ballysdover.pcwebserv.com/admin/login
200 OK 583 kB URL User Request GET HTTP/1.1 ballysdover.pcwebserv.com/admin/login
IP
Certificate IssuerLet's Encrypt
Subjectballysdover.pcwebserv.com
Fingerprint27:E5:4D:DE:F6:A2:1A:F5:69:2F:87:CA:6C:38:62:9A:DE:1A:0F:2F
ValidityThu, 03 Aug 2023 19:39:17 GMT - Wed, 01 Nov 2023 19:39:16 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (882)
Size 583 kB (582661 bytes)
Hash ad7edb422a2b0261a0dbbc851ae78e2c
415563465da53e3aa0c427dc1c51a9efd42b73e9
6cd6fe2bbe69480579f2d0e75a81014529c3cc7ed590acfd8915e8e1fd215cd2
GET /admin/login HTTP/1.1
Host: ballysdover.pcwebserv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 15 Aug 2023 16:24:35 GMT
Server: Apache/2.4.52 () OpenSSL/1.0.2k-fips PHP/7.4.33
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
X-Powered-By: PHP/7.4.33
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6IkdVczQvMEVvRWxvY0xlbDFub3FJQ1E9PSIsInZhbHVlIjoiT29wTU9MdFRqVUQ4VEQ2Q3h5eGRpc2swTDgxYkFDMTdOZDhTellIQ2MxMktmTy9HemYxMXluSjcwUlR3T21xd0MzLyt6WUJIajB5ZUZOZ3haZm4zMU9FTlpDdXVvajlBVnc1WEl6YUZ6N25kM0dRVS9zblh1N1g0OEg2ZndtSU8iLCJtYWMiOiI0MGMxNzAzYWY1MjFmNjA0NGVmZGE4NWQ5MjlkOTM5OWYwNjk4NWE5Y2I1ZmFhNTdiYTI1MDVkYTlmOWI4YTE2In0%3D; expires=Tue, 15-Aug-2023 18:24:36 GMT; Max-Age=7200; path=/
ballysdover_session=eyJpdiI6Im1nVzBFYXNFOEdEK3BiQk5HazEzU2c9PSIsInZhbHVlIjoiTWVJeE41TGZOY1RxbUN6WVFlMWcyZi94dWpXaFg3YWVOU1dFa0IxRnFxOTRkVThqWnNrUTJVVisvcUJWNXZqa1JDeDl1b2dQMVJpK3RmZE1Kb3FSZ3RMbmFaWXAxYTVXa0szWE9jY1dKclQ0WkI3Vy83TXI2U0dHakgwSkJ6Y1YiLCJtYWMiOiJmYTg3NTc4NDhkY2U5M2RlZjcwYzBkZWEzOWIwNmZhNmFmOWFkYWY5MTg1OTdjYzYzNGQ0OTU5NWVkODRiNmEyIn0%3D; expires=Tue, 15-Aug-2023 18:24:36 GMT; Max-Age=7200; path=/; httponly
Keep-Alive: timeout=5, max=100
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ocsp.pki.goog/gts1c3
471 B IP
Hash 694134013010daaaba4a1eef195e3823
bcbbac8b0708a4a01860c1a24db98de8ebda96d2
89e2c01dca39cb8d0ec2766fa3bd8cf81459c765619b8aa26cca6bb9bd38f3a5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 15 Aug 2023 16:24:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
472 B IP
Hash 0dec02e53fa6b616558f00c1154301e0
0a907bf7d072592a9a29d00e2bf280b66275952a
7252c9e92c54147847b3a291ec9a06f9aed1ed36f3d23c2cbedd882b79ba8be7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 15 Aug 2023 16:24:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ballysdover.pcwebserv.com/weekender_assets/css/modal_lightbox.min.css
200 OK 3.4 kB URL GET HTTP/1.1 ballysdover.pcwebserv.com/weekender_assets/css/modal_lightbox.min.css
IP
Requested by https://ballysdover.pcwebserv.com/admin/login
Certificate IssuerLet's Encrypt
Subjectballysdover.pcwebserv.com
Fingerprint27:E5:4D:DE:F6:A2:1A:F5:69:2F:87:CA:6C:38:62:9A:DE:1A:0F:2F
ValidityThu, 03 Aug 2023 19:39:17 GMT - Wed, 01 Nov 2023 19:39:16 GMT
Hash 4b8100a1bf5f5e71b06cf104a2df72e1
bf5b381e8d20d1c538778706155307b2420422c3
efe40705cc2bac3d89505c2a7ebddee9f14e9cc04a8746c0fc78391c1e94ee5b
GET /weekender_assets/css/modal_lightbox.min.css HTTP/1.1
Host: ballysdover.pcwebserv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ballysdover.pcwebserv.com/admin/login
Cookie: XSRF-TOKEN=eyJpdiI6IkdVczQvMEVvRWxvY0xlbDFub3FJQ1E9PSIsInZhbHVlIjoiT29wTU9MdFRqVUQ4VEQ2Q3h5eGRpc2swTDgxYkFDMTdOZDhTellIQ2MxMktmTy9HemYxMXluSjcwUlR3T21xd0MzLyt6WUJIajB5ZUZOZ3haZm4zMU9FTlpDdXVvajlBVnc1WEl6YUZ6N25kM0dRVS9zblh1N1g0OEg2ZndtSU8iLCJtYWMiOiI0MGMxNzAzYWY1MjFmNjA0NGVmZGE4NWQ5MjlkOTM5OWYwNjk4NWE5Y2I1ZmFhNTdiYTI1MDVkYTlmOWI4YTE2In0%3D; ballysdover_session=eyJpdiI6Im1nVzBFYXNFOEdEK3BiQk5HazEzU2c9PSIsInZhbHVlIjoiTWVJeE41TGZOY1RxbUN6WVFlMWcyZi94dWpXaFg3YWVOU1dFa0IxRnFxOTRkVThqWnNrUTJVVisvcUJWNXZqa1JDeDl1b2dQMVJpK3RmZE1Kb3FSZ3RMbmFaWXAxYTVXa0szWE9jY1dKclQ0WkI3Vy83TXI2U0dHakgwSkJ6Y1YiLCJtYWMiOiJmYTg3NTc4NDhkY2U5M2RlZjcwYzBkZWEzOWIwNmZhNmFmOWFkYWY5MTg1OTdjYzYzNGQ0OTU5NWVkODRiNmEyIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 15 Aug 2023 16:24:36 GMT
Server: Apache/2.4.52 () OpenSSL/1.0.2k-fips PHP/7.4.33
Last-Modified: Mon, 25 Jul 2022 22:01:26 GMT
ETag: "d28-5e4a853458d0e"
Accept-Ranges: bytes
Content-Length: 3368
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
ballysdover.pcwebserv.com/HeaderFooterAssets/combined.js
200 OK 11 kB URL GET HTTP/1.1 ballysdover.pcwebserv.com/HeaderFooterAssets/combined.js
IP
Requested by https://ballysdover.pcwebserv.com/admin/login
Certificate IssuerLet's Encrypt
Subjectballysdover.pcwebserv.com
Fingerprint27:E5:4D:DE:F6:A2:1A:F5:69:2F:87:CA:6C:38:62:9A:DE:1A:0F:2F
ValidityThu, 03 Aug 2023 19:39:17 GMT - Wed, 01 Nov 2023 19:39:16 GMT
File type Unicode text, UTF-8 (with BOM) text
Hash 5f4ccb3d27b275b38ba46ae3c99a7122
1d0815b6b8ebba18e3dfd4c119ca9c7cd5a6f44c
c70cdf3678a66c5fa1c7cba9631e470ef509c2f874b2e82e107a4128932fad42
GET /HeaderFooterAssets/combined.js HTTP/1.1
Host: ballysdover.pcwebserv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ballysdover.pcwebserv.com/admin/login
Cookie: XSRF-TOKEN=eyJpdiI6IkdVczQvMEVvRWxvY0xlbDFub3FJQ1E9PSIsInZhbHVlIjoiT29wTU9MdFRqVUQ4VEQ2Q3h5eGRpc2swTDgxYkFDMTdOZDhTellIQ2MxMktmTy9HemYxMXluSjcwUlR3T21xd0MzLyt6WUJIajB5ZUZOZ3haZm4zMU9FTlpDdXVvajlBVnc1WEl6YUZ6N25kM0dRVS9zblh1N1g0OEg2ZndtSU8iLCJtYWMiOiI0MGMxNzAzYWY1MjFmNjA0NGVmZGE4NWQ5MjlkOTM5OWYwNjk4NWE5Y2I1ZmFhNTdiYTI1MDVkYTlmOWI4YTE2In0%3D; ballysdover_session=eyJpdiI6Im1nVzBFYXNFOEdEK3BiQk5HazEzU2c9PSIsInZhbHVlIjoiTWVJeE41TGZOY1RxbUN6WVFlMWcyZi94dWpXaFg3YWVOU1dFa0IxRnFxOTRkVThqWnNrUTJVVisvcUJWNXZqa1JDeDl1b2dQMVJpK3RmZE1Kb3FSZ3RMbmFaWXAxYTVXa0szWE9jY1dKclQ0WkI3Vy83TXI2U0dHakgwSkJ6Y1YiLCJtYWMiOiJmYTg3NTc4NDhkY2U5M2RlZjcwYzBkZWEzOWIwNmZhNmFmOWFkYWY5MTg1OTdjYzYzNGQ0OTU5NWVkODRiNmEyIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 15 Aug 2023 16:24:36 GMT
Server: Apache/2.4.52 () OpenSSL/1.0.2k-fips PHP/7.4.33
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 27 Jun 2023 20:23:37 GMT
ETag: "2992-5ff223e0038e7"
Accept-Ranges: bytes
Content-Length: 10642
Keep-Alive: timeout=5, max=100
Content-Type: application/javascript
ballysdover.pcwebserv.com/weekender_assets/css/modal_slick.css
200 OK 1.8 kB URL GET HTTP/1.1 ballysdover.pcwebserv.com/weekender_assets/css/modal_slick.css
IP
Requested by https://ballysdover.pcwebserv.com/admin/login
Certificate IssuerLet's Encrypt
Subjectballysdover.pcwebserv.com
Fingerprint27:E5:4D:DE:F6:A2:1A:F5:69:2F:87:CA:6C:38:62:9A:DE:1A:0F:2F
ValidityThu, 03 Aug 2023 19:39:17 GMT - Wed, 01 Nov 2023 19:39:16 GMT
Hash f38b2db10e01b1572732a3191d538707
a94a059b3178b4adec09e3281ace2819a30095a4
de1e399b07289f3b0a8d35142e363e128124a1185770e214e25e58030dad48e5
GET /weekender_assets/css/modal_slick.css HTTP/1.1
Host: ballysdover.pcwebserv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ballysdover.pcwebserv.com/admin/login
Cookie: XSRF-TOKEN=eyJpdiI6IkdVczQvMEVvRWxvY0xlbDFub3FJQ1E9PSIsInZhbHVlIjoiT29wTU9MdFRqVUQ4VEQ2Q3h5eGRpc2swTDgxYkFDMTdOZDhTellIQ2MxMktmTy9HemYxMXluSjcwUlR3T21xd0MzLyt6WUJIajB5ZUZOZ3haZm4zMU9FTlpDdXVvajlBVnc1WEl6YUZ6N25kM0dRVS9zblh1N1g0OEg2ZndtSU8iLCJtYWMiOiI0MGMxNzAzYWY1MjFmNjA0NGVmZGE4NWQ5MjlkOTM5OWYwNjk4NWE5Y2I1ZmFhNTdiYTI1MDVkYTlmOWI4YTE2In0%3D; ballysdover_session=eyJpdiI6Im1nVzBFYXNFOEdEK3BiQk5HazEzU2c9PSIsInZhbHVlIjoiTWVJeE41TGZOY1RxbUN6WVFlMWcyZi94dWpXaFg3YWVOU1dFa0IxRnFxOTRkVThqWnNrUTJVVisvcUJWNXZqa1JDeDl1b2dQMVJpK3RmZE1Kb3FSZ3RMbmFaWXAxYTVXa0szWE9jY1dKclQ0WkI3Vy83TXI2U0dHakgwSkJ6Y1YiLCJtYWMiOiJmYTg3NTc4NDhkY2U5M2RlZjcwYzBkZWEzOWIwNmZhNmFmOWFkYWY5MTg1OTdjYzYzNGQ0OTU5NWVkODRiNmEyIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 15 Aug 2023 16:24:36 GMT
Server: Apache/2.4.52 () OpenSSL/1.0.2k-fips PHP/7.4.33
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 25 Jul 2022 22:01:26 GMT
ETag: "6f0-5e4a853458d0e"
Accept-Ranges: bytes
Content-Length: 1776
Keep-Alive: timeout=5, max=100
Content-Type: text/css
ballysdover.pcwebserv.com/weekender_assets/css/modal_slick-theme.css
200 OK 3.1 kB URL GET HTTP/1.1 ballysdover.pcwebserv.com/weekender_assets/css/modal_slick-theme.css
IP
Requested by https://ballysdover.pcwebserv.com/admin/login
Certificate IssuerLet's Encrypt
Subjectballysdover.pcwebserv.com
Fingerprint27:E5:4D:DE:F6:A2:1A:F5:69:2F:87:CA:6C:38:62:9A:DE:1A:0F:2F
ValidityThu, 03 Aug 2023 19:39:17 GMT - Wed, 01 Nov 2023 19:39:16 GMT
Hash f9faba678c4d6dcfdde69e5b11b37a2e
81a434f94f2b1124f3232bb86f2944f82fb23ac0
7adaf08052c6a6a0f8a0d0055b4f191fd07389fe41c972b69573472b2ecb406a
GET /weekender_assets/css/modal_slick-theme.css HTTP/1.1
Host: ballysdover.pcwebserv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ballysdover.pcwebserv.com/admin/login
Cookie: XSRF-TOKEN=eyJpdiI6IkdVczQvMEVvRWxvY0xlbDFub3FJQ1E9PSIsInZhbHVlIjoiT29wTU9MdFRqVUQ4VEQ2Q3h5eGRpc2swTDgxYkFDMTdOZDhTellIQ2MxMktmTy9HemYxMXluSjcwUlR3T21xd0MzLyt6WUJIajB5ZUZOZ3haZm4zMU9FTlpDdXVvajlBVnc1WEl6YUZ6N25kM0dRVS9zblh1N1g0OEg2ZndtSU8iLCJtYWMiOiI0MGMxNzAzYWY1MjFmNjA0NGVmZGE4NWQ5MjlkOTM5OWYwNjk4NWE5Y2I1ZmFhNTdiYTI1MDVkYTlmOWI4YTE2In0%3D; ballysdover_session=eyJpdiI6Im1nVzBFYXNFOEdEK3BiQk5HazEzU2c9PSIsInZhbHVlIjoiTWVJeE41TGZOY1RxbUN6WVFlMWcyZi94dWpXaFg3YWVOU1dFa0IxRnFxOTRkVThqWnNrUTJVVisvcUJWNXZqa1JDeDl1b2dQMVJpK3RmZE1Kb3FSZ3RMbmFaWXAxYTVXa0szWE9jY1dKclQ0WkI3Vy83TXI2U0dHakgwSkJ6Y1YiLCJtYWMiOiJmYTg3NTc4NDhkY2U5M2RlZjcwYzBkZWEzOWIwNmZhNmFmOWFkYWY5MTg1OTdjYzYzNGQ0OTU5NWVkODRiNmEyIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 15 Aug 2023 16:24:36 GMT
Server: Apache/2.4.52 () OpenSSL/1.0.2k-fips PHP/7.4.33
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 25 Jul 2022 22:01:26 GMT
ETag: "c49-5e4a853458d0e"
Accept-Ranges: bytes
Content-Length: 3145
Keep-Alive: timeout=5, max=100
Content-Type: text/css
www.googletagmanager.com/gtag/js?id=G-W0YPET0D57
200 OK 86 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-W0YPET0D57
IP
Requested by https://ballysdover.pcwebserv.com/admin/login
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintB8:00:22:F1:F1:80:E5:11:65:10:02:04:DA:9B:FA:C3:3E:F6:7A:70
ValidityMon, 17 Jul 2023 08:16:31 GMT - Mon, 09 Oct 2023 08:16:30 GMT
File type ASCII text, with very long lines (3651)
Hash af00aa9b07ba83736684e938dc7a92e8
4eea99c2b7267cd3f79d015f2a61b20da503f324
09a7f833a32f2fe9fe898c73e3b32c6e23293d794e2b2edb4193875d0b654946
GET /gtag/js?id=G-W0YPET0D57 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ballysdover.pcwebserv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 15 Aug 2023 16:24:36 GMT
expires: Tue, 15 Aug 2023 16:24:36 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 86491
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ballysdover.pcwebserv.com/weekender_assets/css/modal_style.css
200 OK 935 B URL GET HTTP/1.1 ballysdover.pcwebserv.com/weekender_assets/css/modal_style.css
IP
Requested by https://ballysdover.pcwebserv.com/admin/login
Certificate IssuerLet's Encrypt
Subjectballysdover.pcwebserv.com
Fingerprint27:E5:4D:DE:F6:A2:1A:F5:69:2F:87:CA:6C:38:62:9A:DE:1A:0F:2F
ValidityThu, 03 Aug 2023 19:39:17 GMT - Wed, 01 Nov 2023 19:39:16 GMT
File type ASCII text, with CRLF, CR line terminators
Hash 8f96674efa8e579f9b9b4f3757348e16
468e387eeaa6b3c69a227df7018530576ed7232a
e7ca7287eb19c65dec9b54665c8ebc2d75b5e5bafd6daf4d5904315cdc3c47f1
GET /weekender_assets/css/modal_style.css HTTP/1.1
Host: ballysdover.pcwebserv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ballysdover.pcwebserv.com/admin/login
Cookie: XSRF-TOKEN=eyJpdiI6IkdVczQvMEVvRWxvY0xlbDFub3FJQ1E9PSIsInZhbHVlIjoiT29wTU9MdFRqVUQ4VEQ2Q3h5eGRpc2swTDgxYkFDMTdOZDhTellIQ2MxMktmTy9HemYxMXluSjcwUlR3T21xd0MzLyt6WUJIajB5ZUZOZ3haZm4zMU9FTlpDdXVvajlBVnc1WEl6YUZ6N25kM0dRVS9zblh1N1g0OEg2ZndtSU8iLCJtYWMiOiI0MGMxNzAzYWY1MjFmNjA0NGVmZGE4NWQ5MjlkOTM5OWYwNjk4NWE5Y2I1ZmFhNTdiYTI1MDVkYTlmOWI4YTE2In0%3D; ballysdover_session=eyJpdiI6Im1nVzBFYXNFOEdEK3BiQk5HazEzU2c9PSIsInZhbHVlIjoiTWVJeE41TGZOY1RxbUN6WVFlMWcyZi94dWpXaFg3YWVOU1dFa0IxRnFxOTRkVThqWnNrUTJVVisvcUJWNXZqa1JDeDl1b2dQMVJpK3RmZE1Kb3FSZ3RMbmFaWXAxYTVXa0szWE9jY1dKclQ0WkI3Vy83TXI2U0dHakgwSkJ6Y1YiLCJtYWMiOiJmYTg3NTc4NDhkY2U5M2RlZjcwYzBkZWEzOWIwNmZhNmFmOWFkYWY5MTg1OTdjYzYzNGQ0OTU5NWVkODRiNmEyIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 15 Aug 2023 16:24:36 GMT
Server: Apache/2.4.52 () OpenSSL/1.0.2k-fips PHP/7.4.33
Last-Modified: Mon, 25 Jul 2022 22:01:26 GMT
ETag: "3a7-5e4a853458d0e"
Accept-Ranges: bytes
Content-Length: 935
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
ballysdover.pcwebserv.com/weekender_assets/js/modal_main.js
200 OK 3.9 kB URL GET HTTP/1.1 ballysdover.pcwebserv.com/weekender_assets/js/modal_main.js
IP
Requested by https://ballysdover.pcwebserv.com/admin/login
Certificate IssuerLet's Encrypt
Subjectballysdover.pcwebserv.com
Fingerprint27:E5:4D:DE:F6:A2:1A:F5:69:2F:87:CA:6C:38:62:9A:DE:1A:0F:2F
ValidityThu, 03 Aug 2023 19:39:17 GMT - Wed, 01 Nov 2023 19:39:16 GMT
File type HTML document, ASCII text, with very long lines (349)
Hash d6be79cffc7f509df80dbc2866747ad5
5b7da2ebf70323e37e46531e764f11722a69e3c6
7c4f35dbe203b9ed74caab93c76ab2ebc20a88d3670b6bd844ca96a3e79d6002
GET /weekender_assets/js/modal_main.js HTTP/1.1
Host: ballysdover.pcwebserv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ballysdover.pcwebserv.com/admin/login
Cookie: XSRF-TOKEN=eyJpdiI6IkdVczQvMEVvRWxvY0xlbDFub3FJQ1E9PSIsInZhbHVlIjoiT29wTU9MdFRqVUQ4VEQ2Q3h5eGRpc2swTDgxYkFDMTdOZDhTellIQ2MxMktmTy9HemYxMXluSjcwUlR3T21xd0MzLyt6WUJIajB5ZUZOZ3haZm4zMU9FTlpDdXVvajlBVnc1WEl6YUZ6N25kM0dRVS9zblh1N1g0OEg2ZndtSU8iLCJtYWMiOiI0MGMxNzAzYWY1MjFmNjA0NGVmZGE4NWQ5MjlkOTM5OWYwNjk4NWE5Y2I1ZmFhNTdiYTI1MDVkYTlmOWI4YTE2In0%3D; ballysdover_session=eyJpdiI6Im1nVzBFYXNFOEdEK3BiQk5HazEzU2c9PSIsInZhbHVlIjoiTWVJeE41TGZOY1RxbUN6WVFlMWcyZi94dWpXaFg3YWVOU1dFa0IxRnFxOTRkVThqWnNrUTJVVisvcUJWNXZqa1JDeDl1b2dQMVJpK3RmZE1Kb3FSZ3RMbmFaWXAxYTVXa0szWE9jY1dKclQ0WkI3Vy83TXI2U0dHakgwSkJ6Y1YiLCJtYWMiOiJmYTg3NTc4NDhkY2U5M2RlZjcwYzBkZWEzOWIwNmZhNmFmOWFkYWY5MTg1OTdjYzYzNGQ0OTU5NWVkODRiNmEyIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 15 Aug 2023 16:24:36 GMT
Server: Apache/2.4.52 () OpenSSL/1.0.2k-fips PHP/7.4.33
Last-Modified: Mon, 25 Jul 2022 22:01:26 GMT
ETag: "f20-5e4a85345db2d"
Accept-Ranges: bytes
Content-Length: 3872
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
471 B IP
Hash 694134013010daaaba4a1eef195e3823
bcbbac8b0708a4a01860c1a24db98de8ebda96d2
89e2c01dca39cb8d0ec2766fa3bd8cf81459c765619b8aa26cca6bb9bd38f3a5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 15 Aug 2023 16:24:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
472 B IP
Hash 0dec02e53fa6b616558f00c1154301e0
0a907bf7d072592a9a29d00e2bf280b66275952a
7252c9e92c54147847b3a291ec9a06f9aed1ed36f3d23c2cbedd882b79ba8be7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 15 Aug 2023 16:24:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ballysdover.pcwebserv.com/weekender_assets/js/modal_slick.min.js
200 OK 54 kB URL GET HTTP/1.1 ballysdover.pcwebserv.com/weekender_assets/js/modal_slick.min.js
IP
Requested by https://ballysdover.pcwebserv.com/admin/login
Certificate IssuerLet's Encrypt
Subjectballysdover.pcwebserv.com
Fingerprint27:E5:4D:DE:F6:A2:1A:F5:69:2F:87:CA:6C:38:62:9A:DE:1A:0F:2F
ValidityThu, 03 Aug 2023 19:39:17 GMT - Wed, 01 Nov 2023 19:39:16 GMT
File type ASCII text, with very long lines (2383)
Hash 6fcf885e20e729fe791d952d187707be
1f1acc47cf204389bc36273108cf2c2626d0f965
7da2cba0bb579dbaa686dd56ed6132174a3ed67dcc4a4f15ef7c98ee383f5da6
GET /weekender_assets/js/modal_slick.min.js HTTP/1.1
Host: ballysdover.pcwebserv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ballysdover.pcwebserv.com/admin/login
Cookie: XSRF-TOKEN=eyJpdiI6IkdVczQvMEVvRWxvY0xlbDFub3FJQ1E9PSIsInZhbHVlIjoiT29wTU9MdFRqVUQ4VEQ2Q3h5eGRpc2swTDgxYkFDMTdOZDhTellIQ2MxMktmTy9HemYxMXluSjcwUlR3T21xd0MzLyt6WUJIajB5ZUZOZ3haZm4zMU9FTlpDdXVvajlBVnc1WEl6YUZ6N25kM0dRVS9zblh1N1g0OEg2ZndtSU8iLCJtYWMiOiI0MGMxNzAzYWY1MjFmNjA0NGVmZGE4NWQ5MjlkOTM5OWYwNjk4NWE5Y2I1ZmFhNTdiYTI1MDVkYTlmOWI4YTE2In0%3D; ballysdover_session=eyJpdiI6Im1nVzBFYXNFOEdEK3BiQk5HazEzU2c9PSIsInZhbHVlIjoiTWVJeE41TGZOY1RxbUN6WVFlMWcyZi94dWpXaFg3YWVOU1dFa0IxRnFxOTRkVThqWnNrUTJVVisvcUJWNXZqa1JDeDl1b2dQMVJpK3RmZE1Kb3FSZ3RMbmFaWXAxYTVXa0szWE9jY1dKclQ0WkI3Vy83TXI2U0dHakgwSkJ6Y1YiLCJtYWMiOiJmYTg3NTc4NDhkY2U5M2RlZjcwYzBkZWEzOWIwNmZhNmFmOWFkYWY5MTg1OTdjYzYzNGQ0OTU5NWVkODRiNmEyIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 15 Aug 2023 16:24:36 GMT
Server: Apache/2.4.52 () OpenSSL/1.0.2k-fips PHP/7.4.33
Last-Modified: Mon, 25 Jul 2022 22:01:26 GMT
ETag: "d25c-5e4a85345eacd"
Accept-Ranges: bytes
Content-Length: 53852
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
ballysdover.pcwebserv.com/flipbook_assets/js/jquery-1.9.1.js
200 OK 268 kB URL GET HTTP/1.1 ballysdover.pcwebserv.com/flipbook_assets/js/jquery-1.9.1.js
IP
Requested by https://ballysdover.pcwebserv.com/admin/login
Certificate IssuerLet's Encrypt
Subjectballysdover.pcwebserv.com
Fingerprint27:E5:4D:DE:F6:A2:1A:F5:69:2F:87:CA:6C:38:62:9A:DE:1A:0F:2F
ValidityThu, 03 Aug 2023 19:39:17 GMT - Wed, 01 Nov 2023 19:39:16 GMT
Size 268 kB (268381 bytes)
Hash 08c235d357750c657ac1db7d1cf656a9
9257afd2d46c3a189ec0d40a45722701d47e9ca5
7bd80d06c01c0340c1b9159b9b4a197db882ca18cbac8e9b9aa025e68f998d40
GET /flipbook_assets/js/jquery-1.9.1.js HTTP/1.1
Host: ballysdover.pcwebserv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ballysdover.pcwebserv.com/admin/login
Cookie: XSRF-TOKEN=eyJpdiI6IkdVczQvMEVvRWxvY0xlbDFub3FJQ1E9PSIsInZhbHVlIjoiT29wTU9MdFRqVUQ4VEQ2Q3h5eGRpc2swTDgxYkFDMTdOZDhTellIQ2MxMktmTy9HemYxMXluSjcwUlR3T21xd0MzLyt6WUJIajB5ZUZOZ3haZm4zMU9FTlpDdXVvajlBVnc1WEl6YUZ6N25kM0dRVS9zblh1N1g0OEg2ZndtSU8iLCJtYWMiOiI0MGMxNzAzYWY1MjFmNjA0NGVmZGE4NWQ5MjlkOTM5OWYwNjk4NWE5Y2I1ZmFhNTdiYTI1MDVkYTlmOWI4YTE2In0%3D; ballysdover_session=eyJpdiI6Im1nVzBFYXNFOEdEK3BiQk5HazEzU2c9PSIsInZhbHVlIjoiTWVJeE41TGZOY1RxbUN6WVFlMWcyZi94dWpXaFg3YWVOU1dFa0IxRnFxOTRkVThqWnNrUTJVVisvcUJWNXZqa1JDeDl1b2dQMVJpK3RmZE1Kb3FSZ3RMbmFaWXAxYTVXa0szWE9jY1dKclQ0WkI3Vy83TXI2U0dHakgwSkJ6Y1YiLCJtYWMiOiJmYTg3NTc4NDhkY2U5M2RlZjcwYzBkZWEzOWIwNmZhNmFmOWFkYWY5MTg1OTdjYzYzNGQ0OTU5NWVkODRiNmEyIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 15 Aug 2023 16:24:36 GMT
Server: Apache/2.4.52 () OpenSSL/1.0.2k-fips PHP/7.4.33
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 25 Jul 2022 22:01:25 GMT
ETag: "4185d-5e4a85338eac9"
Accept-Ranges: bytes
Content-Length: 268381
Keep-Alive: timeout=5, max=100
Content-Type: application/javascript
ballysdover.pcwebserv.com/HeaderFooterAssets/combinedJs.js
200 OK 427 kB URL GET HTTP/1.1 ballysdover.pcwebserv.com/HeaderFooterAssets/combinedJs.js
IP
Requested by https://ballysdover.pcwebserv.com/admin/login
Certificate IssuerLet's Encrypt
Subjectballysdover.pcwebserv.com
Fingerprint27:E5:4D:DE:F6:A2:1A:F5:69:2F:87:CA:6C:38:62:9A:DE:1A:0F:2F
ValidityThu, 03 Aug 2023 19:39:17 GMT - Wed, 01 Nov 2023 19:39:16 GMT
File type Unicode text, UTF-8 (with BOM) text, with very long lines (355)
Size 427 kB (427138 bytes)
Hash 96c4eda5f5d624e83000aae7ac55411d
19ae039a2dfd071b528dfa45e3a4fbcdc649faba
7b3e958e6402642d0eceb99a6bcbe71512dc6791bfe0a5b430c2f3410219e32d
GET /HeaderFooterAssets/combinedJs.js HTTP/1.1
Host: ballysdover.pcwebserv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ballysdover.pcwebserv.com/admin/login
Cookie: XSRF-TOKEN=eyJpdiI6IkdVczQvMEVvRWxvY0xlbDFub3FJQ1E9PSIsInZhbHVlIjoiT29wTU9MdFRqVUQ4VEQ2Q3h5eGRpc2swTDgxYkFDMTdOZDhTellIQ2MxMktmTy9HemYxMXluSjcwUlR3T21xd0MzLyt6WUJIajB5ZUZOZ3haZm4zMU9FTlpDdXVvajlBVnc1WEl6YUZ6N25kM0dRVS9zblh1N1g0OEg2ZndtSU8iLCJtYWMiOiI0MGMxNzAzYWY1MjFmNjA0NGVmZGE4NWQ5MjlkOTM5OWYwNjk4NWE5Y2I1ZmFhNTdiYTI1MDVkYTlmOWI4YTE2In0%3D; ballysdover_session=eyJpdiI6Im1nVzBFYXNFOEdEK3BiQk5HazEzU2c9PSIsInZhbHVlIjoiTWVJeE41TGZOY1RxbUN6WVFlMWcyZi94dWpXaFg3YWVOU1dFa0IxRnFxOTRkVThqWnNrUTJVVisvcUJWNXZqa1JDeDl1b2dQMVJpK3RmZE1Kb3FSZ3RMbmFaWXAxYTVXa0szWE9jY1dKclQ0WkI3Vy83TXI2U0dHakgwSkJ6Y1YiLCJtYWMiOiJmYTg3NTc4NDhkY2U5M2RlZjcwYzBkZWEzOWIwNmZhNmFmOWFkYWY5MTg1OTdjYzYzNGQ0OTU5NWVkODRiNmEyIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 15 Aug 2023 16:24:36 GMT
Server: Apache/2.4.52 () OpenSSL/1.0.2k-fips PHP/7.4.33
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 25 Jul 2022 22:01:25 GMT
ETag: "68482-5e4a853361c0f"
Accept-Ranges: bytes
Content-Length: 427138
Keep-Alive: timeout=5, max=100
Content-Type: application/javascript
www.ballys.com/dover/visitorapi.js?dt=202004151000
301 Moved Permanently 707 B URL GET HTTP/2 www.ballys.com/dover/visitorapi.js?dt=202004151000
IP
Requested by https://ballysdover.pcwebserv.com/admin/login
Certificate IssuerCloudflare, Inc.
Subjectwww.ballys.com
FingerprintCE:83:8D:24:20:DA:4A:DF:62:BB:91:E7:15:E4:C1:F5:0B:4F:7B:15
ValiditySat, 17 Jun 2023 00:00:00 GMT - Sun, 16 Jun 2024 23:59:59 GMT
Hash 00f6ecc25882934f7c7705db0a1d3fac
9cf5e3a7016032d1eb5cd7cafd10a0fa01fee149
09f3d9eeb4d726049cdc4f7302a48004f01462e38c65b99361acae594ca08b95
GET /dover/visitorapi.js?dt=202004151000 HTTP/1.1
Host: www.ballys.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ballysdover.pcwebserv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Tue, 15 Aug 2023 16:24:36 GMT
content-type: text/html; charset=utf-8
location: https://casinos.ballys.com:443/dover?dt=202004151000
cf-ray: 7f72c9ee5c1e1bfe-OSL
cf-cache-status: HIT
cache-control: public, max-age=120, stale-if-error=86400, stale-while-revalidate=86400
vary: Accept-Encoding
x-content-type-options: nosniff
set-cookie: __cf_bm=WUtiqQ36.fkXdaeaEjCqdAUHNrWchc5CeQeB2rS20Zk-1692116676-0-Aat6wS8cFwePaUrzne/gPvv53PdUX1RJlpciMznIFaeB8T+81UzWg5QQIPB5C5pFfd+UDXk4mEiJsggViGPBjBY=; path=/; expires=Tue, 15-Aug-23 16:54:36 GMT; domain=.www.ballys.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2
ballysdover.pcwebserv.com/HeaderFooterAssets/fa-brands-400.woff2
200 OK 63 kB URL GET HTTP/1.1 ballysdover.pcwebserv.com/HeaderFooterAssets/fa-brands-400.woff2
IP
Requested by https://ballysdover.pcwebserv.com/admin/login
Certificate IssuerLet's Encrypt
Subjectballysdover.pcwebserv.com
Fingerprint27:E5:4D:DE:F6:A2:1A:F5:69:2F:87:CA:6C:38:62:9A:DE:1A:0F:2F
ValidityThu, 03 Aug 2023 19:39:17 GMT - Wed, 01 Nov 2023 19:39:16 GMT
File type Web Open Font Format (Version 2), TrueType, length 63448, version 1.0\012- data
Hash a7f3f0a520139c61f9c02bf2e86587bb
270b74cb5c2a08f2397d77622ca8662551429b65
c99447c0467a6686ac287c918f58863746f4a110da909e45d3e40e110d1d2e0f
GET /HeaderFooterAssets/fa-brands-400.woff2 HTTP/1.1
Host: ballysdover.pcwebserv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://ballysdover.pcwebserv.com/admin/login
Cookie: XSRF-TOKEN=eyJpdiI6IkdVczQvMEVvRWxvY0xlbDFub3FJQ1E9PSIsInZhbHVlIjoiT29wTU9MdFRqVUQ4VEQ2Q3h5eGRpc2swTDgxYkFDMTdOZDhTellIQ2MxMktmTy9HemYxMXluSjcwUlR3T21xd0MzLyt6WUJIajB5ZUZOZ3haZm4zMU9FTlpDdXVvajlBVnc1WEl6YUZ6N25kM0dRVS9zblh1N1g0OEg2ZndtSU8iLCJtYWMiOiI0MGMxNzAzYWY1MjFmNjA0NGVmZGE4NWQ5MjlkOTM5OWYwNjk4NWE5Y2I1ZmFhNTdiYTI1MDVkYTlmOWI4YTE2In0%3D; ballysdover_session=eyJpdiI6Im1nVzBFYXNFOEdEK3BiQk5HazEzU2c9PSIsInZhbHVlIjoiTWVJeE41TGZOY1RxbUN6WVFlMWcyZi94dWpXaFg3YWVOU1dFa0IxRnFxOTRkVThqWnNrUTJVVisvcUJWNXZqa1JDeDl1b2dQMVJpK3RmZE1Kb3FSZ3RMbmFaWXAxYTVXa0szWE9jY1dKclQ0WkI3Vy83TXI2U0dHakgwSkJ6Y1YiLCJtYWMiOiJmYTg3NTc4NDhkY2U5M2RlZjcwYzBkZWEzOWIwNmZhNmFmOWFkYWY5MTg1OTdjYzYzNGQ0OTU5NWVkODRiNmEyIn0%3D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 15 Aug 2023 16:24:37 GMT
Server: Apache/2.4.52 () OpenSSL/1.0.2k-fips PHP/7.4.33
Last-Modified: Mon, 25 Jul 2022 22:01:25 GMT
ETag: "f7d8-5e4a853362bae"
Accept-Ranges: bytes
Content-Length: 63448
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
casinos.ballys.com/dover?dt=202004151000
301 Moved Permanently 158 B URL GET HTTP/2 casinos.ballys.com/dover?dt=202004151000
IP
Requested by https://ballysdover.pcwebserv.com/admin/login
Certificate IssuerLet's Encrypt
Subjectcasinos.ballys.com
Fingerprint43:5E:17:C3:EF:10:19:15:74:44:D3:3E:25:8D:E4:37:6E:18:B2:AE
ValidityTue, 01 Aug 2023 08:09:34 GMT - Mon, 30 Oct 2023 08:09:33 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 8295f198721962382e2d5c2539c71bad
398c0af561a2c4e12a4406c7cf738d47e8d4de0e
fe5de2c370ca2aa0e948e51fbbfeac306c3793b8260892ab8302f0fa83f1ed37
GET /dover?dt=202004151000 HTTP/1.1
Host: casinos.ballys.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ballysdover.pcwebserv.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Tue, 15 Aug 2023 16:24:37 GMT
accept-ranges: bytes
content-encoding: gzip
content-length: 158
content-type: text/html; charset=UTF-8
x-hw: 1692116677.dop228.sk1.t,1692116677.cds237.sk1.hn,1692116677.cds260.sk1.s,1692116677.cdn4-pxy213-atl02.at2.r,1692116677.cds239.at2.c,1692116677.cds260.sk1.p
cache-control: no-cache
location: https://casinos.ballys.com/dover/?dt=202004151000
server:
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
ballysdover.pcwebserv.com/HeaderFooterAssets/national-2-condensed-web-extrabold.eot
404 Not Found 1.6 kB URL GET HTTP/1.0 ballysdover.pcwebserv.com/HeaderFooterAssets/national-2-condensed-web-extrabold.eot
IP
Requested by https://ballysdover.pcwebserv.com/admin/login
Certificate IssuerLet's Encrypt
Subjectballysdover.pcwebserv.com
Fingerprint27:E5:4D:DE:F6:A2:1A:F5:69:2F:87:CA:6C:38:62:9A:DE:1A:0F:2F
ValidityThu, 03 Aug 2023 19:39:17 GMT - Wed, 01 Nov 2023 19:39:16 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 47172e62787300b279ae2e1d21763c81
8bc8206ab37105da07312f4d39d8e57cc9763e00
258682bcb3d7d927aaf47bfe1c01788db1f0cda4bf2240001e5e7408a6f559ae
GET /HeaderFooterAssets/national-2-condensed-web-extrabold.eot HTTP/1.1
Host: ballysdover.pcwebserv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ballysdover.pcwebserv.com/admin/login
Cookie: XSRF-TOKEN=eyJpdiI6IkdVczQvMEVvRWxvY0xlbDFub3FJQ1E9PSIsInZhbHVlIjoiT29wTU9MdFRqVUQ4VEQ2Q3h5eGRpc2swTDgxYkFDMTdOZDhTellIQ2MxMktmTy9HemYxMXluSjcwUlR3T21xd0MzLyt6WUJIajB5ZUZOZ3haZm4zMU9FTlpDdXVvajlBVnc1WEl6YUZ6N25kM0dRVS9zblh1N1g0OEg2ZndtSU8iLCJtYWMiOiI0MGMxNzAzYWY1MjFmNjA0NGVmZGE4NWQ5MjlkOTM5OWYwNjk4NWE5Y2I1ZmFhNTdiYTI1MDVkYTlmOWI4YTE2In0%3D; ballysdover_session=eyJpdiI6Im1nVzBFYXNFOEdEK3BiQk5HazEzU2c9PSIsInZhbHVlIjoiTWVJeE41TGZOY1RxbUN6WVFlMWcyZi94dWpXaFg3YWVOU1dFa0IxRnFxOTRkVThqWnNrUTJVVisvcUJWNXZqa1JDeDl1b2dQMVJpK3RmZE1Kb3FSZ3RMbmFaWXAxYTVXa0szWE9jY1dKclQ0WkI3Vy83TXI2U0dHakgwSkJ6Y1YiLCJtYWMiOiJmYTg3NTc4NDhkY2U5M2RlZjcwYzBkZWEzOWIwNmZhNmFmOWFkYWY5MTg1OTdjYzYzNGQ0OTU5NWVkODRiNmEyIn0%3D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 404 Not Found
Date: Tue, 15 Aug 2023 16:24:37 GMT
Server: Apache/2.4.52 () OpenSSL/1.0.2k-fips PHP/7.4.33
X-Powered-By: PHP/7.4.33
Cache-Control: no-cache, private
Content-Length: 1552
Connection: close
Content-Type: text/html; charset=UTF-8
ballysdover.pcwebserv.com/HeaderFooterAssets/national-2-web-regular.eot
404 Not Found 1.6 kB URL GET HTTP/1.0 ballysdover.pcwebserv.com/HeaderFooterAssets/national-2-web-regular.eot
IP
Requested by https://ballysdover.pcwebserv.com/admin/login
Certificate IssuerLet's Encrypt
Subjectballysdover.pcwebserv.com
Fingerprint27:E5:4D:DE:F6:A2:1A:F5:69:2F:87:CA:6C:38:62:9A:DE:1A:0F:2F
ValidityThu, 03 Aug 2023 19:39:17 GMT - Wed, 01 Nov 2023 19:39:16 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 47172e62787300b279ae2e1d21763c81
8bc8206ab37105da07312f4d39d8e57cc9763e00
258682bcb3d7d927aaf47bfe1c01788db1f0cda4bf2240001e5e7408a6f559ae
GET /HeaderFooterAssets/national-2-web-regular.eot HTTP/1.1
Host: ballysdover.pcwebserv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ballysdover.pcwebserv.com/admin/login
Cookie: XSRF-TOKEN=eyJpdiI6IkdVczQvMEVvRWxvY0xlbDFub3FJQ1E9PSIsInZhbHVlIjoiT29wTU9MdFRqVUQ4VEQ2Q3h5eGRpc2swTDgxYkFDMTdOZDhTellIQ2MxMktmTy9HemYxMXluSjcwUlR3T21xd0MzLyt6WUJIajB5ZUZOZ3haZm4zMU9FTlpDdXVvajlBVnc1WEl6YUZ6N25kM0dRVS9zblh1N1g0OEg2ZndtSU8iLCJtYWMiOiI0MGMxNzAzYWY1MjFmNjA0NGVmZGE4NWQ5MjlkOTM5OWYwNjk4NWE5Y2I1ZmFhNTdiYTI1MDVkYTlmOWI4YTE2In0%3D; ballysdover_session=eyJpdiI6Im1nVzBFYXNFOEdEK3BiQk5HazEzU2c9PSIsInZhbHVlIjoiTWVJeE41TGZOY1RxbUN6WVFlMWcyZi94dWpXaFg3YWVOU1dFa0IxRnFxOTRkVThqWnNrUTJVVisvcUJWNXZqa1JDeDl1b2dQMVJpK3RmZE1Kb3FSZ3RMbmFaWXAxYTVXa0szWE9jY1dKclQ0WkI3Vy83TXI2U0dHakgwSkJ6Y1YiLCJtYWMiOiJmYTg3NTc4NDhkY2U5M2RlZjcwYzBkZWEzOWIwNmZhNmFmOWFkYWY5MTg1OTdjYzYzNGQ0OTU5NWVkODRiNmEyIn0%3D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 404 Not Found
Date: Tue, 15 Aug 2023 16:24:37 GMT
Server: Apache/2.4.52 () OpenSSL/1.0.2k-fips PHP/7.4.33
X-Powered-By: PHP/7.4.33
Cache-Control: no-cache, private
Content-Length: 1552
Connection: close
Content-Type: text/html; charset=UTF-8
ballysdover.pcwebserv.com/HeaderFooterAssets/national-2-web-bold.eot
404 Not Found 1.6 kB URL GET HTTP/1.0 ballysdover.pcwebserv.com/HeaderFooterAssets/national-2-web-bold.eot
IP
Requested by https://ballysdover.pcwebserv.com/admin/login
Certificate IssuerLet's Encrypt
Subjectballysdover.pcwebserv.com
Fingerprint27:E5:4D:DE:F6:A2:1A:F5:69:2F:87:CA:6C:38:62:9A:DE:1A:0F:2F
ValidityThu, 03 Aug 2023 19:39:17 GMT - Wed, 01 Nov 2023 19:39:16 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 47172e62787300b279ae2e1d21763c81
8bc8206ab37105da07312f4d39d8e57cc9763e00
258682bcb3d7d927aaf47bfe1c01788db1f0cda4bf2240001e5e7408a6f559ae
GET /HeaderFooterAssets/national-2-web-bold.eot HTTP/1.1
Host: ballysdover.pcwebserv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ballysdover.pcwebserv.com/admin/login
Cookie: XSRF-TOKEN=eyJpdiI6IkdVczQvMEVvRWxvY0xlbDFub3FJQ1E9PSIsInZhbHVlIjoiT29wTU9MdFRqVUQ4VEQ2Q3h5eGRpc2swTDgxYkFDMTdOZDhTellIQ2MxMktmTy9HemYxMXluSjcwUlR3T21xd0MzLyt6WUJIajB5ZUZOZ3haZm4zMU9FTlpDdXVvajlBVnc1WEl6YUZ6N25kM0dRVS9zblh1N1g0OEg2ZndtSU8iLCJtYWMiOiI0MGMxNzAzYWY1MjFmNjA0NGVmZGE4NWQ5MjlkOTM5OWYwNjk4NWE5Y2I1ZmFhNTdiYTI1MDVkYTlmOWI4YTE2In0%3D; ballysdover_session=eyJpdiI6Im1nVzBFYXNFOEdEK3BiQk5HazEzU2c9PSIsInZhbHVlIjoiTWVJeE41TGZOY1RxbUN6WVFlMWcyZi94dWpXaFg3YWVOU1dFa0IxRnFxOTRkVThqWnNrUTJVVisvcUJWNXZqa1JDeDl1b2dQMVJpK3RmZE1Kb3FSZ3RMbmFaWXAxYTVXa0szWE9jY1dKclQ0WkI3Vy83TXI2U0dHakgwSkJ6Y1YiLCJtYWMiOiJmYTg3NTc4NDhkY2U5M2RlZjcwYzBkZWEzOWIwNmZhNmFmOWFkYWY5MTg1OTdjYzYzNGQ0OTU5NWVkODRiNmEyIn0%3D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 404 Not Found
Date: Tue, 15 Aug 2023 16:24:37 GMT
Server: Apache/2.4.52 () OpenSSL/1.0.2k-fips PHP/7.4.33
X-Powered-By: PHP/7.4.33
Cache-Control: no-cache, private
Content-Length: 1552
Connection: close
Content-Type: text/html; charset=UTF-8
ballysdover.pcwebserv.com/HeaderFooterAssets/national-2-condensed-web-extrabold.woff2
200 OK 36 kB URL GET HTTP/1.1 ballysdover.pcwebserv.com/HeaderFooterAssets/national-2-condensed-web-extrabold.woff2
IP
Requested by https://ballysdover.pcwebserv.com/admin/login
Certificate IssuerLet's Encrypt
Subjectballysdover.pcwebserv.com
Fingerprint27:E5:4D:DE:F6:A2:1A:F5:69:2F:87:CA:6C:38:62:9A:DE:1A:0F:2F
ValidityThu, 03 Aug 2023 19:39:17 GMT - Wed, 01 Nov 2023 19:39:16 GMT
File type Web Open Font Format (Version 2), TrueType, length 36513, version 1.262\012- data
Hash b93e6cf328d6c0baba0ae959ba23e0c1
d89c7812553cf8da98823655a96b8f0502b408b8
896404ae9d5031c85c34b137691176cd9bfdd3e9ce3221653b187ff510976ee1
GET /HeaderFooterAssets/national-2-condensed-web-extrabold.woff2 HTTP/1.1
Host: ballysdover.pcwebserv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://ballysdover.pcwebserv.com/admin/login
Cookie: XSRF-TOKEN=eyJpdiI6IkdVczQvMEVvRWxvY0xlbDFub3FJQ1E9PSIsInZhbHVlIjoiT29wTU9MdFRqVUQ4VEQ2Q3h5eGRpc2swTDgxYkFDMTdOZDhTellIQ2MxMktmTy9HemYxMXluSjcwUlR3T21xd0MzLyt6WUJIajB5ZUZOZ3haZm4zMU9FTlpDdXVvajlBVnc1WEl6YUZ6N25kM0dRVS9zblh1N1g0OEg2ZndtSU8iLCJtYWMiOiI0MGMxNzAzYWY1MjFmNjA0NGVmZGE4NWQ5MjlkOTM5OWYwNjk4NWE5Y2I1ZmFhNTdiYTI1MDVkYTlmOWI4YTE2In0%3D; ballysdover_session=eyJpdiI6Im1nVzBFYXNFOEdEK3BiQk5HazEzU2c9PSIsInZhbHVlIjoiTWVJeE41TGZOY1RxbUN6WVFlMWcyZi94dWpXaFg3YWVOU1dFa0IxRnFxOTRkVThqWnNrUTJVVisvcUJWNXZqa1JDeDl1b2dQMVJpK3RmZE1Kb3FSZ3RMbmFaWXAxYTVXa0szWE9jY1dKclQ0WkI3Vy83TXI2U0dHakgwSkJ6Y1YiLCJtYWMiOiJmYTg3NTc4NDhkY2U5M2RlZjcwYzBkZWEzOWIwNmZhNmFmOWFkYWY5MTg1OTdjYzYzNGQ0OTU5NWVkODRiNmEyIn0%3D; _ga_W0YPET0D57=GS1.1.1692116672.1.0.1692116672.0.0.0; _ga=GA1.1.1195203790.1692116673
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 15 Aug 2023 16:24:37 GMT
Server: Apache/2.4.52 () OpenSSL/1.0.2k-fips PHP/7.4.33
Last-Modified: Mon, 25 Jul 2022 22:01:25 GMT
ETag: "8ea1-5e4a853363b4e"
Accept-Ranges: bytes
Content-Length: 36513
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
ballysdover.pcwebserv.com/HeaderFooterAssets/national-2-web-regular.woff2
200 OK 34 kB URL GET HTTP/1.1 ballysdover.pcwebserv.com/HeaderFooterAssets/national-2-web-regular.woff2
IP
Requested by https://ballysdover.pcwebserv.com/admin/login
Certificate IssuerLet's Encrypt
Subjectballysdover.pcwebserv.com
Fingerprint27:E5:4D:DE:F6:A2:1A:F5:69:2F:87:CA:6C:38:62:9A:DE:1A:0F:2F
ValidityThu, 03 Aug 2023 19:39:17 GMT - Wed, 01 Nov 2023 19:39:16 GMT
File type Web Open Font Format (Version 2), TrueType, length 34122, version 1.262\012- data
Hash a2e5a2a6341abb605bb2e575c60ac4ac
8991b4b784399d7467fdb3499e11e10f7f5f8ca1
7b15e06511d79c1ee3e2fd3af3c210ceac1520085982f008f4d862f5cb7be0ef
GET /HeaderFooterAssets/national-2-web-regular.woff2 HTTP/1.1
Host: ballysdover.pcwebserv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://ballysdover.pcwebserv.com/admin/login
Cookie: XSRF-TOKEN=eyJpdiI6IkdVczQvMEVvRWxvY0xlbDFub3FJQ1E9PSIsInZhbHVlIjoiT29wTU9MdFRqVUQ4VEQ2Q3h5eGRpc2swTDgxYkFDMTdOZDhTellIQ2MxMktmTy9HemYxMXluSjcwUlR3T21xd0MzLyt6WUJIajB5ZUZOZ3haZm4zMU9FTlpDdXVvajlBVnc1WEl6YUZ6N25kM0dRVS9zblh1N1g0OEg2ZndtSU8iLCJtYWMiOiI0MGMxNzAzYWY1MjFmNjA0NGVmZGE4NWQ5MjlkOTM5OWYwNjk4NWE5Y2I1ZmFhNTdiYTI1MDVkYTlmOWI4YTE2In0%3D; ballysdover_session=eyJpdiI6Im1nVzBFYXNFOEdEK3BiQk5HazEzU2c9PSIsInZhbHVlIjoiTWVJeE41TGZOY1RxbUN6WVFlMWcyZi94dWpXaFg3YWVOU1dFa0IxRnFxOTRkVThqWnNrUTJVVisvcUJWNXZqa1JDeDl1b2dQMVJpK3RmZE1Kb3FSZ3RMbmFaWXAxYTVXa0szWE9jY1dKclQ0WkI3Vy83TXI2U0dHakgwSkJ6Y1YiLCJtYWMiOiJmYTg3NTc4NDhkY2U5M2RlZjcwYzBkZWEzOWIwNmZhNmFmOWFkYWY5MTg1OTdjYzYzNGQ0OTU5NWVkODRiNmEyIn0%3D; _ga_W0YPET0D57=GS1.1.1692116672.1.0.1692116672.0.0.0; _ga=GA1.1.1195203790.1692116673
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 15 Aug 2023 16:24:37 GMT
Server: Apache/2.4.52 () OpenSSL/1.0.2k-fips PHP/7.4.33
Last-Modified: Mon, 25 Jul 2022 22:01:25 GMT
ETag: "854a-5e4a853363b4e"
Accept-Ranges: bytes
Content-Length: 34122
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
ballysdover.pcwebserv.com/HeaderFooterAssets/national-2-web-bold.woff2
200 OK 36 kB URL GET HTTP/1.1 ballysdover.pcwebserv.com/HeaderFooterAssets/national-2-web-bold.woff2
IP
Requested by https://ballysdover.pcwebserv.com/admin/login
Certificate IssuerLet's Encrypt
Subjectballysdover.pcwebserv.com
Fingerprint27:E5:4D:DE:F6:A2:1A:F5:69:2F:87:CA:6C:38:62:9A:DE:1A:0F:2F
ValidityThu, 03 Aug 2023 19:39:17 GMT - Wed, 01 Nov 2023 19:39:16 GMT
File type Web Open Font Format (Version 2), TrueType, length 36489, version 1.262\012- data
Hash 7a031d3a33c1d45d782ddead38f9a610
ccea608ce348e358e54152703d195fdb7835cec9
ea283cf3c5e13e783c144c6308af43146eb26924e2a8fbae0a605132331851b5
GET /HeaderFooterAssets/national-2-web-bold.woff2 HTTP/1.1
Host: ballysdover.pcwebserv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://ballysdover.pcwebserv.com/admin/login
Cookie: XSRF-TOKEN=eyJpdiI6IkdVczQvMEVvRWxvY0xlbDFub3FJQ1E9PSIsInZhbHVlIjoiT29wTU9MdFRqVUQ4VEQ2Q3h5eGRpc2swTDgxYkFDMTdOZDhTellIQ2MxMktmTy9HemYxMXluSjcwUlR3T21xd0MzLyt6WUJIajB5ZUZOZ3haZm4zMU9FTlpDdXVvajlBVnc1WEl6YUZ6N25kM0dRVS9zblh1N1g0OEg2ZndtSU8iLCJtYWMiOiI0MGMxNzAzYWY1MjFmNjA0NGVmZGE4NWQ5MjlkOTM5OWYwNjk4NWE5Y2I1ZmFhNTdiYTI1MDVkYTlmOWI4YTE2In0%3D; ballysdover_session=eyJpdiI6Im1nVzBFYXNFOEdEK3BiQk5HazEzU2c9PSIsInZhbHVlIjoiTWVJeE41TGZOY1RxbUN6WVFlMWcyZi94dWpXaFg3YWVOU1dFa0IxRnFxOTRkVThqWnNrUTJVVisvcUJWNXZqa1JDeDl1b2dQMVJpK3RmZE1Kb3FSZ3RMbmFaWXAxYTVXa0szWE9jY1dKclQ0WkI3Vy83TXI2U0dHakgwSkJ6Y1YiLCJtYWMiOiJmYTg3NTc4NDhkY2U5M2RlZjcwYzBkZWEzOWIwNmZhNmFmOWFkYWY5MTg1OTdjYzYzNGQ0OTU5NWVkODRiNmEyIn0%3D; _ga_W0YPET0D57=GS1.1.1692116672.1.0.1692116672.0.0.0; _ga=GA1.1.1195203790.1692116673
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 15 Aug 2023 16:24:37 GMT
Server: Apache/2.4.52 () OpenSSL/1.0.2k-fips PHP/7.4.33
Last-Modified: Mon, 25 Jul 2022 22:01:25 GMT
ETag: "8e89-5e4a853363b4e"
Accept-Ranges: bytes
Content-Length: 36489
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
casinos.ballys.com/dover/?dt=202004271600
200 OK 85 kB URL GET HTTP/2 casinos.ballys.com/dover/?dt=202004271600
IP
Requested by https://ballysdover.pcwebserv.com/admin/login
Certificate IssuerLet's Encrypt
Subjectcasinos.ballys.com
Fingerprint43:5E:17:C3:EF:10:19:15:74:44:D3:3E:25:8D:E4:37:6E:18:B2:AE
ValidityTue, 01 Aug 2023 08:09:34 GMT - Mon, 30 Oct 2023 08:09:33 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (65533), with no line terminators
Hash d31fb59970e8787955591720eb8fc036
0aaddf1a54a6df0d63648ab61a9ad563aa1de322
277778c78d3c8fd018b371f8a74b554cdc087f8a2ff8e8eac227a0f5544dc156
GET /dover/?dt=202004271600 HTTP/1.1
Host: casinos.ballys.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ballysdover.pcwebserv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 15 Aug 2023 16:24:38 GMT
accept-ranges: bytes
etag: "1692021250"
content-encoding: gzip
content-length: 84719
content-type: text/html
x-hw: 1692116677.dop228.sk1.t,1692116677.cds237.sk1.hn,1692116677.cds247.sk1.s,1692116677.cdn4-pxy217-atl02.at2.r,1692116678.cds119.at2.c,1692116677.cds247.sk1.s,1692116677.cdn4-pxy217-atl02.at2.r,1692116678.cds119.at2.c,1692116678.cds247.sk1.p
cache-control: no-cache
server:
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
last-modified: Mon, 14 Aug 2023 13:54:10 GMT
X-Firefox-Spdy: h2
casinos.ballys.com/dover/?dt=202004151000
200 OK 85 kB URL GET HTTP/2 casinos.ballys.com/dover/?dt=202004151000
IP
Requested by https://ballysdover.pcwebserv.com/admin/login
Certificate IssuerLet's Encrypt
Subjectcasinos.ballys.com
Fingerprint43:5E:17:C3:EF:10:19:15:74:44:D3:3E:25:8D:E4:37:6E:18:B2:AE
ValidityTue, 01 Aug 2023 08:09:34 GMT - Mon, 30 Oct 2023 08:09:33 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (65533), with no line terminators
Hash d31fb59970e8787955591720eb8fc036
0aaddf1a54a6df0d63648ab61a9ad563aa1de322
277778c78d3c8fd018b371f8a74b554cdc087f8a2ff8e8eac227a0f5544dc156
GET /dover/?dt=202004151000 HTTP/1.1
Host: casinos.ballys.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ballysdover.pcwebserv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 15 Aug 2023 16:24:38 GMT
accept-ranges: bytes
etag: "1692021250"
content-encoding: gzip
content-length: 84719
content-type: text/html
x-hw: 1692116677.dop228.sk1.t,1692116677.cds237.sk1.hn,1692116677.cds224.sk1.s,1692116677.cdn4-pxy220-atl02.at2.r,1692116678.cds212.at2.c,1692116677.cds224.sk1.s,1692116677.cdn4-pxy220-atl02.at2.r,1692116678.cds212.at2.c,1692116678.cds224.sk1.p
cache-control: no-cache
server:
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
last-modified: Mon, 14 Aug 2023 13:54:10 GMT
X-Firefox-Spdy: h2
www.ballys.com/dover/appmeasurement.js?dt=202004271600
301 Moved Permanently 707 B URL GET HTTP/2 www.ballys.com/dover/appmeasurement.js?dt=202004271600
IP
Requested by https://ballysdover.pcwebserv.com/admin/login
Certificate IssuerCloudflare, Inc.
Subjectwww.ballys.com
FingerprintCE:83:8D:24:20:DA:4A:DF:62:BB:91:E7:15:E4:C1:F5:0B:4F:7B:15
ValiditySat, 17 Jun 2023 00:00:00 GMT - Sun, 16 Jun 2024 23:59:59 GMT
Hash 9ed71072edbe2f240d5c208da7035581
a0aad480432ab5fb8a6297f952156a98389cc2d4
b53c151ad6fe446ae5041f1aa34a0849b1a7953b5773e3467d8519443c61d4cb
GET /dover/appmeasurement.js?dt=202004271600 HTTP/1.1
Host: www.ballys.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ballysdover.pcwebserv.com/
Cookie: __cf_bm=5xSehzNX0fOA.F7Okl59MJmitdP_1wE8XOjbCXiMkiI-1692116676-0-AaROKm/lW/wMsGt8k8SuKFff6/eVv1qT1WerXIsJRRGt0eojTvG2IfD+6pJr9G059j1K8YITN/YRiTNbmfsVeHI=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
date: Tue, 15 Aug 2023 16:24:38 GMT
content-type: text/html; charset=utf-8
location: https://casinos.ballys.com:443/dover?dt=202004271600
cf-ray: 7f72c9f98d5c1bfe-OSL
cf-cache-status: HIT
age: 2
cache-control: public, max-age=120, stale-if-error=86400, stale-while-revalidate=86400
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
ballysdover.pcwebserv.com/HeaderFooterAssets/favicon-16x16.png/
301 Moved Permanently 278 B URL GET HTTP/1.1 ballysdover.pcwebserv.com/HeaderFooterAssets/favicon-16x16.png/
IP
Requested by https://ballysdover.pcwebserv.com/admin/login
Certificate IssuerLet's Encrypt
Subjectballysdover.pcwebserv.com
Fingerprint27:E5:4D:DE:F6:A2:1A:F5:69:2F:87:CA:6C:38:62:9A:DE:1A:0F:2F
ValidityThu, 03 Aug 2023 19:39:17 GMT - Wed, 01 Nov 2023 19:39:16 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 5b0c445c5a2c3a69118a777f04f4d194
a72462797106c09614b75ee8ac71118170295b46
d3266d932e267383218f2750af5ba9c486e592cf4ec0bb371749f016b09baed9
GET /HeaderFooterAssets/favicon-16x16.png/ HTTP/1.1
Host: ballysdover.pcwebserv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ballysdover.pcwebserv.com/admin/login
Cookie: XSRF-TOKEN=eyJpdiI6IkdVczQvMEVvRWxvY0xlbDFub3FJQ1E9PSIsInZhbHVlIjoiT29wTU9MdFRqVUQ4VEQ2Q3h5eGRpc2swTDgxYkFDMTdOZDhTellIQ2MxMktmTy9HemYxMXluSjcwUlR3T21xd0MzLyt6WUJIajB5ZUZOZ3haZm4zMU9FTlpDdXVvajlBVnc1WEl6YUZ6N25kM0dRVS9zblh1N1g0OEg2ZndtSU8iLCJtYWMiOiI0MGMxNzAzYWY1MjFmNjA0NGVmZGE4NWQ5MjlkOTM5OWYwNjk4NWE5Y2I1ZmFhNTdiYTI1MDVkYTlmOWI4YTE2In0%3D; ballysdover_session=eyJpdiI6Im1nVzBFYXNFOEdEK3BiQk5HazEzU2c9PSIsInZhbHVlIjoiTWVJeE41TGZOY1RxbUN6WVFlMWcyZi94dWpXaFg3YWVOU1dFa0IxRnFxOTRkVThqWnNrUTJVVisvcUJWNXZqa1JDeDl1b2dQMVJpK3RmZE1Kb3FSZ3RMbmFaWXAxYTVXa0szWE9jY1dKclQ0WkI3Vy83TXI2U0dHakgwSkJ6Y1YiLCJtYWMiOiJmYTg3NTc4NDhkY2U5M2RlZjcwYzBkZWEzOWIwNmZhNmFmOWFkYWY5MTg1OTdjYzYzNGQ0OTU5NWVkODRiNmEyIn0%3D; _ga_W0YPET0D57=GS1.1.1692116672.1.0.1692116672.0.0.0; _ga=GA1.1.1195203790.1692116673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Tue, 15 Aug 2023 16:24:38 GMT
Server: Apache/2.4.52 () OpenSSL/1.0.2k-fips PHP/7.4.33
Location: https://ballysdover.pcwebserv.com/HeaderFooterAssets/favicon-16x16.png
Content-Length: 278
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
casinos.ballys.com/dover/?dt=202004271600
200 OK 56 kB URL GET HTTP/2 casinos.ballys.com/dover/?dt=202004271600
IP
Requested by https://ballysdover.pcwebserv.com/admin/login
Certificate IssuerLet's Encrypt
Subjectcasinos.ballys.com
Fingerprint43:5E:17:C3:EF:10:19:15:74:44:D3:3E:25:8D:E4:37:6E:18:B2:AE
ValidityTue, 01 Aug 2023 08:09:34 GMT - Mon, 30 Oct 2023 08:09:33 GMT
File type gzip compressed data, max speed, from FAT filesystem (MS-DOS, OS/2, NT)\012- data
Hash b5a3dab1cf40a891f7dccacbb91fa0cc
b8b58da693c7ebc5a79e82c3aedb3f1101b7c71a
f37ef046684e40856736eb4eab6f15a085378e530e5baeaf8fbaab2a4a6d814e
GET /dover/?dt=202004271600 HTTP/1.1
Host: casinos.ballys.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ballysdover.pcwebserv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 15 Aug 2023 16:24:38 GMT
etag: "1692021250"
content-encoding: gzip
content-length: 84719
content-type: text/html
last-modified: Mon, 14 Aug 2023 13:54:10 GMT
accept-ranges: bytes
cache-control: no-cache
server:
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
x-hw: 1692116678.dop228.sk1.t,1692116678.cds237.sk1.hn,1692116678.cds247.sk1.c
X-Firefox-Spdy: h2
ballysdover.pcwebserv.com/HeaderFooterAssets/national-2-condensed-web-bold.eot
404 Not Found 1.6 kB URL GET HTTP/1.0 ballysdover.pcwebserv.com/HeaderFooterAssets/national-2-condensed-web-bold.eot
IP
Requested by https://ballysdover.pcwebserv.com/admin/login
Certificate IssuerLet's Encrypt
Subjectballysdover.pcwebserv.com
Fingerprint27:E5:4D:DE:F6:A2:1A:F5:69:2F:87:CA:6C:38:62:9A:DE:1A:0F:2F
ValidityThu, 03 Aug 2023 19:39:17 GMT - Wed, 01 Nov 2023 19:39:16 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 47172e62787300b279ae2e1d21763c81
8bc8206ab37105da07312f4d39d8e57cc9763e00
258682bcb3d7d927aaf47bfe1c01788db1f0cda4bf2240001e5e7408a6f559ae
GET /HeaderFooterAssets/national-2-condensed-web-bold.eot HTTP/1.1
Host: ballysdover.pcwebserv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ballysdover.pcwebserv.com/admin/login
Cookie: XSRF-TOKEN=eyJpdiI6IkdVczQvMEVvRWxvY0xlbDFub3FJQ1E9PSIsInZhbHVlIjoiT29wTU9MdFRqVUQ4VEQ2Q3h5eGRpc2swTDgxYkFDMTdOZDhTellIQ2MxMktmTy9HemYxMXluSjcwUlR3T21xd0MzLyt6WUJIajB5ZUZOZ3haZm4zMU9FTlpDdXVvajlBVnc1WEl6YUZ6N25kM0dRVS9zblh1N1g0OEg2ZndtSU8iLCJtYWMiOiI0MGMxNzAzYWY1MjFmNjA0NGVmZGE4NWQ5MjlkOTM5OWYwNjk4NWE5Y2I1ZmFhNTdiYTI1MDVkYTlmOWI4YTE2In0%3D; ballysdover_session=eyJpdiI6Im1nVzBFYXNFOEdEK3BiQk5HazEzU2c9PSIsInZhbHVlIjoiTWVJeE41TGZOY1RxbUN6WVFlMWcyZi94dWpXaFg3YWVOU1dFa0IxRnFxOTRkVThqWnNrUTJVVisvcUJWNXZqa1JDeDl1b2dQMVJpK3RmZE1Kb3FSZ3RMbmFaWXAxYTVXa0szWE9jY1dKclQ0WkI3Vy83TXI2U0dHakgwSkJ6Y1YiLCJtYWMiOiJmYTg3NTc4NDhkY2U5M2RlZjcwYzBkZWEzOWIwNmZhNmFmOWFkYWY5MTg1OTdjYzYzNGQ0OTU5NWVkODRiNmEyIn0%3D; _ga_W0YPET0D57=GS1.1.1692116672.1.0.1692116672.0.0.0; _ga=GA1.1.1195203790.1692116673
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 404 Not Found
Date: Tue, 15 Aug 2023 16:24:38 GMT
Server: Apache/2.4.52 () OpenSSL/1.0.2k-fips PHP/7.4.33
X-Powered-By: PHP/7.4.33
Cache-Control: no-cache, private
Content-Length: 1552
Connection: close
Content-Type: text/html; charset=UTF-8
ballysdover.pcwebserv.com/HeaderFooterAssets/fa-light-300.woff2
200 OK 94 kB URL GET HTTP/1.1 ballysdover.pcwebserv.com/HeaderFooterAssets/fa-light-300.woff2
IP
Requested by https://ballysdover.pcwebserv.com/admin/login
Certificate IssuerLet's Encrypt
Subjectballysdover.pcwebserv.com
Fingerprint27:E5:4D:DE:F6:A2:1A:F5:69:2F:87:CA:6C:38:62:9A:DE:1A:0F:2F
ValidityThu, 03 Aug 2023 19:39:17 GMT - Wed, 01 Nov 2023 19:39:16 GMT
File type Web Open Font Format (Version 2), TrueType, length 94240, version 1.0\012- data
Hash 2af3474b5c75934400ebb9b21b1deff3
00838d3395dcb4126fbbd0180cd7a2cd0f1f95a0
2f3d5fef7692918616eaa963e436ca2e166a6a446d6162f4d68734b145cc4625
GET /HeaderFooterAssets/fa-light-300.woff2 HTTP/1.1
Host: ballysdover.pcwebserv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://ballysdover.pcwebserv.com/admin/login
Cookie: XSRF-TOKEN=eyJpdiI6IkdVczQvMEVvRWxvY0xlbDFub3FJQ1E9PSIsInZhbHVlIjoiT29wTU9MdFRqVUQ4VEQ2Q3h5eGRpc2swTDgxYkFDMTdOZDhTellIQ2MxMktmTy9HemYxMXluSjcwUlR3T21xd0MzLyt6WUJIajB5ZUZOZ3haZm4zMU9FTlpDdXVvajlBVnc1WEl6YUZ6N25kM0dRVS9zblh1N1g0OEg2ZndtSU8iLCJtYWMiOiI0MGMxNzAzYWY1MjFmNjA0NGVmZGE4NWQ5MjlkOTM5OWYwNjk4NWE5Y2I1ZmFhNTdiYTI1MDVkYTlmOWI4YTE2In0%3D; ballysdover_session=eyJpdiI6Im1nVzBFYXNFOEdEK3BiQk5HazEzU2c9PSIsInZhbHVlIjoiTWVJeE41TGZOY1RxbUN6WVFlMWcyZi94dWpXaFg3YWVOU1dFa0IxRnFxOTRkVThqWnNrUTJVVisvcUJWNXZqa1JDeDl1b2dQMVJpK3RmZE1Kb3FSZ3RMbmFaWXAxYTVXa0szWE9jY1dKclQ0WkI3Vy83TXI2U0dHakgwSkJ6Y1YiLCJtYWMiOiJmYTg3NTc4NDhkY2U5M2RlZjcwYzBkZWEzOWIwNmZhNmFmOWFkYWY5MTg1OTdjYzYzNGQ0OTU5NWVkODRiNmEyIn0%3D; _ga_W0YPET0D57=GS1.1.1692116672.1.0.1692116672.0.0.0; _ga=GA1.1.1195203790.1692116673
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 15 Aug 2023 16:24:38 GMT
Server: Apache/2.4.52 () OpenSSL/1.0.2k-fips PHP/7.4.33
Last-Modified: Mon, 25 Jul 2022 22:01:25 GMT
ETag: "17020-5e4a853362bae"
Accept-Ranges: bytes
Content-Length: 94240
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
ballysdover.pcwebserv.com/HeaderFooterAssets/national-2-condensed-web-bold.woff2
200 OK 37 kB URL GET HTTP/1.1 ballysdover.pcwebserv.com/HeaderFooterAssets/national-2-condensed-web-bold.woff2
IP
Requested by https://ballysdover.pcwebserv.com/admin/login
Certificate IssuerLet's Encrypt
Subjectballysdover.pcwebserv.com
Fingerprint27:E5:4D:DE:F6:A2:1A:F5:69:2F:87:CA:6C:38:62:9A:DE:1A:0F:2F
ValidityThu, 03 Aug 2023 19:39:17 GMT - Wed, 01 Nov 2023 19:39:16 GMT
File type Web Open Font Format (Version 2), TrueType, length 36612, version 1.262\012- data
Hash 50a5a07a1a993f4390fe9470f546f635
e676e145bdddad0c287dbf34e3bd3a08b95c5dd7
e6e727eeafcd52f2e4338d5de2ba7a802300443c4d5b1423756059b66b42913c
GET /HeaderFooterAssets/national-2-condensed-web-bold.woff2 HTTP/1.1
Host: ballysdover.pcwebserv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://ballysdover.pcwebserv.com/admin/login
Cookie: XSRF-TOKEN=eyJpdiI6IkdVczQvMEVvRWxvY0xlbDFub3FJQ1E9PSIsInZhbHVlIjoiT29wTU9MdFRqVUQ4VEQ2Q3h5eGRpc2swTDgxYkFDMTdOZDhTellIQ2MxMktmTy9HemYxMXluSjcwUlR3T21xd0MzLyt6WUJIajB5ZUZOZ3haZm4zMU9FTlpDdXVvajlBVnc1WEl6YUZ6N25kM0dRVS9zblh1N1g0OEg2ZndtSU8iLCJtYWMiOiI0MGMxNzAzYWY1MjFmNjA0NGVmZGE4NWQ5MjlkOTM5OWYwNjk4NWE5Y2I1ZmFhNTdiYTI1MDVkYTlmOWI4YTE2In0%3D; ballysdover_session=eyJpdiI6Im1nVzBFYXNFOEdEK3BiQk5HazEzU2c9PSIsInZhbHVlIjoiTWVJeE41TGZOY1RxbUN6WVFlMWcyZi94dWpXaFg3YWVOU1dFa0IxRnFxOTRkVThqWnNrUTJVVisvcUJWNXZqa1JDeDl1b2dQMVJpK3RmZE1Kb3FSZ3RMbmFaWXAxYTVXa0szWE9jY1dKclQ0WkI3Vy83TXI2U0dHakgwSkJ6Y1YiLCJtYWMiOiJmYTg3NTc4NDhkY2U5M2RlZjcwYzBkZWEzOWIwNmZhNmFmOWFkYWY5MTg1OTdjYzYzNGQ0OTU5NWVkODRiNmEyIn0%3D; _ga_W0YPET0D57=GS1.1.1692116672.1.0.1692116672.0.0.0; _ga=GA1.1.1195203790.1692116673
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 15 Aug 2023 16:24:39 GMT
Server: Apache/2.4.52 () OpenSSL/1.0.2k-fips PHP/7.4.33
Last-Modified: Mon, 25 Jul 2022 22:01:25 GMT
ETag: "8f04-5e4a853363b4e"
Accept-Ranges: bytes
Content-Length: 36612
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
ballysdover.pcwebserv.com/HeaderFooterAssets/favicon-16x16.png
200 OK 1.4 kB URL GET HTTP/1.1 ballysdover.pcwebserv.com/HeaderFooterAssets/favicon-16x16.png
IP
Requested by https://ballysdover.pcwebserv.com/admin/login
Certificate IssuerLet's Encrypt
Subjectballysdover.pcwebserv.com
Fingerprint27:E5:4D:DE:F6:A2:1A:F5:69:2F:87:CA:6C:38:62:9A:DE:1A:0F:2F
ValidityThu, 03 Aug 2023 19:39:17 GMT - Wed, 01 Nov 2023 19:39:16 GMT
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash 2120f9c863ad36785143cdb798f28ff7
b16e0d01e24b3411e536fc4dff61b7de2e9cd0b6
a512fc2fd5e3ea434cbef1d9de3423bbcdedb3b8ec6d2f231525025624caf841
GET /HeaderFooterAssets/favicon-16x16.png HTTP/1.1
Host: ballysdover.pcwebserv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ballysdover.pcwebserv.com/admin/login
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IkdVczQvMEVvRWxvY0xlbDFub3FJQ1E9PSIsInZhbHVlIjoiT29wTU9MdFRqVUQ4VEQ2Q3h5eGRpc2swTDgxYkFDMTdOZDhTellIQ2MxMktmTy9HemYxMXluSjcwUlR3T21xd0MzLyt6WUJIajB5ZUZOZ3haZm4zMU9FTlpDdXVvajlBVnc1WEl6YUZ6N25kM0dRVS9zblh1N1g0OEg2ZndtSU8iLCJtYWMiOiI0MGMxNzAzYWY1MjFmNjA0NGVmZGE4NWQ5MjlkOTM5OWYwNjk4NWE5Y2I1ZmFhNTdiYTI1MDVkYTlmOWI4YTE2In0%3D; ballysdover_session=eyJpdiI6Im1nVzBFYXNFOEdEK3BiQk5HazEzU2c9PSIsInZhbHVlIjoiTWVJeE41TGZOY1RxbUN6WVFlMWcyZi94dWpXaFg3YWVOU1dFa0IxRnFxOTRkVThqWnNrUTJVVisvcUJWNXZqa1JDeDl1b2dQMVJpK3RmZE1Kb3FSZ3RMbmFaWXAxYTVXa0szWE9jY1dKclQ0WkI3Vy83TXI2U0dHakgwSkJ6Y1YiLCJtYWMiOiJmYTg3NTc4NDhkY2U5M2RlZjcwYzBkZWEzOWIwNmZhNmFmOWFkYWY5MTg1OTdjYzYzNGQ0OTU5NWVkODRiNmEyIn0%3D; _ga_W0YPET0D57=GS1.1.1692116672.1.0.1692116672.0.0.0; _ga=GA1.1.1195203790.1692116673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 15 Aug 2023 16:24:39 GMT
Server: Apache/2.4.52 () OpenSSL/1.0.2k-fips PHP/7.4.33
Last-Modified: Mon, 25 Jul 2022 22:01:25 GMT
ETag: "55c-5e4a853362bae"
Accept-Ranges: bytes
Content-Length: 1372
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
ballysdover.pcwebserv.com/HeaderFooterAssets/android-icon-192x192.png
200 OK 12 kB URL GET HTTP/1.1 ballysdover.pcwebserv.com/HeaderFooterAssets/android-icon-192x192.png
IP
Requested by https://ballysdover.pcwebserv.com/admin/login
Certificate IssuerLet's Encrypt
Subjectballysdover.pcwebserv.com
Fingerprint27:E5:4D:DE:F6:A2:1A:F5:69:2F:87:CA:6C:38:62:9A:DE:1A:0F:2F
ValidityThu, 03 Aug 2023 19:39:17 GMT - Wed, 01 Nov 2023 19:39:16 GMT
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 8fbd806ac68b1ad195bfeeb998916b7e
d77b258cfcd03f75b25f568b6dea09ea58d51edf
6cb29834898d070003bda14f15c4f4f033260ee0f499cea9b784bdce6dcde5ef
GET /HeaderFooterAssets/android-icon-192x192.png HTTP/1.1
Host: ballysdover.pcwebserv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ballysdover.pcwebserv.com/admin/login
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IkdVczQvMEVvRWxvY0xlbDFub3FJQ1E9PSIsInZhbHVlIjoiT29wTU9MdFRqVUQ4VEQ2Q3h5eGRpc2swTDgxYkFDMTdOZDhTellIQ2MxMktmTy9HemYxMXluSjcwUlR3T21xd0MzLyt6WUJIajB5ZUZOZ3haZm4zMU9FTlpDdXVvajlBVnc1WEl6YUZ6N25kM0dRVS9zblh1N1g0OEg2ZndtSU8iLCJtYWMiOiI0MGMxNzAzYWY1MjFmNjA0NGVmZGE4NWQ5MjlkOTM5OWYwNjk4NWE5Y2I1ZmFhNTdiYTI1MDVkYTlmOWI4YTE2In0%3D; ballysdover_session=eyJpdiI6Im1nVzBFYXNFOEdEK3BiQk5HazEzU2c9PSIsInZhbHVlIjoiTWVJeE41TGZOY1RxbUN6WVFlMWcyZi94dWpXaFg3YWVOU1dFa0IxRnFxOTRkVThqWnNrUTJVVisvcUJWNXZqa1JDeDl1b2dQMVJpK3RmZE1Kb3FSZ3RMbmFaWXAxYTVXa0szWE9jY1dKclQ0WkI3Vy83TXI2U0dHakgwSkJ6Y1YiLCJtYWMiOiJmYTg3NTc4NDhkY2U5M2RlZjcwYzBkZWEzOWIwNmZhNmFmOWFkYWY5MTg1OTdjYzYzNGQ0OTU5NWVkODRiNmEyIn0%3D; _ga_W0YPET0D57=GS1.1.1692116672.1.0.1692116672.0.0.0; _ga=GA1.1.1195203790.1692116673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 15 Aug 2023 16:24:39 GMT
Server: Apache/2.4.52 () OpenSSL/1.0.2k-fips PHP/7.4.33
Last-Modified: Mon, 25 Jul 2022 22:01:25 GMT
ETag: "2fc2-5e4a853360c6f"
Accept-Ranges: bytes
Content-Length: 12226
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
casinos.ballys.com/dover?dt=202004271600
301 Moved Permanently 0 B URL GET HTTP/2 casinos.ballys.com/dover?dt=202004271600
IP
Requested by https://ballysdover.pcwebserv.com/admin/login
Certificate IssuerLet's Encrypt
Subjectcasinos.ballys.com
Fingerprint43:5E:17:C3:EF:10:19:15:74:44:D3:3E:25:8D:E4:37:6E:18:B2:AE
ValidityTue, 01 Aug 2023 08:09:34 GMT - Mon, 30 Oct 2023 08:09:33 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dover?dt=202004271600 HTTP/1.1
Host: casinos.ballys.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ballysdover.pcwebserv.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Tue, 15 Aug 2023 16:24:38 GMT
content-encoding: gzip
content-length: 158
content-type: text/html; charset=UTF-8
accept-ranges: bytes
cache-control: no-cache
location: https://casinos.ballys.com/dover/?dt=202004271600
server:
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
x-hw: 1692116678.dop228.sk1.t,1692116678.cds237.sk1.hn,1692116678.cds241.sk1.c
X-Firefox-Spdy: h2
ballysdover.pcwebserv.com/HeaderFooterAssets/android-icon-192x192.png/
301 Moved Permanently 12 kB URL GET HTTP/1.1 ballysdover.pcwebserv.com/HeaderFooterAssets/android-icon-192x192.png/
IP
Requested by https://ballysdover.pcwebserv.com/admin/login
Certificate IssuerLet's Encrypt
Subjectballysdover.pcwebserv.com
Fingerprint27:E5:4D:DE:F6:A2:1A:F5:69:2F:87:CA:6C:38:62:9A:DE:1A:0F:2F
ValidityThu, 03 Aug 2023 19:39:17 GMT - Wed, 01 Nov 2023 19:39:16 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /HeaderFooterAssets/android-icon-192x192.png/ HTTP/1.1
Host: ballysdover.pcwebserv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ballysdover.pcwebserv.com/admin/login
Cookie: XSRF-TOKEN=eyJpdiI6IkdVczQvMEVvRWxvY0xlbDFub3FJQ1E9PSIsInZhbHVlIjoiT29wTU9MdFRqVUQ4VEQ2Q3h5eGRpc2swTDgxYkFDMTdOZDhTellIQ2MxMktmTy9HemYxMXluSjcwUlR3T21xd0MzLyt6WUJIajB5ZUZOZ3haZm4zMU9FTlpDdXVvajlBVnc1WEl6YUZ6N25kM0dRVS9zblh1N1g0OEg2ZndtSU8iLCJtYWMiOiI0MGMxNzAzYWY1MjFmNjA0NGVmZGE4NWQ5MjlkOTM5OWYwNjk4NWE5Y2I1ZmFhNTdiYTI1MDVkYTlmOWI4YTE2In0%3D; ballysdover_session=eyJpdiI6Im1nVzBFYXNFOEdEK3BiQk5HazEzU2c9PSIsInZhbHVlIjoiTWVJeE41TGZOY1RxbUN6WVFlMWcyZi94dWpXaFg3YWVOU1dFa0IxRnFxOTRkVThqWnNrUTJVVisvcUJWNXZqa1JDeDl1b2dQMVJpK3RmZE1Kb3FSZ3RMbmFaWXAxYTVXa0szWE9jY1dKclQ0WkI3Vy83TXI2U0dHakgwSkJ6Y1YiLCJtYWMiOiJmYTg3NTc4NDhkY2U5M2RlZjcwYzBkZWEzOWIwNmZhNmFmOWFkYWY5MTg1OTdjYzYzNGQ0OTU5NWVkODRiNmEyIn0%3D; _ga_W0YPET0D57=GS1.1.1692116672.1.0.1692116672.0.0.0; _ga=GA1.1.1195203790.1692116673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Tue, 15 Aug 2023 16:24:38 GMT
Server: Apache/2.4.52 () OpenSSL/1.0.2k-fips PHP/7.4.33
Location: https://ballysdover.pcwebserv.com/HeaderFooterAssets/android-icon-192x192.png
Content-Length: 285
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
casinos.ballys.com/dover?dt=202004271600
301 Moved Permanently 0 B URL GET HTTP/2 casinos.ballys.com/dover?dt=202004271600
IP
Requested by https://ballysdover.pcwebserv.com/admin/login
Certificate IssuerLet's Encrypt
Subjectcasinos.ballys.com
Fingerprint43:5E:17:C3:EF:10:19:15:74:44:D3:3E:25:8D:E4:37:6E:18:B2:AE
ValidityTue, 01 Aug 2023 08:09:34 GMT - Mon, 30 Oct 2023 08:09:33 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dover?dt=202004271600 HTTP/1.1
Host: casinos.ballys.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ballysdover.pcwebserv.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Tue, 15 Aug 2023 16:24:37 GMT
accept-ranges: bytes
content-encoding: gzip
content-length: 158
content-type: text/html; charset=UTF-8
x-hw: 1692116677.dop228.sk1.t,1692116677.cds237.sk1.hn,1692116677.cds241.sk1.s,1692116677.cdn4-pxy025-atl02.at2.r,1692116677.cds143.at2.c,1692116677.cds241.sk1.p
cache-control: no-cache
location: https://casinos.ballys.com/dover/?dt=202004271600
server:
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400|Oswald:700
200 OK 4.6 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400|Oswald:700
IP
Requested by https://ballysdover.pcwebserv.com/admin/login
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintC1:FC:47:2F:E4:8D:DA:F2:E6:C0:AB:89:40:FB:3F:E4:E0:C5:04:42
ValidityMon, 17 Jul 2023 08:21:35 GMT - Mon, 09 Oct 2023 08:21:34 GMT
File type ASCII text, with very long lines (4747), with no line terminators
Hash 0c16f5c03e0ad22c9d2fd16df72489a2
d48302c40ac398ee3c40aec1b11a235e9f1856be
37870ca005b35d10436d8fb613f4d3e4298713ed7eab8769d1fab822af659009
GET /css?family=Open+Sans:400|Oswald:700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ballysdover.pcwebserv.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 15 Aug 2023 16:24:36 GMT
date: Tue, 15 Aug 2023 16:24:36 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
18.191.189.189
162.159.129.11