duneglobal.net/e4acf9d0-ac58-450a-b1f7-c42662a368b9
35.157.49.161302 0 B URL HTTP/1.1 duneglobal.net/e4acf9d0-ac58-450a-b1f7-c42662a368b9
IP 35.157.49.161:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /e4acf9d0-ac58-450a-b1f7-c42662a368b9 HTTP/1.1
Host: duneglobal.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302
Server: nginx
Date: Thu, 23 Mar 2023 16:06:36 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://track.africabetpartners.com/visit/?bta=35640&nci=5689&afp=wcn2uiehpglka8gn2eq06hck&afp1=_pshort_
Pragma: no-cache
Set-Cookie: e4acf9d0-ac58-450a-b1f7-c42662a368b9-v4=xGu1st-_yV9a0seK0YT--GUVVRZNYWEr97pYdjxZBsg; Max-Age=86400; Expires=Fri, 24-Mar-2023 16:06:36 GMT; Domain=duneglobal.net; Path=/; HttpOnly
cc-v4=Dpcm7DZjCZoDumDIdhc2KicUmPh2PgeQP6ezSjjn0BrSLJv7r2ojcxafvSpzo7LtyF4GIio8De%2BfS%2FhDoYxlv2pVEo6ElAB8Hjmrk98PQlNC1nuNPTUN6AHYOEJZyj213ByLE%2B8sFj0WSlnbBrT1uw%3D%3D; Max-Age=31536000; Expires=Fri, 22-Mar-2024 16:06:36 GMT; Domain=duneglobal.net; Path=/; HttpOnly
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash bea3185dd820a31c1981317f37c3456d
1a548a5d27270fc11df9011837a7149571cedd78
469b97bf9f57401b3c9571039483589f2815f4794212b75c7c85cfefe0ae71e9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "469B97BF9F57401B3C9571039483589F2815F4794212B75C7C85CFEFE0AE71E9"
Last-Modified: Wed, 22 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10882
Expires: Thu, 23 Mar 2023 19:07:58 GMT
Date: Thu, 23 Mar 2023 16:06:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 65fc860bc043f3fb83bdc3debdcd322d
418010755deae099ef1284e402813c5837a10f42
d93d50c523c7f735987aba09db628259441eb75efe713a2df3c214e1fb8b5171
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D93D50C523C7F735987ABA09DB628259441EB75EFE713A2DF3C214E1FB8B5171"
Last-Modified: Wed, 22 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5006
Expires: Thu, 23 Mar 2023 17:30:02 GMT
Date: Thu, 23 Mar 2023 16:06:36 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bc86ef2a0cee04915bc360f5821adc8f
3658f9028cce204d38f7f48fcfaa2a8e4f54383a
aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Backoff, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 23 Mar 2023 15:27:34 GMT
content-type: application/json
age: 2342
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 51a5d4696a6090c295850554508b51ce
c44e143c2223546e64b19f543b8101aaf3b11e97
8794223d5e8d4d276c35e2fdcc24bf99694240634dd749cd9b5bf874dec055cf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8794223D5E8D4D276C35E2FDCC24BF99694240634DD749CD9B5BF874DEC055CF"
Last-Modified: Wed, 22 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3010
Expires: Thu, 23 Mar 2023 16:56:46 GMT
Date: Thu, 23 Mar 2023 16:06:36 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: u6FWyUYWz85shmhBk6oQLfg/M8zm2eWyQ5BVJvcgAOGWtiFE4sTXyc/SzCHVE/Xz/QZKY3svqXntp4mnVi2roA==
x-amz-request-id: RZRPV60T6ZK9KDRY
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 23 Mar 2023 15:54:06 GMT
age: 751
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 16:06:37 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d4b0bfc383918a66d073145e50f331a1
f0a37b94890d65361fb926122274b28727e9b110
e465e988225a5743a3f4b1840921c1ce020b9200e41e2e98078e56e87d246f48
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E465E988225A5743A3F4B1840921C1CE020B9200E41E2E98078E56E87D246F48"
Last-Modified: Wed, 22 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21560
Expires: Thu, 23 Mar 2023 22:05:57 GMT
Date: Thu, 23 Mar 2023 16:06:37 GMT
Connection: keep-alive
track.africabetpartners.com/visit/?bta=35640&nci=5689&afp=wcn2uiehpglka8gn2eq06hck&afp1=_pshort_
35.234.86.61302 Moved Temporarily 3 B URL HTTP/1.1 track.africabetpartners.com/visit/?bta=35640&nci=5689&afp=wcn2uiehpglka8gn2eq06hck&afp1=_pshort_
IP 35.234.86.61:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JSON data\012- , ASCII text, with no line terminators
Hash 43e819cfbef2c8fc69c227513504087b
3ea645da8b9c23cfcf4e75e45b2ea79c5ec89c4a
82985617ce795510ad965737efe6b5a76411b26a6d7453ff4ba680e856377bc8
GET /visit/?bta=35640&nci=5689&afp=wcn2uiehpglka8gn2eq06hck&afp1=_pshort_ HTTP/1.1
Host: track.africabetpartners.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 302 Moved Temporarily
Server: rhino-core-shield
Date: Thu, 23 Mar 2023 16:06:37 GMT
Content-Type: application/octet-stream
Content-Length: 3
Connection: keep-alive
Set-cookie: gsb-v=389240; Max-Age=2678400; Path=/; Expires=Sun, 23 Apr 2023 16:06:37 GMT; HttpOnly
expires: 0
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate
surrogate-control: no-store
location: https://gsb.co.tz/#/register?cxd=cxd_35640_389240_|afp0:wcn2uiehpglka8gn2eq06hck|afp1:_pshort_
referer:
X-Cache-Status: MISS
access-control-allow-origin: *, *
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Last-Modified, Retry-After, Content-Length, Alert, Cache-Control, Expires, Content-Type, Backoff, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 23 Mar 2023 15:14:33 GMT
age: 3124
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 18b877ebbad1529e4bd91e12220d91c4
a3d64fb3d9cc1fe3a29b261c4ec9acfe134dfedc
7001d3ef847c7002ac15155f0dfcc0a369f19860e85c8e90530f1e7b2dd88f09
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7001D3EF847C7002AC15155F0DFCC0A369F19860E85C8E90530F1E7B2DD88F09"
Last-Modified: Wed, 22 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10121
Expires: Thu, 23 Mar 2023 18:55:18 GMT
Date: Thu, 23 Mar 2023 16:06:37 GMT
Connection: keep-alive
gsb.co.tz/globalStyle/tracker_theme.css
104.18.33.4200 OK 5.8 kB URL HTTP/2 gsb.co.tz/globalStyle/tracker_theme.css
IP 104.18.33.4:0
File type ASCII text, with CRLF line terminators
Hash 6eba40411b02405eb0fe4bc623a8d5ce
186a33bf6b8539f7cea1c1226144883206ee5637
73bb241e5946fd62ecf301c5e9c180b7ca84d5046a54c17fccb0ddb146f73280
GET /globalStyle/tracker_theme.css HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:37 GMT
content-type: text/css
content-length: 5830
content-encoding: gzip
last-modified: Sun, 06 Jun 2021 12:28:11 GMT
etag: "aeabdd69cf5ad71:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cf-cache-status: HIT
expires: Thu, 23 Mar 2023 20:06:37 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
server: cloudflare
cf-ray: 7ac7ec35da21b509-OSL
X-Firefox-Spdy: h2
gsb.co.tz/styles.101f7a228a69ff645603.css
104.18.33.4200 OK 4.0 kB URL HTTP/2 gsb.co.tz/styles.101f7a228a69ff645603.css
IP 104.18.33.4:0
File type ASCII text, with very long lines (12211), with no line terminators
Hash 7631a1cf75aba254f95640e399ab9d74
96e835b678adce568184efec7842678601f89d82
efd205fb166bbc265c21ba3d8356804609eebd7980afd5f7dbc31c9bddc121a1
GET /styles.101f7a228a69ff645603.css HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:37 GMT
content-type: text/css
content-length: 3967
content-encoding: gzip
last-modified: Mon, 12 Sep 2022 07:04:00 GMT
etag: "ebf2afd575c6d81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cf-cache-status: HIT
expires: Thu, 23 Mar 2023 20:06:37 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
server: cloudflare
cf-ray: 7ac7ec35ea2db509-OSL
X-Firefox-Spdy: h2
gsb.co.tz/globalStyle/mainStyle.css
104.18.33.4200 OK 2.8 kB URL HTTP/2 gsb.co.tz/globalStyle/mainStyle.css
IP 104.18.33.4:0
File type ASCII text, with CRLF, LF line terminators
Hash d8e857aad94b9b7fbb00a3e68707c757
222f2949ccc958909a4124f67dea7b3fcb90a69a
4f16cc2bff728011d9562b3320d4567acedecc674899e01ff796692f1b300d14
GET /globalStyle/mainStyle.css HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:37 GMT
content-type: text/css
content-length: 2787
content-encoding: gzip
last-modified: Thu, 30 Jan 2020 09:07:57 GMT
etag: "82eb63c34cd7d51:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cf-cache-status: HIT
expires: Thu, 23 Mar 2023 20:06:37 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
server: cloudflare
cf-ray: 7ac7ec35ea2ab509-OSL
X-Firefox-Spdy: h2
gsb.co.tz/
104.18.33.4200 OK 3.8 kB IP 104.18.33.4:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (563), with CRLF, LF line terminators
Hash 14fc8201ddc29e099994a463a230627f
1650adf79545fbf20dbcbdfb514b2a93f2ae1551
41b3cf7d0f29db3340d116d9d977d8721b2deaaed47787f855c507b7b2ed9ce5
GET / HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:37 GMT
content-type: text/html
last-modified: Wed, 28 Sep 2022 13:51:08 GMT
vary: Accept-Encoding
x-powered-by: ASP.NET
cf-cache-status: EXPIRED
expires: Thu, 23 Mar 2023 17:06:37 GMT
cache-control: public, max-age=3600
server: cloudflare
cf-ray: 7ac7ec33aeb8b509-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 342da587101df62e3e8f03dc4a87f93d
897c40f31b24adf281b804bbca7f0ffba5b86816
f6b8dde2c506c3ec03517324e93c04058e44e345dae5a52e5f49c97d77455aec
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 16:06:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 342da587101df62e3e8f03dc4a87f93d
897c40f31b24adf281b804bbca7f0ffba5b86816
f6b8dde2c506c3ec03517324e93c04058e44e345dae5a52e5f49c97d77455aec
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 16:06:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 1d54d3c84e73cd1f00a835aa7616c399
e869898915967fb645a7ae3bd711a831329cc792
9cca1d2ea17f54a8688823e6fb8cbb7247c0a808808b382ffdda35b2770a26f8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 16:06:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gsb.co.tz/runtime.26209474bfa8dc87a77c.js
104.18.33.4200 OK 926 B URL HTTP/2 gsb.co.tz/runtime.26209474bfa8dc87a77c.js
IP 104.18.33.4:0
File type ASCII text, with very long lines (1440), with no line terminators
Hash e6cf686f93c1c25d5423fd8b5177fc15
74f5f79b97946bc91a20a1779ffbcbd494b0f531
1aa28477f91e4c10a025c96e5598b1022082c557dd4442332e8b3e797035f29f
GET /runtime.26209474bfa8dc87a77c.js HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:37 GMT
content-type: application/javascript
content-length: 926
content-encoding: gzip
last-modified: Mon, 12 Sep 2022 07:04:00 GMT
etag: "ebf2afd575c6d81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cf-cache-status: HIT
expires: Thu, 23 Mar 2023 20:06:37 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
server: cloudflare
cf-ray: 7ac7ec36dbebb509-OSL
X-Firefox-Spdy: h2
gsb.co.tz/scripts.2a63e66b6aa7f31c390d.js
104.18.33.4200 OK 58 kB URL HTTP/2 gsb.co.tz/scripts.2a63e66b6aa7f31c390d.js
IP 104.18.33.4:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash c7d2482b4a0f28fc01c3c4b6b3490106
6b02fe6a9998ec0c370025c56982bcbb8b6340c0
cd7fdb821545cd468a5f7e176ac03d2aa99c8eba6c6a51ac5d703154bdbb6846
GET /scripts.2a63e66b6aa7f31c390d.js HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:37 GMT
content-type: application/javascript
content-length: 58138
content-encoding: gzip
last-modified: Mon, 12 Sep 2022 07:04:00 GMT
etag: "766b0d575c6d81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cf-cache-status: HIT
expires: Thu, 23 Mar 2023 20:06:37 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
server: cloudflare
cf-ray: 7ac7ec36dbe2b509-OSL
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:300,400,500,700,900&subset=latin,latin-ext
172.217.21.170200 OK 61 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto:300,400,500,700,900&subset=latin,latin-ext
IP 172.217.21.170:0
File type ASCII text, with very long lines (55454)
Hash 75fc2440766cbdf3a6d9db3a3b950adb
f87c1200ad93cde2aa82406317e533e3d6125592
144d2ad39ecbd96087824700b246020b5edad0d08e7a4f0e0cf52b1725333c8a
GET /css?family=Roboto:300,400,500,700,900&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 23 Mar 2023 16:06:37 GMT
date: Thu, 23 Mar 2023 16:06:37 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
gsb.co.tz/assets/online/images/logos/gal_sport_logo.png
104.18.33.4200 OK 2.5 kB URL HTTP/2 gsb.co.tz/assets/online/images/logos/gal_sport_logo.png
IP 104.18.33.4:0
File type PNG image data, 274 x 70, 8-bit colormap, non-interlaced\012- data
Hash e3a4c70c1fc934f71f7fc11ed318c162
8ab0be63abe45bcfd8bfc17fbc0992c9f6e8a482
eed42398c84d259831ae2fbcbb88b31942d249b6b4b3f6e361d601f8ff5fa20d
GET /assets/online/images/logos/gal_sport_logo.png HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:37 GMT
content-type: image/png
content-length: 2457
last-modified: Wed, 25 Oct 2017 11:14:49 GMT
etag: "58a44979824dd31:0"
x-powered-by: ASP.NET
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac7ec35ea2fb509-OSL
X-Firefox-Spdy: h2
gsb.co.tz/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
104.18.33.4200 OK 4.4 kB URL HTTP/2 gsb.co.tz/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
IP 104.18.33.4:0
Hash 36a9b602e2bc90777e4ddebd684bb27c
851b4d5f5258bdcacce8db7df5dc829bd1fece37
49664facb48cf37fa5cfd242b76ce2107f3469e90cf0553b42e9e9efe058474c
GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:37 GMT
content-type: application/javascript
last-modified: Fri, 17 Mar 2023 11:52:23 GMT
etag: W/"64145477-302c"
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac7ec35ea38b509-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sat, 25 Mar 2023 16:06:37 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gsb.co.tz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 20 Mar 2023 14:12:20 GMT
expires: Tue, 19 Mar 2024 14:12:20 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 266058
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.42.172.0101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.42.172.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: VN9O5zBx9immA0krtp4txw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: hRsH0+YWtRWHyPPuOkzNG7l0xwc=
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 097d447e049e3b41f92a4695b1b0c3c7
f39c9ef8d22bee41d940bf719c75b2cfae9291d5
459e0e586fca9a4720e4e25fa59978368c9d373ee86575a7b40d0ef4262043ed
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 16:06:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gsb.co.tz/assets/online/scripts/redirect.js
104.18.33.4200 OK 521 B URL HTTP/2 gsb.co.tz/assets/online/scripts/redirect.js
IP 104.18.33.4:0
File type ASCII text, with CRLF line terminators
Hash cc6c2bdaabc8ef81fd52dc5b0bc8c03f
cda906dca1c00e4b1b702a1a842aea12f28b1a80
152bb9c9dd9c8d187970036d57ebdcf198e5d26ed33c6555f0d6764574b1fdb9
GET /assets/online/scripts/redirect.js HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:38 GMT
content-type: application/javascript
content-length: 521
content-encoding: gzip
last-modified: Thu, 22 Apr 2021 12:34:16 GMT
etag: "c312ddce7337d71:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7ac7ec36dbefb509-OSL
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:400,100,900italic,700italic,500italic,400italic,300italic,100italic,900,700,500,300
172.217.21.170200 OK 1.6 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto:400,100,900italic,700italic,500italic,400italic,300italic,100italic,900,700,500,300
IP 172.217.21.170:0
File type ASCII text, with CRLF, LF line terminators
Hash 58dc4f5d5628b35689b457a26da1a2b0
2b39cdcba0489bdb133258fe04ee180d352bc140
5d7f30939e85b0a69fcc59a025e9a226986379d4970c785d773af803c489650f
GET /css?family=Roboto:400,100,900italic,700italic,500italic,400italic,300italic,100italic,900,700,500,300 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 23 Mar 2023 16:06:37 GMT
date: Thu, 23 Mar 2023 16:06:37 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
gsb.co.tz/assets/online/scripts/detectOldBrowsers.js
104.18.33.4200 OK 861 B URL HTTP/2 gsb.co.tz/assets/online/scripts/detectOldBrowsers.js
IP 104.18.33.4:0
File type HTML document, ASCII text, with CRLF line terminators
Hash 1d3ee1715affa9a07554fd9942da4e3f
c09b2a593c462522fd6ef8219942c67ac84fdb59
c983d9797ff785a1de1af9862924c6291f1dcafe3b6bcc3c5cd9667a02e5c6a7
GET /assets/online/scripts/detectOldBrowsers.js HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:38 GMT
content-type: application/javascript
content-length: 861
content-encoding: gzip
last-modified: Thu, 15 Nov 2018 18:27:56 GMT
etag: "973cdced107dd41:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7ac7ec36dbeeb509-OSL
X-Firefox-Spdy: h2
gsb.co.tz/assets/online/scripts/mobile-detect.js
104.18.33.4200 OK 20 kB URL HTTP/2 gsb.co.tz/assets/online/scripts/mobile-detect.js
IP 104.18.33.4:0
File type ASCII text, with very long lines (38815), with CRLF line terminators
Hash 45b95a4a9cc467acbb2598e87c157d15
20fe115475c3467a064e381d499ee2bc6d627540
2b411bebbee2ac93aef892bb0cdf6c9d64d3afcb4979bee6168a923e20d7b0ed
GET /assets/online/scripts/mobile-detect.js HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:38 GMT
content-type: application/javascript
content-length: 19903
content-encoding: gzip
last-modified: Wed, 11 Dec 2019 06:22:34 GMT
etag: "5fb73560ebafd51:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cf-cache-status: EXPIRED
accept-ranges: bytes
server: cloudflare
cf-ray: 7ac7ec36dbf2b509-OSL
X-Firefox-Spdy: h2
gsb.co.tz/favicon.png
104.18.33.4200 OK 496 B IP 104.18.33.4:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 81173bd1bb3b4583ecee9f8af7fe2f1d
9a31118095c985dcbb164c33cdebbcde2e9010b2
0064845fae600c6ce9efd45c6628a98a30ac69b7fae212e7f7c8be2abc204f8c
GET /favicon.png HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:38 GMT
content-type: image/png
content-length: 496
last-modified: Thu, 30 Jan 2020 09:07:57 GMT
etag: "c07663c34cd7d51:0"
x-powered-by: ASP.NET
cf-cache-status: REVALIDATED
expires: Thu, 23 Mar 2023 20:06:38 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac7ec389f44b509-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash a563513e8fb14fb6796ff13a072cd3db
3e1d51e451b3c450c1213d3fce208e84522b1511
78ecd87f634efd2b5b6644a9d97285807cb26452571be0cef89f6d84dd3b32c0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 16:06:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 23c054d3aee551b6fdc42a5a472a7040
b1a46c12ac7d65c979fd1998bdb243f3dba8f956
9e8b91ab91da9ea20dfb5f90c1c06239d2872b0eb80785534d0c59c3b51de404
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 16:06:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/ns.html?id=GTM-PVXL6CD
142.250.74.168200 OK 265 B URL HTTP/2 www.googletagmanager.com/ns.html?id=GTM-PVXL6CD
IP 142.250.74.168:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 1ee842468a4d996260e1da6e6d2740b5
a1cc13309cab9c23746da9e0ed0cef19e356c71d
e351a941ab2292853dfdc6958d3d5b6724d557fdbece219b6cd55ae0e8f6e915
GET /ns.html?id=GTM-PVXL6CD HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-encoding: br
vary: *
date: Thu, 23 Mar 2023 16:06:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 265
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-PVXL6CD
142.250.74.168200 OK 91 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-PVXL6CD
IP 142.250.74.168:0
File type Unicode text, UTF-8 text, with very long lines (61445)
Hash cd1643a13d97314599da8a6c375cd168
1b8576056a924aab8384cd55ec16190033a099f4
92ce6b740bee6479b250510c9513edfa32e9f4123585ee37bffeb34e880c1e8d
GET /gtm.js?id=GTM-PVXL6CD HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 23 Mar 2023 16:06:38 GMT
expires: Thu, 23 Mar 2023 16:06:38 GMT
cache-control: private, max-age=900
last-modified: Thu, 23 Mar 2023 15:14:09 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 91235
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 23c054d3aee551b6fdc42a5a472a7040
b1a46c12ac7d65c979fd1998bdb243f3dba8f956
9e8b91ab91da9ea20dfb5f90c1c06239d2872b0eb80785534d0c59c3b51de404
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 16:06:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gsb.co.tz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Mar 2023 18:05:11 GMT
expires: Thu, 21 Mar 2024 18:05:11 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 79287
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 8d61da1dc6520f070db6918f07517143
5eabdbe696338f9485c395f4859799f2a48c9d27
370436722deae240016967b0efc6507132b7e80ca90c02c0f4377cf3217db046
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "370436722DEAE240016967B0EFC6507132B7E80CA90C02C0F4377CF3217DB046"
Last-Modified: Wed, 22 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15016
Expires: Thu, 23 Mar 2023 20:16:54 GMT
Date: Thu, 23 Mar 2023 16:06:38 GMT
Connection: keep-alive
widgets.sir.sportradar.com/54c14afdb98aa58f61d11d276c9a2cd7/widgetloader
23.36.79.33200 OK 61 kB URL HTTP/2 widgets.sir.sportradar.com/54c14afdb98aa58f61d11d276c9a2cd7/widgetloader
IP 23.36.79.33:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (41688)
Hash 8b814bacf4765e7ebc5cf1dac7892a40
68cfcd07a1f29f59f5dca8e11c4d94e0a5fb74b0
84c7af45bf71b84a08d0230c1d74e2fe76d4916bf8ad59e3505c8cf5fcad6587
GET /54c14afdb98aa58f61d11d276c9a2cd7/widgetloader HTTP/1.1
Host: widgets.sir.sportradar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-security-policy: frame-ancestors 'self' https://*.sportradar.com https://*.betradar.com http://*.sportradar.com http://*.betradar.com https://*.srcloud.io https://*.sportradar.online https://*.sportradar.dev https://*.betradar.dev
cache-control: public, max-age=120, stale-while-revalidate=60, immutable
etag: "33e548bb648daca271785599c1acf2c8-02c8bc7258faa8ce96ea949944f3f50e"
content-encoding: gzip
x-ing-v: 2
date: Thu, 23 Mar 2023 16:06:39 GMT
content-length: 60604
vary: Accept-Encoding
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
www.googleadservices.com/pagead/conversion/347128863/?value=&label=ZGeqCIjB5McCEJ-Iw6UB&url=https%3A%2F%2Fgsb.co.tz%2F&guid=ON&script=0
142.250.74.162302 Found 42 B URL HTTP/2 www.googleadservices.com/pagead/conversion/347128863/?value=&label=ZGeqCIjB5McCEJ-Iw6UB&url=https%3A%2F%2Fgsb.co.tz%2F&guid=ON&script=0
IP 142.250.74.162:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/conversion/347128863/?value=&label=ZGeqCIjB5McCEJ-Iw6UB&url=https%3A%2F%2Fgsb.co.tz%2F&guid=ON&script=0 HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.googletagmanager.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 23 Mar 2023 16:06:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
location: https://googleads.g.doubleclick.net/pagead/viewthroughconversion/347128863/?value=&label=ZGeqCIjB5McCEJ-Iw6UB&url=https%3A%2F%2Fgsb.co.tz%2F&guid=ON&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=D3kcZMjEBJKwYKDjliA&random=309110350&sscte=1&crd=
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js
142.250.74.170200 OK 30 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js
IP 142.250.74.170:0
File type ASCII text, with very long lines (32180)
Hash f16500423cc2867eff8b773df637c48f
1cd32d75b59a89c3a70274e383151a61ce0594f4
6ca5dc8ad67639c69117ace46c93703cf5fff82824cfc0bada0cf0fb3b2d41d7
GET /ajax/libs/jquery/2.1.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29707
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Mar 2023 13:00:45 GMT
expires: Thu, 21 Mar 2024 13:00:45 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 97554
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
myexternalip.com/json
34.160.111.145200 OK 21 B IP 34.160.111.145:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 7d69c71af0f191e9a72db6153f8018d1
f67c5f2887bc05654b47f76e9621e53a4091aed1
5bac6e06cf0e1ad38c55f9f9d12122272bf4b8157877629fe68cd33fe2133c65
GET /json HTTP/1.1
Host: myexternalip.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gsb.co.tz
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: istio-envoy
date: Thu, 23 Mar 2023 16:06:38 GMT
content-type: text/plain; charset=utf-8
content-length: 21
access-control-allow-origin: *
x-envoy-upstream-service-time: 0
strict-transport-security: max-age=2592000; includeSubDomains
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 8d61da1dc6520f070db6918f07517143
5eabdbe696338f9485c395f4859799f2a48c9d27
370436722deae240016967b0efc6507132b7e80ca90c02c0f4377cf3217db046
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "370436722DEAE240016967B0EFC6507132B7E80CA90C02C0F4377CF3217DB046"
Last-Modified: Wed, 22 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15015
Expires: Thu, 23 Mar 2023 20:16:54 GMT
Date: Thu, 23 Mar 2023 16:06:39 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 15a79d87680ced9baa769b58a70a08c9
5a6bd5d054b135b021d03f3148a249aa274d5930
9e075624b17dbee04f9cd5544c2f0f053f4fadfc49ab3572edd5f350c35a7816
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 16:06:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash a0d3d7099bbc5fed74a6e78e1a3096bf
96afaf8b3ac053577c56aca5f4a20d8655ecb771
c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA"
Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11347
Expires: Thu, 23 Mar 2023 19:15:46 GMT
Date: Thu, 23 Mar 2023 16:06:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash a0d3d7099bbc5fed74a6e78e1a3096bf
96afaf8b3ac053577c56aca5f4a20d8655ecb771
c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA"
Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11347
Expires: Thu, 23 Mar 2023 19:15:46 GMT
Date: Thu, 23 Mar 2023 16:06:39 GMT
Connection: keep-alive
gsb.co.tz/Services/gameapi/api/dynamic/Execute
104.18.33.4200 OK 2.9 kB URL HTTP/2 gsb.co.tz/Services/gameapi/api/dynamic/Execute
IP 104.18.33.4:0
Hash e0159672b59f46324cda5b5189670f9f
4c510542a1cca8711b15fb6517557e1bbaee4713
45f2ad2422f4eed5598ed74216bf0f1311e9777228649d7aff4c5e0ce65f24b7
POST /Services/gameapi/api/dynamic/Execute HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
BrandId: 4
ChannelId: 1
Terminal: gsb.co.tz
Content-Length: 50
Origin: https://gsb.co.tz
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:39 GMT
content-type: application/json; charset=utf-8
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: *
x-powered-by: ASP.NET
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7ac7ec3cee41b509-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
gsb.co.tz/Services/onlineapi/metadata/GetEnums
104.18.33.4200 OK 794 B URL HTTP/2 gsb.co.tz/Services/onlineapi/metadata/GetEnums
IP 104.18.33.4:0
Hash 43b8c97cdc33b2709173ce9fde7458aa
3e444e667525df73fa6e15a2415823ab69f50c28
d3016401e4877880033cb8717f48654751aecd2149c27df3eb0358dc87d03777
POST /Services/onlineapi/metadata/GetEnums HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
BrandId: 4
ChannelKey: cdd61eaf-05f8-4696-b4c0-de6b30e9fa6a
Content-Length: 24
Origin: https://gsb.co.tz
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:39 GMT
content-type: application/json; charset=utf-8
content-encoding: gzip
access-control-allow-credentials: true
access-control-allow-origin: https://gsb.co.tz
x-powered-by: ASP.NET
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7ac7ec3cee49b509-OSL
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash a0d3d7099bbc5fed74a6e78e1a3096bf
96afaf8b3ac053577c56aca5f4a20d8655ecb771
c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA"
Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11347
Expires: Thu, 23 Mar 2023 19:15:46 GMT
Date: Thu, 23 Mar 2023 16:06:39 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5be1b286-007a-44a5-a6fd-872190ecfa0b.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5be1b286-007a-44a5-a6fd-872190ecfa0b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c05bfdf1411a931d8ea9adc64b07bc74
156ef59e53564a4f2b27002b2695fafecd578d82
15d17c0df2d2b0625ecf5f576a7ff630ae8b923b28be354ad23aec6a284a801a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5be1b286-007a-44a5-a6fd-872190ecfa0b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6692
x-amzn-requestid: 3a0f6a8d-89b1-43f4-8a15-8749bdbc047b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CM9d9FcOoAMFaFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641b75f2-3540256d6be3d4f85bba65ea;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 21:41:06 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: PNAVsyfdAHjn5F6Rt1uz1U46QCIGvTCqZatbAurr6Ilu0quHWExuSw==
via: 1.1 e92cc925fc8895560cd0628c67f58828.cloudfront.net (CloudFront), 1.1 aabd01c4a20dae837d162bd972422efc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 22 Mar 2023 21:43:34 GMT
age: 66185
etag: "156ef59e53564a4f2b27002b2695fafecd578d82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08561a1f-1d19-45db-be98-107d6b1ed25d.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08561a1f-1d19-45db-be98-107d6b1ed25d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6f0b9e85381489dcf646c251722b21d4
5f7ea91288a2170bcabdca6be296718c4191eacd
911f803271ad9053ebac3787bdde9b75ec604acc6aa28692cc8e4c5c4fb61483
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08561a1f-1d19-45db-be98-107d6b1ed25d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10480
x-amzn-requestid: 58aa8272-4b4e-4a2f-9d6e-d47f70891c49
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJptHG7JoAMFSwA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a2320-2fd6502b1271d5c13b4ebbe9;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:35:28 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: V_1L8vYf9-uS_-cGgsCstGC__IYpLZjEa0gOlsYgYOWwNJxxXJo83g==
via: 1.1 2241406ac19fffc8f35d6ddef8e22f56.cloudfront.net (CloudFront), 1.1 b23fb37cd7fff033ab21e3284f558a28.cloudfront.net (CloudFront), 1.1 google
date: Wed, 22 Mar 2023 22:09:40 GMT
age: 64619
etag: "5f7ea91288a2170bcabdca6be296718c4191eacd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F93c300c4-e707-428c-9ae5-d4699c20a7ef.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F93c300c4-e707-428c-9ae5-d4699c20a7ef.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 800c2662fd6ab8829a02b7d63084c38d
0917d2c376f8d2af2a436a33ce2bfe1cbdb8b239
76545e9f75dc558fdb7b54550934c7775318fb4150a9309f60e65d982d2e576e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F93c300c4-e707-428c-9ae5-d4699c20a7ef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5950
x-amzn-requestid: ce85112e-428d-4ca1-9dac-1d6c8c6dc74a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CKyF9EI3oAMFtyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a96f2-05c5948d6f74948b1c67d68c;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 05:49:38 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: lnMR6Lh4T37cFhMwb1qXIxjoPBghVFOGUz7HTt65DegMaxlElZxfjQ==
via: 1.1 59456abf79b201034ab5c9cfef7355e2.cloudfront.net (CloudFront), 1.1 599f04a365a179d553682d476509c388.cloudfront.net (CloudFront), 1.1 google
date: Wed, 22 Mar 2023 21:43:32 GMT
age: 66187
etag: "0917d2c376f8d2af2a436a33ce2bfe1cbdb8b239"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F261caab9-983c-4eb1-9fca-fd73dc738e9e.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F261caab9-983c-4eb1-9fca-fd73dc738e9e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4e89d0b1281259e7399294fb5fa19d2b
5035ed41f497c97faefae9cdaf42dc07ab468557
f404d286deab5b4759be6e554e6488faab3b4f7988a86eb57520dac4e0d6a192
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F261caab9-983c-4eb1-9fca-fd73dc738e9e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10284
x-amzn-requestid: e4d2c324-d0b0-436d-9739-29269e62aed0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CM6hjEqtIAMFvXA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641b713c-5a5bd6b60c1f52ab580f1757;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 21:21:00 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: g53sZY66fiEL8H79MzI7c7rqI-c-XxMvgB3myz79aw_lE9Aqgc66LQ==
via: 1.1 ffc1e24c06bfbb135c0a4d240b382048.cloudfront.net (CloudFront), 1.1 6ca7826fb0f4c565b1af9c7737725c48.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Mar 2023 07:32:23 GMT
age: 30856
etag: "5035ed41f497c97faefae9cdaf42dc07ab468557"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a816157-9568-4e7f-a034-14b2f1982949.jpeg
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a816157-9568-4e7f-a034-14b2f1982949.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f4a771935927950222124e14b56046df
d07fe53e4ac41048497b2732c017f6666c3eda9e
4e8388626074646c2336711be0a170ceab367c343648a32d2389dd87640251d0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a816157-9568-4e7f-a034-14b2f1982949.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4912
x-amzn-requestid: d8fcf495-12af-42ae-ad69-0ea07b1a8669
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CM8H3Fl1IAMFYgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641b73cb-01cbd1981a57e53b3d3cde93;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 21:31:55 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: 4xGMCVWy2EXLLN8keteGLQvQjOp6KH97rkn_FK10eyng0-5EudcOig==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 174acb08636ac7d9e9a778bbf1bcbc52.cloudfront.net (CloudFront), 1.1 google
date: Wed, 22 Mar 2023 21:43:33 GMT
etag: "d07fe53e4ac41048497b2732c017f6666c3eda9e"
content-type: image/jpeg
age: 66186
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F772d9c75-9796-494f-9fc4-91d04e2bac53.jpeg
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F772d9c75-9796-494f-9fc4-91d04e2bac53.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 90f64fe111aa6e90ebf52e0335d21b75
4f25bdbffca3803b02c196c38491223684d36b4d
37894e16112286470b7fd2e0bbd5ca74944e6cb5ca6e8aff189c4515122a0d40
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F772d9c75-9796-494f-9fc4-91d04e2bac53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4905
x-amzn-requestid: bdcd62f9-d742-48af-9aa0-b13afc1846ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CM9EnFLIoAMF5cg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641b7550-63fc3df77b023fca782a53ea;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 21:38:24 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: we0zl0U_rfWuSW8_WX8vqLOYOCoeGP-4UUNb0r3f0mEICnLXASqC5A==
via: 1.1 b3cdce1c2fc39b89f45c98c417351f26.cloudfront.net (CloudFront), 1.1 d042f60a962591f741406f28a8170c5a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Mar 2023 03:39:03 GMT
age: 44856
etag: "4f25bdbffca3803b02c196c38491223684d36b4d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash d09ed5b5ccfa429cf3ded7d6634ce586
e1d26f666c2b0ecf75aa847b3ee907c41514b588
b5536c7e81811b1a5ffeb8dcc80a08f14b4c5ed5ddb2c53b4b52f84c721beeed
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 16:06:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/viewthroughconversion/347128863/?value=&label=ZGeqCIjB5McCEJ-Iw6UB&url=https%3A%2F%2Fgsb.co.tz%2F&guid=ON&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=D3kcZMjEBJKwYKDjliA&random=309110350&sscte=1&crd=
142.250.74.34302 Found 42 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/347128863/?value=&label=ZGeqCIjB5McCEJ-Iw6UB&url=https%3A%2F%2Fgsb.co.tz%2F&guid=ON&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=D3kcZMjEBJKwYKDjliA&random=309110350&sscte=1&crd=
IP 142.250.74.34:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/viewthroughconversion/347128863/?value=&label=ZGeqCIjB5McCEJ-Iw6UB&url=https%3A%2F%2Fgsb.co.tz%2F&guid=ON&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=D3kcZMjEBJKwYKDjliA&random=309110350&sscte=1&crd= HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.googletagmanager.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 23 Mar 2023 16:06:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://www.google.com/pagead/1p-conversion/347128863/?value=&label=ZGeqCIjB5McCEJ-Iw6UB&url=https%3A%2F%2Fgsb.co.tz%2F&guid=ON&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=309110350&sscte=1&crd=&is_vtc=1&ocp_id=D3kcZMjEBJKwYKDjliA&random=1045020836
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 23-Mar-2023 16:21:39 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash d09ed5b5ccfa429cf3ded7d6634ce586
e1d26f666c2b0ecf75aa847b3ee907c41514b588
b5536c7e81811b1a5ffeb8dcc80a08f14b4c5ed5ddb2c53b4b52f84c721beeed
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 16:06:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gsb.co.tz/assets/common/contentPages/PlaceHolder-undefined.json
104.18.33.4404 Not Found 168 kB URL HTTP/2 gsb.co.tz/assets/common/contentPages/PlaceHolder-undefined.json
IP 104.18.33.4:0
Size 168 kB (167697 bytes)
Hash 4137fce8568842468edfcb3375f271a0
5d8251ab642af8c17303912fbe6dda2023165235
2566729e09f5c537cbb8413abde25630fad6ea42f99eeae84e516ce6e9537b55
GET /assets/common/contentPages/PlaceHolder-undefined.json HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Thu, 23 Mar 2023 16:06:39 GMT
content-type: text/html
x-powered-by: ASP.NET
cf-cache-status: EXPIRED
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac7ec3cbdf7b509-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash a37ccb2b0d2b6bd75ea76a9535478b74
282cdfc85b1bc6e7b8741fb82ea37844ba831a53
6f9eded96973ad739947a784fddd57298bd3bc8abb3d71eff5c5492826cf254a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 16:06:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gsb.co.tz/assets/online/images/flags/flags-sprites.png
104.18.33.4200 OK 23 kB URL HTTP/2 gsb.co.tz/assets/online/images/flags/flags-sprites.png
IP 104.18.33.4:0
File type PNG image data, 416 x 416, 8-bit colormap, non-interlaced\012- data
Hash e0509080b59b668183971f721b7ee8bb
766198328484fd49296b9e359cb3ba16d110ed0d
cec2bc4072773db77c8096d637a30f9c3ceabec3f78f896489f589b4cc93d5da
GET /assets/online/images/flags/flags-sprites.png HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Cookie: _gcl_au=1.1.1935405556.1679587607
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:39 GMT
content-type: image/png
content-length: 22619
last-modified: Wed, 01 Nov 2017 14:54:15 GMT
etag: "1f4d5f492153d31:0"
x-powered-by: ASP.NET
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac7ec3f9a3ab509-OSL
X-Firefox-Spdy: h2
www.google.com/pagead/1p-conversion/347128863/?value=&label=ZGeqCIjB5McCEJ-Iw6UB&url=https%3A%2F%2Fgsb.co.tz%2F&guid=ON&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=309110350&sscte=1&crd=&is_vtc=1&ocp_id=D3kcZMjEBJKwYKDjliA&random=1045020836
142.250.74.164302 Found 42 B URL HTTP/2 www.google.com/pagead/1p-conversion/347128863/?value=&label=ZGeqCIjB5McCEJ-Iw6UB&url=https%3A%2F%2Fgsb.co.tz%2F&guid=ON&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=309110350&sscte=1&crd=&is_vtc=1&ocp_id=D3kcZMjEBJKwYKDjliA&random=1045020836
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-conversion/347128863/?value=&label=ZGeqCIjB5McCEJ-Iw6UB&url=https%3A%2F%2Fgsb.co.tz%2F&guid=ON&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=309110350&sscte=1&crd=&is_vtc=1&ocp_id=D3kcZMjEBJKwYKDjliA&random=1045020836 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.googletagmanager.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 23 Mar 2023 16:06:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-conversion/347128863/?value=&label=ZGeqCIjB5McCEJ-Iw6UB&url=https%3A%2F%2Fgsb.co.tz%2F&guid=ON&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=309110350&sscte=1&crd=&is_vtc=1&ocp_id=D3kcZMjEBJKwYKDjliA&random=1045020836&ipr=y&prhg=0
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
gsb.co.tz/assets/online/images/search-widget-bar-line.png
104.18.33.4200 OK 16 kB URL HTTP/2 gsb.co.tz/assets/online/images/search-widget-bar-line.png
IP 104.18.33.4:0
File type PNG image data, 479 x 13, 8-bit/color RGBA, non-interlaced\012- data
Hash 2ce07a1b8c2be90d95aef72abe619760
8cc7483d138ff0af83eb4f4eb749d02b242fc063
c010a5f1dcd430682b229c1b8cadf76ec8a30def505192c62ed335414807a8a5
GET /assets/online/images/search-widget-bar-line.png HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Cookie: _gcl_au=1.1.1935405556.1679587607
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:39 GMT
content-type: image/png
content-length: 15596
last-modified: Wed, 25 Oct 2017 11:14:50 GMT
etag: "978c4c79824dd31:0"
x-powered-by: ASP.NET
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac7ec3fba6fb509-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 9f0607231b4674d2bfb5a6798b0b4093
6c14f5c952e413365703144951b09b7126ff8e2d
869816689cb9507d294d69f953e8ea33452a177d405816ad86f729b123ceaa98
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 16:06:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gsb.co.tz/assets/common/contentPages/licence/TZGamingBoard.png
104.18.33.4200 OK 26 kB URL HTTP/2 gsb.co.tz/assets/common/contentPages/licence/TZGamingBoard.png
IP 104.18.33.4:0
File type PNG image data, 200 x 98, 8-bit/color RGBA, non-interlaced\012- data
Hash 6b91bdb67774f9d0032df0ef416a1d09
7e4cbe9cdb6622a79d66ff967331ff2e12abe689
e554d5bed8f68ef5371ff2ced5a966678a7f6e527cc859389774f654f128ca5a
GET /assets/common/contentPages/licence/TZGamingBoard.png HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Cookie: _gcl_au=1.1.1935405556.1679587607
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:39 GMT
content-type: image/png
content-length: 26173
last-modified: Mon, 12 Feb 2018 10:05:53 GMT
etag: "16544e11e9a3d31:0"
x-powered-by: ASP.NET
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac7ec419d62b509-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 8795e5b287f501dc39ee441cd6bd7125
9d420cfc40477940eff7fcfc1aee2c7731fd17a5
a2f6bc52d276e1f73a3e823606457e033bccf8eca8631940a55c298f952451ed
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 16:06:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-conversion/347128863/?value=&label=ZGeqCIjB5McCEJ-Iw6UB&url=https%3A%2F%2Fgsb.co.tz%2F&guid=ON&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=309110350&sscte=1&crd=&is_vtc=1&ocp_id=D3kcZMjEBJKwYKDjliA&random=1045020836&ipr=y&prhg=0
216.58.207.227200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-conversion/347128863/?value=&label=ZGeqCIjB5McCEJ-Iw6UB&url=https%3A%2F%2Fgsb.co.tz%2F&guid=ON&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=309110350&sscte=1&crd=&is_vtc=1&ocp_id=D3kcZMjEBJKwYKDjliA&random=1045020836&ipr=y&prhg=0
IP 216.58.207.227:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-conversion/347128863/?value=&label=ZGeqCIjB5McCEJ-Iw6UB&url=https%3A%2F%2Fgsb.co.tz%2F&guid=ON&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=309110350&sscte=1&crd=&is_vtc=1&ocp_id=D3kcZMjEBJKwYKDjliA&random=1045020836&ipr=y&prhg=0 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.googletagmanager.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 23 Mar 2023 16:06:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash a6cad75209fdd6f267646b8382348c4b
35d993c683277cba55a4a86e15afa0c378d9a1d8
f3490031d4088f3580570dd096c1daf3780b76da85039fa904a35a9f0d6298be
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 16:06:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gsb.co.tz/assets/online/sliderOnline/sliderOnline.json?v=94
104.18.33.4200 OK 2.7 kB URL HTTP/2 gsb.co.tz/assets/online/sliderOnline/sliderOnline.json?v=94
IP 104.18.33.4:0
Hash 4acc9403954c0ad16632f1ba817afdd9
b2b8307609940b20cbb23bb819c1b970acaf4514
f1c31a0c57cdcfd1081b997fb06369eb6010c3c994c637a1e811576387c87118
GET /assets/online/sliderOnline/sliderOnline.json?v=94 HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Cookie: _gcl_au=1.1.1935405556.1679587607
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:39 GMT
content-type: application/json
last-modified: Thu, 23 Jan 2020 14:55:29 GMT
etag: W/"fdf1a827fdd1d51:0"
x-powered-by: ASP.NET
cf-cache-status: MISS
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac7ec3fdaadb509-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
gsb.co.tz/assets/common/contentPages/licence/Gaming-Labs-Certified.jpg
104.18.33.4200 OK 7.1 kB URL HTTP/2 gsb.co.tz/assets/common/contentPages/licence/Gaming-Labs-Certified.jpg
IP 104.18.33.4:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, xresolution=62, yresolution=70, resolutionunit=2, software=paint.net 4.0.13], baseline, precision 8, 164x64, components 3\012- data
Hash 4bdc3c11e2f339d9c61ee8de32463fbe
3f3c18f29cfb4f8500db240434d2dfa4b99b20ec
bc8d702e91f159a5389dd264d9c66083749cfc6401855377cf1cfa77145d6fc5
GET /assets/common/contentPages/licence/Gaming-Labs-Certified.jpg HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Cookie: _gcl_au=1.1.1935405556.1679587607
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:39 GMT
content-type: image/jpeg
content-length: 7099
last-modified: Sun, 25 Mar 2018 09:48:54 GMT
etag: "7627c67c1ec4d31:0"
x-powered-by: ASP.NET
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac7ec419d67b509-OSL
X-Firefox-Spdy: h2
gsb.co.tz/assets/common/images/mobileBeyonic/tigo.png?v=94
104.18.33.4200 OK 2.4 kB URL HTTP/2 gsb.co.tz/assets/common/images/mobileBeyonic/tigo.png?v=94
IP 104.18.33.4:0
File type PNG image data, 80 x 80, 8-bit colormap, non-interlaced\012- data
Hash 57f1b4073f497f3c55b418a68502d2b4
79794c18933bc8d4e832d4049d6f0552a480cd08
55a14a0f290c912ade55d42bb9745e500892c222c6169477984cf929f2d2ccd8
GET /assets/common/images/mobileBeyonic/tigo.png?v=94 HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Cookie: _gcl_au=1.1.1935405556.1679587607
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:39 GMT
content-type: image/png
content-length: 2439
last-modified: Wed, 25 Oct 2017 11:14:49 GMT
etag: "a42a4c79824dd31:0"
x-powered-by: ASP.NET
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac7ec41fe03b509-OSL
X-Firefox-Spdy: h2
gsb.co.tz/assets/common/contentPages/licence/begambleaware.png
104.18.33.4200 OK 9.0 kB URL HTTP/2 gsb.co.tz/assets/common/contentPages/licence/begambleaware.png
IP 104.18.33.4:0
File type PNG image data, 250 x 71, 8-bit/color RGBA, non-interlaced\012- data
Hash 143f0325687c993492c5972e2593b738
f3dbd0def60c5453b50d3421d625d1b25128ca84
55c06af20a69ba602cbe4c6c0f43f0c59360e37bf55e50baa8123508299655ae
GET /assets/common/contentPages/licence/begambleaware.png HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Cookie: _gcl_au=1.1.1935405556.1679587607
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:39 GMT
content-type: image/png
content-length: 8967
last-modified: Sun, 31 Jul 2022 13:28:58 GMT
etag: "81d4947de1a4d81:0"
x-powered-by: ASP.NET
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac7ec419d68b509-OSL
X-Firefox-Spdy: h2
gsb.co.tz/assets/common/images/mobileBeyonic/airtel.png?v=94
104.18.33.4200 OK 2.2 kB URL HTTP/2 gsb.co.tz/assets/common/images/mobileBeyonic/airtel.png?v=94
IP 104.18.33.4:0
File type PNG image data, 80 x 80, 8-bit colormap, non-interlaced\012- data
Hash 462e609ebcf413f4b4e86f3306a5c05d
f1f498a83af705e295263eaff7345a2a29db1067
320d290fb059e7c0293b5f6b106ecfe40042d9008355acff20d582762167993f
GET /assets/common/images/mobileBeyonic/airtel.png?v=94 HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Cookie: _gcl_au=1.1.1935405556.1679587607
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:39 GMT
content-type: image/png
content-length: 2244
last-modified: Wed, 25 Oct 2017 11:14:49 GMT
etag: "53dc4b79824dd31:0"
x-powered-by: ASP.NET
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac7ec41edebb509-OSL
X-Firefox-Spdy: h2
gsb.co.tz/assets/common/images/mobileBeyonic/vodacom.png?v=94
104.18.33.4200 OK 2.4 kB URL HTTP/2 gsb.co.tz/assets/common/images/mobileBeyonic/vodacom.png?v=94
IP 104.18.33.4:0
File type PNG image data, 80 x 80, 8-bit colormap, non-interlaced\012- data
Hash a12d7c38b6f50d88f34be240744d7147
1a5540674ea6882c3589656eecd2d0d4f043da26
8d65b05234e08b90496a441f2ad593e6b96e89c5accb19479368cbee68a5fd6c
GET /assets/common/images/mobileBeyonic/vodacom.png?v=94 HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Cookie: _gcl_au=1.1.1935405556.1679587607
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:39 GMT
content-type: image/png
content-length: 2354
last-modified: Wed, 25 Oct 2017 11:14:50 GMT
etag: "3d3e4c79824dd31:0"
x-powered-by: ASP.NET
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac7ec41fe05b509-OSL
X-Firefox-Spdy: h2
gsb.co.tz/assets/common/images/mobileBeyonic/holotel.png?v=94
104.18.33.4200 OK 5.2 kB URL HTTP/2 gsb.co.tz/assets/common/images/mobileBeyonic/holotel.png?v=94
IP 104.18.33.4:0
File type PNG image data, 120 x 53, 8-bit/color RGBA, non-interlaced\012- data
Hash e17dd40fe18b842b0d3d1bc461c064d6
2bf88aafc025f54b3c6c64a12c57080931cf1c25
c195474c945c10e86fb69f96740c876417a43151ae4499cbd2c5d98e579e339c
GET /assets/common/images/mobileBeyonic/holotel.png?v=94 HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Cookie: _gcl_au=1.1.1935405556.1679587607
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:39 GMT
content-type: image/png
content-length: 5240
last-modified: Thu, 18 Nov 2021 08:38:41 GMT
etag: "13829db057dcd71:0"
x-powered-by: ASP.NET
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac7ec41ede8b509-OSL
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Thu, 23 Mar 2023 16:05:11 GMT
expires: Thu, 23 Mar 2023 18:05:11 GMT
cache-control: public, max-age=7200
age: 89
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
dbax22z1rpn90.cloudfront.net/4/banners/cecc22b41fec40c98d4ae871a7b33280.jpg?a=94
54.230.111.13200 OK 99 kB URL HTTP/2 dbax22z1rpn90.cloudfront.net/4/banners/cecc22b41fec40c98d4ae871a7b33280.jpg?a=94
IP 54.230.111.13:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x164, components 3\012- data
Hash 55d06f0f2ebd706ff25a1b068be76f55
ee49df1ed321f813785c34bcb0cb65026bd66d1f
56b06efff97c111ede6258d89f77f9d472725dac032a51cbb983afa3644b2a04
GET /4/banners/cecc22b41fec40c98d4ae871a7b33280.jpg?a=94 HTTP/1.1
Host: dbax22z1rpn90.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 99367
last-modified: Wed, 22 Dec 2021 15:02:54 GMT
x-amz-version-id: 0IWtKpfGK2UbF9NLpwxHQQ4DEzzmmdxY
accept-ranges: bytes
server: AmazonS3
date: Thu, 23 Mar 2023 16:06:41 GMT
etag: "55d06f0f2ebd706ff25a1b068be76f55"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: N-E6EBSJIJ2vX874PuSOLasdH0u21CKWNJ8JL0usfKonLMwJ7fCk_Q==
X-Firefox-Spdy: h2
gsb.co.tz/Services/onlineapi/Metadata/GetBetTypeTemplate
104.18.33.4200 OK 112 kB URL HTTP/2 gsb.co.tz/Services/onlineapi/Metadata/GetBetTypeTemplate
IP 104.18.33.4:0
Size 112 kB (112433 bytes)
Hash 5bf5f35944f7b8a4387538f7a439d4f3
59c2b54ab9d7661dc465896f3616d9583b763ed1
ca631bcdc158b0aee78bfbc6a8415cd9abf9a0d7e7f837c3aed2965dcf3de4fd
GET /Services/onlineapi/Metadata/GetBetTypeTemplate HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Cookie: _gcl_au=1.1.1935405556.1679587607
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:39 GMT
content-type: application/json; charset=utf-8
content-encoding: gzip
x-powered-by: ASP.NET
last-modified: Thu, 23 Mar 2023 16:06:39 GMT
cf-cache-status: MISS
expires: Fri, 24 Mar 2023 16:06:39 GMT
cache-control: public, max-age=86400
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac7ec3f39bfb509-OSL
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/classic/web-widget-8165-464baaa.js
104.18.72.113200 OK 218 kB URL HTTP/2 static.zdassets.com/web_widget/latest/classic/web-widget-8165-464baaa.js
IP 104.18.72.113:0
File type ASCII text, with very long lines (65307)
Size 218 kB (218374 bytes)
Hash 9a5a5b965c119838d0dbf197c73bdc1e
bfd7fc02530bc5c89e905e54377989f320a7f0e7
dd3368d7910fab912a0a2b3e1dc169dddce7cc47b659a74ec49c2c6c7688ae43
GET /web_widget/latest/classic/web-widget-8165-464baaa.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:39 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: 4VPg3ySaZmwUMT13xUf23y72h4k8NYg1LC2EwUkn8d4AMf8FcPvhlkv2AKvzf0dQ16ji1sZEjTs=
x-amz-request-id: 7G79BTXFZ0669CRJ
x-amz-replication-status: COMPLETED
last-modified: Mon, 20 Mar 2023 04:09:45 GMT
etag: W/"d519ea27f763cb6ec80aeec5b45213a7"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 19 Mar 2024 04:09:44 GMT
x-amz-version-id: QLsw4mnhPcYmQjmjMO_RAgiluOgPlM_d
cf-cache-status: HIT
age: 61877
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dhN8983H9DhaH%2Bc9Pw4t%2FOV8wnAl%2FOzXoYiYfybRXZHALfGVVL9YviYoUotQZJstwLHhm3ftPyX9H88IjM6SMueG1XKgTtUJahnd1nqDQyvZmhs7Vx3SAqvq8D6oaWg%2FRD2cIcA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7ac7ec42ebadb518-OSL
content-encoding: br
X-Firefox-Spdy: h2
dbax22z1rpn90.cloudfront.net/4/banners/a6f668e20b244ab39f58a1883283643e.jpg?a=94
54.230.111.13200 OK 58 kB URL HTTP/2 dbax22z1rpn90.cloudfront.net/4/banners/a6f668e20b244ab39f58a1883283643e.jpg?a=94
IP 54.230.111.13:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 22.4 (Macintosh), datetime=2021:09:22 11:21:11], progressive, precision 8, 314x481, components 3\012- data
Hash 320cdcc2564400832ef4d0ee7d388292
eff9b5ad2bde52a09718970c4bc6a2a039d21c2e
68e2262d60e6b86430dd2364ce7b13e15d90f93c36047ca42e0a5af1731c33bd
GET /4/banners/a6f668e20b244ab39f58a1883283643e.jpg?a=94 HTTP/1.1
Host: dbax22z1rpn90.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 58285
last-modified: Wed, 22 Sep 2021 09:22:15 GMT
x-amz-version-id: hXW9txtAkozGykYjEjH85Lw8PcgdAv.c
accept-ranges: bytes
server: AmazonS3
date: Thu, 23 Mar 2023 16:06:41 GMT
etag: "320cdcc2564400832ef4d0ee7d388292"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 8NezGPzreHOwFvhIPbU9KJxERqdgriYqTn7_a_B69d-OAG52n8hwAg==
X-Firefox-Spdy: h2
gsb.co.tz/assets/common/contentPages/licence/licence.html?v=94
104.18.33.4200 OK 88 kB URL HTTP/2 gsb.co.tz/assets/common/contentPages/licence/licence.html?v=94
IP 104.18.33.4:0
Hash 5057afec66b60eff311fba8251eea1bc
0d9d6a9c863d13f9f8b44bad16310a7042d2d040
f94d0e7f3b496655b6a1fd696c92bce2ecbeb008f6f52ff16d57b41aeff92070
GET /assets/common/contentPages/licence/licence.html?v=94 HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Cookie: _gcl_au=1.1.1935405556.1679587607
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:39 GMT
content-type: text/html
last-modified: Wed, 10 Aug 2022 11:21:30 GMT
vary: Accept-Encoding
x-powered-by: ASP.NET
cf-cache-status: HIT
age: 0
server: cloudflare
cf-ray: 7ac7ec40dc34b509-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
dbax22z1rpn90.cloudfront.net/4/banners/faea8c51603243fd8daed0abb1d63eba.jpg?a=94
54.230.111.13200 OK 56 kB URL HTTP/2 dbax22z1rpn90.cloudfront.net/4/banners/faea8c51603243fd8daed0abb1d63eba.jpg?a=94
IP 54.230.111.13:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x164, components 3\012- data
Hash d37f44d6d6b1f6684a4b749765420f9e
26eb8bf6f9ab496e45204bf0447065d8ba59b1e9
7ea57fe21eea1dd895301c5177f7ac1f4517bb22ffd22fb8f36797e82541af3f
GET /4/banners/faea8c51603243fd8daed0abb1d63eba.jpg?a=94 HTTP/1.1
Host: dbax22z1rpn90.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 56249
last-modified: Mon, 20 Feb 2023 15:03:44 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: y4WZBpBy6NqbvWTYFFL.1mOtrjCf2J8o
accept-ranges: bytes
server: AmazonS3
date: Thu, 23 Mar 2023 16:06:41 GMT
etag: "d37f44d6d6b1f6684a4b749765420f9e"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Aa9yVhC_-71WY2VJ2d0UqMRkpXMhwHSHj4QiiCODc7KIgMH3HiexEA==
X-Firefox-Spdy: h2
dbax22z1rpn90.cloudfront.net/4/banners/1d744b3bc82d4e9d848c8e0b61b560d4.jpg?a=94
54.230.111.13200 OK 32 kB URL HTTP/2 dbax22z1rpn90.cloudfront.net/4/banners/1d744b3bc82d4e9d848c8e0b61b560d4.jpg?a=94
IP 54.230.111.13:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 315x75, components 3\012- data
Hash 6115be117a96bb4de4edacd91dc439e2
421204f48752d0f831e3deb09ba611d8b6ea032d
99616999a8aef3015b0dda3e04f0e6a6966cf1ff206902ae39f1a08f6b4b1fd8
GET /4/banners/1d744b3bc82d4e9d848c8e0b61b560d4.jpg?a=94 HTTP/1.1
Host: dbax22z1rpn90.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 32343
last-modified: Mon, 18 Oct 2021 12:34:56 GMT
x-amz-version-id: zoi2TTpHKLs1n8l._dBKQ88glo9Y_rSA
accept-ranges: bytes
server: AmazonS3
date: Thu, 23 Mar 2023 16:06:41 GMT
etag: "6115be117a96bb4de4edacd91dc439e2"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: UczgggZc6CL-3oA_QDGj7DZXBIPLcN_DLcoPcfFsyqhraIG5FRrBDw==
X-Firefox-Spdy: h2
dbax22z1rpn90.cloudfront.net/4/banners/6f969407ab3f4f4e947caafc4fe07101.jpg?a=94
54.230.111.13200 OK 83 kB URL HTTP/2 dbax22z1rpn90.cloudfront.net/4/banners/6f969407ab3f4f4e947caafc4fe07101.jpg?a=94
IP 54.230.111.13:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x164, components 3\012- data
Hash acdb48e5d211c9e591d03b10f741e677
eed5ed802aa019883abce428a5540a161bf5d50e
9e592f5e62c8e41c10f27c3b2660b48fdcbadf7c7cf8c63b9c53a51d3d8fa46e
GET /4/banners/6f969407ab3f4f4e947caafc4fe07101.jpg?a=94 HTTP/1.1
Host: dbax22z1rpn90.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 82668
last-modified: Fri, 17 Mar 2023 10:57:13 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: 9xQZ41xjElS1pOs9RBI4p_qNTKtj21wQ
accept-ranges: bytes
server: AmazonS3
date: Thu, 23 Mar 2023 16:06:41 GMT
etag: "acdb48e5d211c9e591d03b10f741e677"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: r-NGB4FVwUiQL2FN0n-BoIMa8oPnmKKU0GV3kWp1hP7OZD89gBmk2g==
X-Firefox-Spdy: h2
gsb.co.tz/assets/common/contentPages/licence/licence.html?v=94
104.18.33.4200 OK 87 kB URL HTTP/2 gsb.co.tz/assets/common/contentPages/licence/licence.html?v=94
IP 104.18.33.4:0
Hash bfa7677d64203cf7ed1833cc46c2e6db
f0ed0f1a271515ad33ec235d893c0c524ac9188d
3ebaf0f908577d34d43a4ada782e90565f415b3b7d43b4e3ea4fabb9872fe4bc
GET /assets/common/contentPages/licence/licence.html?v=94 HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Cookie: _gcl_au=1.1.1935405556.1679587607
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:39 GMT
content-type: text/html
last-modified: Wed, 10 Aug 2022 11:21:30 GMT
vary: Accept-Encoding
x-powered-by: ASP.NET
cf-cache-status: MISS
server: cloudflare
cf-ray: 7ac7ec400adcb509-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 5cd8c9b1a21861daf74c130682cea34e
32ceecbbe8fdfc999e4169771cf7633fdaa1f083
328369b9dcb3b3b19b031dd350a02c7cbe5fb250ba4748bf8d055da5342f0837
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 16:06:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-84799877-1&cid=1619060927.1679587608&jid=235173802&gjid=1379813296&_gid=615858102.1679587608&_u=YEBAAEAAAAAAACAAI~&z=287098480
64.233.165.157200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-84799877-1&cid=1619060927.1679587608&jid=235173802&gjid=1379813296&_gid=615858102.1679587608&_u=YEBAAEAAAAAAACAAI~&z=287098480
IP 64.233.165.157:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-84799877-1&cid=1619060927.1679587608&jid=235173802&gjid=1379813296&_gid=615858102.1679587608&_u=YEBAAEAAAAAAACAAI~&z=287098480 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://gsb.co.tz
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://gsb.co.tz
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 23 Mar 2023 16:06:40 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 5cd8c9b1a21861daf74c130682cea34e
32ceecbbe8fdfc999e4169771cf7633fdaa1f083
328369b9dcb3b3b19b031dd350a02c7cbe5fb250ba4748bf8d055da5342f0837
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 16:06:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash aa16ed63ca98382a581b93ac8e4d57d6
f2cb6ef9a8c0c285c2552fc6b54c5c6e2550812c
12a0818620952141a3271d2f742d6c0eed3582e20bcb04de0fd61146f3321bcd
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 23 Mar 2023 16:06:40 GMT
Last-Modified: Thu, 23 Mar 2023 14:40:17 GMT
Server: ECAcc (nya/789D)
X-Cache: Miss from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: s4PvTE_-O0XhPxcUW-j6fZvR57ABjIiTzXc2kElfvFJ4_KXnWGZFYg==
Age: 5183
static.zdassets.com/web_widget/latest/classic/web-widget-locales/classic/en-us-json-464baaa.js
104.18.72.113200 OK 5.5 kB URL HTTP/2 static.zdassets.com/web_widget/latest/classic/web-widget-locales/classic/en-us-json-464baaa.js
IP 104.18.72.113:0
File type Unicode text, UTF-8 text, with very long lines (25838), with no line terminators
Hash 575d63c4fad921254a67e52bac114bcb
d5cc4604d6895d28edffa54c113a5fcd82db3c9c
0e54430ed895548b703892d0944e4c19d766a723c81b0ff0a128eb49ca848e35
GET /web_widget/latest/classic/web-widget-locales/classic/en-us-json-464baaa.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:40 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: YsFQsHoHkcr7uJ3HdrSks3rYC7Ffpyn7uXfMOuL9jtIWbq7KHw+SMadx9XeMvjtv7pUZ5rfvoqw=
x-amz-request-id: YCKT9M4N8S9SPCZ5
x-amz-replication-status: COMPLETED
last-modified: Mon, 20 Mar 2023 04:09:47 GMT
etag: W/"89b68f56c96d15075b04b0ea633eabf1"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 19 Mar 2024 04:09:46 GMT
x-amz-version-id: 4h6QlG3__zMlftY.cuF.dh776KKSEUvw
cf-cache-status: HIT
age: 298818
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yWy1Z1P%2FfR8bTMqvXJycja%2Bccq21QC%2BHfwq8JU5jI9wQolOyOxASaQpHDQfelZBWtjtJCyzMNK7BcqQaCpWcQk4c4BUOHyMpwW1HJDF6qMdnLzn2V3Rn39E4Gnmkk5PRAhRNZt0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7ac7ec44ce1eb518-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/classic/web-widget-classic-464baaa.js
104.18.72.113200 OK 5.4 kB URL HTTP/2 static.zdassets.com/web_widget/latest/classic/web-widget-classic-464baaa.js
IP 104.18.72.113:0
File type ASCII text, with very long lines (13518), with no line terminators
Hash 0e963deb823fbb97f23473aea1142cea
8b729b6b6cbc8755d7bb30d3ab82182eb83fbabf
5f3a71d70911587bcd928538e8d1b9f19c57badeaf4440051a3da52d3e853393
GET /web_widget/latest/classic/web-widget-classic-464baaa.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:39 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: ghBpsDaaDfDnbtKrMIapiT+Le4tJtYJxxErfQJj2SZX/A0VDpQUoMPFqBExBBmHDivX8w2WcBp0=
x-amz-request-id: 7G7EXK25K82TAJ9K
x-amz-replication-status: COMPLETED
last-modified: Mon, 20 Mar 2023 04:09:45 GMT
etag: W/"f4a0023ec8d1997e77ae5e1a8148be2a"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 19 Mar 2024 04:09:44 GMT
x-amz-version-id: LjG5OVNe5oFw3qB5xBggx_.H8o8tPW20
cf-cache-status: HIT
age: 298818
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0nqHuKrmlf6TL%2Fxqm%2BNK1JwRaclJYnuuiDqoLdM6ahqBQ%2FQ2ZdkClJbYdytVl3WAr7xbcNX49jBF6AXFfnnJLHN32JyyAPH9NyqgKwkacfh0pGBz7JaTlBirYReBI8yt9b9D5nA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7ac7ec42bb82b518-OSL
content-encoding: br
X-Firefox-Spdy: h2
tanzania-bo.idobet.com/Services/PushService/signalr/negotiate?clientProtocol=1.5&connectionData=%5B%7B%22name%22%3A%22pushhub%22%7D%5D&_=1679587606660
93.191.197.147200 OK 413 B URL HTTP/1.1 tanzania-bo.idobet.com/Services/PushService/signalr/negotiate?clientProtocol=1.5&connectionData=%5B%7B%22name%22%3A%22pushhub%22%7D%5D&_=1679587606660
IP 93.191.197.147:0
File type JSON data\012- , ASCII text, with very long lines (413), with no line terminators
Hash a2ea0e80a997b3bad25b86bcc807b62c
e55e552b52a37c29bdfece8961e66216a5a2067d
f777ce2b506ff19a5247bd594de44c19b529c399c040f5fdd107a18053ed2097
GET /Services/PushService/signalr/negotiate?clientProtocol=1.5&connectionData=%5B%7B%22name%22%3A%22pushhub%22%7D%5D&_=1679587606660 HTTP/1.1
Host: tanzania-bo.idobet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/plain, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Origin: https://gsb.co.tz
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache
Pragma: no-cache
Transfer-Encoding: chunked
Content-Type: application/json; charset=UTF-8
Expires: -1
Server: Microsoft-IIS/8.5
Access-Control-Allow-Origin: https://gsb.co.tz
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Date: Thu, 23 Mar 2023 16:06:41 GMT
gsb.co.tz/assets/online/images/icon_img/green_flash.gif
104.18.33.4200 OK 1.6 kB URL HTTP/2 gsb.co.tz/assets/online/images/icon_img/green_flash.gif
IP 104.18.33.4:0
File type GIF image data, version 89a, 10 x 10\012- data
Hash 4bb30798899cf79c70b1f5a5ea74dd54
c1ef5b583a7c21f9ec762863784216755db51bef
2c3662ee0a3f2617c060d4664bfe4effbe6285fe936b7ccb30faf7846e066025
GET /assets/online/images/icon_img/green_flash.gif HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Cookie: _gcl_au=1.1.1935405556.1679587607; _ga=GA1.3.1619060927.1679587608; _gid=GA1.3.615858102.1679587608; _gat_UA-84799877-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:41 GMT
content-type: image/gif
content-length: 1606
last-modified: Wed, 25 Oct 2017 11:14:49 GMT
etag: "5c7a4b79824dd31:0"
x-powered-by: ASP.NET
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac7ec4d692ab509-OSL
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/classic/fda6cd35495c75f83508d9d2e77ee33d.mp3
104.18.72.113206 Partial Content 20 kB URL HTTP/2 static.zdassets.com/web_widget/latest/classic/fda6cd35495c75f83508d9d2e77ee33d.mp3
IP 104.18.72.113:0
File type Audio file with ID3 version 2.3.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, JntStereo\012- data
Hash f11ce9e8f40a392830217253fe75d6de
89ba57fcc360da34756c127acba15a8b23267fc6
05069cc62b394b6ecc2daf3c51b4b2ba7f6cc8735988e8234487234af47eceee
GET /web_widget/latest/classic/fda6cd35495c75f83508d9d2e77ee33d.mp3 HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
date: Thu, 23 Mar 2023 16:06:44 GMT
content-type: audio/mpeg; charset=utf-8
content-length: 19698
x-amz-id-2: iVvZDIAt+MQ5c0trgMxknN6OGP+x9TbABcTCVMFILC8oauJKEC9Y4e8ET6VpoWoyAPopiMkj7EQ=
x-amz-request-id: 3ZFBM49TN7NCVY88
x-amz-replication-status: COMPLETED
last-modified: Tue, 28 Feb 2023 12:19:34 GMT
etag: "f11ce9e8f40a392830217253fe75d6de"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 28 Feb 2024 12:19:33 GMT
x-amz-version-id: tInVe6KtJ6RxOVz7xDWOx5U8JOSJ3OZf
cf-cache-status: HIT
age: 1186042
content-range: bytes 0-19697/19698
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=chh0rJ%2BkT0mj%2FLvuoQFcrSeJj8X1Chvd%2B5CTr4%2BnUP%2B59J5X6zBZTisEXVMOUx%2FcNXNZUzr2R3RNZdE%2BOaQwxIGu4xjVQlWoCsPoA04u%2FecF2SHwBLRQOORSPBSzhmhmORW6HCo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7ac7ec608dacb518-OSL
X-Firefox-Spdy: h2
tanzania-bo.idobet.com/Services/PushService/signalr/start?transport=serverSentEvents&clientProtocol=1.5&connectionToken=f9VipsGaAYKsc2wvsbMG%2F5NCPUUTMJjQfI0r%2FxqJpTxUIe22p2%2Bk6ZLORUACX6JCFwkrCuKgZ2cnO2eHTYT7qVE6ksZLIQ8bpjt2ZptjlBVhiTosTfi%2BVDF9riHU3qG6&connectionData=%5B%7B%22name%22%3A%22pushhub%22%7D%5D&_=1679587606661
93.191.197.147200 OK 25 B URL HTTP/1.1 tanzania-bo.idobet.com/Services/PushService/signalr/start?transport=serverSentEvents&clientProtocol=1.5&connectionToken=f9VipsGaAYKsc2wvsbMG%2F5NCPUUTMJjQfI0r%2FxqJpTxUIe22p2%2Bk6ZLORUACX6JCFwkrCuKgZ2cnO2eHTYT7qVE6ksZLIQ8bpjt2ZptjlBVhiTosTfi%2BVDF9riHU3qG6&connectionData=%5B%7B%22name%22%3A%22pushhub%22%7D%5D&_=1679587606661
IP 93.191.197.147:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 4dd99e0b17018069f962b0f5e6eddf28
e6e55484a59dacc3f4cd33e92041f547b992dc02
c50a0366bab0d95bd0dfbbf67ed889b5fd383ee7464a77660088c32e4ef91c20
GET /Services/PushService/signalr/start?transport=serverSentEvents&clientProtocol=1.5&connectionToken=f9VipsGaAYKsc2wvsbMG%2F5NCPUUTMJjQfI0r%2FxqJpTxUIe22p2%2Bk6ZLORUACX6JCFwkrCuKgZ2cnO2eHTYT7qVE6ksZLIQ8bpjt2ZptjlBVhiTosTfi%2BVDF9riHU3qG6&connectionData=%5B%7B%22name%22%3A%22pushhub%22%7D%5D&_=1679587606661 HTTP/1.1
Host: tanzania-bo.idobet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/plain, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Origin: https://gsb.co.tz
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache
Pragma: no-cache
Transfer-Encoding: chunked
Content-Type: application/json; charset=UTF-8
Expires: -1
Server: Microsoft-IIS/8.5
Access-Control-Allow-Origin: https://gsb.co.tz
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Date: Thu, 23 Mar 2023 16:06:44 GMT
gsbtanzania.zendesk.com/embeddable_identify?type=user&data=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%3D%3D
104.16.51.111200 OK 0 B URL HTTP/2 gsbtanzania.zendesk.com/embeddable_identify?type=user&data=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%3D%3D
IP 104.16.51.111:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /embeddable_identify?type=user&data=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%3D%3D HTTP/1.1
Host: gsbtanzania.zendesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gsb.co.tz
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:44 GMT
content-length: 0
access-control-allow-origin: *
vary: Origin, Accept-Encoding
x-zendesk-zorg: yes
x-request-id: 7ac7ec61b8201c02-DUB
last-modified: Thu, 23 Mar 2023 16:06:44 GMT
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5B8aQZbcUx5IAwfz4HTMrvC%2BqBPkUq6VX%2FjlEvnwxpV3IN%2B1%2BEoCoVGRtWy6zU1wh%2FlGxRvY%2FHWRkursKD0Ts3LGetIi%2BuPiqgglVGatdr7G5y7AbW83919Uxt%2FCRBc8oOmaLlf2X6E6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
set-cookie: __cfruid=8757bed46a035aaad3b1d022dd3ba45b669fae54-1679587604; path=/; domain=.gsbtanzania.zendesk.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7ac7ec61b8201c02-OSL
X-Firefox-Spdy: h2
widget-mediator.zopim.com/s/W/ws/6XJBY38f-Bxr-0wV/c/1679587613584
3.123.73.108101 Switching Protocols 0 B URL HTTP/1.1 widget-mediator.zopim.com/s/W/ws/6XJBY38f-Bxr-0wV/c/1679587613584
IP 3.123.73.108:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/W/ws/6XJBY38f-Bxr-0wV/c/1679587613584 HTTP/1.1
Host: widget-mediator.zopim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://gsb.co.tz
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: fiS8ObGjZRyMIwF+DK/kWQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Thu, 23 Mar 2023 16:06:45 GMT
Connection: upgrade
Set-Cookie: AWSALB=QOqRB4VvMi6EjQ5AwmTjd2r9qCn3KnicEVeisnmquLx7WBOXeP4dArXUgGyxKzAbAQL6q8W2+DNJ1GA6Sc7c1SNGavBK2Bb7CfoF7CEpynQ7R3kQ68b+wk23dd6V; Expires=Thu, 30 Mar 2023 16:06:45 GMT; Path=/
AWSALBCORS=QOqRB4VvMi6EjQ5AwmTjd2r9qCn3KnicEVeisnmquLx7WBOXeP4dArXUgGyxKzAbAQL6q8W2+DNJ1GA6Sc7c1SNGavBK2Bb7CfoF7CEpynQ7R3kQ68b+wk23dd6V; Expires=Thu, 30 Mar 2023 16:06:45 GMT; Path=/; SameSite=None; Secure
Upgrade: websocket
Sec-WebSocket-Accept: 8i95ghaOq8FnFSN+8pyXhqoL5yg=
Sec-WebSocket-Version: 13
WebSocket-Server: uWebSockets
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22c3f36a-d800-4eab-8a32-e2b5ef86e386.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22c3f36a-d800-4eab-8a32-e2b5ef86e386.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 412bd6aea60211324e649d7d920601d2
a813976bda850a584b5ab94d9a70bfe0da69aca0
d36ef17fc6ab3cd4e5e43836f7df2c6fdf1781f1bac73e42c9a09e8594f797f9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22c3f36a-d800-4eab-8a32-e2b5ef86e386.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9459
x-amzn-requestid: 1b374321-f2df-404f-ab91-4e73d830fac9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJqmAEhHoAMFgRQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a248c-217d81154ecfe0c44ca70432;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:41:32 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: 3EQiNxuVVZEQZb14f9NC8565Ky3LV0Oj5JWg-_fVc9-B91xgBuHB5Q==
via: 1.1 8ae6af4d17aae7471e5fe2792eb6abcc.cloudfront.net (CloudFront), 1.1 0cf6c59c77f0fff670ae085179adc458.cloudfront.net (CloudFront), 1.1 google
date: Wed, 22 Mar 2023 21:48:05 GMT
age: 65921
etag: "a813976bda850a584b5ab94d9a70bfe0da69aca0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
tanzania-bo.idobet.com/Services/PushService/signalr/connect?transport=serverSentEvents&clientProtocol=1.5&connectionToken=f9VipsGaAYKsc2wvsbMG%2F5NCPUUTMJjQfI0r%2FxqJpTxUIe22p2%2Bk6ZLORUACX6JCFwkrCuKgZ2cnO2eHTYT7qVE6ksZLIQ8bpjt2ZptjlBVhiTosTfi%2BVDF9riHU3qG6&connectionData=%5B%7B%22name%22%3A%22pushhub%22%7D%5D&tid=4
93.191.197.147200 OK 84 B URL HTTP/1.1 tanzania-bo.idobet.com/Services/PushService/signalr/connect?transport=serverSentEvents&clientProtocol=1.5&connectionToken=f9VipsGaAYKsc2wvsbMG%2F5NCPUUTMJjQfI0r%2FxqJpTxUIe22p2%2Bk6ZLORUACX6JCFwkrCuKgZ2cnO2eHTYT7qVE6ksZLIQ8bpjt2ZptjlBVhiTosTfi%2BVDF9riHU3qG6&connectionData=%5B%7B%22name%22%3A%22pushhub%22%7D%5D&tid=4
IP 93.191.197.147:0
Hash 850b7bbe287d2a036460cddfd825f38f
1bd0d119fa9e20eb2dfdabf764acf4cd2e4ff0c7
602daa2dc7729b07f0c0a40e9cdf92b68cbdccfaa0a96dc5d1cf19c117fccbec
GET /Services/PushService/signalr/connect?transport=serverSentEvents&clientProtocol=1.5&connectionToken=f9VipsGaAYKsc2wvsbMG%2F5NCPUUTMJjQfI0r%2FxqJpTxUIe22p2%2Bk6ZLORUACX6JCFwkrCuKgZ2cnO2eHTYT7qVE6ksZLIQ8bpjt2ZptjlBVhiTosTfi%2BVDF9riHU3qG6&connectionData=%5B%7B%22name%22%3A%22pushhub%22%7D%5D&tid=4 HTTP/1.1
Host: tanzania-bo.idobet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/event-stream
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gsb.co.tz
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: no-cache
Pragma: no-cache
Transfer-Encoding: chunked
Content-Type: text/event-stream
Expires: -1
Server: Microsoft-IIS/8.5
Access-Control-Allow-Origin: https://gsb.co.tz
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Date: Thu, 23 Mar 2023 16:06:42 GMT
gsb.co.tz/assets/online/footer/footer.json?v=94
104.18.33.4200 OK 0 B URL HTTP/2 gsb.co.tz/assets/online/footer/footer.json?v=94
IP 104.18.33.4:0
GET /assets/online/footer/footer.json?v=94 HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Cookie: _gcl_au=1.1.1935405556.1679587607
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:39 GMT
content-type: application/json
last-modified: Wed, 15 Jun 2022 09:53:19 GMT
etag: W/"a2e3dfbd9d80d81:0"
x-powered-by: ASP.NET
cf-cache-status: MISS
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac7ec400adbb509-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
gsb.co.tz/assets/common/contentPages/PlaceHolder.json
104.18.33.4200 OK 0 B URL HTTP/2 gsb.co.tz/assets/common/contentPages/PlaceHolder.json
IP 104.18.33.4:0
GET /assets/common/contentPages/PlaceHolder.json HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Cookie: _gcl_au=1.1.1935405556.1679587607
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:39 GMT
content-type: application/json
last-modified: Tue, 13 Aug 2019 09:25:28 GMT
etag: W/"395db5bb951d51:0"
x-powered-by: ASP.NET
cf-cache-status: MISS
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac7ec3e78abb509-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
gsb.co.tz/Services/onlineapi/User/GetUserByToken
104.18.33.4200 OK 0 B URL HTTP/2 gsb.co.tz/Services/onlineapi/User/GetUserByToken
IP 104.18.33.4:0
POST /Services/onlineapi/User/GetUserByToken HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
BrandId: 4
ChannelKey: cdd61eaf-05f8-4696-b4c0-de6b30e9fa6a
Content-Length: 24
Origin: https://gsb.co.tz
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:39 GMT
content-type: application/json; charset=utf-8
content-encoding: gzip
access-control-allow-credentials: true
access-control-allow-origin: https://gsb.co.tz
x-powered-by: ASP.NET
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7ac7ec3d3eb9b509-OSL
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/classic/web-widget-5324-464baaa.js
104.18.72.113200 OK 0 B URL HTTP/2 static.zdassets.com/web_widget/latest/classic/web-widget-5324-464baaa.js
IP 104.18.72.113:0
GET /web_widget/latest/classic/web-widget-5324-464baaa.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:39 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: 98roJ0gwmAzvL0JPJrIx9ldZ3ZkbN0LDb+cKYyCw3HBXaiTiAMAS9hUKP4I417otZ72C+xiTK7I=
x-amz-request-id: 7G7DS3M91QN842VG
x-amz-replication-status: COMPLETED
last-modified: Mon, 20 Mar 2023 04:09:45 GMT
etag: W/"b29e77a9599607885e686581bca36843"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 19 Mar 2024 04:09:44 GMT
x-amz-version-id: zLgSMYGPtgiK5wq5m3jGdMDNb5k7Xzs9
cf-cache-status: HIT
age: 298818
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iNZ3DLgbcyEg7YgJg4uDJPqMtS5Qh%2BmkA%2B55rp0KMCvs0Uouiinc1DUEQ%2BTIKLE8F39IQO5Il3unQuvAXwZFCVF4i1w8VehoM8vWsTer7aqcAheq%2Bsc8TFLRMGoBzPDpxYQd28w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7ac7ec42ebb1b518-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/classic/web-widget-chat-sdk-464baaa.js
104.18.72.113200 OK 0 B URL HTTP/2 static.zdassets.com/web_widget/latest/classic/web-widget-chat-sdk-464baaa.js
IP 104.18.72.113:0
GET /web_widget/latest/classic/web-widget-chat-sdk-464baaa.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:40 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: ZjCxuNTJerUilLCAj6w65JFGV/pBrUsMo7jxLfHBqvCJxSSoypoRh9CubRaT+5+oifYu4qSS+b4=
x-amz-request-id: 7G7BW0SV55AHVM8M
x-amz-replication-status: COMPLETED
last-modified: Mon, 20 Mar 2023 04:09:45 GMT
etag: W/"d366c0776c2bacba354d40e564c3d3e6"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 19 Mar 2024 04:09:44 GMT
x-amz-version-id: pEh2u3XFQUvh6SDH6HCg7qjgmTn08OFy
cf-cache-status: HIT
age: 298818
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2iRYkz0utXBBPK8snKdVPXJqR2NAhDIH42XDK0exGvZwG1Fjpz80KsGd0gFVamGHVWF4FtlJbemmdrdwJ1yUNh%2ByVeTsHPqbUfkfpS%2BffsdrJfFPb9za7nV0rWWhDS6t9Xirm2c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7ac7ec450e9fb518-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.zdassets.com/ekr/snippet.js?key=930fb983-a1db-452c-9161-3602663540d2
104.18.72.113200 OK 0 B URL HTTP/2 static.zdassets.com/ekr/snippet.js?key=930fb983-a1db-452c-9161-3602663540d2
IP 104.18.72.113:0
GET /ekr/snippet.js?key=930fb983-a1db-452c-9161-3602663540d2 HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:39 GMT
content-type: application/javascript
x-amz-id-2: vkl1julFjVVCeNmySgpr0CNRnNfJywI5yFKEAhmXoe/uWDYwbA4IhGFy+L8LmCWyQKx50gi/QJef+yScKd3Lnw==
x-amz-request-id: YZEQVQ41XEPXQ8NK
x-amz-replication-status: PENDING
last-modified: Fri, 17 Mar 2023 01:24:00 GMT
etag: W/"35755063f184195a50a9c07a2c71693a"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600, s-maxage=60
x-amz-version-id: PBHdtxERTX7HUmm2o8dmki0ZTZF0krHp
cf-cache-status: HIT
age: 39
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EKqZcn8MgmQTnDFThPO7m%2FKd0OhMMIKSm7p6V259ruFt%2FlrSQb7YVxsCqYVyodOIruqcOEMsODByQxCr1bENsT8U07I%2FuxaNFItZqyA7TZ9Wd3RncO1Cy%2BGLC%2BI1KOM4DvHobGE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7ac7ec3e6e8fb518-OSL
content-encoding: br
X-Firefox-Spdy: h2
gsb.co.tz/assets/online/config.json
104.18.33.4200 OK 0 B URL HTTP/2 gsb.co.tz/assets/online/config.json
IP 104.18.33.4:0
GET /assets/online/config.json HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:39 GMT
content-type: application/json
last-modified: Wed, 15 Jun 2022 09:53:38 GMT
etag: W/"60792bc99d80d81:0"
x-powered-by: ASP.NET
cf-cache-status: EXPIRED
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac7ec3cbde9b509-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
gsb.co.tz/assets/online/config.json?a=1679587607269
104.18.33.4200 OK 0 B URL HTTP/2 gsb.co.tz/assets/online/config.json?a=1679587607269
IP 104.18.33.4:0
GET /assets/online/config.json?a=1679587607269 HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:39 GMT
content-type: application/json
last-modified: Wed, 15 Jun 2022 09:53:47 GMT
etag: W/"84acd2ce9d80d81:0"
x-powered-by: ASP.NET
cf-cache-status: MISS
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac7ec3d4ec6b509-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
dbax22z1rpn90.cloudfront.net/4/translations/en-US_online_1663747549902.json
54.230.111.13200 OK 0 B URL HTTP/2 dbax22z1rpn90.cloudfront.net/4/translations/en-US_online_1663747549902.json
IP 54.230.111.13:0
GET /4/translations/en-US_online_1663747549902.json HTTP/1.1
Host: dbax22z1rpn90.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gsb.co.tz
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 1800
last-modified: Wed, 21 Sep 2022 08:05:51 GMT
x-amz-version-id: i_AXsQz.5yr.LmEyubhugbyMsH5Uhaok
server: AmazonS3
content-encoding: gzip
date: Thu, 23 Mar 2023 16:06:40 GMT
etag: W/"3c6792b8922f4a571c11832e09215208"
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: RefreshHit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: FngNMnyn9-qzeR6UzNqI7E72_sEKsapeG3CbpQEw08WXzvhBWupGrw==
X-Firefox-Spdy: h2
gsb.co.tz/Services/onlineapi/Event/GetEvents?bettypeids=-1
104.18.33.4200 OK 0 B URL HTTP/2 gsb.co.tz/Services/onlineapi/Event/GetEvents?bettypeids=-1
IP 104.18.33.4:0
GET /Services/onlineapi/Event/GetEvents?bettypeids=-1 HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Cookie: _gcl_au=1.1.1935405556.1679587607
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:40 GMT
content-type: application/json; charset=utf-8
content-encoding: gzip
x-powered-by: ASP.NET
last-modified: Thu, 23 Mar 2023 16:06:40 GMT
cf-cache-status: MISS
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac7ec418d45b509-OSL
X-Firefox-Spdy: h2
gsb.co.tz/Services/onlineapi/event/geteventsupdates?lastTimestamp=1679587557898
104.18.33.4200 OK 0 B URL HTTP/2 gsb.co.tz/Services/onlineapi/event/geteventsupdates?lastTimestamp=1679587557898
IP 104.18.33.4:0
GET /Services/onlineapi/event/geteventsupdates?lastTimestamp=1679587557898 HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Cookie: _gcl_au=1.1.1935405556.1679587607; _ga=GA1.3.1619060927.1679587608; _gid=GA1.3.615858102.1679587608; _gat_UA-84799877-1=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:42 GMT
content-type: application/json; charset=utf-8
content-encoding: gzip
x-powered-by: ASP.NET
last-modified: Thu, 23 Mar 2023 16:06:42 GMT
cf-cache-status: MISS
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac7ec52c9d1b509-OSL
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/classic/web-widget-chat-incoming-message-notification-464baaa.js
104.18.72.113200 OK 0 B URL HTTP/2 static.zdassets.com/web_widget/latest/classic/web-widget-chat-incoming-message-notification-464baaa.js
IP 104.18.72.113:0
GET /web_widget/latest/classic/web-widget-chat-incoming-message-notification-464baaa.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:44 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: kziLBO8O5WA4qQQ6OwzP4pSMkbqucNov1ab7S44Ip3IzKxEL8Ry0uu3vzZqVHXT4gGIX225GRmo=
x-amz-request-id: 1NRSFC4CHE4J9XYW
x-amz-replication-status: COMPLETED
last-modified: Mon, 20 Mar 2023 04:09:45 GMT
etag: W/"659635f5ad1b6653645380f46aa42236"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 19 Mar 2024 04:09:44 GMT
x-amz-version-id: .WoFMJxkVxHVViA0lXecQA2eV0.p7SzR
cf-cache-status: HIT
age: 298822
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YTxsHx2mYojCI5ACwxNPJ27xWByIVVy29a%2B9y46S3OrSsZG4u07IrPXvUKhLbDV%2BFlDEK9cjIA%2FKqAdAizCKLB%2BTK4HpFiRVqpAPxq0oW0M7SozwOuIFk1c5tdzg5cEr%2FSkMSaQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7ac7ec5e6a78b518-OSL
content-encoding: br
X-Firefox-Spdy: h2
gsbtanzania.zendesk.com/embeddable/config
104.16.51.111200 OK 0 B URL HTTP/2 gsbtanzania.zendesk.com/embeddable/config
IP 104.16.51.111:0
GET /embeddable/config HTTP/1.1
Host: gsbtanzania.zendesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gsb.co.tz/
Origin: https://gsb.co.tz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:39 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-expose-headers:
access-control-max-age: 7200
cache-control: public, max-age=60, stale-while-revalidate=600, stale-if-error=3600
x-zendesk-origin-server: embeddable-app-server-6499cf95bd-v8wfg
x-request-id: 7ac7ec420da21c02-DUB
x-runtime: 0.001877
vary: Origin, Accept-Encoding
x-cached: MISS
last-modified: Tue, 21 Mar 2023 17:48:53 GMT
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1xCRPAHKN2cjCSfqGxEHJIs3cGhGYSCELDOqKEHYmCuD7I4ocXotjmXJAgd1Oi0FQfUTkSYyCvQG%2BliPkP5Jpr%2Bs3csjeHhEDKObamd4owYmMbe3b35qmkuc%2BinDk7E9EXqq%2BSHSICaE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
set-cookie: __cfruid=3907df6428c857920e75c74d0759811552f3bcdc-1679587599; path=/; domain=.gsbtanzania.zendesk.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7ac7ec420da21c02-OSL
content-encoding: br
X-Firefox-Spdy: h2
gsb.co.tz/main.5f84e411cd43dd286404.js
104.18.33.4200 OK 0 B URL HTTP/2 gsb.co.tz/main.5f84e411cd43dd286404.js
IP 104.18.33.4:0
GET /main.5f84e411cd43dd286404.js HTTP/1.1
Host: gsb.co.tz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gsb.co.tz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 16:06:37 GMT
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 12 Sep 2022 07:13:45 GMT
etag: "c61f913277c6d81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cf-cache-status: HIT
expires: Thu, 23 Mar 2023 20:06:37 GMT
cache-control: public, max-age=14400
server: cloudflare
cf-ray: 7ac7ec36dbe0b509-OSL
X-Firefox-Spdy: h2