov 2022 22:00:32 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Fri, 10 Nov 2023 04:53:29 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash dd34e712893530986e5d727a5ac24854
afe45e2ee0dd211033c8ba2d468216b00250fd33
9ede8d8c12eeb1863e0c3364b3d292590000ef9603bf26102b9756bcd226da37
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 04:53:29 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 06 Nov 2022 20:31:40 GMT
Expires: Sun, 13 Nov 2022 20:31:39 GMT
Etag: "afe45e2ee0dd211033c8ba2d468216b00250fd33"
Cache-Control: max-age=314889,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 767c2f4d3df1b506-OSL
www.tlg-api.com/api/v1/content/string-section?applicationRef=1&subSiteRef=44&languageRef=1§ionName=Footer
107.154.132.27200 OK 15 kB URL HTTP/2 www.tlg-api.com/api/v1/content/string-section?applicationRef=1&subSiteRef=44&languageRef=1§ionName=Footer
IP 107.154.132.27:0
Hash 40dd2c693e3dc35173be9513c35f81ca
6c98f60c62b5f7d8d4a15ae2c4ecaae6442dfd90
3bda2cab5380aaab282112e5a06e555a84c7c898aaa221a6292a7f04ba4e86ca
GET /api/v1/content/string-section?applicationRef=1&subSiteRef=44&languageRef=1§ionName=Footer HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=60
content-type: application/json; charset=utf-8
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-expose-headers: server-name
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba1
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Thu, 10 Nov 2022 04:53:27 GMT
set-cookie: visid_incap_1626863=0k1VtvegTaee8/VWVjLKQ8aDbGMAAAAAQUIPAAAAAADM9b5xtHTsythiV3QtLvjK; expires=Thu, 09 Nov 2023 22:25:16 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_631_1626863=8YqDBL4YRiUhsCBWBcTBCMiDbGMAAAAA+ZqsA5DqJv5TGkfOG9Xjxg==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 4-4325047-4323547 2NYN RT(1668056006842 607) q(0 0 0 0) r(0 0)
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash dd34e712893530986e5d727a5ac24854
afe45e2ee0dd211033c8ba2d468216b00250fd33
9ede8d8c12eeb1863e0c3364b3d292590000ef9603bf26102b9756bcd226da37
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 04:53:30 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 06 Nov 2022 20:31:40 GMT
Expires: Sun, 13 Nov 2022 20:31:39 GMT
Etag: "afe45e2ee0dd211033c8ba2d468216b00250fd33"
Cache-Control: max-age=314888,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 767c2f4ebea7b506-OSL
www.tlg-api.com/api/v1/feature-toggle/is-feature-enabled/featureName/Regulation-AustraliaExistingUserLogin/subfeature/
107.154.132.27200 OK 664 B URL HTTP/2 www.tlg-api.com/api/v1/feature-toggle/is-feature-enabled/featureName/Regulation-AustraliaExistingUserLogin/subfeature/
IP 107.154.132.27:0
Hash e5d6e3d37a53072c6e2db18d81d1f055
5d998c3dbcb17176d8395b55b1a9128fb85dc246
da19db5f77117b59b890ae01d3097229227bbcf46a13834fec442f1b11474df1
GET /api/v1/feature-toggle/is-feature-enabled/featureName/Regulation-AustraliaExistingUserLogin/subfeature/ HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
pragma: no-cache
content-type: application/json; charset=utf-8
expires: -1
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-expose-headers: server-name
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba3
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Thu, 10 Nov 2022 04:53:27 GMT
set-cookie: visid_incap_1626863=0k1VtvegTaee8/VWVjLKQ8aDbGMAAAAAQUIPAAAAAADM9b5xtHTsythiV3QtLvjK; expires=Thu, 09 Nov 2023 22:25:16 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_631_1626863=DdsYJqHD23ghsCBWBcTBCMiDbGMAAAAAYdEQfp+/KdcDf+KXxX2qcQ==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 4-4325047-4325049 PNYN RT(1668056006842 460) q(0 0 0 1) r(0 0) U2
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 8eeb310669223fb1c476adfa1350e1a6
70479e3561e0ff9428e6da14b27769df07932ac4
a2b00c9dcac9eb11e2b9b7ad57c134a26705426b64db8d1da41c9a33a257f0f5
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 04:53:30 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 07 Nov 2022 23:37:43 GMT
Expires: Mon, 14 Nov 2022 23:37:42 GMT
Etag: "70479e3561e0ff9428e6da14b27769df07932ac4"
Cache-Control: max-age=412451,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 767c2f502f5eb506-OSL
lpcdn.lpsnmedia.net/le_re/3.53.1.0-release_5134/jsv2/UISuite.js?_v=3.53.1.0-release_5134
178.249.97.98200 OK 13 kB URL HTTP/2 lpcdn.lpsnmedia.net/le_re/3.53.1.0-release_5134/jsv2/UISuite.js?_v=3.53.1.0-release_5134
IP 178.249.97.98:0
Hash fb7ef602550fd707082646b3cf812c98
41ec6bcc7afbe096c23b0511e4f31ca78ac1a31b
1a06a59b23d842b3bc46908225223c0d8b857dcb1ab848e6016d01e2cefdd878
GET /le_re/3.53.1.0-release_5134/jsv2/UISuite.js?_v=3.53.1.0-release_5134 HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 10 Nov 2022 04:53:30 GMT
content-type: application/javascript
last-modified: Thu, 03 Nov 2022 21:59:46 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Fri, 10 Nov 2023 04:53:30 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
accdn.lpsnmedia.net/api/account/50625536/configuration/le-campaigns/campaigns/585154612/engagements/585155012/revision/827?v=3.0&cb=lp585155012&flavor=dependency
178.249.101.99200 OK 3.7 kB URL HTTP/2 accdn.lpsnmedia.net/api/account/50625536/configuration/le-campaigns/campaigns/585154612/engagements/585155012/revision/827?v=3.0&cb=lp585155012&flavor=dependency
IP 178.249.101.99:0
Hash 628158d21c3ec2cc35962575c614c68a
844a5523c489c86260a1b0b06f195a18dd1981f6
c075656bb209083229b3d7d7161fb273f6d5b2e5c62958cedecc807107d47b26
GET /api/account/50625536/configuration/le-campaigns/campaigns/585154612/engagements/585155012/revision/827?v=3.0&cb=lp585155012&flavor=dependency HTTP/1.1
Host: accdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 10 Nov 2022 04:53:30 GMT
content-type: application/javascript
set-cookie: ADRUM_BTa=R:25|g:21528caf-01a5-43b1-a73d-23bc583e8067; Max-Age=30; Expires=Thu, 10-Nov-2022 04:54:00 GMT; Path=/
ADRUM_BTa=R:25|g:21528caf-01a5-43b1-a73d-23bc583e8067|n:livepersonltd_93a08561-b03e-475e-b29b-9ad4aa207daf; Max-Age=30; Expires=Thu, 10-Nov-2022 04:54:00 GMT; Path=/
SameSite=None; Max-Age=30; Expires=Thu, 10-Nov-2022 04:54:00 GMT; Path=/; Secure
ADRUM_BT1=R:25|i:2241585; Max-Age=30; Expires=Thu, 10-Nov-2022 04:54:00 GMT; Path=/
ADRUM_BT1=R:25|i:2241585|e:9; Max-Age=30; Expires=Thu, 10-Nov-2022 04:54:00 GMT; Path=/
vary: Accept
expires: Thu, 10 Nov 2022 04:54:30 GMT
x-envoy-upstream-service-time: 1
server: ws
strict-transport-security: max-age=99999999999; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: EXPIRED
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
trc-events.taboola.com/1298910/log/3/unip?en=pre_d_eng_tb&tos=5031&scd=20&ssd=1&est=1668056002324&ver=35&isls=true&src=i&invt=3000&rv=1&tim=1668056007355&vi=1668056002321&ri=935b03c2f13b6b57d5254c55f2cfaab8&ref=https%3A%2F%2Flnk.to%2F&cv=20221106-3-RELEASE&item-url=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109&ler=other
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/1298910/log/3/unip?en=pre_d_eng_tb&tos=5031&scd=20&ssd=1&est=1668056002324&ver=35&isls=true&src=i&invt=3000&rv=1&tim=1668056007355&vi=1668056002321&ri=935b03c2f13b6b57d5254c55f2cfaab8&ref=https%3A%2F%2Flnk.to%2F&cv=20221106-3-RELEASE&item-url=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109&ler=other
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1298910/log/3/unip?en=pre_d_eng_tb&tos=5031&scd=20&ssd=1&est=1668056002324&ver=35&isls=true&src=i&invt=3000&rv=1&tim=1668056007355&vi=1668056002321&ri=935b03c2f13b6b57d5254c55f2cfaab8&ref=https%3A%2F%2Flnk.to%2F&cv=20221106-3-RELEASE&item-url=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109&ler=other HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Thu, 10 Nov 2022 04:53:31 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://www.golotter.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
trc.taboola.com/1298910/trc/3/json?tim=1668056002327&data=%7B%22id%22%3A526%2C%22ii%22%3A%22%2Flottery-tickets%2Fusa-megamillions%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1668056002321%2C%22cv%22%3A%2220221106-3-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.thelotter.com%2Flottery-tickets%2Fusa-megamillions%2F%22%2C%22e%22%3A%22https%3A%2F%2Flnk.to%2F%22%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dthelotterglobalnetwork-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1668056002326%2C%22ref%22%3A%22https%3A%2F%2Flnk.to%2F%22%2C%22item-url%22%3A%22https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2C%22tos%22%3A1%2C%22ssd%22%3A1%2C%22scd%22%3A20%2C%22ler%22%3A%22other%22%2C%22supv%22%3Atrue%7D%7D&pubit=i
151.101.85.44200 OK 0 B URL HTTP/2 trc.taboola.com/1298910/trc/3/json?tim=1668056002327&data=%7B%22id%22%3A526%2C%22ii%22%3A%22%2Flottery-tickets%2Fusa-megamillions%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1668056002321%2C%22cv%22%3A%2220221106-3-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.thelotter.com%2Flottery-tickets%2Fusa-megamillions%2F%22%2C%22e%22%3A%22https%3A%2F%2Flnk.to%2F%22%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dthelotterglobalnetwork-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1668056002326%2C%22ref%22%3A%22https%3A%2F%2Flnk.to%2F%22%2C%22item-url%22%3A%22https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2C%22tos%22%3A1%2C%22ssd%22%3A1%2C%22scd%22%3A20%2C%22ler%22%3A%22other%22%2C%22supv%22%3Atrue%7D%7D&pubit=i
IP 151.101.85.44:0
GET /1298910/trc/3/json?tim=1668056002327&data=%7B%22id%22%3A526%2C%22ii%22%3A%22%2Flottery-tickets%2Fusa-megamillions%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1668056002321%2C%22cv%22%3A%2220221106-3-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.thelotter.com%2Flottery-tickets%2Fusa-megamillions%2F%22%2C%22e%22%3A%22https%3A%2F%2Flnk.to%2F%22%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dthelotterglobalnetwork-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1668056002326%2C%22ref%22%3A%22https%3A%2F%2Flnk.to%2F%22%2C%22item-url%22%3A%22https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109%22%2C%22tos%22%3A1%2C%22ssd%22%3A1%2C%22scd%22%3A20%2C%22ler%22%3A%22other%22%2C%22supv%22%3Atrue%7D%7D&pubit=i HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Thu, 10 Nov 2022 04:53:26 GMT
via: 1.1 varnish
x-served-by: cache-bma1626-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1668056006.155577,VS0,VE96
vary: Accept-Encoding
x-vcl-time-ms: 96
X-Firefox-Spdy: h2
www.tlg-api.com/api/v1/content/string-section?applicationRef=4&subSiteRef=44&languageRef=1§ionName=Footer%20(Mobile)
107.154.132.27200 OK 0 B URL HTTP/2 www.tlg-api.com/api/v1/content/string-section?applicationRef=4&subSiteRef=44&languageRef=1§ionName=Footer%20(Mobile)
IP 107.154.132.27:0
GET /api/v1/content/string-section?applicationRef=4&subSiteRef=44&languageRef=1§ionName=Footer%20(Mobile) HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=60
content-type: application/json; charset=utf-8
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-expose-headers: server-name
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba2
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Thu, 10 Nov 2022 04:53:27 GMT
set-cookie: visid_incap_1626863=0k1VtvegTaee8/VWVjLKQ8aDbGMAAAAAQUIPAAAAAADM9b5xtHTsythiV3QtLvjK; expires=Thu, 09 Nov 2023 22:25:16 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_631_1626863=nqIwJTeiQHMhsCBWBcTBCMiDbGMAAAAAoe2pDoZnzKo8nif+PoaFCQ==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 4-4325047-4323544 2NYN RT(1668056006842 603) q(0 0 0 0) r(0 0)
X-Firefox-Spdy: h2
accdn.lpsnmedia.net/api/account/50625536/configuration/le-campaigns/campaigns/571505912/engagements/573474412/revision/1097?v=3.0&cb=lp573474412&flavor=dependency
178.249.101.99200 OK 0 B URL HTTP/2 accdn.lpsnmedia.net/api/account/50625536/configuration/le-campaigns/campaigns/571505912/engagements/573474412/revision/1097?v=3.0&cb=lp573474412&flavor=dependency
IP 178.249.101.99:0
GET /api/account/50625536/configuration/le-campaigns/campaigns/571505912/engagements/573474412/revision/1097?v=3.0&cb=lp573474412&flavor=dependency HTTP/1.1
Host: accdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 10 Nov 2022 04:53:30 GMT
content-type: application/javascript
set-cookie: ADRUM_BTa=R:25|g:969ffbee-095d-4516-a08d-aa9d0bce3e60; Max-Age=30; Expires=Thu, 10-Nov-2022 04:54:00 GMT; Path=/
ADRUM_BTa=R:25|g:969ffbee-095d-4516-a08d-aa9d0bce3e60|n:livepersonltd_93a08561-b03e-475e-b29b-9ad4aa207daf; Max-Age=30; Expires=Thu, 10-Nov-2022 04:54:00 GMT; Path=/
SameSite=None; Max-Age=30; Expires=Thu, 10-Nov-2022 04:54:00 GMT; Path=/; Secure
ADRUM_BT1=R:25|i:2241585; Max-Age=30; Expires=Thu, 10-Nov-2022 04:54:00 GMT; Path=/
ADRUM_BT1=R:25|i:2241585|e:8; Max-Age=30; Expires=Thu, 10-Nov-2022 04:54:00 GMT; Path=/
vary: Accept
expires: Thu, 10 Nov 2022 04:54:30 GMT
x-envoy-upstream-service-time: 1
server: ws
strict-transport-security: max-age=99999999999; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: MISS
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
va.v.liveperson.net/api/js/50625536?sid=88cw-1q6SSCYeINxoXM0NA&cb=lpCb42195x39064&t=uc&ts=1668056007928&pid=4480590763&tid=1140422896&vid=A4OTFiMDNhMzEyN2I3MTBl&sdes=%5B%7B%22type%22%3A%22impDisplay%22%2C%22campaign%22%3A571505912%2C%22engId%22%3A573474412%2C%22revision%22%3A1097%2C%22eContext%22%3A%5B%7B%22type%22%3A%22engagementContext%22%2C%22id%22%3A%222%22%7D%5D%7D%5D
208.89.12.87200 OK 0 B URL HTTP/2 va.v.liveperson.net/api/js/50625536?sid=88cw-1q6SSCYeINxoXM0NA&cb=lpCb42195x39064&t=uc&ts=1668056007928&pid=4480590763&tid=1140422896&vid=A4OTFiMDNhMzEyN2I3MTBl&sdes=%5B%7B%22type%22%3A%22impDisplay%22%2C%22campaign%22%3A571505912%2C%22engId%22%3A573474412%2C%22revision%22%3A1097%2C%22eContext%22%3A%5B%7B%22type%22%3A%22engagementContext%22%2C%22id%22%3A%222%22%7D%5D%7D%5D
IP 208.89.12.87:0
GET /api/js/50625536?sid=88cw-1q6SSCYeINxoXM0NA&cb=lpCb42195x39064&t=uc&ts=1668056007928&pid=4480590763&tid=1140422896&vid=A4OTFiMDNhMzEyN2I3MTBl&sdes=%5B%7B%22type%22%3A%22impDisplay%22%2C%22campaign%22%3A571505912%2C%22engId%22%3A573474412%2C%22revision%22%3A1097%2C%22eContext%22%3A%5B%7B%22type%22%3A%22engagementContext%22%2C%22id%22%3A%222%22%7D%5D%7D%5D HTTP/1.1
Host: va.v.liveperson.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 10 Nov 2022 04:53:31 GMT
content-type: application/javascript
cache-control: no-store
server: ws
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
lnk.to/TLUSMM?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
34.241.203.189200 OK 0 B URL HTTP/2 lnk.to/TLUSMM?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
IP 34.241.203.189:0
GET /TLUSMM?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109 HTTP/1.1
Host: lnk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smarturl.it/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 10 Nov 2022 04:53:24 GMT
content-type: text/html; charset=UTF-8
server: nginx
set-cookie: LF_session_f2217dcb022a65cbb4c210b464a192b1=1; expires=Thu, 10-Nov-2022 05:03:23 GMT; Max-Age=599; path=/; domain=lnk.to; secure; HttpOnly
x-redirector-version: redirector-v3
X-Firefox-Spdy: h2
lnk.to/~/tr/pageview/
34.241.203.189200 OK 0 B IP 34.241.203.189:0
POST /~/tr/pageview/ HTTP/1.1
Host: lnk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 1354
Origin: https://lnk.to
Connection: keep-alive
Referer: https://lnk.to/TLUSMM?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
Cookie: LF_session_f2217dcb022a65cbb4c210b464a192b1=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 10 Nov 2022 04:53:24 GMT
content-type: application/json; charset=UTF-8
server: nginx
x-redirector-version: redirector-v3
X-Firefox-Spdy: h2
www.tlg-api.com/api/v1/lottery-game-catalog/subsite/44/lotteries/60/is-supported?userRef=
107.154.132.27200 OK 0 B URL HTTP/2 www.tlg-api.com/api/v1/lottery-game-catalog/subsite/44/lotteries/60/is-supported?userRef=
IP 107.154.132.27:0
GET /api/v1/lottery-game-catalog/subsite/44/lotteries/60/is-supported?userRef= HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=60
content-type: application/json; charset=utf-8
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-expose-headers: server-name
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba1
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Thu, 10 Nov 2022 04:53:28 GMT
set-cookie: visid_incap_1626863=0k1VtvegTaee8/VWVjLKQ8aDbGMAAAAAQUIPAAAAAADM9b5xtHTsythiV3QtLvjK; expires=Thu, 09 Nov 2023 22:25:16 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_631_1626863=motNLdm1HGIhsCBWBcTBCMiDbGMAAAAAz0LfEg//fNrFC75JZMZIuA==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 4-4325047-4325101 2NYN RT(1668056006842 1079) q(0 0 0 1) r(0 0)
X-Firefox-Spdy: h2
www.tlg-api.com/api/v1/product-catalog/products/subsite/44?userRef=
107.154.132.27200 OK 0 B URL HTTP/2 www.tlg-api.com/api/v1/product-catalog/products/subsite/44?userRef=
IP 107.154.132.27:0
GET /api/v1/product-catalog/products/subsite/44?userRef= HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
pragma: no-cache
content-type: application/json; charset=utf-8
expires: -1
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-expose-headers: server-name
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba3
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Thu, 10 Nov 2022 04:53:27 GMT
set-cookie: visid_incap_1626863=0k1VtvegTaee8/VWVjLKQ8aDbGMAAAAAQUIPAAAAAADM9b5xtHTsythiV3QtLvjK; expires=Thu, 09 Nov 2023 22:25:16 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_631_1626863=zFhpObA4SXkhsCBWBcTBCMiDbGMAAAAAZ34xEKp5hzNksfQ3zSNFcw==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 4-4325047-4325049 PNYN RT(1668056006842 464) q(0 0 0 0) r(0 0) U2
X-Firefox-Spdy: h2
lpcdn.lpsnmedia.net/le_unified_window/10.23.0.0-release_5549/ui-framework.js?version=10.23.0.0-release_5549
178.249.97.98200 OK 0 B URL HTTP/2 lpcdn.lpsnmedia.net/le_unified_window/10.23.0.0-release_5549/ui-framework.js?version=10.23.0.0-release_5549
IP 178.249.97.98:0
GET /le_unified_window/10.23.0.0-release_5549/ui-framework.js?version=10.23.0.0-release_5549 HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 10 Nov 2022 04:53:28 GMT
content-type: application/javascript
last-modified: Thu, 03 Nov 2022 22:03:25 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Fri, 10 Nov 2023 04:53:28 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
www.tlg-api.com/api/v1/content/string-section?applicationRef=1&subSiteRef=44&languageRef=1§ionName=Location%20Notification
107.154.132.27200 OK 0 B URL HTTP/2 www.tlg-api.com/api/v1/content/string-section?applicationRef=1&subSiteRef=44&languageRef=1§ionName=Location%20Notification
IP 107.154.132.27:0
GET /api/v1/content/string-section?applicationRef=1&subSiteRef=44&languageRef=1§ionName=Location%20Notification HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=60
content-type: application/json; charset=utf-8
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-expose-headers: server-name
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba1
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Thu, 10 Nov 2022 04:53:27 GMT
set-cookie: visid_incap_1626863=0k1VtvegTaee8/VWVjLKQ8aDbGMAAAAAQUIPAAAAAADM9b5xtHTsythiV3QtLvjK; expires=Thu, 09 Nov 2023 22:25:16 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_631_1626863=olqHaDFzjBghsCBWBcTBCMiDbGMAAAAAv9cWVPFyHVlWyrsEXgPy6A==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 4-4325047-4311760 2NYN RT(1668056006842 460) q(0 0 0 0) r(0 0)
X-Firefox-Spdy: h2
www.tlg-api.com/api/v1/content/string-section?applicationRef=1&subSiteRef=44&languageRef=1§ionName=Header
107.154.132.27200 OK 0 B URL HTTP/2 www.tlg-api.com/api/v1/content/string-section?applicationRef=1&subSiteRef=44&languageRef=1§ionName=Header
IP 107.154.132.27:0
GET /api/v1/content/string-section?applicationRef=1&subSiteRef=44&languageRef=1§ionName=Header HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=60
content-type: application/json; charset=utf-8
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-expose-headers: server-name
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba2
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Thu, 10 Nov 2022 04:53:27 GMT
set-cookie: visid_incap_1626863=0k1VtvegTaee8/VWVjLKQ8aDbGMAAAAAQUIPAAAAAADM9b5xtHTsythiV3QtLvjK; expires=Thu, 09 Nov 2023 22:25:16 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_631_1626863=Cn01Fm9PDichsCBWBcTBCMiDbGMAAAAAdQKec8BeE5ij8Y1DQjvG5g==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 4-4325047-4323544 2NYN RT(1668056006842 463) q(0 0 0 1) r(0 0)
X-Firefox-Spdy: h2
accdn.lpsnmedia.net/api/account/50625536/configuration/le-campaigns/zones?fields=id&fields=zoneValue&cb=lpZonesStaticCB
178.249.101.99200 OK 0 B URL HTTP/2 accdn.lpsnmedia.net/api/account/50625536/configuration/le-campaigns/zones?fields=id&fields=zoneValue&cb=lpZonesStaticCB
IP 178.249.101.99:0
GET /api/account/50625536/configuration/le-campaigns/zones?fields=id&fields=zoneValue&cb=lpZonesStaticCB HTTP/1.1
Host: accdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 10 Nov 2022 04:53:28 GMT
content-type: application/javascript
set-cookie: ADRUM_BTa=R:25|g:2dabdd56-11dc-4a3c-98f0-bcf6c396aef2; Max-Age=30; Expires=Thu, 10-Nov-2022 04:53:58 GMT; Path=/
ADRUM_BTa=R:25|g:2dabdd56-11dc-4a3c-98f0-bcf6c396aef2|n:livepersonltd_93a08561-b03e-475e-b29b-9ad4aa207daf; Max-Age=30; Expires=Thu, 10-Nov-2022 04:53:58 GMT; Path=/
SameSite=None; Max-Age=30; Expires=Thu, 10-Nov-2022 04:53:58 GMT; Path=/; Secure
ADRUM_BT1=R:25|i:2241585; Max-Age=30; Expires=Thu, 10-Nov-2022 04:53:58 GMT; Path=/
ADRUM_BT1=R:25|i:2241585|e:8; Max-Age=30; Expires=Thu, 10-Nov-2022 04:53:58 GMT; Path=/
vary: Accept
expires: Thu, 10 Nov 2022 04:54:28 GMT
x-envoy-upstream-service-time: 1
server: ws
strict-transport-security: max-age=99999999999; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: EXPIRED
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
accdn.lpsnmedia.net/api/account/50625536/configuration/setting/accountproperties/?cb=accountSettingsCB
178.249.101.99200 OK 0 B URL HTTP/2 accdn.lpsnmedia.net/api/account/50625536/configuration/setting/accountproperties/?cb=accountSettingsCB
IP 178.249.101.99:0
GET /api/account/50625536/configuration/setting/accountproperties/?cb=accountSettingsCB HTTP/1.1
Host: accdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 10 Nov 2022 04:53:28 GMT
content-type: application/javascript
set-cookie: ADRUM_BTa=R:25|g:26c9562d-e75a-42bf-856c-e307ef3fc95b; Max-Age=30; Expires=Thu, 10-Nov-2022 04:53:58 GMT; Path=/
ADRUM_BTa=R:25|g:26c9562d-e75a-42bf-856c-e307ef3fc95b|n:livepersonltd_93a08561-b03e-475e-b29b-9ad4aa207daf; Max-Age=30; Expires=Thu, 10-Nov-2022 04:53:58 GMT; Path=/
SameSite=None; Max-Age=30; Expires=Thu, 10-Nov-2022 04:53:58 GMT; Path=/; Secure
ADRUM_BT1=R:25|i:2241585; Max-Age=30; Expires=Thu, 10-Nov-2022 04:53:58 GMT; Path=/
ADRUM_BT1=R:25|i:2241585|e:9; Max-Age=30; Expires=Thu, 10-Nov-2022 04:53:58 GMT; Path=/
vary: Accept
expires: Thu, 10 Nov 2022 04:54:28 GMT
x-envoy-upstream-service-time: 1
server: ws
strict-transport-security: max-age=99999999999; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: EXPIRED
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
www.tlg-api.com/api/v1/lottery-game-catalog/subsite/44/lotteries/60/is-supported?userRef=
107.154.132.27200 OK 0 B URL HTTP/2 www.tlg-api.com/api/v1/lottery-game-catalog/subsite/44/lotteries/60/is-supported?userRef=
IP 107.154.132.27:0
GET /api/v1/lottery-game-catalog/subsite/44/lotteries/60/is-supported?userRef= HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=60
content-type: application/json; charset=utf-8
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-expose-headers: server-name
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba2
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Thu, 10 Nov 2022 04:53:27 GMT
set-cookie: visid_incap_1626863=0k1VtvegTaee8/VWVjLKQ8aDbGMAAAAAQUIPAAAAAADM9b5xtHTsythiV3QtLvjK; expires=Thu, 09 Nov 2023 22:25:16 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_631_1626863=+FRZE7IULFMhsCBWBcTBCMiDbGMAAAAAUjimdE6B2xXs0Y3wPPuzag==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 4-4325047-4325102 2NYN RT(1668056006842 1080) q(0 0 0 1) r(0 0)
X-Firefox-Spdy: h2
smarturl.it/~/tr/pageview/
34.243.9.140200 OK 0 B URL HTTP/2 smarturl.it/~/tr/pageview/
IP 34.243.9.140:0
POST /~/tr/pageview/ HTTP/1.1
Host: smarturl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 1334
Origin: https://smarturl.it
Connection: keep-alive
Referer: https://smarturl.it/MegaMillion_Play?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
Cookie: LF_session_64d74686fed897f793d761036c88ff6a=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 10 Nov 2022 04:53:23 GMT
content-type: application/json; charset=UTF-8
server: nginx
x-redirector-version: redirector-v3
X-Firefox-Spdy: h2
www.tlg-api.com/api/v1/notification/push/setting/subsite/44
107.154.132.27200 OK 0 B URL HTTP/2 www.tlg-api.com/api/v1/notification/push/setting/subsite/44
IP 107.154.132.27:0
GET /api/v1/notification/push/setting/subsite/44 HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache
pragma: no-cache
content-type: application/json; charset=utf-8
expires: -1
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-expose-headers: server-name
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba3
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Thu, 10 Nov 2022 04:53:26 GMT
set-cookie: visid_incap_1626863=0k1VtvegTaee8/VWVjLKQ8aDbGMAAAAAQUIPAAAAAADM9b5xtHTsythiV3QtLvjK; expires=Thu, 09 Nov 2023 22:25:16 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_631_1626863=70deM7I2Ki8hsCBWBcTBCMiDbGMAAAAA/sLmN1uRS29fCPzEyhBdNw==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 4-4325047-4325049 NNYN CT(26 79 0) RT(1668056006842 17) q(0 0 1 0) r(2 2) U2
X-Firefox-Spdy: h2
tl-log.com/api/v1/logging/configuration
107.154.132.27200 OK 0 B URL HTTP/2 tl-log.com/api/v1/logging/configuration
IP 107.154.132.27:0
GET /api/v1/logging/configuration HTTP/1.1
Host: tl-log.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
pragma: no-cache
content-type: application/json; charset=utf-8
expires: -1
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-expose-headers: server-name
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba1
strict-transport-security: max-age=16070400
date: Thu, 10 Nov 2022 04:53:25 GMT
set-cookie: visid_incap_1921636=6b+ninAMTmmhJn6+A70UccSDbGMAAAAAQUIPAAAAAAAAksFHBN9/1/5LxE4exoRF; expires=Thu, 09 Nov 2023 22:25:16 GMT; HttpOnly; path=/; Domain=.tl-log.com; Secure; SameSite=None
incap_ses_631_1921636=bj1XD2A4OQDvryBWBcTBCMWDbGMAAAAADtDRUh/V4DApzSv6bkLxRQ==; path=/; Domain=.tl-log.com; Secure; SameSite=None
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 4-4325014-4325016 PNYN RT(1668056004793 160) q(0 0 0 0) r(0 0) U2
X-Firefox-Spdy: h2
lpcdn.lpsnmedia.net/le_unified_window/10.23.0.0-release_5549/lpChatV3.min.js?version=10.23.0.0-release_5549
178.249.97.98200 OK 0 B URL HTTP/2 lpcdn.lpsnmedia.net/le_unified_window/10.23.0.0-release_5549/lpChatV3.min.js?version=10.23.0.0-release_5549
IP 178.249.97.98:0
GET /le_unified_window/10.23.0.0-release_5549/lpChatV3.min.js?version=10.23.0.0-release_5549 HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 10 Nov 2022 04:53:28 GMT
content-type: application/javascript
last-modified: Thu, 03 Nov 2022 22:03:25 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Fri, 10 Nov 2023 04:53:28 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
www.tlg-api.com/api/v1/content/string-section?applicationRef=1&subSiteRef=44&languageRef=1§ionName=Login%20Box
107.154.132.27200 OK 0 B URL HTTP/2 www.tlg-api.com/api/v1/content/string-section?applicationRef=1&subSiteRef=44&languageRef=1§ionName=Login%20Box
IP 107.154.132.27:0
GET /api/v1/content/string-section?applicationRef=1&subSiteRef=44&languageRef=1§ionName=Login%20Box HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=60
content-type: application/json; charset=utf-8
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-expose-headers: server-name
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba1
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Thu, 10 Nov 2022 04:53:27 GMT
set-cookie: visid_incap_1626863=0k1VtvegTaee8/VWVjLKQ8aDbGMAAAAAQUIPAAAAAADM9b5xtHTsythiV3QtLvjK; expires=Thu, 09 Nov 2023 22:25:16 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_631_1626863=ybBvJzLv2AEhsCBWBcTBCMiDbGMAAAAAp0/ZeBJaqhwCj4Wz44shAA==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 4-4325047-4323547 2NYN RT(1668056006842 462) q(0 0 0 1) r(0 0)
X-Firefox-Spdy: h2
lpcdn.lpsnmedia.net/le_unified_window/10.23.0.0-release_5549/UMSClientAPI.min.js?version=10.23.0.0-release_5549
178.249.97.98200 OK 0 B URL HTTP/2 lpcdn.lpsnmedia.net/le_unified_window/10.23.0.0-release_5549/UMSClientAPI.min.js?version=10.23.0.0-release_5549
IP 178.249.97.98:0
GET /le_unified_window/10.23.0.0-release_5549/UMSClientAPI.min.js?version=10.23.0.0-release_5549 HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 10 Nov 2022 04:53:28 GMT
content-type: application/javascript
last-modified: Thu, 03 Nov 2022 22:03:24 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Fri, 10 Nov 2023 04:53:28 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
lpcdn.lpsnmedia.net/le_unified_window/10.23.0.0-release_5549/surveylogicinstance.min.js?version=10.23.0.0-release_5549
178.249.97.98200 OK 0 B URL HTTP/2 lpcdn.lpsnmedia.net/le_unified_window/10.23.0.0-release_5549/surveylogicinstance.min.js?version=10.23.0.0-release_5549
IP 178.249.97.98:0
GET /le_unified_window/10.23.0.0-release_5549/surveylogicinstance.min.js?version=10.23.0.0-release_5549 HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 10 Nov 2022 04:53:28 GMT
content-type: application/javascript
last-modified: Thu, 03 Nov 2022 22:03:25 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Fri, 10 Nov 2023 04:53:28 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
va.v.liveperson.net/api/js/50625536?&cb=lpCb91238x77399&t=sp&ts=1668056004406&pid=4480590763&tid=1140422896&pt=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&u=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109&r=https%3A%2F%2Flnk.to%2F&sec=%5B%22en-GB%22%5D&df=0&os=0&sdes=%5B%7B%22type%22%3A%22ctmrinfo%22%2C%22info%22%3A%7B%22cstatus%22%3A%22N%2FA%22%2C%22ctype%22%3A%22Non%20Registered%22%2C%22customerId%22%3A%22-1%22%2C%22role%22%3A%22N%2FA%22%7D%7D%2C%7B%22type%22%3A%22personal%22%2C%22personal%22%3A%7B%22firstname%22%3A%22N%2FA%22%2C%22lastname%22%3A%22N%2FA%22%7D%7D%2C%7B%22type%22%3A%22cart%22%2C%22products%22%3A%5B%7B%22product%22%3A%7B%22name%22%3A%22U.S.%20-%20Mega%20Millions%22%2C%22category%22%3A%22Current%20Played%20Lottery%22%7D%7D%2C%7B%22product%22%3A%7B%22name%22%3A%22N%2FA%22%2C%22category%22%3A%22Favorite%20Lottery%22%7D%7D%2C%7B%22product%22%3A%7B%22name%22%3A%22Non%20Registered%20%3B%20%22%2C%22category%22%3A%22General%20information%22%7D%7D%2C%7B%22product%22%3A%7B%22name%22%3A%224764%20%3A%20Default%20-%20Global%20-%207th%20for%20Free%20Subscription%22%2C%22category%22%3A%22Best%20Sale%22%7D%7D%5D%7D%2C%7B%22type%22%3A%22error%22%2C%22error%22%3A%7B%22message%22%3A%22N%2FA%22%2C%22code%22%3A%22N%2FA%22%7D%7D%2C%7B%22type%22%3A%22lead%22%2C%22lead%22%3A%7B%22topic%22%3A%22%22%2C%22leadId%22%3A%22%22%7D%7D%5D&identities=%5B%7B%22iss%22%3A%22LivePerson%22%2C%22acr%22%3A%220%22%7D%5D
208.89.12.87200 OK 0 B URL HTTP/2 va.v.liveperson.net/api/js/50625536?&cb=lpCb91238x77399&t=sp&ts=1668056004406&pid=4480590763&tid=1140422896&pt=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&u=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109&r=https%3A%2F%2Flnk.to%2F&sec=%5B%22en-GB%22%5D&df=0&os=0&sdes=%5B%7B%22type%22%3A%22ctmrinfo%22%2C%22info%22%3A%7B%22cstatus%22%3A%22N%2FA%22%2C%22ctype%22%3A%22Non%20Registered%22%2C%22customerId%22%3A%22-1%22%2C%22role%22%3A%22N%2FA%22%7D%7D%2C%7B%22type%22%3A%22personal%22%2C%22personal%22%3A%7B%22firstname%22%3A%22N%2FA%22%2C%22lastname%22%3A%22N%2FA%22%7D%7D%2C%7B%22type%22%3A%22cart%22%2C%22products%22%3A%5B%7B%22product%22%3A%7B%22name%22%3A%22U.S.%20-%20Mega%20Millions%22%2C%22category%22%3A%22Current%20Played%20Lottery%22%7D%7D%2C%7B%22product%22%3A%7B%22name%22%3A%22N%2FA%22%2C%22category%22%3A%22Favorite%20Lottery%22%7D%7D%2C%7B%22product%22%3A%7B%22name%22%3A%22Non%20Registered%20%3B%20%22%2C%22category%22%3A%22General%20information%22%7D%7D%2C%7B%22product%22%3A%7B%22name%22%3A%224764%20%3A%20Default%20-%20Global%20-%207th%20for%20Free%20Subscription%22%2C%22category%22%3A%22Best%20Sale%22%7D%7D%5D%7D%2C%7B%22type%22%3A%22error%22%2C%22error%22%3A%7B%22message%22%3A%22N%2FA%22%2C%22code%22%3A%22N%2FA%22%7D%7D%2C%7B%22type%22%3A%22lead%22%2C%22lead%22%3A%7B%22topic%22%3A%22%22%2C%22leadId%22%3A%22%22%7D%7D%5D&identities=%5B%7B%22iss%22%3A%22LivePerson%22%2C%22acr%22%3A%220%22%7D%5D
IP 208.89.12.87:0
GET /api/js/50625536?&cb=lpCb91238x77399&t=sp&ts=1668056004406&pid=4480590763&tid=1140422896&pt=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&u=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3De36cbe3a9e6d612da4c6c24e962afbf7-5142-1109&r=https%3A%2F%2Flnk.to%2F&sec=%5B%22en-GB%22%5D&df=0&os=0&sdes=%5B%7B%22type%22%3A%22ctmrinfo%22%2C%22info%22%3A%7B%22cstatus%22%3A%22N%2FA%22%2C%22ctype%22%3A%22Non%20Registered%22%2C%22customerId%22%3A%22-1%22%2C%22role%22%3A%22N%2FA%22%7D%7D%2C%7B%22type%22%3A%22personal%22%2C%22personal%22%3A%7B%22firstname%22%3A%22N%2FA%22%2C%22lastname%22%3A%22N%2FA%22%7D%7D%2C%7B%22type%22%3A%22cart%22%2C%22products%22%3A%5B%7B%22product%22%3A%7B%22name%22%3A%22U.S.%20-%20Mega%20Millions%22%2C%22category%22%3A%22Current%20Played%20Lottery%22%7D%7D%2C%7B%22product%22%3A%7B%22name%22%3A%22N%2FA%22%2C%22category%22%3A%22Favorite%20Lottery%22%7D%7D%2C%7B%22product%22%3A%7B%22name%22%3A%22Non%20Registered%20%3B%20%22%2C%22category%22%3A%22General%20information%22%7D%7D%2C%7B%22product%22%3A%7B%22name%22%3A%224764%20%3A%20Default%20-%20Global%20-%207th%20for%20Free%20Subscription%22%2C%22category%22%3A%22Best%20Sale%22%7D%7D%5D%7D%2C%7B%22type%22%3A%22error%22%2C%22error%22%3A%7B%22message%22%3A%22N%2FA%22%2C%22code%22%3A%22N%2FA%22%7D%7D%2C%7B%22type%22%3A%22lead%22%2C%22lead%22%3A%7B%22topic%22%3A%22%22%2C%22leadId%22%3A%22%22%7D%7D%5D&identities=%5B%7B%22iss%22%3A%22LivePerson%22%2C%22acr%22%3A%220%22%7D%5D HTTP/1.1
Host: va.v.liveperson.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 10 Nov 2022 04:53:30 GMT
content-type: application/javascript
set-cookie: LPVisitorID=A4OTFiMDNhMzEyN2I3MTBl; Expires=Fri, 10-Nov-2023 04:53:30 GMT; Path=/; HttpOnly
LPSessionID=88cw-1q6SSCYeINxoXM0NA; Path=/api/js/50625536; HttpOnly
cache-control: no-store
server: ws
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
smarturl.it/~/tr/event/
34.243.9.140200 OK 0 B IP 34.243.9.140:0
POST /~/tr/event/ HTTP/1.1
Host: smarturl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 1504
Origin: https://smarturl.it
Connection: keep-alive
Referer: https://smarturl.it/MegaMillion_Play?IQid=theLotter&tl_affid=11395&ft=5&clickid=e36cbe3a9e6d612da4c6c24e962afbf7-5142-1109
Cookie: LF_session_64d74686fed897f793d761036c88ff6a=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 10 Nov 2022 04:53:23 GMT
content-type: application/json; charset=UTF-8
server: nginx
x-redirector-version: redirector-v3
X-Firefox-Spdy: h2
www.tlg-api.com/api/v1/product-catalog/products/subsite/44?userRef=
107.154.132.27200 OK 0 B URL HTTP/2 www.tlg-api.com/api/v1/product-catalog/products/subsite/44?userRef=
IP 107.154.132.27:0
GET /api/v1/product-catalog/products/subsite/44?userRef= HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
pragma: no-cache
content-type: application/json; charset=utf-8
expires: -1
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-expose-headers: server-name
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba1
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Thu, 10 Nov 2022 04:53:27 GMT
set-cookie: visid_incap_1626863=0k1VtvegTaee8/VWVjLKQ8aDbGMAAAAAQUIPAAAAAADM9b5xtHTsythiV3QtLvjK; expires=Thu, 09 Nov 2023 22:25:16 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_631_1626863=28NrdXJ8Bn4hsCBWBcTBCMiDbGMAAAAAHLM2YzVVHk/Qr3FDb1Zn6Q==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 4-4325047-4325073 NNYN CT(26 27 0) RT(1668056006842 464) q(0 0 1 1) r(1 1) U2
X-Firefox-Spdy: h2