GET /e4acf9d0-ac58-450a-b1f7-c42662a368b9 HTTP/1.1
Host: duneglobal.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
|
 35.157.49.161
HTTP/1.1 302
Server: nginx
Date: Thu, 23 Mar 2023 16:06:36 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://track.africabetpartners.com/visit/?bta=35640&nci=5689&afp=wcn2uiehpglka8gn2eq06hck&afp1=_pshort_
Pragma: no-cache
Set-Cookie: e4acf9d0-ac58-450a-b1f7-c42662a368b9-v4=xGu1st-_yV9a0seK0YT--GUVVRZNYWEr97pYdjxZBsg; Max-Age=86400; Expires=Fri, 24-Mar-2023 16:06:36 GMT; Domain=duneglobal.net; Path=/; HttpOnly
cc-v4=Dpcm7DZjCZoDumDIdhc2KicUmPh2PgeQP6ezSjjn0BrSLJv7r2ojcxafvSpzo7LtyF4GIio8De%2BfS%2FhDoYxlv2pVEo6ElAB8Hjmrk98PQlNC1nuNPTUN6AHYOEJZyj213ByLE%2B8sFj0WSlnbBrT1uw%3D%3D; Max-Age=31536000; Expires=Fri, 22-Mar-2024 16:06:36 GMT; Domain=duneglobal.net; Path=/; HttpOnly
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
 23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "469B97BF9F57401B3C9571039483589F2815F4794212B75C7C85CFEFE0AE71E9"
Last-Modified: Wed, 22 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10882
Expires: Thu, 23 Mar 2023 19:07:58 GMT
Date: Thu, 23 Mar 2023 16:06:36 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "D93D50C523C7F735987ABA09DB628259441EB75EFE713A2DF3C214E1FB8B5171"
Last-Modified: Wed, 22 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5006
Expires: Thu, 23 Mar 2023 17:30:02 GMT
Date: Thu, 23 Mar 2023 16:06:36 GMT
Connection: keep-alive
|
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
 35.241.9.150
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Backoff, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 23 Mar 2023 15:27:34 GMT
age: 2342
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "8794223D5E8D4D276C35E2FDCC24BF99694240634DD749CD9B5BF874DEC055CF"
Last-Modified: Wed, 22 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3010
Expires: Thu, 23 Mar 2023 16:56:46 GMT
Date: Thu, 23 Mar 2023 16:06:36 GMT
Connection: keep-alive
|
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
x-amz-id-2: u6FWyUYWz85shmhBk6oQLfg/M8zm2eWyQ5BVJvcgAOGWtiFE4sTXyc/SzCHVE/Xz/QZKY3svqXntp4mnVi2roA==
x-amz-request-id: RZRPV60T6ZK9KDRY
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 23 Mar 2023 15:54:06 GMT
age: 751
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.117.237.239
HTTP/2 200 OK
content-type: application/json
server: nginx
date: Thu, 23 Mar 2023 16:06:37 GMT
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "E465E988225A5743A3F4B1840921C1CE020B9200E41E2E98078E56E87D246F48"
Last-Modified: Wed, 22 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21560
Expires: Thu, 23 Mar 2023 22:05:57 GMT
Date: Thu, 23 Mar 2023 16:06:37 GMT
Connection: keep-alive
|
GET /visit/?bta=35640&nci=5689&afp=wcn2uiehpglka8gn2eq06hck&afp1=_pshort_ HTTP/1.1
Host: track.africabetpartners.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
|
35.234.86.61
HTTP/1.1 302 Moved Temporarily
Content-Type: application/octet-stream
Server: rhino-core-shield
Date: Thu, 23 Mar 2023 16:06:37 GMT
Content-Length: 3
Connection: keep-alive
Set-cookie: gsb-v=389240; Max-Age=2678400; Path=/; Expires=Sun, 23 Apr 2023 16:06:37 GMT; HttpOnly
expires: 0
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate
surrogate-control: no-store
location: https://gsb.co.tz/#/register?cxd=cxd_35640_389240_|afp0:wcn2uiehpglka8gn2eq06hck|afp1:_pshort_
referer:
X-Cache-Status: MISS
access-control-allow-origin: *, *
|
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
35.241.9.150
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-expose-headers: ETag, Last-Modified, Retry-After, Content-Length, Alert, Cache-Control, Expires, Content-Type, Backoff, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 23 Mar 2023 15:14:33 GMT
age: 3124
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "7001D3EF847C7002AC15155F0DFCC0A369F19860E85C8E90530F1E7B2DD88F09"
Last-Modified: Wed, 22 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10121
Expires: Thu, 23 Mar 2023 18:55:18 GMT
Date: Thu, 23 Mar 2023 16:06:37 GMT
Connection: keep-alive
|
GET /globalStyle/tracker_theme.css HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
 104.18.33.4
HTTP/2 200 OK
content-type: text/css
date: Thu, 23 Mar 2023 16:06:37 GMT
content-length: 5830
content-encoding: gzip
last-modified: Sun, 06 Jun 2021 12:28:11 GMT
etag: "aeabdd69cf5ad71:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cf-cache-status: HIT
expires: Thu, 23 Mar 2023 20:06:37 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
server: cloudflare
cf-ray: 7ac7ec35da21b509-OSL
X-Firefox-Spdy: h2
|
GET /styles.101f7a228a69ff645603.css HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
104.18.33.4
HTTP/2 200 OK
content-type: text/css
date: Thu, 23 Mar 2023 16:06:37 GMT
content-length: 3967
content-encoding: gzip
last-modified: Mon, 12 Sep 2022 07:04:00 GMT
etag: "ebf2afd575c6d81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cf-cache-status: HIT
expires: Thu, 23 Mar 2023 20:06:37 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
server: cloudflare
cf-ray: 7ac7ec35ea2db509-OSL
X-Firefox-Spdy: h2
|
GET /globalStyle/mainStyle.css HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
104.18.33.4
HTTP/2 200 OK
content-type: text/css
date: Thu, 23 Mar 2023 16:06:37 GMT
content-length: 2787
content-encoding: gzip
last-modified: Thu, 30 Jan 2020 09:07:57 GMT
etag: "82eb63c34cd7d51:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cf-cache-status: HIT
expires: Thu, 23 Mar 2023 20:06:37 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
server: cloudflare
cf-ray: 7ac7ec35ea2ab509-OSL
X-Firefox-Spdy: h2
|
GET / HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
|
104.18.33.4
HTTP/2 200 OK
content-type: text/html
date: Thu, 23 Mar 2023 16:06:37 GMT
last-modified: Wed, 28 Sep 2022 13:51:08 GMT
vary: Accept-Encoding
x-powered-by: ASP.NET
cf-cache-status: EXPIRED
expires: Thu, 23 Mar 2023 17:06:37 GMT
cache-control: public, max-age=3600
server: cloudflare
cf-ray: 7ac7ec33aeb8b509-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
142.250.74.163
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 16:06:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
142.250.74.163
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 16:06:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
142.250.74.163
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 16:06:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /runtime.26209474bfa8dc87a77c.js HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
104.18.33.4
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 23 Mar 2023 16:06:37 GMT
content-length: 926
content-encoding: gzip
last-modified: Mon, 12 Sep 2022 07:04:00 GMT
etag: "ebf2afd575c6d81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cf-cache-status: HIT
expires: Thu, 23 Mar 2023 20:06:37 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
server: cloudflare
cf-ray: 7ac7ec36dbebb509-OSL
X-Firefox-Spdy: h2
|
GET /scripts.2a63e66b6aa7f31c390d.js HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
104.18.33.4
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 23 Mar 2023 16:06:37 GMT
content-length: 58138
content-encoding: gzip
last-modified: Mon, 12 Sep 2022 07:04:00 GMT
etag: "766b0d575c6d81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cf-cache-status: HIT
expires: Thu, 23 Mar 2023 20:06:37 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
server: cloudflare
cf-ray: 7ac7ec36dbe2b509-OSL
X-Firefox-Spdy: h2
|
GET /css?family=Roboto:300,400,500,700,900&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
172.217.21.170
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 23 Mar 2023 16:06:37 GMT
date: Thu, 23 Mar 2023 16:06:37 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
GET /assets/online/images/logos/gal_sport_logo.png HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
104.18.33.4
HTTP/2 200 OK
content-type: image/png
date: Thu, 23 Mar 2023 16:06:37 GMT
content-length: 2457
last-modified: Wed, 25 Oct 2017 11:14:49 GMT
etag: "58a44979824dd31:0"
x-powered-by: ASP.NET
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac7ec35ea2fb509-OSL
X-Firefox-Spdy: h2
|
GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
104.18.33.4
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 23 Mar 2023 16:06:37 GMT
last-modified: Fri, 17 Mar 2023 11:52:23 GMT
etag: W/"64145477-302c"
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac7ec35ea38b509-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sat, 25 Mar 2023 16:06:37 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2
|
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gsb.co.tz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
216.58.207.227
HTTP/2 200 OK
content-type: font/woff2
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 20 Mar 2023 14:12:20 GMT
expires: Tue, 19 Mar 2024 14:12:20 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
age: 266058
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: VN9O5zBx9immA0krtp4txw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
|
52.42.172.0
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: hRsH0+YWtRWHyPPuOkzNG7l0xwc=
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
142.250.74.163
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 16:06:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /assets/online/scripts/redirect.js HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
104.18.33.4
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 23 Mar 2023 16:06:38 GMT
content-length: 521
content-encoding: gzip
last-modified: Thu, 22 Apr 2021 12:34:16 GMT
etag: "c312ddce7337d71:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7ac7ec36dbefb509-OSL
X-Firefox-Spdy: h2
|
GET /css?family=Roboto:400,100,900italic,700italic,500italic,400italic,300italic,100italic,900,700,500,300 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
172.217.21.170
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 23 Mar 2023 16:06:37 GMT
date: Thu, 23 Mar 2023 16:06:37 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
GET /assets/online/scripts/detectOldBrowsers.js HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
104.18.33.4
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 23 Mar 2023 16:06:38 GMT
content-length: 861
content-encoding: gzip
last-modified: Thu, 15 Nov 2018 18:27:56 GMT
etag: "973cdced107dd41:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7ac7ec36dbeeb509-OSL
X-Firefox-Spdy: h2
|
GET /assets/online/scripts/mobile-detect.js HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
104.18.33.4
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 23 Mar 2023 16:06:38 GMT
content-length: 19903
content-encoding: gzip
last-modified: Wed, 11 Dec 2019 06:22:34 GMT
etag: "5fb73560ebafd51:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cf-cache-status: EXPIRED
accept-ranges: bytes
server: cloudflare
cf-ray: 7ac7ec36dbf2b509-OSL
X-Firefox-Spdy: h2
|
GET /favicon.png HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
104.18.33.4
HTTP/2 200 OK
content-type: image/png
date: Thu, 23 Mar 2023 16:06:38 GMT
content-length: 496
last-modified: Thu, 30 Jan 2020 09:07:57 GMT
etag: "c07663c34cd7d51:0"
x-powered-by: ASP.NET
cf-cache-status: REVALIDATED
expires: Thu, 23 Mar 2023 20:06:38 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac7ec389f44b509-OSL
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
142.250.74.163
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 16:06:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
142.250.74.163
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 16:06:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /ns.html?id=GTM-PVXL6CD HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
|
142.250.74.168
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-encoding: br
vary: *
date: Thu, 23 Mar 2023 16:06:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 265
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
GET /gtm.js?id=GTM-PVXL6CD HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
142.250.74.168
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 23 Mar 2023 16:06:38 GMT
expires: Thu, 23 Mar 2023 16:06:38 GMT
cache-control: private, max-age=900
last-modified: Thu, 23 Mar 2023 15:14:09 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 91235
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
142.250.74.163
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 16:06:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gsb.co.tz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
|
216.58.207.227
HTTP/2 200 OK
content-type: font/woff2
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Mar 2023 18:05:11 GMT
expires: Thu, 21 Mar 2024 18:05:11 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
age: 79287
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "370436722DEAE240016967B0EFC6507132B7E80CA90C02C0F4377CF3217DB046"
Last-Modified: Wed, 22 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15016
Expires: Thu, 23 Mar 2023 20:16:54 GMT
Date: Thu, 23 Mar 2023 16:06:38 GMT
Connection: keep-alive
|
GET /54c14afdb98aa58f61d11d276c9a2cd7/widgetloader HTTP/1.1
Host: widgets.sir.sportradar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
23.36.79.33
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-security-policy: frame-ancestors 'self' https://*.sportradar.com https://*.betradar.com http://*.sportradar.com http://*.betradar.com https://*.srcloud.io https://*.sportradar.online https://*.sportradar.dev https://*.betradar.dev
cache-control: public, max-age=120, stale-while-revalidate=60, immutable
etag: "33e548bb648daca271785599c1acf2c8-02c8bc7258faa8ce96ea949944f3f50e"
content-encoding: gzip
x-ing-v: 2
date: Thu, 23 Mar 2023 16:06:39 GMT
content-length: 60604
vary: Accept-Encoding
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
|
GET /pagead/conversion/347128863/?value=&label=ZGeqCIjB5McCEJ-Iw6UB&url=https%3A%2F%2Fgsb.co.tz%2F&guid=ON&script=0 HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.googletagmanager.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
142.250.74.162
HTTP/2 302 Found
content-type: image/gif
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 23 Mar 2023 16:06:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://googleads.g.doubleclick.net/pagead/viewthroughconversion/347128863/?value=&label=ZGeqCIjB5McCEJ-Iw6UB&url=https%3A%2F%2Fgsb.co.tz%2F&guid=ON&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=D3kcZMjEBJKwYKDjliA&random=309110350&sscte=1&crd=
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
GET /ajax/libs/jquery/2.1.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
142.250.74.170
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29707
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Mar 2023 13:00:45 GMT
expires: Thu, 21 Mar 2024 13:00:45 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 97554
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
GET /json HTTP/1.1
Host: myexternalip.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gsb.co.tz
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.160.111.145
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
server: istio-envoy
date: Thu, 23 Mar 2023 16:06:38 GMT
content-length: 21
access-control-allow-origin: *
x-envoy-upstream-service-time: 0
strict-transport-security: max-age=2592000; includeSubDomains
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "370436722DEAE240016967B0EFC6507132B7E80CA90C02C0F4377CF3217DB046"
Last-Modified: Wed, 22 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15015
Expires: Thu, 23 Mar 2023 20:16:54 GMT
Date: Thu, 23 Mar 2023 16:06:39 GMT
Connection: keep-alive
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
142.250.74.163
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 16:06:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA"
Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11347
Expires: Thu, 23 Mar 2023 19:15:46 GMT
Date: Thu, 23 Mar 2023 16:06:39 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA"
Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11347
Expires: Thu, 23 Mar 2023 19:15:46 GMT
Date: Thu, 23 Mar 2023 16:06:39 GMT
Connection: keep-alive
|
POST /Services/gameapi/api/dynamic/Execute HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
BrandId: 4
ChannelId: 1
Terminal: gsb.co.tz
Content-Length: 50
Origin: https://gsb.co.tz
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
104.18.33.4
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Thu, 23 Mar 2023 16:06:39 GMT
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: *
x-powered-by: ASP.NET
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7ac7ec3cee41b509-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
POST /Services/onlineapi/metadata/GetEnums HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
BrandId: 4
ChannelKey: cdd61eaf-05f8-4696-b4c0-de6b30e9fa6a
Content-Length: 24
Origin: https://gsb.co.tz
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
104.18.33.4
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Thu, 23 Mar 2023 16:06:39 GMT
content-encoding: gzip
access-control-allow-credentials: true
access-control-allow-origin: https://gsb.co.tz
x-powered-by: ASP.NET
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7ac7ec3cee49b509-OSL
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA"
Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11347
Expires: Thu, 23 Mar 2023 19:15:46 GMT
Date: Thu, 23 Mar 2023 16:06:39 GMT
Connection: keep-alive
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5be1b286-007a-44a5-a6fd-872190ecfa0b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 6692
x-amzn-requestid: 3a0f6a8d-89b1-43f4-8a15-8749bdbc047b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CM9d9FcOoAMFaFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641b75f2-3540256d6be3d4f85bba65ea;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 21:41:06 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: PNAVsyfdAHjn5F6Rt1uz1U46QCIGvTCqZatbAurr6Ilu0quHWExuSw==
via: 1.1 e92cc925fc8895560cd0628c67f58828.cloudfront.net (CloudFront), 1.1 aabd01c4a20dae837d162bd972422efc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 22 Mar 2023 21:43:34 GMT
age: 66185
etag: "156ef59e53564a4f2b27002b2695fafecd578d82"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08561a1f-1d19-45db-be98-107d6b1ed25d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 10480
x-amzn-requestid: 58aa8272-4b4e-4a2f-9d6e-d47f70891c49
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJptHG7JoAMFSwA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a2320-2fd6502b1271d5c13b4ebbe9;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:35:28 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: V_1L8vYf9-uS_-cGgsCstGC__IYpLZjEa0gOlsYgYOWwNJxxXJo83g==
via: 1.1 2241406ac19fffc8f35d6ddef8e22f56.cloudfront.net (CloudFront), 1.1 b23fb37cd7fff033ab21e3284f558a28.cloudfront.net (CloudFront), 1.1 google
date: Wed, 22 Mar 2023 22:09:40 GMT
age: 64619
etag: "5f7ea91288a2170bcabdca6be296718c4191eacd"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F93c300c4-e707-428c-9ae5-d4699c20a7ef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 5950
x-amzn-requestid: ce85112e-428d-4ca1-9dac-1d6c8c6dc74a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CKyF9EI3oAMFtyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a96f2-05c5948d6f74948b1c67d68c;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 05:49:38 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: lnMR6Lh4T37cFhMwb1qXIxjoPBghVFOGUz7HTt65DegMaxlElZxfjQ==
via: 1.1 59456abf79b201034ab5c9cfef7355e2.cloudfront.net (CloudFront), 1.1 599f04a365a179d553682d476509c388.cloudfront.net (CloudFront), 1.1 google
date: Wed, 22 Mar 2023 21:43:32 GMT
age: 66187
etag: "0917d2c376f8d2af2a436a33ce2bfe1cbdb8b239"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F261caab9-983c-4eb1-9fca-fd73dc738e9e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 10284
x-amzn-requestid: e4d2c324-d0b0-436d-9739-29269e62aed0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CM6hjEqtIAMFvXA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641b713c-5a5bd6b60c1f52ab580f1757;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 21:21:00 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: g53sZY66fiEL8H79MzI7c7rqI-c-XxMvgB3myz79aw_lE9Aqgc66LQ==
via: 1.1 ffc1e24c06bfbb135c0a4d240b382048.cloudfront.net (CloudFront), 1.1 6ca7826fb0f4c565b1af9c7737725c48.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Mar 2023 07:32:23 GMT
age: 30856
etag: "5035ed41f497c97faefae9cdaf42dc07ab468557"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a816157-9568-4e7f-a034-14b2f1982949.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 4912
x-amzn-requestid: d8fcf495-12af-42ae-ad69-0ea07b1a8669
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CM8H3Fl1IAMFYgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641b73cb-01cbd1981a57e53b3d3cde93;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 21:31:55 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: 4xGMCVWy2EXLLN8keteGLQvQjOp6KH97rkn_FK10eyng0-5EudcOig==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 174acb08636ac7d9e9a778bbf1bcbc52.cloudfront.net (CloudFront), 1.1 google
date: Wed, 22 Mar 2023 21:43:33 GMT
etag: "d07fe53e4ac41048497b2732c017f6666c3eda9e"
age: 66186
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F772d9c75-9796-494f-9fc4-91d04e2bac53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 4905
x-amzn-requestid: bdcd62f9-d742-48af-9aa0-b13afc1846ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CM9EnFLIoAMF5cg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641b7550-63fc3df77b023fca782a53ea;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 21:38:24 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: we0zl0U_rfWuSW8_WX8vqLOYOCoeGP-4UUNb0r3f0mEICnLXASqC5A==
via: 1.1 b3cdce1c2fc39b89f45c98c417351f26.cloudfront.net (CloudFront), 1.1 d042f60a962591f741406f28a8170c5a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Mar 2023 03:39:03 GMT
age: 44856
etag: "4f25bdbffca3803b02c196c38491223684d36b4d"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
142.250.74.163
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 16:06:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /pagead/viewthroughconversion/347128863/?value=&label=ZGeqCIjB5McCEJ-Iw6UB&url=https%3A%2F%2Fgsb.co.tz%2F&guid=ON&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=D3kcZMjEBJKwYKDjliA&random=309110350&sscte=1&crd= HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.googletagmanager.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
142.250.74.34
HTTP/2 302 Found
content-type: image/gif
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 23 Mar 2023 16:06:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://www.google.com/pagead/1p-conversion/347128863/?value=&label=ZGeqCIjB5McCEJ-Iw6UB&url=https%3A%2F%2Fgsb.co.tz%2F&guid=ON&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=309110350&sscte=1&crd=&is_vtc=1&ocp_id=D3kcZMjEBJKwYKDjliA&random=1045020836
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 23-Mar-2023 16:21:39 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
142.250.74.163
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 16:06:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /assets/common/contentPages/PlaceHolder-undefined.json HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
104.18.33.4
HTTP/2 404 Not Found
content-type: text/html
date: Thu, 23 Mar 2023 16:06:39 GMT
x-powered-by: ASP.NET
cf-cache-status: EXPIRED
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac7ec3cbdf7b509-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
142.250.74.163
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 16:06:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /assets/online/images/flags/flags-sprites.png HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Cookie: _gcl_au=1.1.1935405556.1679587607
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
104.18.33.4
HTTP/2 200 OK
content-type: image/png
date: Thu, 23 Mar 2023 16:06:39 GMT
content-length: 22619
last-modified: Wed, 01 Nov 2017 14:54:15 GMT
etag: "1f4d5f492153d31:0"
x-powered-by: ASP.NET
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac7ec3f9a3ab509-OSL
X-Firefox-Spdy: h2
|
GET /pagead/1p-conversion/347128863/?value=&label=ZGeqCIjB5McCEJ-Iw6UB&url=https%3A%2F%2Fgsb.co.tz%2F&guid=ON&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=309110350&sscte=1&crd=&is_vtc=1&ocp_id=D3kcZMjEBJKwYKDjliA&random=1045020836 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.googletagmanager.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
142.250.74.164
HTTP/2 302 Found
content-type: image/gif
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 23 Mar 2023 16:06:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-conversion/347128863/?value=&label=ZGeqCIjB5McCEJ-Iw6UB&url=https%3A%2F%2Fgsb.co.tz%2F&guid=ON&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=309110350&sscte=1&crd=&is_vtc=1&ocp_id=D3kcZMjEBJKwYKDjliA&random=1045020836&ipr=y&prhg=0
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
GET /assets/online/images/search-widget-bar-line.png HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Cookie: _gcl_au=1.1.1935405556.1679587607
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
104.18.33.4
HTTP/2 200 OK
content-type: image/png
date: Thu, 23 Mar 2023 16:06:39 GMT
content-length: 15596
last-modified: Wed, 25 Oct 2017 11:14:50 GMT
etag: "978c4c79824dd31:0"
x-powered-by: ASP.NET
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac7ec3fba6fb509-OSL
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
142.250.74.163
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 16:06:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /assets/common/contentPages/licence/TZGamingBoard.png HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Cookie: _gcl_au=1.1.1935405556.1679587607
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
104.18.33.4
HTTP/2 200 OK
content-type: image/png
date: Thu, 23 Mar 2023 16:06:39 GMT
content-length: 26173
last-modified: Mon, 12 Feb 2018 10:05:53 GMT
etag: "16544e11e9a3d31:0"
x-powered-by: ASP.NET
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac7ec419d62b509-OSL
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
142.250.74.163
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 16:06:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /pagead/1p-conversion/347128863/?value=&label=ZGeqCIjB5McCEJ-Iw6UB&url=https%3A%2F%2Fgsb.co.tz%2F&guid=ON&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=309110350&sscte=1&crd=&is_vtc=1&ocp_id=D3kcZMjEBJKwYKDjliA&random=1045020836&ipr=y&prhg=0 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.googletagmanager.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
216.58.207.227
HTTP/2 200 OK
content-type: image/gif
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 23 Mar 2023 16:06:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
142.250.74.163
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 16:06:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /assets/online/sliderOnline/sliderOnline.json?v=94 HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Cookie: _gcl_au=1.1.1935405556.1679587607
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
104.18.33.4
HTTP/2 200 OK
content-type: application/json
date: Thu, 23 Mar 2023 16:06:39 GMT
last-modified: Thu, 23 Jan 2020 14:55:29 GMT
etag: W/"fdf1a827fdd1d51:0"
x-powered-by: ASP.NET
cf-cache-status: MISS
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac7ec3fdaadb509-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
GET /assets/common/contentPages/licence/Gaming-Labs-Certified.jpg HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Cookie: _gcl_au=1.1.1935405556.1679587607
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
104.18.33.4
HTTP/2 200 OK
content-type: image/jpeg
date: Thu, 23 Mar 2023 16:06:39 GMT
content-length: 7099
last-modified: Sun, 25 Mar 2018 09:48:54 GMT
etag: "7627c67c1ec4d31:0"
x-powered-by: ASP.NET
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac7ec419d67b509-OSL
X-Firefox-Spdy: h2
--- Additional Info ---
Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, xresolution=62, yresolution=70, resolutionunit=2, software=paint.net 4.0.13], baseline, precision 8, 164x64, components 3\012- data
Size: 7099
Md5: 4bdc3c11e2f339d9c61ee8de32463fbe
Sha1: 3f3c18f29cfb4f8500db240434d2dfa4b99b20ec
Sha256: bc8d702e91f159a5389dd264d9c66083749cfc6401855377cf1cfa77145d6fc5
|
GET /assets/common/images/mobileBeyonic/tigo.png?v=94 HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Cookie: _gcl_au=1.1.1935405556.1679587607
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
104.18.33.4
HTTP/2 200 OK
content-type: image/png
date: Thu, 23 Mar 2023 16:06:39 GMT
content-length: 2439
last-modified: Wed, 25 Oct 2017 11:14:49 GMT
etag: "a42a4c79824dd31:0"
x-powered-by: ASP.NET
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac7ec41fe03b509-OSL
X-Firefox-Spdy: h2
|
GET /assets/common/contentPages/licence/begambleaware.png HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Cookie: _gcl_au=1.1.1935405556.1679587607
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
104.18.33.4
HTTP/2 200 OK
content-type: image/png
date: Thu, 23 Mar 2023 16:06:39 GMT
content-length: 8967
last-modified: Sun, 31 Jul 2022 13:28:58 GMT
etag: "81d4947de1a4d81:0"
x-powered-by: ASP.NET
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac7ec419d68b509-OSL
X-Firefox-Spdy: h2
|
GET /assets/common/images/mobileBeyonic/airtel.png?v=94 HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Cookie: _gcl_au=1.1.1935405556.1679587607
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
104.18.33.4
HTTP/2 200 OK
content-type: image/png
date: Thu, 23 Mar 2023 16:06:39 GMT
content-length: 2244
last-modified: Wed, 25 Oct 2017 11:14:49 GMT
etag: "53dc4b79824dd31:0"
x-powered-by: ASP.NET
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac7ec41edebb509-OSL
X-Firefox-Spdy: h2
|
GET /assets/common/images/mobileBeyonic/vodacom.png?v=94 HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Cookie: _gcl_au=1.1.1935405556.1679587607
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
104.18.33.4
HTTP/2 200 OK
content-type: image/png
date: Thu, 23 Mar 2023 16:06:39 GMT
content-length: 2354
last-modified: Wed, 25 Oct 2017 11:14:50 GMT
etag: "3d3e4c79824dd31:0"
x-powered-by: ASP.NET
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac7ec41fe05b509-OSL
X-Firefox-Spdy: h2
|
GET /assets/common/images/mobileBeyonic/holotel.png?v=94 HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Cookie: _gcl_au=1.1.1935405556.1679587607
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
104.18.33.4
HTTP/2 200 OK
content-type: image/png
date: Thu, 23 Mar 2023 16:06:39 GMT
content-length: 5240
last-modified: Thu, 18 Nov 2021 08:38:41 GMT
etag: "13829db057dcd71:0"
x-powered-by: ASP.NET
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac7ec41ede8b509-OSL
X-Firefox-Spdy: h2
|
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Thu, 23 Mar 2023 16:05:11 GMT
expires: Thu, 23 Mar 2023 18:05:11 GMT
cache-control: public, max-age=7200
age: 89
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
GET /4/banners/cecc22b41fec40c98d4ae871a7b33280.jpg?a=94 HTTP/1.1
Host: dbax22z1rpn90.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
54.230.111.13
HTTP/2 200 OK
content-type: image/jpeg
content-length: 99367
last-modified: Wed, 22 Dec 2021 15:02:54 GMT
x-amz-version-id: 0IWtKpfGK2UbF9NLpwxHQQ4DEzzmmdxY
accept-ranges: bytes
server: AmazonS3
date: Thu, 23 Mar 2023 16:06:41 GMT
etag: "55d06f0f2ebd706ff25a1b068be76f55"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: N-E6EBSJIJ2vX874PuSOLasdH0u21CKWNJ8JL0usfKonLMwJ7fCk_Q==
X-Firefox-Spdy: h2
|
GET /Services/onlineapi/Metadata/GetBetTypeTemplate HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Cookie: _gcl_au=1.1.1935405556.1679587607
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
104.18.33.4
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Thu, 23 Mar 2023 16:06:39 GMT
content-encoding: gzip
x-powered-by: ASP.NET
last-modified: Thu, 23 Mar 2023 16:06:39 GMT
cf-cache-status: MISS
expires: Fri, 24 Mar 2023 16:06:39 GMT
cache-control: public, max-age=86400
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac7ec3f39bfb509-OSL
X-Firefox-Spdy: h2
|
GET /web_widget/latest/classic/web-widget-8165-464baaa.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
104.18.72.113
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Thu, 23 Mar 2023 16:06:39 GMT
x-amz-id-2: 4VPg3ySaZmwUMT13xUf23y72h4k8NYg1LC2EwUkn8d4AMf8FcPvhlkv2AKvzf0dQ16ji1sZEjTs=
x-amz-request-id: 7G79BTXFZ0669CRJ
x-amz-replication-status: COMPLETED
last-modified: Mon, 20 Mar 2023 04:09:45 GMT
etag: W/"d519ea27f763cb6ec80aeec5b45213a7"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 19 Mar 2024 04:09:44 GMT
x-amz-version-id: QLsw4mnhPcYmQjmjMO_RAgiluOgPlM_d
cf-cache-status: HIT
age: 61877
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dhN8983H9DhaH%2Bc9Pw4t%2FOV8wnAl%2FOzXoYiYfybRXZHALfGVVL9YviYoUotQZJstwLHhm3ftPyX9H88IjM6SMueG1XKgTtUJahnd1nqDQyvZmhs7Vx3SAqvq8D6oaWg%2FRD2cIcA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7ac7ec42ebadb518-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
GET /4/banners/a6f668e20b244ab39f58a1883283643e.jpg?a=94 HTTP/1.1
Host: dbax22z1rpn90.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
54.230.111.13
HTTP/2 200 OK
content-type: image/jpeg
content-length: 58285
last-modified: Wed, 22 Sep 2021 09:22:15 GMT
x-amz-version-id: hXW9txtAkozGykYjEjH85Lw8PcgdAv.c
accept-ranges: bytes
server: AmazonS3
date: Thu, 23 Mar 2023 16:06:41 GMT
etag: "320cdcc2564400832ef4d0ee7d388292"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 8NezGPzreHOwFvhIPbU9KJxERqdgriYqTn7_a_B69d-OAG52n8hwAg==
X-Firefox-Spdy: h2
--- Additional Info ---
Magic: JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 22.4 (Macintosh), datetime=2021:09:22 11:21:11], progressive, precision 8, 314x481, components 3\012- data
Size: 58285
Md5: 320cdcc2564400832ef4d0ee7d388292
Sha1: eff9b5ad2bde52a09718970c4bc6a2a039d21c2e
Sha256: 68e2262d60e6b86430dd2364ce7b13e15d90f93c36047ca42e0a5af1731c33bd
|
GET /assets/common/contentPages/licence/licence.html?v=94 HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Cookie: _gcl_au=1.1.1935405556.1679587607
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
104.18.33.4
HTTP/2 200 OK
content-type: text/html
date: Thu, 23 Mar 2023 16:06:39 GMT
last-modified: Wed, 10 Aug 2022 11:21:30 GMT
vary: Accept-Encoding
x-powered-by: ASP.NET
cf-cache-status: HIT
age: 0
server: cloudflare
cf-ray: 7ac7ec40dc34b509-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
GET /4/banners/faea8c51603243fd8daed0abb1d63eba.jpg?a=94 HTTP/1.1
Host: dbax22z1rpn90.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
54.230.111.13
HTTP/2 200 OK
content-type: image/jpeg
content-length: 56249
last-modified: Mon, 20 Feb 2023 15:03:44 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: y4WZBpBy6NqbvWTYFFL.1mOtrjCf2J8o
accept-ranges: bytes
server: AmazonS3
date: Thu, 23 Mar 2023 16:06:41 GMT
etag: "d37f44d6d6b1f6684a4b749765420f9e"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Aa9yVhC_-71WY2VJ2d0UqMRkpXMhwHSHj4QiiCODc7KIgMH3HiexEA==
X-Firefox-Spdy: h2
|
GET /4/banners/1d744b3bc82d4e9d848c8e0b61b560d4.jpg?a=94 HTTP/1.1
Host: dbax22z1rpn90.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
54.230.111.13
HTTP/2 200 OK
content-type: image/jpeg
content-length: 32343
last-modified: Mon, 18 Oct 2021 12:34:56 GMT
x-amz-version-id: zoi2TTpHKLs1n8l._dBKQ88glo9Y_rSA
accept-ranges: bytes
server: AmazonS3
date: Thu, 23 Mar 2023 16:06:41 GMT
etag: "6115be117a96bb4de4edacd91dc439e2"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: UczgggZc6CL-3oA_QDGj7DZXBIPLcN_DLcoPcfFsyqhraIG5FRrBDw==
X-Firefox-Spdy: h2
|
GET /4/banners/6f969407ab3f4f4e947caafc4fe07101.jpg?a=94 HTTP/1.1
Host: dbax22z1rpn90.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
54.230.111.13
HTTP/2 200 OK
content-type: image/jpeg
content-length: 82668
last-modified: Fri, 17 Mar 2023 10:57:13 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: 9xQZ41xjElS1pOs9RBI4p_qNTKtj21wQ
accept-ranges: bytes
server: AmazonS3
date: Thu, 23 Mar 2023 16:06:41 GMT
etag: "acdb48e5d211c9e591d03b10f741e677"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: r-NGB4FVwUiQL2FN0n-BoIMa8oPnmKKU0GV3kWp1hP7OZD89gBmk2g==
X-Firefox-Spdy: h2
|
GET /assets/common/contentPages/licence/licence.html?v=94 HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Cookie: _gcl_au=1.1.1935405556.1679587607
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
104.18.33.4
HTTP/2 200 OK
content-type: text/html
date: Thu, 23 Mar 2023 16:06:39 GMT
last-modified: Wed, 10 Aug 2022 11:21:30 GMT
vary: Accept-Encoding
x-powered-by: ASP.NET
cf-cache-status: MISS
server: cloudflare
cf-ray: 7ac7ec400adcb509-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
142.250.74.163
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 16:06:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-84799877-1&cid=1619060927.1679587608&jid=235173802&gjid=1379813296&_gid=615858102.1679587608&_u=YEBAAEAAAAAAACAAI~&z=287098480 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://gsb.co.tz
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
64.233.165.157
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: https://gsb.co.tz
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 23 Mar 2023 16:06:40 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
142.250.74.163
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 16:06:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
54.230.80.227
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 23 Mar 2023 16:06:40 GMT
Last-Modified: Thu, 23 Mar 2023 14:40:17 GMT
Server: ECAcc (nya/789D)
X-Cache: Miss from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: s4PvTE_-O0XhPxcUW-j6fZvR57ABjIiTzXc2kElfvFJ4_KXnWGZFYg==
Age: 5183
|
GET /web_widget/latest/classic/web-widget-locales/classic/en-us-json-464baaa.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
104.18.72.113
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Thu, 23 Mar 2023 16:06:40 GMT
x-amz-id-2: YsFQsHoHkcr7uJ3HdrSks3rYC7Ffpyn7uXfMOuL9jtIWbq7KHw+SMadx9XeMvjtv7pUZ5rfvoqw=
x-amz-request-id: YCKT9M4N8S9SPCZ5
x-amz-replication-status: COMPLETED
last-modified: Mon, 20 Mar 2023 04:09:47 GMT
etag: W/"89b68f56c96d15075b04b0ea633eabf1"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 19 Mar 2024 04:09:46 GMT
x-amz-version-id: 4h6QlG3__zMlftY.cuF.dh776KKSEUvw
cf-cache-status: HIT
age: 298818
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yWy1Z1P%2FfR8bTMqvXJycja%2Bccq21QC%2BHfwq8JU5jI9wQolOyOxASaQpHDQfelZBWtjtJCyzMNK7BcqQaCpWcQk4c4BUOHyMpwW1HJDF6qMdnLzn2V3Rn39E4Gnmkk5PRAhRNZt0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7ac7ec44ce1eb518-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
GET /web_widget/latest/classic/web-widget-classic-464baaa.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
104.18.72.113
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Thu, 23 Mar 2023 16:06:39 GMT
x-amz-id-2: ghBpsDaaDfDnbtKrMIapiT+Le4tJtYJxxErfQJj2SZX/A0VDpQUoMPFqBExBBmHDivX8w2WcBp0=
x-amz-request-id: 7G7EXK25K82TAJ9K
x-amz-replication-status: COMPLETED
last-modified: Mon, 20 Mar 2023 04:09:45 GMT
etag: W/"f4a0023ec8d1997e77ae5e1a8148be2a"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 19 Mar 2024 04:09:44 GMT
x-amz-version-id: LjG5OVNe5oFw3qB5xBggx_.H8o8tPW20
cf-cache-status: HIT
age: 298818
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0nqHuKrmlf6TL%2Fxqm%2BNK1JwRaclJYnuuiDqoLdM6ahqBQ%2FQ2ZdkClJbYdytVl3WAr7xbcNX49jBF6AXFfnnJLHN32JyyAPH9NyqgKwkacfh0pGBz7JaTlBirYReBI8yt9b9D5nA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7ac7ec42bb82b518-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
GET /Services/PushService/signalr/negotiate?clientProtocol=1.5&connectionData=%5B%7B%22name%22%3A%22pushhub%22%7D%5D&_=1679587606660 HTTP/1.1
Host: tanzania-bo.idobet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/plain, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Origin: https://gsb.co.tz
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
 93.191.197.147
HTTP/1.1 200 OK
Content-Type: application/json; charset=UTF-8
Cache-Control: no-cache
Pragma: no-cache
Transfer-Encoding: chunked
Expires: -1
Server: Microsoft-IIS/8.5
Access-Control-Allow-Origin: https://gsb.co.tz
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Date: Thu, 23 Mar 2023 16:06:41 GMT
|
GET /assets/online/images/icon_img/green_flash.gif HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Cookie: _gcl_au=1.1.1935405556.1679587607; _ga=GA1.3.1619060927.1679587608; _gid=GA1.3.615858102.1679587608; _gat_UA-84799877-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
104.18.33.4
HTTP/2 200 OK
content-type: image/gif
date: Thu, 23 Mar 2023 16:06:41 GMT
content-length: 1606
last-modified: Wed, 25 Oct 2017 11:14:49 GMT
etag: "5c7a4b79824dd31:0"
x-powered-by: ASP.NET
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac7ec4d692ab509-OSL
X-Firefox-Spdy: h2
|
GET /web_widget/latest/classic/fda6cd35495c75f83508d9d2e77ee33d.mp3 HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
104.18.72.113
HTTP/2 206 Partial Content
content-type: audio/mpeg; charset=utf-8
date: Thu, 23 Mar 2023 16:06:44 GMT
content-length: 19698
x-amz-id-2: iVvZDIAt+MQ5c0trgMxknN6OGP+x9TbABcTCVMFILC8oauJKEC9Y4e8ET6VpoWoyAPopiMkj7EQ=
x-amz-request-id: 3ZFBM49TN7NCVY88
x-amz-replication-status: COMPLETED
last-modified: Tue, 28 Feb 2023 12:19:34 GMT
etag: "f11ce9e8f40a392830217253fe75d6de"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 28 Feb 2024 12:19:33 GMT
x-amz-version-id: tInVe6KtJ6RxOVz7xDWOx5U8JOSJ3OZf
cf-cache-status: HIT
age: 1186042
content-range: bytes 0-19697/19698
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=chh0rJ%2BkT0mj%2FLvuoQFcrSeJj8X1Chvd%2B5CTr4%2BnUP%2B59J5X6zBZTisEXVMOUx%2FcNXNZUzr2R3RNZdE%2BOaQwxIGu4xjVQlWoCsPoA04u%2FecF2SHwBLRQOORSPBSzhmhmORW6HCo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7ac7ec608dacb518-OSL
X-Firefox-Spdy: h2
|
GET /Services/PushService/signalr/start?transport=serverSentEvents&clientProtocol=1.5&connectionToken=f9VipsGaAYKsc2wvsbMG%2F5NCPUUTMJjQfI0r%2FxqJpTxUIe22p2%2Bk6ZLORUACX6JCFwkrCuKgZ2cnO2eHTYT7qVE6ksZLIQ8bpjt2ZptjlBVhiTosTfi%2BVDF9riHU3qG6&connectionData=%5B%7B%22name%22%3A%22pushhub%22%7D%5D&_=1679587606661 HTTP/1.1
Host: tanzania-bo.idobet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/plain, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Origin: https://gsb.co.tz
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
93.191.197.147
HTTP/1.1 200 OK
Content-Type: application/json; charset=UTF-8
Cache-Control: no-cache
Pragma: no-cache
Transfer-Encoding: chunked
Expires: -1
Server: Microsoft-IIS/8.5
Access-Control-Allow-Origin: https://gsb.co.tz
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Date: Thu, 23 Mar 2023 16:06:44 GMT
|
GET /embeddable_identify?type=user&data=eyJ1c2VyIjp7ImVtYWlsIjoidW5rbm93bkBnbWFpbC5jb20iLCJuYW1lIjoiKFRaKSIsIm9yZ2FuaXphdGlvbiI6IlRaIiwibG9jYWxlSWQiOjF9LCJ1c2VyQWdlbnQiOiJNb3ppbGxhLzUuMCAoV2luZG93cyBOVCAxMC4wOyBXaW42NDsgeDY0OyBydjoxMDUuMCkgR2Vja28vMjAxMDAxMDEgRmlyZWZveC8xMDUuMCIsImJ1aWQiOiJiMGRjM2NmZTE5ODU0MzQ5OTM1ZWJiODAwM2YzNWQ2NSIsInN1aWQiOiIxNzhkYjQ4OTNiZWQ0ODc1YmQ0ZjQ5NjA1MDRlODg4MSIsInZlcnNpb24iOiI0NjRiYWFhIiwidGltZXN0YW1wIjoiMjAyMy0wMy0yM1QxNjowNjo1My4wOTlaIiwidXJsIjoiaHR0cHM6Ly9nc2IuY28udHovIy9yZWdpc3Rlcj9jeGQ9Y3hkXzM1NjQwXzM4OTI0MF8lN0NhZnAwOndjbjJ1aWVocGdsa2E4Z24yZXEwNmhjayU3Q2FmcDE6X3BzaG9ydF8ifQ%3D%3D HTTP/1.1
Host: gsbtanzania.zendesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gsb.co.tz
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
|
104.16.51.111
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:44 GMT
content-length: 0
access-control-allow-origin: *
vary: Origin, Accept-Encoding
x-zendesk-zorg: yes
x-request-id: 7ac7ec61b8201c02-DUB
last-modified: Thu, 23 Mar 2023 16:06:44 GMT
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5B8aQZbcUx5IAwfz4HTMrvC%2BqBPkUq6VX%2FjlEvnwxpV3IN%2B1%2BEoCoVGRtWy6zU1wh%2FlGxRvY%2FHWRkursKD0Ts3LGetIi%2BuPiqgglVGatdr7G5y7AbW83919Uxt%2FCRBc8oOmaLlf2X6E6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
set-cookie: __cfruid=8757bed46a035aaad3b1d022dd3ba45b669fae54-1679587604; path=/; domain=.gsbtanzania.zendesk.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7ac7ec61b8201c02-OSL
X-Firefox-Spdy: h2
|
GET /s/W/ws/6XJBY38f-Bxr-0wV/c/1679587613584 HTTP/1.1
Host: widget-mediator.zopim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://gsb.co.tz
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: fiS8ObGjZRyMIwF+DK/kWQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
|
3.123.73.108
HTTP/1.1 101 Switching Protocols
Date: Thu, 23 Mar 2023 16:06:45 GMT
Connection: upgrade
Set-Cookie: AWSALB=QOqRB4VvMi6EjQ5AwmTjd2r9qCn3KnicEVeisnmquLx7WBOXeP4dArXUgGyxKzAbAQL6q8W2+DNJ1GA6Sc7c1SNGavBK2Bb7CfoF7CEpynQ7R3kQ68b+wk23dd6V; Expires=Thu, 30 Mar 2023 16:06:45 GMT; Path=/
AWSALBCORS=QOqRB4VvMi6EjQ5AwmTjd2r9qCn3KnicEVeisnmquLx7WBOXeP4dArXUgGyxKzAbAQL6q8W2+DNJ1GA6Sc7c1SNGavBK2Bb7CfoF7CEpynQ7R3kQ68b+wk23dd6V; Expires=Thu, 30 Mar 2023 16:06:45 GMT; Path=/; SameSite=None; Secure
Upgrade: websocket
Sec-WebSocket-Accept: 8i95ghaOq8FnFSN+8pyXhqoL5yg=
Sec-WebSocket-Version: 13
WebSocket-Server: uWebSockets
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22c3f36a-d800-4eab-8a32-e2b5ef86e386.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 9459
x-amzn-requestid: 1b374321-f2df-404f-ab91-4e73d830fac9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJqmAEhHoAMFgRQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a248c-217d81154ecfe0c44ca70432;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:41:32 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: 3EQiNxuVVZEQZb14f9NC8565Ky3LV0Oj5JWg-_fVc9-B91xgBuHB5Q==
via: 1.1 8ae6af4d17aae7471e5fe2792eb6abcc.cloudfront.net (CloudFront), 1.1 0cf6c59c77f0fff670ae085179adc458.cloudfront.net (CloudFront), 1.1 google
date: Wed, 22 Mar 2023 21:48:05 GMT
age: 65921
etag: "a813976bda850a584b5ab94d9a70bfe0da69aca0"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /Services/PushService/signalr/connect?transport=serverSentEvents&clientProtocol=1.5&connectionToken=f9VipsGaAYKsc2wvsbMG%2F5NCPUUTMJjQfI0r%2FxqJpTxUIe22p2%2Bk6ZLORUACX6JCFwkrCuKgZ2cnO2eHTYT7qVE6ksZLIQ8bpjt2ZptjlBVhiTosTfi%2BVDF9riHU3qG6&connectionData=%5B%7B%22name%22%3A%22pushhub%22%7D%5D&tid=4 HTTP/1.1
Host: tanzania-bo.idobet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/event-stream
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gsb.co.tz
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
93.191.197.147
HTTP/1.1 200 OK
Content-Type: text/event-stream
Cache-Control: no-cache
Pragma: no-cache
Transfer-Encoding: chunked
Expires: -1
Server: Microsoft-IIS/8.5
Access-Control-Allow-Origin: https://gsb.co.tz
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Date: Thu, 23 Mar 2023 16:06:42 GMT
|
GET /assets/online/footer/footer.json?v=94 HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Cookie: _gcl_au=1.1.1935405556.1679587607
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
104.18.33.4
HTTP/2 200 OK
content-type: application/json
date: Thu, 23 Mar 2023 16:06:39 GMT
last-modified: Wed, 15 Jun 2022 09:53:19 GMT
etag: W/"a2e3dfbd9d80d81:0"
x-powered-by: ASP.NET
cf-cache-status: MISS
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac7ec400adbb509-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
--- Additional Info ---
Magic:
Size: 0
Md5:
Sha1:
Sha256:
|
GET /assets/common/contentPages/PlaceHolder.json HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Cookie: _gcl_au=1.1.1935405556.1679587607
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
104.18.33.4
HTTP/2 200 OK
content-type: application/json
date: Thu, 23 Mar 2023 16:06:39 GMT
last-modified: Tue, 13 Aug 2019 09:25:28 GMT
etag: W/"395db5bb951d51:0"
x-powered-by: ASP.NET
cf-cache-status: MISS
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac7ec3e78abb509-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
--- Additional Info ---
Magic:
Size: 0
Md5:
Sha1:
Sha256:
|
POST /Services/onlineapi/User/GetUserByToken HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
BrandId: 4
ChannelKey: cdd61eaf-05f8-4696-b4c0-de6b30e9fa6a
Content-Length: 24
Origin: https://gsb.co.tz
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
104.18.33.4
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Thu, 23 Mar 2023 16:06:39 GMT
content-encoding: gzip
access-control-allow-credentials: true
access-control-allow-origin: https://gsb.co.tz
x-powered-by: ASP.NET
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7ac7ec3d3eb9b509-OSL
X-Firefox-Spdy: h2
--- Additional Info ---
Magic:
Size: 0
Md5:
Sha1:
Sha256:
|
GET /web_widget/latest/classic/web-widget-5324-464baaa.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
104.18.72.113
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Thu, 23 Mar 2023 16:06:39 GMT
x-amz-id-2: 98roJ0gwmAzvL0JPJrIx9ldZ3ZkbN0LDb+cKYyCw3HBXaiTiAMAS9hUKP4I417otZ72C+xiTK7I=
x-amz-request-id: 7G7DS3M91QN842VG
x-amz-replication-status: COMPLETED
last-modified: Mon, 20 Mar 2023 04:09:45 GMT
etag: W/"b29e77a9599607885e686581bca36843"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 19 Mar 2024 04:09:44 GMT
x-amz-version-id: zLgSMYGPtgiK5wq5m3jGdMDNb5k7Xzs9
cf-cache-status: HIT
age: 298818
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iNZ3DLgbcyEg7YgJg4uDJPqMtS5Qh%2BmkA%2B55rp0KMCvs0Uouiinc1DUEQ%2BTIKLE8F39IQO5Il3unQuvAXwZFCVF4i1w8VehoM8vWsTer7aqcAheq%2Bsc8TFLRMGoBzPDpxYQd28w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7ac7ec42ebb1b518-OSL
content-encoding: br
X-Firefox-Spdy: h2
--- Additional Info ---
Magic:
Size: 0
Md5:
Sha1:
Sha256:
|
GET /web_widget/latest/classic/web-widget-chat-sdk-464baaa.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
104.18.72.113
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Thu, 23 Mar 2023 16:06:40 GMT
x-amz-id-2: ZjCxuNTJerUilLCAj6w65JFGV/pBrUsMo7jxLfHBqvCJxSSoypoRh9CubRaT+5+oifYu4qSS+b4=
x-amz-request-id: 7G7BW0SV55AHVM8M
x-amz-replication-status: COMPLETED
last-modified: Mon, 20 Mar 2023 04:09:45 GMT
etag: W/"d366c0776c2bacba354d40e564c3d3e6"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 19 Mar 2024 04:09:44 GMT
x-amz-version-id: pEh2u3XFQUvh6SDH6HCg7qjgmTn08OFy
cf-cache-status: HIT
age: 298818
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2iRYkz0utXBBPK8snKdVPXJqR2NAhDIH42XDK0exGvZwG1Fjpz80KsGd0gFVamGHVWF4FtlJbemmdrdwJ1yUNh%2ByVeTsHPqbUfkfpS%2BffsdrJfFPb9za7nV0rWWhDS6t9Xirm2c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7ac7ec450e9fb518-OSL
content-encoding: br
X-Firefox-Spdy: h2
--- Additional Info ---
Magic:
Size: 0
Md5:
Sha1:
Sha256:
|
GET /ekr/snippet.js?key=930fb983-a1db-452c-9161-3602663540d2 HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
104.18.72.113
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 23 Mar 2023 16:06:39 GMT
x-amz-id-2: vkl1julFjVVCeNmySgpr0CNRnNfJywI5yFKEAhmXoe/uWDYwbA4IhGFy+L8LmCWyQKx50gi/QJef+yScKd3Lnw==
x-amz-request-id: YZEQVQ41XEPXQ8NK
x-amz-replication-status: PENDING
last-modified: Fri, 17 Mar 2023 01:24:00 GMT
etag: W/"35755063f184195a50a9c07a2c71693a"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600, s-maxage=60
x-amz-version-id: PBHdtxERTX7HUmm2o8dmki0ZTZF0krHp
cf-cache-status: HIT
age: 39
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EKqZcn8MgmQTnDFThPO7m%2FKd0OhMMIKSm7p6V259ruFt%2FlrSQb7YVxsCqYVyodOIruqcOEMsODByQxCr1bENsT8U07I%2FuxaNFItZqyA7TZ9Wd3RncO1Cy%2BGLC%2BI1KOM4DvHobGE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7ac7ec3e6e8fb518-OSL
content-encoding: br
X-Firefox-Spdy: h2
--- Additional Info ---
Magic:
Size: 0
Md5:
Sha1:
Sha256:
|
GET /assets/online/config.json HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
104.18.33.4
HTTP/2 200 OK
content-type: application/json
date: Thu, 23 Mar 2023 16:06:39 GMT
last-modified: Wed, 15 Jun 2022 09:53:38 GMT
etag: W/"60792bc99d80d81:0"
x-powered-by: ASP.NET
cf-cache-status: EXPIRED
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac7ec3cbde9b509-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
--- Additional Info ---
Magic:
Size: 0
Md5:
Sha1:
Sha256:
|
GET /assets/online/config.json?a=1679587607269 HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
104.18.33.4
HTTP/2 200 OK
content-type: application/json
date: Thu, 23 Mar 2023 16:06:39 GMT
last-modified: Wed, 15 Jun 2022 09:53:47 GMT
etag: W/"84acd2ce9d80d81:0"
x-powered-by: ASP.NET
cf-cache-status: MISS
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac7ec3d4ec6b509-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
--- Additional Info ---
Magic:
Size: 0
Md5:
Sha1:
Sha256:
|
GET /4/translations/en-US_online_1663747549902.json HTTP/1.1
Host: dbax22z1rpn90.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gsb.co.tz
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
54.230.111.13
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 1800
last-modified: Wed, 21 Sep 2022 08:05:51 GMT
x-amz-version-id: i_AXsQz.5yr.LmEyubhugbyMsH5Uhaok
server: AmazonS3
content-encoding: gzip
date: Thu, 23 Mar 2023 16:06:40 GMT
etag: W/"3c6792b8922f4a571c11832e09215208"
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: RefreshHit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: FngNMnyn9-qzeR6UzNqI7E72_sEKsapeG3CbpQEw08WXzvhBWupGrw==
X-Firefox-Spdy: h2
--- Additional Info ---
Magic:
Size: 0
Md5:
Sha1:
Sha256:
|
GET /Services/onlineapi/Event/GetEvents?bettypeids=-1 HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Cookie: _gcl_au=1.1.1935405556.1679587607
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
104.18.33.4
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Thu, 23 Mar 2023 16:06:40 GMT
content-encoding: gzip
x-powered-by: ASP.NET
last-modified: Thu, 23 Mar 2023 16:06:40 GMT
cf-cache-status: MISS
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac7ec418d45b509-OSL
X-Firefox-Spdy: h2
--- Additional Info ---
Magic:
Size: 0
Md5:
Sha1:
Sha256:
|
GET /Services/onlineapi/event/geteventsupdates?lastTimestamp=1679587557898 HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Cookie: _gcl_au=1.1.1935405556.1679587607; _ga=GA1.3.1619060927.1679587608; _gid=GA1.3.615858102.1679587608; _gat_UA-84799877-1=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
104.18.33.4
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Thu, 23 Mar 2023 16:06:42 GMT
content-encoding: gzip
x-powered-by: ASP.NET
last-modified: Thu, 23 Mar 2023 16:06:42 GMT
cf-cache-status: MISS
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac7ec52c9d1b509-OSL
X-Firefox-Spdy: h2
--- Additional Info ---
Magic:
Size: 0
Md5:
Sha1:
Sha256:
|
GET /web_widget/latest/classic/web-widget-chat-incoming-message-notification-464baaa.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
104.18.72.113
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Thu, 23 Mar 2023 16:06:44 GMT
x-amz-id-2: kziLBO8O5WA4qQQ6OwzP4pSMkbqucNov1ab7S44Ip3IzKxEL8Ry0uu3vzZqVHXT4gGIX225GRmo=
x-amz-request-id: 1NRSFC4CHE4J9XYW
x-amz-replication-status: COMPLETED
last-modified: Mon, 20 Mar 2023 04:09:45 GMT
etag: W/"659635f5ad1b6653645380f46aa42236"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 19 Mar 2024 04:09:44 GMT
x-amz-version-id: .WoFMJxkVxHVViA0lXecQA2eV0.p7SzR
cf-cache-status: HIT
age: 298822
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YTxsHx2mYojCI5ACwxNPJ27xWByIVVy29a%2B9y46S3OrSsZG4u07IrPXvUKhLbDV%2BFlDEK9cjIA%2FKqAdAizCKLB%2BTK4HpFiRVqpAPxq0oW0M7SozwOuIFk1c5tdzg5cEr%2FSkMSaQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7ac7ec5e6a78b518-OSL
content-encoding: br
X-Firefox-Spdy: h2
--- Additional Info ---
Magic:
Size: 0
Md5:
Sha1:
Sha256:
|
GET /embeddable/config HTTP/1.1
Host: gsbtanzania.zendesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gsb.co.tz/
Origin: https://gsb.co.tz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
104.16.51.111
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Thu, 23 Mar 2023 16:06:39 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-expose-headers:
access-control-max-age: 7200
cache-control: public, max-age=60, stale-while-revalidate=600, stale-if-error=3600
x-zendesk-origin-server: embeddable-app-server-6499cf95bd-v8wfg
x-request-id: 7ac7ec420da21c02-DUB
x-runtime: 0.001877
vary: Origin, Accept-Encoding
x-cached: MISS
last-modified: Tue, 21 Mar 2023 17:48:53 GMT
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1xCRPAHKN2cjCSfqGxEHJIs3cGhGYSCELDOqKEHYmCuD7I4ocXotjmXJAgd1Oi0FQfUTkSYyCvQG%2BliPkP5Jpr%2Bs3csjeHhEDKObamd4owYmMbe3b35qmkuc%2BinDk7E9EXqq%2BSHSICaE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
set-cookie: __cfruid=3907df6428c857920e75c74d0759811552f3bcdc-1679587599; path=/; domain=.gsbtanzania.zendesk.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7ac7ec420da21c02-OSL
content-encoding: br
X-Firefox-Spdy: h2
--- Additional Info ---
Magic:
Size: 0
Md5:
Sha1:
Sha256:
|
GET /main.5f84e411cd43dd286404.js HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
104.18.33.4
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 23 Mar 2023 16:06:37 GMT
content-encoding: gzip
last-modified: Mon, 12 Sep 2022 07:13:45 GMT
etag: "c61f913277c6d81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cf-cache-status: HIT
expires: Thu, 23 Mar 2023 20:06:37 GMT
cache-control: public, max-age=14400
server: cloudflare
cf-ray: 7ac7ec36dbe0b509-OSL
X-Firefox-Spdy: h2
--- Additional Info ---
Magic:
Size: 0
Md5:
Sha1:
Sha256:
|
185.166.143.36